Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json)
Hash identifier: fnBoYcwTkUneaQ9MqOBHvtysPmXBwt7tXfXgxcC4wRM=
Subject key identifier: 07:4A:D9:BB:3F:AC:A7:4C:68:5C:05:54:19:FE:3F:35:9F:BC:9C:B1
Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Certificate serial: 019641B0EF0A0815853B7244DBFA01F0173A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
Manifest number: A1
Signing time: Thu 17 Apr 2025 03:00:36 +0000
Manifest this update: Thu 17 Apr 2025 03:00:36 +0000
Manifest next update: Fri 18 Apr 2025 03:00:36 +0000
Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: bj0Acgm6gC+3sOzyGrIcGAyeIGov8I/JPszuRoq5nho=)
2: DyBY2wfHB6a4dl33U3SXwgLJDGU.roa (hash: WRQJvvPjJahE1qm/vBTCrYOROs7sZwpvslZhT6hCk+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 03:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:b0:ef:0a:08:15:85:3b:72:44:db:fa:01:f0:17:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Validity
Not Before: Apr 17 03:00:36 2025 GMT
Not After : Apr 18 03:00:36 2025 GMT
Subject: CN=074ad9bb3faca74c685c055419fe3f359fbc9cb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:53:d7:a8:e5:92:96:fc:28:6d:ca:40:68:0e:
e0:19:06:15:bf:69:4a:93:6b:c7:d2:b2:22:ed:e2:
0c:fb:1a:12:ff:62:8d:5d:69:fc:93:f7:a7:be:27:
08:2a:c1:28:ca:19:4f:9a:dd:31:dd:c9:38:18:c9:
db:d7:5d:b8:5e:b7:0e:ad:2c:99:ec:59:02:fd:8d:
bc:c5:37:e3:82:a7:99:d4:63:28:c3:5f:a9:5a:12:
a0:a5:db:15:aa:6e:07:52:c7:67:47:80:d8:40:80:
e8:54:c9:cb:77:3a:66:36:c3:2d:ef:ed:18:59:d7:
ab:8b:6b:be:a0:5f:42:00:a4:56:04:b5:5c:1e:43:
76:85:4d:54:6e:ff:13:35:13:6a:eb:b7:a6:76:f8:
c3:83:9d:e8:d8:5d:12:b0:14:05:f5:17:e7:7e:0f:
15:5b:41:ec:a3:16:73:ac:c2:b9:83:f9:69:9c:56:
5e:cf:21:19:f2:d8:5d:f1:5b:f1:9f:bd:13:37:2a:
c6:62:9b:27:5f:51:a2:2f:00:29:48:75:ca:12:b3:
c5:40:dd:28:32:cc:31:ef:b4:ea:aa:f3:de:0b:f8:
81:32:ee:6a:f5:43:61:3f:49:76:99:5b:2a:30:cb:
4a:91:8e:f2:c6:f9:09:dd:aa:0f:ec:97:21:d4:3f:
de:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4A:D9:BB:3F:AC:A7:4C:68:5C:05:54:19:FE:3F:35:9F:BC:9C:B1
X509v3 Authority Key Identifier:
keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:8e:d7:cb:8e:6d:4a:00:06:8e:0f:49:79:9c:7b:f4:9e:7c:
e4:5c:10:2c:8c:96:ca:ef:b5:81:b0:a2:d3:57:1b:c1:5f:1e:
d7:6c:61:8a:ef:4b:62:4a:4e:6f:dc:5d:2c:96:19:cd:ac:c9:
2b:54:00:ae:78:e6:70:ea:34:99:a6:57:ec:48:43:d1:a7:c1:
8a:4d:0e:b6:0b:d8:1d:4f:26:14:8a:ef:8e:ee:20:df:3c:4a:
9b:fd:f4:e9:7e:9d:c1:c3:98:52:ac:b5:fd:f7:6d:c5:8e:57:
c5:e6:74:29:5a:29:d2:02:89:20:f1:51:fd:86:31:f9:be:cb:
6a:e4:82:e3:64:0a:fe:64:7a:74:a2:a9:1e:5d:26:fe:55:98:
ac:a3:b9:6a:c1:3a:12:eb:82:55:c8:3a:54:8b:d4:c3:17:8f:
f2:fd:09:93:a2:08:68:01:d6:21:5c:3e:72:01:fd:71:3e:bc:
49:a9:77:48:24:ec:21:db:63:f8:08:0e:42:0f:6a:f6:44:53:
7f:78:fb:03:ab:a9:78:9a:64:40:01:d6:1c:a2:c6:8a:8e:0d:
7d:1d:a0:ec:0a:c7:94:80:28:d4:9c:2b:3b:d4:5e:3e:10:a1:
5c:99:ca:cf:61:51:0f:2d:a4:f2:18:51:13:ad:97:7c:94:1a:
7a:eb:58:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZBsO8KCBWFO3JE2/oB8Bc6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5NjljYjIxNTYzZTI2ZWRiNmFmYjIwZDFkOTJlODkzYThk
ZGI4MWQwHhcNMjUwNDE3MDMwMDM2WhcNMjUwNDE4MDMwMDM2WjAzMTEwLwYDVQQD
EygwNzRhZDliYjNmYWNhNzRjNjg1YzA1NTQxOWZlM2YzNTlmYmM5Y2IxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu1PXqOWSlvwobcpAaA7gGQYVv2lK
k2vH0rIi7eIM+xoS/2KNXWn8k/envicIKsEoyhlPmt0x3ck4GMnb1124XrcOrSyZ
7FkC/Y28xTfjgqeZ1GMow1+pWhKgpdsVqm4HUsdnR4DYQIDoVMnLdzpmNsMt7+0Y
Wderi2u+oF9CAKRWBLVcHkN2hU1Ubv8TNRNq67emdvjDg53o2F0SsBQF9Rfnfg8V
W0HsoxZzrMK5g/lpnFZezyEZ8thd8Vvxn70TNyrGYpsnX1GiLwApSHXKErPFQN0o
Mswx77TqqvPeC/iBMu5q9UNhP0l2mVsqMMtKkY7yxvkJ3aoP7Jch1D/elQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAdK2bs/rKdMaFwFVBn+PzWfvJyxMB8GA1UdIwQY
MBaAFAlpyyFWPibttq+yDR2S6JOo3bgdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQt
MzYwMGQwMmE2ZjBlLzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQtMzYwMGQwMmE2ZjBl
LzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAY7Xy45t
SgAGjg9JeZx79J585FwQLIyWyu+1gbCi01cbwV8e12xhiu9LYkpOb9xdLJYZzazJ
K1QArnjmcOo0maZX7EhD0afBik0OtgvYHU8mFIrvju4g3zxKm/306X6dwcOYUqy1
/fdtxY5XxeZ0KVop0gKJIPFR/YYx+b7LauSC42QK/mR6dKKpHl0m/lWYrKO5asE6
EuuCVcg6VIvUwxeP8v0Jk6IIaAHWIVw+cgH9cT68Sal3SCTsIdtj+AgOQg9q9kRT
f3j7A6upeJpkQAHWHKLGio4NfR2g7ArHlIAo1JwrO9RePhChXJnKz2FRDy2k8hhR
E62XfJQaeutYHA==
-----END CERTIFICATE-----
Generated at Thu Apr 17 14:28:17 2025 by rpki-client