Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
File: 2xjQrivPZ9QUonXLOE8tOWCoN70.mft (raw, json)
Hash identifier: mrf84IUX8TT5lPomnlJhmgH8s58Q8pjYhNvPkLQ6vQ4=
Subject key identifier: 79:14:A9:81:71:0B:8D:40:85:79:53:37:E6:BD:7B:7F:E5:7F:A7:96
Authority key identifier: DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
Certificate issuer: /CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Certificate serial: 01964A0F8D675CABAA56CD9EF09A098291A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
Manifest number: 0C70
Signing time: Fri 18 Apr 2025 18:00:55 +0000
Manifest this update: Fri 18 Apr 2025 18:00:55 +0000
Manifest next update: Sat 19 Apr 2025 18:00:55 +0000
Files and hashes: 1: 2xjQrivPZ9QUonXLOE8tOWCoN70.crl (hash: oc4MDSXse/WtzN376hr28WeUAfOVYx886UeJ2Egm344=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 18:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:0f:8d:67:5c:ab:aa:56:cd:9e:f0:9a:09:82:91:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Validity
Not Before: Apr 18 18:00:55 2025 GMT
Not After : Apr 19 18:00:55 2025 GMT
Subject: CN=7914a981710b8d4085795337e6bd7b7fe57fa796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d2:48:13:1d:ab:ba:6d:59:1f:c9:60:2f:b5:
bf:ab:5c:cd:6a:20:79:f5:54:85:4c:a0:4d:ac:32:
d6:d1:90:9c:5f:8e:2d:5b:ce:50:b2:5a:ff:78:3f:
81:5b:16:7b:5d:34:ff:97:2b:73:53:c5:a3:bb:64:
8f:50:fe:cd:31:55:0f:4b:7f:14:7c:34:31:79:8b:
d2:e5:12:5b:eb:2b:df:8c:e5:3a:c0:78:a6:36:31:
b2:78:ad:eb:ab:54:ea:1a:41:43:ab:c0:58:4d:3d:
16:d9:e3:a3:dd:7e:79:b1:ff:22:9e:19:4d:05:44:
28:68:fe:69:00:6c:43:ae:d2:af:7a:4c:f0:de:81:
d9:7b:9a:ea:a1:35:ed:05:9d:41:ff:62:9e:49:17:
eb:fc:20:8a:22:86:3f:8c:00:b4:95:c3:f3:bd:6e:
1e:a4:0d:46:98:d8:cc:32:c1:04:d3:7c:16:3a:77:
1a:a3:f3:2d:2c:59:fa:36:8c:ca:ff:ed:54:ff:e1:
a1:b8:cd:8f:e4:6d:59:5a:02:f8:7c:4c:79:34:57:
38:07:7c:a0:e0:a0:4b:7a:23:0c:f2:e5:41:7c:16:
59:c2:6c:06:2d:4d:7a:02:d7:0a:91:ba:b4:83:13:
ac:ee:e2:ca:be:5b:6b:e3:d2:54:87:d4:06:78:6e:
b8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:14:A9:81:71:0B:8D:40:85:79:53:37:E6:BD:7B:7F:E5:7F:A7:96
X509v3 Authority Key Identifier:
keyid:DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:e8:4b:97:d3:47:c6:b3:d5:8e:f6:f2:1a:cb:81:0c:54:cf:
71:92:aa:34:82:cc:59:69:3f:50:4c:c3:02:d9:e6:9a:46:72:
d1:8a:57:87:dc:be:00:4d:5d:23:be:a5:85:3e:cd:a8:b7:ac:
70:b7:12:bb:95:8e:72:a4:94:5b:77:b3:c1:a1:f9:fb:91:ec:
81:f4:08:ff:4c:01:52:a6:f3:7a:12:92:77:5f:2c:a3:9b:ea:
02:4d:89:ac:07:51:6a:fa:2d:ac:dc:f6:af:30:5e:33:a4:5c:
a0:02:9d:db:1c:b3:fb:db:b6:75:71:b5:b8:7b:8d:ef:44:de:
6b:ab:a8:c8:90:a0:d6:51:e7:65:6c:ff:ce:23:ad:c2:58:2a:
72:fa:a9:33:f9:b0:42:ad:2f:04:2f:be:32:10:27:c9:09:db:
d8:b9:1a:41:f0:8a:cd:ae:db:4b:fb:c0:07:8d:97:66:35:c1:
35:80:2a:cd:47:45:93:46:58:16:f2:f0:fa:1f:26:6b:67:f2:
44:d0:a5:06:7c:28:2f:2f:a8:ef:c7:83:e7:2a:6b:56:8f:d8:
c1:d1:a2:27:e4:95:6a:ca:65:e0:ce:34:20:b7:0c:37:a7:48:
e3:4e:45:2f:59:70:60:66:1f:93:22:67:cd:25:9a:b1:a7:a4:
23:cd:d6:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZKD41nXKuqVs2e8JoJgpGgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMThkMGFlMmJjZjY3ZDQxNGEyNzVjYjM4NGYyZDM5NjBh
ODM3YmQwHhcNMjUwNDE4MTgwMDU1WhcNMjUwNDE5MTgwMDU1WjAzMTEwLwYDVQQD
Eyg3OTE0YTk4MTcxMGI4ZDQwODU3OTUzMzdlNmJkN2I3ZmU1N2ZhNzk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1NJIEx2rum1ZH8lgL7W/q1zNaiB5
9VSFTKBNrDLW0ZCcX44tW85Qslr/eD+BWxZ7XTT/lytzU8Wju2SPUP7NMVUPS38U
fDQxeYvS5RJb6yvfjOU6wHimNjGyeK3rq1TqGkFDq8BYTT0W2eOj3X55sf8inhlN
BUQoaP5pAGxDrtKvekzw3oHZe5rqoTXtBZ1B/2KeSRfr/CCKIoY/jAC0lcPzvW4e
pA1GmNjMMsEE03wWOncao/MtLFn6NozK/+1U/+GhuM2P5G1ZWgL4fEx5NFc4B3yg
4KBLeiMM8uVBfBZZwmwGLU16AtcKkbq0gxOs7uLKvltr49JUh9QGeG64xwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHkUqYFxC41AhXlTN+a9e3/lf6eWMB8GA1UdIwQY
MBaAFNsY0K4rz2fUFKJ1yzhPLTlgqDe9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnhqUXJpdlBaOVFVb25YTE9FOHRPV0NvTjcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9jZWY4OTYtZjk2OC00YzJmLTgwYzQt
MGFjZWJhYTY3Yjc5LzEvMnhqUXJpdlBaOVFVb25YTE9FOHRPV0NvTjcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9jZWY4OTYtZjk2OC00YzJmLTgwYzQtMGFjZWJhYTY3Yjc5
LzEvMnhqUXJpdlBaOVFVb25YTE9FOHRPV0NvTjcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs+hLl9NH
xrPVjvbyGsuBDFTPcZKqNILMWWk/UEzDAtnmmkZy0YpXh9y+AE1dI76lhT7NqLes
cLcSu5WOcqSUW3ezwaH5+5HsgfQI/0wBUqbzehKSd18so5vqAk2JrAdRavotrNz2
rzBeM6RcoAKd2xyz+9u2dXG1uHuN70Tea6uoyJCg1lHnZWz/ziOtwlgqcvqpM/mw
Qq0vBC++MhAnyQnb2LkaQfCKza7bS/vAB42XZjXBNYAqzUdFk0ZYFvLw+h8ma2fy
RNClBnwoLy+o78eD5yprVo/YwdGiJ+SVaspl4M40ILcMN6dI405FL1lwYGYfkyJn
zSWasaekI83W2g==
-----END CERTIFICATE-----
Generated at Sat Apr 19 00:55:22 2025 by rpki-client