Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft
File: AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft (raw, json)
Hash identifier: 5qMoxGRzuzBhcm1iJLUqZeDIgAwvl9edu8l4Zs10kVY=
Subject key identifier: CC:20:27:8B:67:9A:D8:3F:84:C8:5D:CA:20:52:56:E8:BB:A1:3F:6F
Authority key identifier: 01:3F:6D:B0:FD:57:D1:9F:9E:E1:52:42:A2:E4:16:7E:FB:52:2D:04
Certificate issuer: /CN=013f6db0fd57d19f9ee15242a2e4167efb522d04
Certificate serial: 01963652893C880FB05948444BBBB92331B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft
Manifest number: 09C4
Signing time: Mon 14 Apr 2025 22:01:40 +0000
Manifest this update: Mon 14 Apr 2025 22:01:40 +0000
Manifest next update: Tue 15 Apr 2025 22:01:40 +0000
Files and hashes: 1: AT9tsP1X0Z-e4VJCouQWfvtSLQQ.crl (hash: Mt315uNJ7oaZLE3WWMdvgHOfdT3GQdsX1uSr1TCNlJs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 19:34:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:36:52:89:3c:88:0f:b0:59:48:44:4b:bb:b9:23:31:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=013f6db0fd57d19f9ee15242a2e4167efb522d04
Validity
Not Before: Apr 14 22:01:40 2025 GMT
Not After : Apr 15 22:01:40 2025 GMT
Subject: CN=cc20278b679ad83f84c85dca205256e8bba13f6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e7:e2:da:bb:06:df:76:ff:39:e7:c2:70:d3:
d6:79:c9:94:d4:cc:07:dd:9e:19:fe:11:fe:ca:50:
d8:44:a3:98:5e:45:3d:c1:84:d0:df:6d:6d:1e:8a:
90:48:40:9a:4a:fd:6e:90:a4:a2:26:15:52:82:3b:
f3:a2:95:2d:a9:ff:c8:ef:86:09:cd:f5:60:81:eb:
ba:98:39:01:54:cf:ae:96:30:63:47:10:29:65:ab:
05:f1:66:dd:4b:59:76:9e:66:f1:14:8d:6d:ef:9f:
b9:2c:f6:57:8d:9d:3b:c0:a0:12:2d:38:99:51:f9:
a2:09:20:35:6c:19:78:19:40:f8:93:09:e0:79:90:
01:ec:6b:82:e3:9f:32:13:88:aa:2a:1b:d1:f8:07:
58:e3:d4:9d:1d:19:9d:bb:63:4b:c1:d0:ce:1c:d9:
eb:b4:16:59:98:2c:6f:86:44:4e:c6:ae:a7:26:d9:
64:a3:df:2d:d8:c7:2f:fd:85:ef:b9:d7:48:4e:e6:
5a:bd:0b:51:67:c0:a9:3c:ff:47:49:d3:83:8e:e1:
90:db:2a:44:a1:2a:49:28:50:19:a3:2e:0f:65:f5:
8e:4a:7c:84:c6:50:b2:b6:84:23:fe:6a:8b:dc:83:
98:2d:a9:e6:81:f9:5e:fb:b9:a4:e8:18:56:c3:55:
f1:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:20:27:8B:67:9A:D8:3F:84:C8:5D:CA:20:52:56:E8:BB:A1:3F:6F
X509v3 Authority Key Identifier:
keyid:01:3F:6D:B0:FD:57:D1:9F:9E:E1:52:42:A2:E4:16:7E:FB:52:2D:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:81:b7:e2:5c:e1:57:97:67:51:1d:5b:e3:9f:c2:74:bb:5d:
ee:69:0b:49:de:76:f6:d4:e6:8a:27:3f:e8:8b:e1:3d:e8:cc:
97:20:a2:12:85:7f:6b:4c:75:51:e4:d6:da:0e:38:d3:f7:cc:
31:18:50:37:0a:03:3a:21:bd:9a:21:0e:8b:8a:d5:f9:f2:b2:
5c:87:ca:c3:77:36:e9:d9:a2:72:85:25:b2:f5:9d:fd:73:72:
fb:77:b9:99:4e:86:3a:75:7a:3f:2f:fc:1f:e4:e6:63:2d:51:
26:90:dd:71:23:52:2a:d8:0d:f8:51:ff:a6:38:7e:7d:90:94:
f4:57:72:e7:c5:14:a3:25:a3:46:70:4e:7b:f6:16:6a:dd:06:
0d:21:09:35:98:64:9a:31:ce:e5:93:23:3c:a2:0f:27:3f:16:
45:56:35:cd:76:c7:fc:5e:6c:f9:57:d6:60:0f:92:e9:c9:77:
30:be:f8:43:43:7a:ad:a2:70:72:b2:25:6e:42:04:8c:4b:c4:
0d:6e:b5:25:35:7b:3a:f7:c7:60:3e:6e:b6:00:02:30:16:7e:
7f:b4:78:c8:6d:d5:ad:af:d3:cd:21:49:fb:f2:08:36:a1:5f:
a0:6b:df:0e:8a:9e:c0:94:21:88:29:e6:f2:85:2d:c0:b8:8c:
91:14:ad:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY2Uok8iA+wWUhES7u5IzG2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxM2Y2ZGIwZmQ1N2QxOWY5ZWUxNTI0MmEyZTQxNjdlZmI1
MjJkMDQwHhcNMjUwNDE0MjIwMTQwWhcNMjUwNDE1MjIwMTQwWjAzMTEwLwYDVQQD
EyhjYzIwMjc4YjY3OWFkODNmODRjODVkY2EyMDUyNTZlOGJiYTEzZjZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+fi2rsG33b/OefCcNPWecmU1MwH
3Z4Z/hH+ylDYRKOYXkU9wYTQ321tHoqQSECaSv1ukKSiJhVSgjvzopUtqf/I74YJ
zfVggeu6mDkBVM+uljBjRxApZasF8WbdS1l2nmbxFI1t75+5LPZXjZ07wKASLTiZ
UfmiCSA1bBl4GUD4kwngeZAB7GuC458yE4iqKhvR+AdY49SdHRmdu2NLwdDOHNnr
tBZZmCxvhkROxq6nJtlko98t2Mcv/YXvuddITuZavQtRZ8CpPP9HSdODjuGQ2ypE
oSpJKFAZoy4PZfWOSnyExlCytoQj/mqL3IOYLanmgfle+7mk6BhWw1XxcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMwgJ4tnmtg/hMhdyiBSVui7oT9vMB8GA1UdIwQY
MBaAFAE/bbD9V9GfnuFSQqLkFn77Ui0EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVQ5dHNQMVgwWi1lNFZKQ291UVdmdnRTTFFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi9mNjMzMDctNGEwZi00MDUzLThmYzMt
ZjUzNTU3ODk4NGMyLzEvQVQ5dHNQMVgwWi1lNFZKQ291UVdmdnRTTFFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi9mNjMzMDctNGEwZi00MDUzLThmYzMtZjUzNTU3ODk4NGMy
LzEvQVQ5dHNQMVgwWi1lNFZKQ291UVdmdnRTTFFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAooG34lzh
V5dnUR1b45/CdLtd7mkLSd529tTmiic/6IvhPejMlyCiEoV/a0x1UeTW2g440/fM
MRhQNwoDOiG9miEOi4rV+fKyXIfKw3c26dmicoUlsvWd/XNy+3e5mU6GOnV6Py/8
H+TmYy1RJpDdcSNSKtgN+FH/pjh+fZCU9Fdy58UUoyWjRnBOe/YWat0GDSEJNZhk
mjHO5ZMjPKIPJz8WRVY1zXbH/F5s+VfWYA+S6cl3ML74Q0N6raJwcrIlbkIEjEvE
DW61JTV7OvfHYD5utgACMBZ+f7R4yG3Vra/TzSFJ+/IINqFfoGvfDoqewJQhiCnm
8oUtwLiMkRStFg==
-----END CERTIFICATE-----
Generated at Tue Apr 15 01:59:10 2025 by rpki-client