Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
File: pol1o9gy4UUny7or4QujwebGOFY.mft (raw, json)
Hash identifier: Px+RK8Z53fCAqkA+KQW1RYkUFJHAQYx1k8XX/SiLZ0I=
Subject key identifier: D2:C0:A5:DA:7D:80:0B:BC:F6:92:FA:45:2D:0B:08:97:C9:97:3C:E2
Authority key identifier: A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
Certificate issuer: /CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Certificate serial: 01958C608D63D5444B94113BD37A783614AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
Manifest number: 046A
Signing time: Wed 12 Mar 2025 22:01:32 +0000
Manifest this update: Wed 12 Mar 2025 22:01:32 +0000
Manifest next update: Thu 13 Mar 2025 22:01:32 +0000
Files and hashes: 1: pol1o9gy4UUny7or4QujwebGOFY.crl (hash: ug4Vd2q45ICBOczGUwKXzOPRklall9xDpjQGjNnq8FM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:60:8d:63:d5:44:4b:94:11:3b:d3:7a:78:36:14:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Validity
Not Before: Mar 12 22:01:32 2025 GMT
Not After : Mar 13 22:01:32 2025 GMT
Subject: CN=d2c0a5da7d800bbcf692fa452d0b0897c9973ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:96:88:fe:b3:61:36:6a:93:a3:ed:63:e1:9f:
e7:db:5b:c3:34:69:b9:28:8e:02:7f:3d:df:4c:90:
68:4c:c9:84:dd:37:77:7e:05:d7:71:cd:ae:68:76:
a6:19:ea:51:04:0e:29:e1:14:30:8a:2d:4c:67:94:
27:38:7a:4d:36:4a:de:1a:81:28:fa:dd:f6:ca:32:
00:57:ac:f0:21:32:d6:09:c8:1e:8e:55:c3:e9:9e:
e9:6d:fd:4a:22:1f:59:93:4b:f6:76:5b:64:5c:e0:
72:aa:76:d8:72:88:86:dc:d8:6d:10:ad:c0:cf:ae:
14:69:19:c9:e7:b9:11:fc:80:9a:b1:7e:d5:93:94:
56:e7:b2:33:46:e9:53:b7:68:12:dc:19:d9:71:fa:
0e:95:00:b7:36:5e:82:ee:53:73:35:3c:92:1e:27:
0d:71:6e:af:5d:84:07:81:9b:f8:84:b0:5c:a8:60:
44:55:c1:27:f3:e8:9d:87:79:c9:35:b9:1e:71:26:
f6:35:22:0e:dc:fa:3b:80:79:b7:ea:0f:92:c6:39:
27:89:49:8b:23:01:3e:4a:8b:62:12:8b:b8:d9:d2:
56:4d:2a:94:2e:4a:84:81:4a:03:2b:d9:14:de:95:
22:22:94:b6:d6:2b:fa:a4:6c:99:bb:47:eb:dc:fc:
99:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:C0:A5:DA:7D:80:0B:BC:F6:92:FA:45:2D:0B:08:97:C9:97:3C:E2
X509v3 Authority Key Identifier:
keyid:A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:9c:d9:8e:0c:bd:31:8e:52:1b:90:2b:cd:e7:6d:47:55:72:
e3:9f:40:3a:6d:52:03:6a:05:0e:9e:91:b7:b9:d0:1a:0a:81:
23:ef:46:b5:ab:68:51:30:0b:cf:8f:5a:2a:8d:1e:d3:a9:4b:
29:dc:aa:0c:8c:fa:56:8b:fa:37:80:83:ec:69:ad:15:e5:31:
b8:a8:02:ec:df:6a:da:3f:ff:26:06:ac:e7:31:7a:e7:03:ca:
51:0d:da:4b:1f:ac:a4:f6:b2:cc:a9:89:aa:32:58:c5:c3:96:
d6:f3:6f:18:f0:05:6b:84:e6:7a:8b:79:18:aa:a0:f8:7b:ba:
63:b2:45:c9:f2:c8:1b:fe:c0:e7:fe:c5:22:0e:50:14:39:93:
81:2d:0e:ed:36:2f:b8:77:b0:3f:03:99:8c:d0:4f:31:91:c7:
a6:a4:a2:84:67:27:9f:d2:be:b6:ce:19:48:2b:57:06:61:e0:
b8:1e:56:47:02:87:95:56:f4:15:cf:19:a7:26:14:e2:fc:98:
fd:cc:8e:05:d8:28:4d:e8:a9:2f:78:d4:2a:e9:2a:0e:f7:51:
bf:8e:c2:eb:19:42:90:3e:2f:38:1c:5b:9f:bd:26:df:10:5f:
ac:50:42:d9:85:35:a8:bd:53:23:fa:f3:09:b4:26:0d:93:4c:
cb:dc:ae:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWMYI1j1URLlBE703p4NhSsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2ODk3NWEzZDgzMmUxNDUyN2NiYmEyYmUxMGJhM2MxZTZj
NjM4NTYwHhcNMjUwMzEyMjIwMTMyWhcNMjUwMzEzMjIwMTMyWjAzMTEwLwYDVQQD
EyhkMmMwYTVkYTdkODAwYmJjZjY5MmZhNDUyZDBiMDg5N2M5OTczY2UyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ZaI/rNhNmqTo+1j4Z/n21vDNGm5
KI4Cfz3fTJBoTMmE3Td3fgXXcc2uaHamGepRBA4p4RQwii1MZ5QnOHpNNkreGoEo
+t32yjIAV6zwITLWCcgejlXD6Z7pbf1KIh9Zk0v2dltkXOByqnbYcoiG3NhtEK3A
z64UaRnJ57kR/ICasX7Vk5RW57IzRulTt2gS3BnZcfoOlQC3Nl6C7lNzNTySHicN
cW6vXYQHgZv4hLBcqGBEVcEn8+idh3nJNbkecSb2NSIO3Po7gHm36g+SxjkniUmL
IwE+SotiEou42dJWTSqULkqEgUoDK9kU3pUiIpS21iv6pGyZu0fr3PyZDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNLApdp9gAu89pL6RS0LCJfJlzziMB8GA1UdIwQY
MBaAFKaJdaPYMuFFJ8u6K+ELo8HmxjhWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wYjNjYzEtMzE4ZS00OTdmLWEyYjUt
MTMxNmFkODA1ZTY0LzEvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi8wYjNjYzEtMzE4ZS00OTdmLWEyYjUtMTMxNmFkODA1ZTY0
LzEvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAy5zZjgy9
MY5SG5ArzedtR1Vy459AOm1SA2oFDp6Rt7nQGgqBI+9GtatoUTALz49aKo0e06lL
KdyqDIz6Vov6N4CD7GmtFeUxuKgC7N9q2j//Jgas5zF65wPKUQ3aSx+spPayzKmJ
qjJYxcOW1vNvGPAFa4Tmeot5GKqg+Hu6Y7JFyfLIG/7A5/7FIg5QFDmTgS0O7TYv
uHewPwOZjNBPMZHHpqSihGcnn9K+ts4ZSCtXBmHguB5WRwKHlVb0Fc8ZpyYU4vyY
/cyOBdgoTeipL3jUKukqDvdRv47C6xlCkD4vOBxbn70m3xBfrFBC2YU1qL1TI/rz
CbQmDZNMy9yucw==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:03 2025 by rpki-client