Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
File: D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft (raw, json)
Hash identifier: SDvyTVjFIw4Vh08Iv3b0lMK90QX77fFz0y8sakSwdjI=
Subject key identifier: DC:48:D3:EB:63:05:70:FF:4F:10:67:48:A5:03:0F:27:32:8A:50:19
Authority key identifier: 0F:79:76:05:20:B7:C1:5C:2E:42:60:30:82:72:B8:49:F8:8E:D6:77
Certificate issuer: /CN=0f79760520b7c15c2e4260308272b849f88ed677
Certificate serial: 01964632A824AE1D53BCF0909208E863751A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
Manifest number: 14F5
Signing time: Fri 18 Apr 2025 00:00:46 +0000
Manifest this update: Fri 18 Apr 2025 00:00:46 +0000
Manifest next update: Sat 19 Apr 2025 00:00:46 +0000
Files and hashes: 1: D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl (hash: vhBricrY0MOXQ6+6aVnH9T+FpwfJRFdDW/it+CpmpjE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 18:56:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:46:32:a8:24:ae:1d:53:bc:f0:90:92:08:e8:63:75:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f79760520b7c15c2e4260308272b849f88ed677
Validity
Not Before: Apr 18 00:00:46 2025 GMT
Not After : Apr 19 00:00:46 2025 GMT
Subject: CN=dc48d3eb630570ff4f106748a5030f27328a5019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3c:62:1b:db:08:1d:b5:47:53:16:06:02:01:
68:ec:63:5b:d2:61:37:a8:c6:40:ea:e1:5d:5e:51:
5a:96:90:d7:f9:4f:f0:5c:f3:b1:34:67:25:c9:b2:
4c:51:1d:fd:3b:c9:1e:f5:0a:bf:7a:dc:1a:1f:8a:
a3:2a:3f:43:d5:52:3a:40:b2:4f:16:12:ab:90:a1:
6b:88:14:84:fd:58:a6:38:84:91:08:b8:24:56:b2:
7b:6e:c9:2c:2a:79:a1:d6:b4:94:7f:61:dd:dc:1b:
a0:cb:a5:a1:5a:e3:06:ed:3e:13:95:6b:d5:5d:d0:
84:af:33:84:1e:ff:88:85:1f:ce:b3:5d:2d:f7:35:
bf:9d:8e:44:e3:67:24:8b:b8:e5:49:85:01:2b:2d:
df:9e:12:68:33:5f:02:4e:dc:62:48:36:fb:25:8c:
59:b6:5e:90:0e:5f:bd:cd:94:df:02:b5:be:8f:c9:
f8:f4:cf:73:08:e7:94:8f:49:65:0c:46:f1:17:a4:
91:39:a4:5a:91:1c:e0:18:9b:9f:28:8c:bb:26:14:
16:a6:54:8a:eb:c4:24:0f:65:f4:f9:f3:36:4b:a6:
d0:5b:12:18:85:69:13:d1:6f:21:84:38:1c:5a:03:
75:cb:f2:b7:64:3a:ad:d3:28:d9:f6:1a:17:4f:bb:
b0:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:48:D3:EB:63:05:70:FF:4F:10:67:48:A5:03:0F:27:32:8A:50:19
X509v3 Authority Key Identifier:
keyid:0F:79:76:05:20:B7:C1:5C:2E:42:60:30:82:72:B8:49:F8:8E:D6:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:b3:1a:01:8a:f0:cd:37:60:0e:13:2d:df:1f:a4:30:20:b6:
5f:a9:ad:02:d9:a9:9c:2c:97:92:3b:c3:11:ee:fe:22:5c:8a:
46:0d:58:5e:46:35:0d:ab:e0:31:f4:08:df:4e:91:75:25:52:
e6:2c:42:f2:a8:b1:a2:d5:db:7d:32:9c:95:6b:1a:71:8c:66:
d6:38:83:0e:85:f0:c7:19:f8:d2:6e:d3:65:08:8c:15:6a:f1:
b0:19:39:0f:c2:09:f0:f6:d8:9e:62:19:6a:4d:d1:20:8e:d5:
d0:63:05:f1:74:91:1d:e2:06:91:50:02:6c:02:6d:c4:7d:81:
7b:9e:26:2c:47:47:fb:f1:12:e4:37:21:c9:62:1f:a9:50:34:
cb:ba:bf:19:ab:7e:6c:61:e8:ff:54:12:c8:5a:ca:d1:56:8c:
20:6c:df:e4:fa:12:c0:f6:fc:4f:0f:89:a7:6f:53:33:3d:2d:
be:c9:d1:87:e0:ef:b3:61:eb:03:a1:47:65:01:0b:55:59:77:
17:3b:e4:e4:97:f0:3d:79:d2:f1:7b:af:36:3a:28:60:76:d2:
7a:ec:f0:1e:cd:8b:8e:35:9a:d4:28:a0:75:df:9f:a4:b8:1b:
44:c8:31:29:26:15:68:1f:00:e7:25:b8:65:6a:ce:f3:0d:a3:
a6:46:2e:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZGMqgkrh1TvPCQkgjoY3UaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmNzk3NjA1MjBiN2MxNWMyZTQyNjAzMDgyNzJiODQ5Zjg4
ZWQ2NzcwHhcNMjUwNDE4MDAwMDQ2WhcNMjUwNDE5MDAwMDQ2WjAzMTEwLwYDVQQD
EyhkYzQ4ZDNlYjYzMDU3MGZmNGYxMDY3NDhhNTAzMGYyNzMyOGE1MDE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTxiG9sIHbVHUxYGAgFo7GNb0mE3
qMZA6uFdXlFalpDX+U/wXPOxNGclybJMUR39O8ke9Qq/etwaH4qjKj9D1VI6QLJP
FhKrkKFriBSE/VimOISRCLgkVrJ7bsksKnmh1rSUf2Hd3Bugy6WhWuMG7T4TlWvV
XdCErzOEHv+IhR/Os10t9zW/nY5E42cki7jlSYUBKy3fnhJoM18CTtxiSDb7JYxZ
tl6QDl+9zZTfArW+j8n49M9zCOeUj0llDEbxF6SROaRakRzgGJufKIy7JhQWplSK
68QkD2X0+fM2S6bQWxIYhWkT0W8hhDgcWgN1y/K3ZDqt0yjZ9hoXT7uwswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNxI0+tjBXD/TxBnSKUDDycyilAZMB8GA1UdIwQY
MBaAFA95dgUgt8FcLkJgMIJyuEn4jtZ3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDNsMkJTQzN3Vnd1UW1Bd2duSzRTZmlPMW5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9mODQ3NGItNWFlYi00MDU4LTlmNGUt
MDA0MjQyNWJhYjFhLzEvRDNsMkJTQzN3Vnd1UW1Bd2duSzRTZmlPMW5jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9mODQ3NGItNWFlYi00MDU4LTlmNGUtMDA0MjQyNWJhYjFh
LzEvRDNsMkJTQzN3Vnd1UW1Bd2duSzRTZmlPMW5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxLMaAYrw
zTdgDhMt3x+kMCC2X6mtAtmpnCyXkjvDEe7+IlyKRg1YXkY1DavgMfQI306RdSVS
5ixC8qixotXbfTKclWsacYxm1jiDDoXwxxn40m7TZQiMFWrxsBk5D8IJ8PbYnmIZ
ak3RII7V0GMF8XSRHeIGkVACbAJtxH2Be54mLEdH+/ES5DchyWIfqVA0y7q/Gat+
bGHo/1QSyFrK0VaMIGzf5PoSwPb8Tw+Jp29TMz0tvsnRh+Dvs2HrA6FHZQELVVl3
Fzvk5JfwPXnS8XuvNjooYHbSeuzwHs2LjjWa1Cigdd+fpLgbRMgxKSYVaB8A5yW4
ZWrO8w2jpkYu2g==
-----END CERTIFICATE-----
Generated at Fri Apr 18 03:18:53 2025 by rpki-client