Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
File: 5DWo9PNqSBGpLRlhc-HEmarMd9U.mft (raw, json)
Hash identifier: cV7xUeon8Hf4DV9LrHhwf4SKWCYy1iNS1VnZU9qeGmU=
Subject key identifier: 99:9D:21:41:4F:63:C8:C3:BB:12:F3:13:CE:EF:F4:8E:7A:FD:3A:C6
Authority key identifier: E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5
Certificate issuer: /CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
Certificate serial: 019610FBDE91F3E45A7E8E488E18CE46C17A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
Manifest number: 0BB8
Signing time: Mon 07 Apr 2025 16:01:04 +0000
Manifest this update: Mon 07 Apr 2025 16:01:04 +0000
Manifest next update: Tue 08 Apr 2025 16:01:04 +0000
Files and hashes: 1: 5DWo9PNqSBGpLRlhc-HEmarMd9U.crl (hash: cdZFo3Zw5y50bTrnegIAft3Wq+yEJHUGp76RpAyXnMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:fb:de:91:f3:e4:5a:7e:8e:48:8e:18:ce:46:c1:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
Validity
Not Before: Apr 7 16:01:04 2025 GMT
Not After : Apr 8 16:01:04 2025 GMT
Subject: CN=999d21414f63c8c3bb12f313ceeff48e7afd3ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b8:97:a6:87:e0:f9:0c:43:93:eb:89:be:3f:
7a:c8:01:c6:03:29:2d:d0:56:28:63:57:c7:20:5d:
f0:59:79:cd:2d:68:7d:54:4c:16:4c:41:62:0b:0a:
fa:50:e0:74:16:06:3e:5d:0a:b4:06:91:27:98:53:
3f:86:ef:ba:26:c1:df:50:e3:fe:be:dc:61:83:39:
59:1d:e9:2f:8b:58:3e:c2:90:da:54:d6:ae:1c:da:
52:28:ec:2a:46:35:ef:7e:0b:17:cf:d0:77:5a:0b:
a5:82:45:11:dc:d4:64:66:9e:3d:dc:f7:ce:11:14:
a7:80:6a:e0:99:0a:a5:f0:8c:e9:1f:29:0f:e7:6e:
27:b9:5d:d7:83:c7:c6:d4:00:45:16:64:11:45:76:
e5:23:43:82:d6:f9:0a:7c:fd:6c:5a:03:31:fd:d5:
85:99:f6:f5:c5:31:48:21:66:fb:2d:26:b7:c3:14:
17:20:72:e4:dc:63:92:b0:ed:45:13:d2:ed:54:09:
4d:b7:c1:5e:d5:eb:96:cb:03:1c:50:92:47:2f:1a:
1e:d0:f4:45:53:4e:fa:2c:63:2e:a7:f5:f5:b9:80:
d7:31:fb:df:dc:9d:f7:ea:e9:91:89:a9:03:b8:94:
f6:c9:dc:ec:48:15:34:e8:4f:47:5f:f6:6a:a3:d6:
82:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:9D:21:41:4F:63:C8:C3:BB:12:F3:13:CE:EF:F4:8E:7A:FD:3A:C6
X509v3 Authority Key Identifier:
keyid:E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d7:9e:a7:c4:f8:50:1c:df:53:5f:b2:1f:1a:f1:14:5c:8c:8a:
d6:80:5c:73:e9:3a:dc:56:c5:26:3c:20:72:ac:af:e4:dd:82:
3f:02:cd:50:1c:1d:d5:2d:c2:c9:ce:09:d2:7d:0f:f3:9e:bd:
f2:a7:7f:7d:3b:47:ff:f4:fe:11:10:22:7e:45:75:02:a9:27:
81:9c:b6:5f:c6:e8:dc:40:74:43:0b:6c:91:24:ef:ed:50:f8:
53:8b:c2:8d:38:a2:aa:69:ff:38:8a:c5:06:21:f8:0f:d2:a1:
c6:69:b5:d5:1e:dc:81:c7:d7:41:11:7f:b1:be:e4:10:f2:40:
32:f1:7b:5d:e7:cd:f0:be:7a:d8:66:ec:a6:43:04:a4:b9:1a:
31:19:4d:1d:cb:ce:b1:a1:4b:f5:f1:bb:ce:42:5b:35:a1:0f:
eb:cf:df:eb:54:25:5d:2d:2e:26:16:48:f2:5c:ba:0b:76:f0:
0d:73:fc:ac:c5:39:dd:cb:01:4a:f4:e0:2b:10:32:df:d5:96:
75:e0:b2:ca:3a:32:7d:60:7b:ed:55:05:d7:72:3a:3e:8d:da:
1b:d9:da:3a:ed:13:5f:d8:ff:c1:67:60:5a:2a:a6:c4:d4:10:
10:ac:ab:b8:ea:95:07:46:70:ce:cf:aa:62:ac:72:60:21:2d:
6e:6e:44:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYQ+96R8+Rafo5IjhjORsF6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0MzVhOGY0ZjM2YTQ4MTFhOTJkMTk2MTczZTFjNDk5YWFj
Yzc3ZDUwHhcNMjUwNDA3MTYwMTA0WhcNMjUwNDA4MTYwMTA0WjAzMTEwLwYDVQQD
Eyg5OTlkMjE0MTRmNjNjOGMzYmIxMmYzMTNjZWVmZjQ4ZTdhZmQzYWM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoLiXpofg+QxDk+uJvj96yAHGAykt
0FYoY1fHIF3wWXnNLWh9VEwWTEFiCwr6UOB0FgY+XQq0BpEnmFM/hu+6JsHfUOP+
vtxhgzlZHekvi1g+wpDaVNauHNpSKOwqRjXvfgsXz9B3WgulgkUR3NRkZp493PfO
ERSngGrgmQql8IzpHykP524nuV3Xg8fG1ABFFmQRRXblI0OC1vkKfP1sWgMx/dWF
mfb1xTFIIWb7LSa3wxQXIHLk3GOSsO1FE9LtVAlNt8Fe1euWywMcUJJHLxoe0PRF
U076LGMup/X1uYDXMfvf3J336umRiakDuJT2ydzsSBU06E9HX/Zqo9aCGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJmdIUFPY8jDuxLzE87v9I56/TrGMB8GA1UdIwQY
MBaAFOQ1qPTzakgRqS0ZYXPhxJmqzHfVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS80MmJhNzUtOTJlNi00NzkzLThhZDkt
YjgwZTlmYTQyZGZiLzEvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS80MmJhNzUtOTJlNi00NzkzLThhZDktYjgwZTlmYTQyZGZi
LzEvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA156nxPhQ
HN9TX7IfGvEUXIyK1oBcc+k63FbFJjwgcqyv5N2CPwLNUBwd1S3Cyc4J0n0P8569
8qd/fTtH//T+ERAifkV1AqkngZy2X8bo3EB0QwtskSTv7VD4U4vCjTiiqmn/OIrF
BiH4D9Khxmm11R7cgcfXQRF/sb7kEPJAMvF7XefN8L562GbspkMEpLkaMRlNHcvO
saFL9fG7zkJbNaEP68/f61QlXS0uJhZI8ly6C3bwDXP8rMU53csBSvTgKxAy39WW
deCyyjoyfWB77VUF13I6Po3aG9naOu0TX9j/wWdgWiqmxNQQEKyruOqVB0Zwzs+q
YqxyYCEtbm5EaQ==
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:15:20 2025 by rpki-client