Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft
File: cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft (raw, json)
Hash identifier: XtnehEmDPTWKuroUfOQ6RLO43O+nI4WXiO+WCpzrX3M=
Subject key identifier: 0F:2A:1D:E2:DA:62:A8:6E:7A:14:7B:A9:F5:95:9A:8A:3B:2E:CB:3F
Authority key identifier: 70:9A:8E:FA:FA:78:54:01:01:2C:45:90:DA:63:44:0A:34:56:D0:CE
Certificate issuer: /CN=709a8efafa785401012c4590da63440a3456d0ce
Certificate serial: 01964744D223BAE6C71B0F7F9249D883D998
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cJqO-vp4VAEBLEWQ2mNECjRW0M4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft
Manifest number: 02AF
Signing time: Fri 18 Apr 2025 05:00:14 +0000
Manifest this update: Fri 18 Apr 2025 05:00:14 +0000
Manifest next update: Sat 19 Apr 2025 05:00:14 +0000
Files and hashes: 1: cJqO-vp4VAEBLEWQ2mNECjRW0M4.crl (hash: 7roJhP7b8eiks23c9j8TWZ27RnZqjDOGLtWwK+8h5WI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cJqO-vp4VAEBLEWQ2mNECjRW0M4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:44:d2:23:ba:e6:c7:1b:0f:7f:92:49:d8:83:d9:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=709a8efafa785401012c4590da63440a3456d0ce
Validity
Not Before: Apr 18 05:00:14 2025 GMT
Not After : Apr 19 05:00:14 2025 GMT
Subject: CN=0f2a1de2da62a86e7a147ba9f5959a8a3b2ecb3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:eb:ae:03:1e:49:94:3f:c6:a3:cb:94:71:32:
93:0d:33:c4:64:39:9b:15:af:cf:d7:5e:b0:28:6d:
e2:4a:4d:08:d2:ff:1c:ec:a4:2b:30:ae:00:65:16:
a6:df:c4:fa:f7:1c:f4:58:d0:e9:5d:43:df:92:b1:
9e:3e:f8:19:a5:78:26:65:27:34:3a:c1:b9:3a:67:
6e:d6:28:8a:99:3e:c9:b3:c6:35:f0:d8:ec:1c:76:
95:b1:50:89:32:47:6c:3c:bb:0f:49:0a:48:b7:db:
f0:89:6f:d9:a2:ca:15:01:e9:5b:54:a1:6d:57:25:
a9:3e:32:fd:74:36:d3:4e:40:0e:60:af:0a:e6:ff:
81:3b:ed:4e:f3:0a:93:b8:2e:c8:ed:36:d7:f5:89:
f1:00:db:9f:6d:ce:a5:2c:cb:8b:5a:80:d7:12:50:
49:4b:9a:32:6b:07:aa:33:4a:89:1b:68:63:bf:78:
8f:15:d9:2b:b8:7a:c3:88:06:c3:ee:fe:8f:ed:84:
59:09:8c:c9:9a:65:8d:23:14:51:c9:47:ef:c9:8f:
41:c1:9a:1d:d6:5f:e3:53:db:a8:b2:27:f1:39:aa:
c1:b0:a5:b8:d1:13:f1:78:5d:73:63:a8:f1:cb:20:
e7:62:27:95:33:1a:be:ae:93:20:8d:e0:ab:2c:b4:
72:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:2A:1D:E2:DA:62:A8:6E:7A:14:7B:A9:F5:95:9A:8A:3B:2E:CB:3F
X509v3 Authority Key Identifier:
keyid:70:9A:8E:FA:FA:78:54:01:01:2C:45:90:DA:63:44:0A:34:56:D0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cJqO-vp4VAEBLEWQ2mNECjRW0M4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:69:f3:cd:22:23:73:41:52:0f:45:c2:30:d9:66:b8:f5:4a:
73:fb:21:5d:48:bf:02:1e:ef:5f:22:e7:3c:dd:ce:8f:ac:00:
bf:6c:f7:6f:b5:43:8b:18:00:f3:cf:e7:8e:77:4e:7e:34:6a:
18:36:05:79:93:86:ba:e5:1e:93:bb:ee:88:fd:21:b5:85:85:
4e:4c:eb:74:30:2d:6f:e0:83:fb:71:1c:4e:c7:05:71:07:f7:
8e:51:13:04:3d:3e:c5:29:bb:ca:a1:87:64:e5:3d:16:0d:73:
83:bb:9b:e7:44:73:ec:a0:a2:0f:5a:40:07:a8:fb:c4:28:10:
d2:f4:29:e2:1a:14:30:bf:13:0a:94:6f:2a:62:8a:eb:e3:cd:
f3:ba:e8:00:c4:73:2f:23:75:66:e1:af:77:4e:d7:83:c5:04:
b6:ba:f2:e5:7f:f0:17:4d:ca:25:14:ab:78:61:f0:a9:17:6b:
97:f1:69:7a:0e:ce:be:bd:ae:e4:77:df:3c:02:15:4a:e0:4c:
f7:b5:a0:bd:ff:22:f7:bc:4a:e1:8e:17:2d:6e:c9:97:d1:51:
0f:dd:25:0d:2c:12:01:ff:2a:a4:e6:b5:72:48:8b:28:15:2a:
60:c4:2e:6d:db:df:7e:0f:d8:0c:d1:b6:9e:a6:92:d6:fe:7f:
81:e8:ad:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZHRNIjuubHGw9/kknYg9mYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwOWE4ZWZhZmE3ODU0MDEwMTJjNDU5MGRhNjM0NDBhMzQ1
NmQwY2UwHhcNMjUwNDE4MDUwMDE0WhcNMjUwNDE5MDUwMDE0WjAzMTEwLwYDVQQD
EygwZjJhMWRlMmRhNjJhODZlN2ExNDdiYTlmNTk1OWE4YTNiMmVjYjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuuuAx5JlD/Go8uUcTKTDTPEZDmb
Fa/P116wKG3iSk0I0v8c7KQrMK4AZRam38T69xz0WNDpXUPfkrGePvgZpXgmZSc0
OsG5Omdu1iiKmT7Js8Y18NjsHHaVsVCJMkdsPLsPSQpIt9vwiW/ZosoVAelbVKFt
VyWpPjL9dDbTTkAOYK8K5v+BO+1O8wqTuC7I7TbX9YnxANufbc6lLMuLWoDXElBJ
S5oyaweqM0qJG2hjv3iPFdkruHrDiAbD7v6P7YRZCYzJmmWNIxRRyUfvyY9BwZod
1l/jU9uosifxOarBsKW40RPxeF1zY6jxyyDnYieVMxq+rpMgjeCrLLRyEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA8qHeLaYqhuehR7qfWVmoo7Lss/MB8GA1UdIwQY
MBaAFHCajvr6eFQBASxFkNpjRAo0VtDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0pxTy12cDRWQUVCTEVXUTJtTkVDalJXME00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS9mYjVhNGYtMTk4Yi00NzExLTlhNzMt
YzAyOTQ1YjQ4M2VlLzEvY0pxTy12cDRWQUVCTEVXUTJtTkVDalJXME00Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS9mYjVhNGYtMTk4Yi00NzExLTlhNzMtYzAyOTQ1YjQ4M2Vl
LzEvY0pxTy12cDRWQUVCTEVXUTJtTkVDalJXME00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOWnzzSIj
c0FSD0XCMNlmuPVKc/shXUi/Ah7vXyLnPN3Oj6wAv2z3b7VDixgA88/njndOfjRq
GDYFeZOGuuUek7vuiP0htYWFTkzrdDAtb+CD+3EcTscFcQf3jlETBD0+xSm7yqGH
ZOU9Fg1zg7ub50Rz7KCiD1pAB6j7xCgQ0vQp4hoUML8TCpRvKmKK6+PN87roAMRz
LyN1ZuGvd07Xg8UEtrry5X/wF03KJRSreGHwqRdrl/Fpeg7Ovr2u5HffPAIVSuBM
97Wgvf8i97xK4Y4XLW7Jl9FRD90lDSwSAf8qpOa1ckiLKBUqYMQubdvffg/YDNG2
nqaS1v5/geitCQ==
-----END CERTIFICATE-----
Generated at Fri Apr 18 07:33:22 2025 by rpki-client