Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: WZEWNGjZ12Xn6a9opwGzg4sfj7hEDMAwE4139siVyyM=
Subject key identifier: E7:87:E2:79:69:A2:E5:62:9E:10:C9:DC:75:6E:B8:BE:AB:40:C8:34
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 01965537B148143ACA49771790D3F5ADDD1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 14FA
Signing time: Sun 20 Apr 2025 22:00:35 +0000
Manifest this update: Sun 20 Apr 2025 22:00:35 +0000
Manifest next update: Mon 21 Apr 2025 22:00:35 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: wWkvkUAtb4oRP8Jv17tBwu5TCO6QjQAcJi82vlJab28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:b1:48:14:3a:ca:49:77:17:90:d3:f5:ad:dd:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: Apr 20 22:00:35 2025 GMT
Not After : Apr 21 22:00:35 2025 GMT
Subject: CN=e787e27969a2e5629e10c9dc756eb8beab40c834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:00:0e:24:5c:ad:86:f3:0f:a8:64:7b:f1:f4:
1e:3b:e2:6c:32:e1:d8:dd:15:fd:39:6a:ec:bf:24:
f8:e4:96:2b:7a:9c:ba:71:ba:84:20:4f:03:09:86:
9f:e1:b2:c2:ca:23:db:be:87:c0:ff:66:a9:2e:e2:
35:71:18:e0:65:52:6f:85:70:51:80:d1:22:6d:43:
b3:63:87:e0:93:26:51:02:52:fb:55:69:aa:2b:28:
65:90:b2:d4:35:ee:01:f5:fb:27:b6:80:0f:20:12:
39:e5:7f:d4:32:3a:7e:3a:a6:2d:d3:c0:3c:d8:c9:
12:5a:ff:04:fe:de:8a:fc:47:3e:b5:1b:2b:85:5d:
72:95:95:fc:76:2b:61:be:03:ba:00:ec:98:56:3b:
36:04:e8:d8:70:9d:2f:06:84:d0:2b:5c:ae:a4:0b:
18:a7:87:76:89:34:56:61:d9:40:9a:eb:e8:2c:70:
f6:08:e8:e6:60:e6:90:bc:fe:27:92:be:9d:5e:9d:
ac:86:d4:a5:9c:57:c3:d8:40:88:07:12:45:97:1e:
1c:67:ef:56:f0:dc:fc:e8:d6:82:59:bc:90:7f:ad:
11:83:19:68:bc:6f:e8:ad:0d:93:0c:f6:8d:98:1c:
98:b8:79:b7:88:5d:13:46:f0:16:ec:be:70:af:3a:
be:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:87:E2:79:69:A2:E5:62:9E:10:C9:DC:75:6E:B8:BE:AB:40:C8:34
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:81:b7:cf:89:f4:72:a8:1d:e9:44:74:d4:9a:94:56:e5:61:
d3:7d:d9:37:80:86:1d:d5:91:40:01:80:d3:1d:9e:3f:71:b6:
9b:33:7c:e7:52:2d:ea:84:88:04:92:b8:70:56:63:bd:c4:f8:
e2:90:16:7e:57:19:62:0a:fa:07:5b:7c:12:18:18:ba:9e:03:
3c:10:92:c9:9c:7c:2e:83:6f:28:fb:78:d3:b8:a8:00:f0:fc:
3c:e7:e1:fa:54:40:72:eb:24:75:52:b2:0f:a5:a6:ed:2f:e3:
ca:51:9e:d1:84:a6:d3:89:54:d9:88:9e:a8:41:4e:03:e4:f5:
92:16:be:aa:c4:97:ac:5c:01:e5:6a:d8:aa:3f:48:6a:75:2e:
d9:5f:a6:dd:01:90:27:9d:19:ae:6a:e4:98:dd:c5:9f:66:6e:
79:a3:0f:1d:31:c9:5a:a8:c1:22:05:11:b5:8a:b4:fc:48:ae:
63:bf:4a:7c:ac:12:aa:00:ad:d8:58:21:ea:9f:1a:88:0b:11:
98:4e:03:60:02:d5:c0:63:39:1f:42:c2:fc:1e:70:56:68:fb:
95:d6:fa:37:68:69:c4:d8:03:49:fb:47:35:0a:68:62:c9:26:
bf:55:d7:7c:e7:93:44:01:76:ff:b5:91:86:9a:e2:ca:41:42:
52:7e:4a:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVN7FIFDrKSXcXkNP1rd0bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5OWEzMTY1YzQwMDdhOTQwMTMxYTMyN2NjNzdjYzIyMWNj
MTY5ZDkwHhcNMjUwNDIwMjIwMDM1WhcNMjUwNDIxMjIwMDM1WjAzMTEwLwYDVQQD
EyhlNzg3ZTI3OTY5YTJlNTYyOWUxMGM5ZGM3NTZlYjhiZWFiNDBjODM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwAOJFythvMPqGR78fQeO+JsMuHY
3RX9OWrsvyT45JYrepy6cbqEIE8DCYaf4bLCyiPbvofA/2apLuI1cRjgZVJvhXBR
gNEibUOzY4fgkyZRAlL7VWmqKyhlkLLUNe4B9fsntoAPIBI55X/UMjp+OqYt08A8
2MkSWv8E/t6K/Ec+tRsrhV1ylZX8dithvgO6AOyYVjs2BOjYcJ0vBoTQK1yupAsY
p4d2iTRWYdlAmuvoLHD2COjmYOaQvP4nkr6dXp2shtSlnFfD2ECIBxJFlx4cZ+9W
8Nz86NaCWbyQf60RgxlovG/orQ2TDPaNmByYuHm3iF0TRvAW7L5wrzq+pwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOeH4nlpouVinhDJ3HVuuL6rQMg0MB8GA1UdIwQY
MBaAFAmaMWXEAHqUATGjJ8x3zCIcwWnZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1pveFpjUUFlcFFCTWFNbnpIZk1JaHpCYWRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9mMWYwYTAtZGEzYy00ZDk1LWE2Mzgt
NTA2NjcyNzY5ZDljLzEvQ1pveFpjUUFlcFFCTWFNbnpIZk1JaHpCYWRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy9mMWYwYTAtZGEzYy00ZDk1LWE2MzgtNTA2NjcyNzY5ZDlj
LzEvQ1pveFpjUUFlcFFCTWFNbnpIZk1JaHpCYWRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ4G3z4n0
cqgd6UR01JqUVuVh033ZN4CGHdWRQAGA0x2eP3G2mzN851It6oSIBJK4cFZjvcT4
4pAWflcZYgr6B1t8EhgYup4DPBCSyZx8LoNvKPt407ioAPD8POfh+lRAcuskdVKy
D6Wm7S/jylGe0YSm04lU2YieqEFOA+T1kha+qsSXrFwB5WrYqj9IanUu2V+m3QGQ
J50ZrmrkmN3Fn2ZueaMPHTHJWqjBIgURtYq0/EiuY79KfKwSqgCt2Fgh6p8aiAsR
mE4DYALVwGM5H0LC/B5wVmj7ldb6N2hpxNgDSftHNQpoYskmv1XXfOeTRAF2/7WR
hpriykFCUn5Klg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:45:50 2025 by rpki-client