Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/7e1b1c-f963-4e29-b8ec-788db09d0fe6/1/RzLsDpHbv5TdodZQRH0miXbWIJo.mft
File: RzLsDpHbv5TdodZQRH0miXbWIJo.mft (raw, json)
Hash identifier: haw9t/XmmjvTyERcBiClIps0zEsIVxYJf5zXqkx9MfM=
Subject key identifier: 40:EA:35:7F:8A:13:6F:32:0A:AB:AF:E1:02:A1:1D:FC:06:AA:88:C0
Authority key identifier: 47:32:EC:0E:91:DB:BF:94:DD:A1:D6:50:44:7D:26:89:76:D6:20:9A
Certificate issuer: /CN=4732ec0e91dbbf94dda1d650447d268976d6209a
Certificate serial: 01964CD99E792953F3C7BBE9D8E3D524866E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzLsDpHbv5TdodZQRH0miXbWIJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/7e1b1c-f963-4e29-b8ec-788db09d0fe6/1/RzLsDpHbv5TdodZQRH0miXbWIJo.mft
Manifest number: 09B0
Signing time: Sat 19 Apr 2025 07:00:52 +0000
Manifest this update: Sat 19 Apr 2025 07:00:52 +0000
Manifest next update: Sun 20 Apr 2025 07:00:52 +0000
Files and hashes: 1: RzLsDpHbv5TdodZQRH0miXbWIJo.crl (hash: g9g5TU0ZI0wrjLTJf2ihwZtWD4Xs83oKK3FRwseSNWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/7e1b1c-f963-4e29-b8ec-788db09d0fe6/1/RzLsDpHbv5TdodZQRH0miXbWIJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/7e1b1c-f963-4e29-b8ec-788db09d0fe6/1/RzLsDpHbv5TdodZQRH0miXbWIJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RzLsDpHbv5TdodZQRH0miXbWIJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:d9:9e:79:29:53:f3:c7:bb:e9:d8:e3:d5:24:86:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4732ec0e91dbbf94dda1d650447d268976d6209a
Validity
Not Before: Apr 19 07:00:52 2025 GMT
Not After : Apr 20 07:00:52 2025 GMT
Subject: CN=40ea357f8a136f320aabafe102a11dfc06aa88c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a3:45:14:59:0b:ad:fe:10:b0:08:c9:ca:11:
e3:b5:c8:42:a4:ae:72:55:01:45:4a:6f:5c:68:49:
22:89:4d:b4:05:4f:aa:a1:fe:d4:e3:a1:b6:ac:09:
70:8c:ba:08:d7:19:4d:af:cc:85:6d:4a:33:69:43:
34:e0:89:c9:b3:d1:5c:2c:6c:9d:d5:66:67:4f:da:
ab:d1:4f:6f:a6:42:5d:d6:19:63:40:d2:80:64:96:
c2:20:82:30:c2:a2:4e:2d:ed:2b:67:7b:6e:e1:7d:
be:53:06:7c:d0:37:f6:b6:e7:e9:b8:c9:40:71:9b:
06:82:fd:cd:b9:90:fc:be:88:c5:c0:6d:4b:01:01:
27:4f:ef:36:9b:4f:6b:d9:7a:b0:d7:9b:54:97:68:
38:03:fa:31:23:0b:b1:95:c2:ad:5a:72:62:83:e9:
4c:4c:d8:4a:ca:1c:09:a3:5f:c7:be:0e:ed:35:ba:
fe:c7:22:fb:cb:ed:30:cd:c5:ce:77:32:30:aa:af:
ce:1f:1c:9a:18:dd:c6:ce:f0:f7:00:10:de:01:4f:
8b:75:cf:b7:41:70:c2:ce:de:2c:75:4e:31:fe:bc:
f1:94:f7:55:dd:4c:0c:ce:3c:d8:10:8a:22:13:df:
c0:84:4d:9b:31:ab:8a:9d:cf:3f:9a:53:30:f1:67:
3a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:EA:35:7F:8A:13:6F:32:0A:AB:AF:E1:02:A1:1D:FC:06:AA:88:C0
X509v3 Authority Key Identifier:
keyid:47:32:EC:0E:91:DB:BF:94:DD:A1:D6:50:44:7D:26:89:76:D6:20:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzLsDpHbv5TdodZQRH0miXbWIJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/7e1b1c-f963-4e29-b8ec-788db09d0fe6/1/RzLsDpHbv5TdodZQRH0miXbWIJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/7e1b1c-f963-4e29-b8ec-788db09d0fe6/1/RzLsDpHbv5TdodZQRH0miXbWIJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:70:a4:af:66:ea:c1:e0:21:ae:91:0b:d2:a3:60:ff:fe:76:
98:47:ac:46:27:73:d0:ec:6d:bc:5e:15:1b:dc:53:2f:b9:ca:
20:34:d6:35:bd:a7:d8:97:e1:9d:46:5d:bb:8c:08:d5:c0:ba:
6a:67:e7:2d:0e:b0:bc:fb:67:91:31:0e:e2:43:7a:cd:0d:59:
53:ef:60:23:7e:a9:28:c2:09:d7:9e:11:23:fc:fe:73:c5:48:
ec:6e:86:ec:2b:97:2a:56:cb:f7:e9:45:4a:f3:b5:61:3a:ab:
92:01:ec:47:f1:70:96:7b:8d:21:52:3c:61:a3:c1:aa:46:62:
ef:b5:40:f5:03:77:6e:79:64:7b:be:65:a2:1c:e4:25:e4:56:
7e:8c:a6:63:fa:36:1f:3e:80:1a:04:c0:08:13:9c:26:de:04:
1b:eb:14:59:73:ae:c0:7a:22:bc:c3:52:12:84:7e:da:8c:51:
e9:84:60:b3:79:c8:87:1a:b8:48:2d:69:6b:fd:cc:5a:c4:52:
91:12:f9:11:51:a4:17:ec:fa:1f:b9:59:d3:b1:83:b3:3a:89:
49:ba:e2:4a:8f:76:c3:d5:1c:42:d1:12:e6:b8:f2:cb:0d:43:
c5:1d:c4:12:61:78:c6:5f:24:c4:3b:61:53:a1:8f:05:e9:84:
9d:49:fc:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZM2Z55KVPzx7vp2OPVJIZuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3MzJlYzBlOTFkYmJmOTRkZGExZDY1MDQ0N2QyNjg5NzZk
NjIwOWEwHhcNMjUwNDE5MDcwMDUyWhcNMjUwNDIwMDcwMDUyWjAzMTEwLwYDVQQD
Eyg0MGVhMzU3ZjhhMTM2ZjMyMGFhYmFmZTEwMmExMWRmYzA2YWE4OGMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKNFFFkLrf4QsAjJyhHjtchCpK5y
VQFFSm9caEkiiU20BU+qof7U46G2rAlwjLoI1xlNr8yFbUozaUM04InJs9FcLGyd
1WZnT9qr0U9vpkJd1hljQNKAZJbCIIIwwqJOLe0rZ3tu4X2+UwZ80Df2tufpuMlA
cZsGgv3NuZD8vojFwG1LAQEnT+82m09r2Xqw15tUl2g4A/oxIwuxlcKtWnJig+lM
TNhKyhwJo1/Hvg7tNbr+xyL7y+0wzcXOdzIwqq/OHxyaGN3GzvD3ABDeAU+Ldc+3
QXDCzt4sdU4x/rzxlPdV3UwMzjzYEIoiE9/AhE2bMauKnc8/mlMw8Wc6QwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEDqNX+KE28yCquv4QKhHfwGqojAMB8GA1UdIwQY
MBaAFEcy7A6R27+U3aHWUER9Jol21iCaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUnpMc0RwSGJ2NVRkb2RaUVJIMG1pWGJXSUpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy83ZTFiMWMtZjk2My00ZTI5LWI4ZWMt
Nzg4ZGIwOWQwZmU2LzEvUnpMc0RwSGJ2NVRkb2RaUVJIMG1pWGJXSUpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy83ZTFiMWMtZjk2My00ZTI5LWI4ZWMtNzg4ZGIwOWQwZmU2
LzEvUnpMc0RwSGJ2NVRkb2RaUVJIMG1pWGJXSUpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbnCkr2bq
weAhrpEL0qNg//52mEesRidz0OxtvF4VG9xTL7nKIDTWNb2n2JfhnUZdu4wI1cC6
amfnLQ6wvPtnkTEO4kN6zQ1ZU+9gI36pKMIJ154RI/z+c8VI7G6G7CuXKlbL9+lF
SvO1YTqrkgHsR/FwlnuNIVI8YaPBqkZi77VA9QN3bnlke75lohzkJeRWfoymY/o2
Hz6AGgTACBOcJt4EG+sUWXOuwHoivMNSEoR+2oxR6YRgs3nIhxq4SC1pa/3MWsRS
kRL5EVGkF+z6H7lZ07GDszqJSbriSo92w9UcQtES5rjyyw1DxR3EEmF4xl8kxDth
U6GPBemEnUn8OQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:02:56 2025 by rpki-client