Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.mft
File: PFlVXsIygmx91tmpJrU2AoN5SfY.mft (raw, json)
Hash identifier: EFsXWcdZQTlsJh5k3GMWNJss2rrkizGTHFIb2UA/E6g=
Subject key identifier: AD:FE:AD:13:82:83:58:C4:40:36:08:C4:52:88:7A:ED:AE:9F:38:B7
Authority key identifier: 3C:59:55:5E:C2:32:82:6C:7D:D6:D9:A9:26:B5:36:02:83:79:49:F6
Certificate issuer: /CN=3c59555ec232826c7dd6d9a926b53602837949f6
Certificate serial: 0196474528C85F33EDA5A7576CB26B3D0EA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PFlVXsIygmx91tmpJrU2AoN5SfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.mft
Manifest number: AB
Signing time: Fri 18 Apr 2025 05:00:36 +0000
Manifest this update: Fri 18 Apr 2025 05:00:36 +0000
Manifest next update: Sat 19 Apr 2025 05:00:36 +0000
Files and hashes: 1: PFlVXsIygmx91tmpJrU2AoN5SfY.crl (hash: 9Alwut7WVsFPwCBvfeelv/0W29QgqjkRwiVN662AsY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PFlVXsIygmx91tmpJrU2AoN5SfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:45:28:c8:5f:33:ed:a5:a7:57:6c:b2:6b:3d:0e:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c59555ec232826c7dd6d9a926b53602837949f6
Validity
Not Before: Apr 18 05:00:36 2025 GMT
Not After : Apr 19 05:00:36 2025 GMT
Subject: CN=adfead13828358c4403608c452887aedae9f38b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:22:49:45:cb:83:9e:31:fa:49:67:0b:7b:61:
88:c7:a4:68:c1:64:86:5b:ca:52:de:82:f6:15:05:
61:c9:fe:0d:ea:c8:a1:79:99:b6:73:51:df:84:f9:
5b:85:9e:bc:46:71:04:38:90:c9:35:f8:61:96:ff:
54:54:42:de:47:68:5a:6f:b2:16:3c:75:ae:6f:00:
cc:9b:c0:d6:e1:d3:60:d1:80:48:09:59:c3:5e:2c:
5d:15:61:10:b0:43:ea:67:4a:9a:1f:45:5d:f0:7a:
ad:86:67:82:17:26:aa:44:84:57:02:d7:25:16:a4:
db:46:ba:36:11:4a:30:94:10:4d:c7:51:f3:f1:5a:
3c:68:56:19:8a:fb:7f:b9:28:5c:5d:93:3c:2d:95:
4c:88:c4:a9:ff:41:f2:5f:48:3e:76:aa:a8:3a:0e:
bd:2f:bd:00:d1:07:e9:79:83:a9:88:7c:87:59:e9:
50:8a:a1:6a:a7:fc:f9:7f:14:0d:7d:c7:98:25:1b:
38:07:c9:14:06:96:d6:30:17:0a:7d:a1:1c:0d:e3:
b6:bf:23:2b:30:19:3e:4b:2d:28:ca:94:1c:40:bc:
5c:96:19:52:ad:1c:79:33:c9:24:87:20:33:ad:9d:
88:57:13:55:37:e0:33:ef:69:53:a8:4e:cd:4a:b7:
f3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:FE:AD:13:82:83:58:C4:40:36:08:C4:52:88:7A:ED:AE:9F:38:B7
X509v3 Authority Key Identifier:
keyid:3C:59:55:5E:C2:32:82:6C:7D:D6:D9:A9:26:B5:36:02:83:79:49:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PFlVXsIygmx91tmpJrU2AoN5SfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:9f:d9:29:88:fd:e5:e9:48:f6:ee:e9:2d:40:12:46:db:77:
a2:9a:4c:70:1b:8c:1f:b5:66:e9:e5:a9:e9:87:e4:c2:3a:50:
59:02:c9:5f:a1:09:b2:a0:bf:6f:6a:3d:4f:62:2c:d7:a7:3b:
d5:0f:56:fd:ca:47:06:55:be:32:53:76:af:eb:bf:5e:8d:58:
d7:e5:3e:b5:ae:ed:95:5f:54:c3:25:53:43:d6:ce:1f:cf:13:
55:8d:0a:a3:a8:4a:2a:2c:95:1b:ab:d2:15:c2:6f:49:60:3f:
77:42:7d:1e:ec:3b:54:3c:85:5a:d9:3c:7a:90:10:70:a7:fb:
47:21:ca:88:6f:04:7e:e2:b6:d6:14:60:57:25:14:14:45:62:
85:4b:12:c7:4f:b2:d2:95:9a:2f:b1:f4:11:ac:55:5e:c9:db:
21:53:a5:d2:da:3e:6a:f5:0d:e8:ff:6a:b8:b5:cb:aa:13:d0:
c8:82:05:3e:60:68:d3:fc:7c:ca:da:32:66:de:d8:54:6c:b3:
2b:63:db:33:52:5e:9b:ed:33:41:ef:04:89:e8:76:47:9a:df:
bb:ba:08:ba:69:05:9f:d6:dd:cb:5f:0c:e9:a9:3b:ef:8a:63:
a6:29:42:5d:55:b9:1d:a3:6f:a7:ce:fa:7c:b8:32:4b:a1:c5:
18:6a:b3:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZHRSjIXzPtpadXbLJrPQ6kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjNTk1NTVlYzIzMjgyNmM3ZGQ2ZDlhOTI2YjUzNjAyODM3
OTQ5ZjYwHhcNMjUwNDE4MDUwMDM2WhcNMjUwNDE5MDUwMDM2WjAzMTEwLwYDVQQD
EyhhZGZlYWQxMzgyODM1OGM0NDAzNjA4YzQ1Mjg4N2FlZGFlOWYzOGI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqiJJRcuDnjH6SWcLe2GIx6RowWSG
W8pS3oL2FQVhyf4N6siheZm2c1HfhPlbhZ68RnEEOJDJNfhhlv9UVELeR2hab7IW
PHWubwDMm8DW4dNg0YBICVnDXixdFWEQsEPqZ0qaH0Vd8HqthmeCFyaqRIRXAtcl
FqTbRro2EUowlBBNx1Hz8Vo8aFYZivt/uShcXZM8LZVMiMSp/0HyX0g+dqqoOg69
L70A0QfpeYOpiHyHWelQiqFqp/z5fxQNfceYJRs4B8kUBpbWMBcKfaEcDeO2vyMr
MBk+Sy0oypQcQLxclhlSrRx5M8kkhyAzrZ2IVxNVN+Az72lTqE7NSrfzkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK3+rROCg1jEQDYIxFKIeu2unzi3MB8GA1UdIwQY
MBaAFDxZVV7CMoJsfdbZqSa1NgKDeUn2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUEZsVlhzSXlnbXg5MXRtcEpyVTJBb041U2ZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9iYTk0MDQtNzhmMy00OTM1LTllMmUt
OTViMTM3M2M1Mzk5LzEvUEZsVlhzSXlnbXg5MXRtcEpyVTJBb041U2ZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9iYTk0MDQtNzhmMy00OTM1LTllMmUtOTViMTM3M2M1Mzk5
LzEvUEZsVlhzSXlnbXg5MXRtcEpyVTJBb041U2ZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUJ/ZKYj9
5elI9u7pLUASRtt3oppMcBuMH7Vm6eWp6YfkwjpQWQLJX6EJsqC/b2o9T2Is16c7
1Q9W/cpHBlW+MlN2r+u/Xo1Y1+U+ta7tlV9UwyVTQ9bOH88TVY0Ko6hKKiyVG6vS
FcJvSWA/d0J9Huw7VDyFWtk8epAQcKf7RyHKiG8EfuK21hRgVyUUFEVihUsSx0+y
0pWaL7H0EaxVXsnbIVOl0to+avUN6P9quLXLqhPQyIIFPmBo0/x8ytoyZt7YVGyz
K2PbM1Jem+0zQe8Eieh2R5rfu7oIumkFn9bdy18M6ak774pjpilCXVW5HaNvp876
fLgyS6HFGGqzBg==
-----END CERTIFICATE-----
Generated at Fri Apr 18 15:01:25 2025 by rpki-client