Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
File: Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft (raw, json)
Hash identifier: tmeBGywPofGLgUw82R4MdG6l/erz9uYgtap0q4nBQuc=
Subject key identifier: BF:E3:8C:BB:C9:A8:3E:6D:11:07:8A:C6:12:10:AD:38:61:16:F4:38
Authority key identifier: 4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14
Certificate issuer: /CN=4b177c450d2035067baa26920b8a4bd36c7b3314
Certificate serial: 01965349FFA9C6AC1AC5028EC643086FCB46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
Manifest number: 0C0F
Signing time: Sun 20 Apr 2025 13:01:20 +0000
Manifest this update: Sun 20 Apr 2025 13:01:20 +0000
Manifest next update: Mon 21 Apr 2025 13:01:20 +0000
Files and hashes: 1: Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl (hash: rkT+7Bxoy/nXPxCab9WJLAwu2zHqq9vOEz7ABRHgMWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 13:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:ff:a9:c6:ac:1a:c5:02:8e:c6:43:08:6f:cb:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b177c450d2035067baa26920b8a4bd36c7b3314
Validity
Not Before: Apr 20 13:01:20 2025 GMT
Not After : Apr 21 13:01:20 2025 GMT
Subject: CN=bfe38cbbc9a83e6d11078ac61210ad386116f438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ef:ff:97:55:aa:3c:43:e5:03:2a:f6:8e:e9:
df:55:e2:7d:b7:70:6f:22:66:01:6e:35:c6:a3:e7:
f5:8a:bd:26:a1:00:ee:ce:c9:5b:3b:8e:65:e8:bd:
2a:a5:47:c0:2b:69:e7:78:ad:2a:70:f9:99:f9:31:
6b:5d:7a:78:63:13:b4:32:70:5b:6b:ea:7c:fb:ef:
9d:2d:f4:ac:cb:3a:6a:01:7b:8e:95:1c:c1:90:f5:
6c:db:a0:09:21:3f:1b:d9:b4:97:00:78:85:74:6a:
d6:4c:12:5b:ad:c5:e7:18:13:8e:c7:19:10:a8:39:
64:5c:1c:f8:4a:df:7d:3f:18:68:d4:e5:18:0a:03:
eb:50:e8:ba:bf:a6:7e:c4:2c:1a:30:aa:9d:50:3d:
64:22:59:35:d2:a3:c9:75:5b:6f:a2:d2:e9:f0:9d:
a7:fc:ba:56:fd:4d:a8:eb:fa:17:a0:1e:6f:79:bb:
a0:4d:52:dd:ec:94:70:c0:66:bf:d9:77:06:a2:62:
99:c2:28:79:ea:b1:5e:9b:93:7d:f4:e7:6f:ad:e1:
25:18:58:e7:cd:5b:8c:a0:5d:a1:e2:2d:c2:c5:f5:
c1:92:f3:60:a4:14:39:54:bd:c2:30:8f:b3:08:f1:
b5:87:92:2d:92:49:38:91:16:06:a5:01:9b:85:c6:
b2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:E3:8C:BB:C9:A8:3E:6D:11:07:8A:C6:12:10:AD:38:61:16:F4:38
X509v3 Authority Key Identifier:
keyid:4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:2e:a3:55:d3:e4:6a:d9:72:29:83:65:6a:8b:1d:b1:24:71:
3c:4a:35:28:de:52:44:e5:4a:aa:83:b3:cb:f7:dc:91:2c:34:
88:04:c6:93:06:25:7d:3b:fe:61:69:83:a0:21:e9:c5:81:3e:
27:4a:59:e9:39:21:7c:11:95:4f:d7:0d:8c:6a:5e:a2:c3:88:
1b:a7:75:e5:6f:58:97:67:ee:c2:1a:0d:1d:c7:ba:76:cf:66:
be:49:01:6d:a1:87:0d:c2:12:11:cd:1b:d8:72:eb:39:20:ad:
01:de:18:51:44:7d:a4:42:5f:f5:2d:98:3f:21:fd:37:9e:47:
cc:bb:71:13:0d:0b:a8:2d:15:f2:d1:3e:70:bc:a6:0c:6d:44:
d1:8b:be:9c:f2:95:35:32:6b:57:2b:d4:60:f5:f8:b0:04:b2:
2b:8a:12:cf:86:85:43:7a:16:60:3c:7c:8d:55:d0:5e:05:23:
fc:1b:37:78:68:b6:ee:99:e2:ce:85:5a:07:f9:ea:b4:59:aa:
08:32:8c:d5:7f:b4:49:3f:bf:13:5a:1b:d8:07:fb:10:d9:ab:
79:44:5c:53:35:1d:92:07:bd:7a:9b:c7:e3:d0:9f:5d:34:43:
20:32:82:05:a6:67:94:9a:78:85:57:a8:c0:14:84:de:7f:96:
e1:e4:a8:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZTSf+pxqwaxQKOxkMIb8tGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiMTc3YzQ1MGQyMDM1MDY3YmFhMjY5MjBiOGE0YmQzNmM3
YjMzMTQwHhcNMjUwNDIwMTMwMTIwWhcNMjUwNDIxMTMwMTIwWjAzMTEwLwYDVQQD
EyhiZmUzOGNiYmM5YTgzZTZkMTEwNzhhYzYxMjEwYWQzODYxMTZmNDM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3O//l1WqPEPlAyr2junfVeJ9t3Bv
ImYBbjXGo+f1ir0moQDuzslbO45l6L0qpUfAK2nneK0qcPmZ+TFrXXp4YxO0MnBb
a+p8+++dLfSsyzpqAXuOlRzBkPVs26AJIT8b2bSXAHiFdGrWTBJbrcXnGBOOxxkQ
qDlkXBz4St99Pxho1OUYCgPrUOi6v6Z+xCwaMKqdUD1kIlk10qPJdVtvotLp8J2n
/LpW/U2o6/oXoB5vebugTVLd7JRwwGa/2XcGomKZwih56rFem5N99OdvreElGFjn
zVuMoF2h4i3CxfXBkvNgpBQ5VL3CMI+zCPG1h5Itkkk4kRYGpQGbhcay6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL/jjLvJqD5tEQeKxhIQrThhFvQ4MB8GA1UdIwQY
MBaAFEsXfEUNIDUGe6omkguKS9NsezMUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS81YTZhYWQtYTRjNy00M2I5LThhOWUt
OGQ3YjczNmE2OTVjLzEvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS81YTZhYWQtYTRjNy00M2I5LThhOWUtOGQ3YjczNmE2OTVj
LzEvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQi6jVdPk
atlyKYNlaosdsSRxPEo1KN5SROVKqoOzy/fckSw0iATGkwYlfTv+YWmDoCHpxYE+
J0pZ6TkhfBGVT9cNjGpeosOIG6d15W9Yl2fuwhoNHce6ds9mvkkBbaGHDcISEc0b
2HLrOSCtAd4YUUR9pEJf9S2YPyH9N55HzLtxEw0LqC0V8tE+cLymDG1E0Yu+nPKV
NTJrVyvUYPX4sASyK4oSz4aFQ3oWYDx8jVXQXgUj/Bs3eGi27pnizoVaB/nqtFmq
CDKM1X+0ST+/E1ob2Af7ENmreURcUzUdkge9epvH49CfXTRDIDKCBaZnlJp4hVeo
wBSE3n+W4eSogw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 20:39:12 2025 by rpki-client