Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json)
Hash identifier: nHkUpBn4ZmA4k5gdPssshq1bUb+25SPgG3VmWswrCiU=
Subject key identifier: 83:5D:03:C8:54:14:61:69:34:6B:F0:39:B4:5D:02:63:22:CE:AC:E6
Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Certificate serial: 01965E03AECD58BCF9C8241A4AE596B6B999
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
Manifest number: 14D1
Signing time: Tue 22 Apr 2025 15:00:21 +0000
Manifest this update: Tue 22 Apr 2025 15:00:21 +0000
Manifest next update: Wed 23 Apr 2025 15:00:21 +0000
Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: u4jmq7C65r87KrjWvRR4QG+jEFebMicURJUiigj843U=)
2: LSDLxpYG9vUS-ynb5NuKXC0hxwk.roa (hash: iU/GAJxLreLcqJkb0jyy5NFNWuEEVZB548A5w51V+6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:03:ae:cd:58:bc:f9:c8:24:1a:4a:e5:96:b6:b9:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Validity
Not Before: Apr 22 15:00:21 2025 GMT
Not After : Apr 23 15:00:21 2025 GMT
Subject: CN=835d03c854146169346bf039b45d026322ceace6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b3:2d:83:f2:47:7b:6f:e3:0c:6e:cc:74:6a:
04:9a:1c:e4:a1:f3:8b:dc:3c:4c:8a:bb:fc:f4:6c:
58:cb:18:b4:0d:5c:5d:b0:31:ca:6b:83:f8:88:62:
76:7b:89:a9:dd:30:05:1a:ae:54:55:f9:51:08:70:
40:59:0d:47:25:54:8c:e8:68:e5:9d:f3:ce:2a:35:
05:47:34:63:91:69:9b:48:05:e3:fb:32:4b:77:ef:
cc:8a:da:87:9f:89:a5:46:1e:82:3a:f8:09:16:c9:
bd:fe:be:75:9b:1e:ce:ac:31:7a:3c:f2:ae:13:ab:
ee:64:5b:35:98:9d:cc:39:ca:86:e9:fd:70:1a:f8:
dc:db:b5:0a:63:ba:a5:36:58:ed:d5:de:27:c5:6f:
89:90:a6:51:34:3f:ff:70:97:15:30:ed:20:72:f8:
16:4a:06:0b:8a:e7:f3:87:f8:14:19:dd:29:4d:8a:
a9:11:4b:b2:d1:3d:bd:3d:3a:eb:c3:b7:a7:5a:b5:
53:b0:e8:2c:2a:95:8b:9f:7a:86:8b:ee:13:56:56:
ae:dd:76:9d:c3:6e:7c:7d:53:b6:c4:f7:41:57:f8:
d1:4e:cc:ef:aa:7f:98:3f:97:31:65:12:eb:d8:1d:
83:ae:65:b3:47:c5:14:c5:6a:2c:70:6e:26:1d:55:
ba:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5D:03:C8:54:14:61:69:34:6B:F0:39:B4:5D:02:63:22:CE:AC:E6
X509v3 Authority Key Identifier:
keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:bb:58:c9:77:f8:05:aa:ff:b5:a0:64:17:87:c7:e7:2f:0d:
1b:79:94:77:f3:a1:5d:85:fe:1a:11:c4:6e:bc:f6:a9:dc:77:
74:60:60:a5:8a:4b:fb:81:ee:f4:c9:05:46:37:d1:f6:31:de:
c0:67:51:fe:70:4f:8a:f5:39:63:3f:51:e2:07:0a:17:c0:f5:
ed:cd:27:fa:d4:cb:96:43:f6:b9:28:51:02:b9:5d:20:e7:8e:
4e:19:9b:17:64:ee:29:8c:b2:43:ca:88:26:61:c7:f6:f5:67:
fc:29:63:77:e2:ea:ab:b3:43:d6:94:e7:24:f9:fc:bd:a8:8f:
97:6c:23:35:82:06:18:72:e0:d6:6c:33:73:0c:6f:b0:57:bc:
35:dd:75:b1:3d:23:01:a3:27:34:d6:79:e3:ad:3b:18:ba:1e:
b3:9f:3c:a4:f8:6b:87:1a:ea:1a:4b:c2:95:31:2f:1b:70:97:
57:38:ac:d9:23:49:b3:6d:d4:e7:07:a1:63:04:d6:ae:37:21:
61:07:7a:e7:75:94:04:a8:b5:ea:65:7f:11:8d:92:df:a0:25:
ad:fe:12:e0:cf:ac:df:14:92:66:1f:5d:c0:cf:7b:da:fa:0e:
27:43:e0:e0:34:f0:29:91:e0:ea:e9:b7:43:90:3c:59:33:ec:
36:ec:c9:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZeA67NWLz5yCQaSuWWtrmZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyNThiM2E5NzQxYjQzMWQ3YmVjZDY0Mjg2YjllNmJjZTBl
OTc1ZGEwHhcNMjUwNDIyMTUwMDIxWhcNMjUwNDIzMTUwMDIxWjAzMTEwLwYDVQQD
Eyg4MzVkMDNjODU0MTQ2MTY5MzQ2YmYwMzliNDVkMDI2MzIyY2VhY2U2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLMtg/JHe2/jDG7MdGoEmhzkofOL
3DxMirv89GxYyxi0DVxdsDHKa4P4iGJ2e4mp3TAFGq5UVflRCHBAWQ1HJVSM6Gjl
nfPOKjUFRzRjkWmbSAXj+zJLd+/MitqHn4mlRh6COvgJFsm9/r51mx7OrDF6PPKu
E6vuZFs1mJ3MOcqG6f1wGvjc27UKY7qlNljt1d4nxW+JkKZRND//cJcVMO0gcvgW
SgYLiufzh/gUGd0pTYqpEUuy0T29PTrrw7enWrVTsOgsKpWLn3qGi+4TVlau3Xad
w258fVO2xPdBV/jRTszvqn+YP5cxZRLr2B2DrmWzR8UUxWoscG4mHVW6fwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFINdA8hUFGFpNGvwObRdAmMizqzmMB8GA1UdIwQY
MBaAFPJYs6l0G0Mde+zWQoa55rzg6XXaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8wOTVkNWYtMjY5My00MTgyLTkzOTct
Y2RhOTRmYjc5NmQxLzEvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi8wOTVkNWYtMjY5My00MTgyLTkzOTctY2RhOTRmYjc5NmQx
LzEvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMrtYyXf4
Bar/taBkF4fH5y8NG3mUd/OhXYX+GhHEbrz2qdx3dGBgpYpL+4Hu9MkFRjfR9jHe
wGdR/nBPivU5Yz9R4gcKF8D17c0n+tTLlkP2uShRArldIOeOThmbF2TuKYyyQ8qI
JmHH9vVn/Cljd+Lqq7ND1pTnJPn8vaiPl2wjNYIGGHLg1mwzcwxvsFe8Nd11sT0j
AaMnNNZ54607GLoes588pPhrhxrqGkvClTEvG3CXVzis2SNJs23U5wehYwTWrjch
YQd653WUBKi16mV/EY2S36Alrf4S4M+s3xSSZh9dwM972voOJ0Pg4DTwKZHg6um3
Q5A8WTPsNuzJ8Q==
-----END CERTIFICATE-----
Generated at Tue Apr 22 22:03:22 2025 by rpki-client