Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: +KzP6b9uiY1BEV9Am8P7UjQzn/Gtjjb8omJZcEkUuAw=
Subject key identifier: 87:54:9D:D3:97:69:70:53:0C:81:0E:59:3D:7A:F6:5B:65:D7:12:8E
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 01967943E78ED82050C3448117C945999DD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 0690
Signing time: Sun 27 Apr 2025 22:00:15 +0000
Manifest this update: Sun 27 Apr 2025 22:00:15 +0000
Manifest next update: Mon 28 Apr 2025 22:00:15 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: mGMaPXfFyEnrbOzHk2dAwaReTtkQSHmIOzPlkVtH3jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:43:e7:8e:d8:20:50:c3:44:81:17:c9:45:99:9d:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: Apr 27 22:00:15 2025 GMT
Not After : Apr 28 22:00:15 2025 GMT
Subject: CN=87549dd3976970530c810e593d7af65b65d7128e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:15:f8:57:c8:67:ef:ef:dc:c0:c1:19:a9:52:
c2:46:78:89:39:9c:73:71:54:ca:10:55:8b:bb:84:
63:1d:86:05:55:b2:b7:52:50:5a:01:ee:be:e9:14:
e7:c5:ca:a8:00:47:ba:4f:98:a8:f1:57:ca:91:d6:
eb:83:17:f9:9e:c9:22:bc:01:8f:eb:3f:3c:82:d1:
0a:f7:83:65:35:80:91:83:47:0d:3c:ab:63:fc:43:
21:28:8d:45:c1:32:1d:a0:e7:26:cd:e8:c4:f0:03:
07:fb:2d:6e:c6:56:a9:2c:33:56:b8:36:30:4c:db:
df:a4:3f:ed:33:d6:4c:6c:09:30:09:bf:e3:80:ce:
23:16:07:6a:4a:1a:d2:29:8c:f6:bd:68:4d:96:cc:
29:fa:1e:b9:8c:86:5e:ed:0e:ce:42:99:d4:8c:67:
fe:28:f2:40:46:1b:b0:18:0c:21:eb:e4:34:90:23:
df:29:9f:5f:4e:0d:96:97:27:94:85:8d:1d:1c:29:
65:5b:58:90:61:f9:6b:66:66:6b:8a:91:ed:10:5d:
a3:83:91:98:3e:5f:5b:36:6f:64:a9:77:6c:7a:2b:
54:ba:f1:72:54:41:ec:03:4c:00:7b:04:66:ed:6c:
b8:c9:88:cd:84:c8:de:d0:0d:95:a2:bd:0b:99:8a:
81:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:54:9D:D3:97:69:70:53:0C:81:0E:59:3D:7A:F6:5B:65:D7:12:8E
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:d0:68:64:36:f1:e2:b7:13:85:b7:38:7e:8f:79:5f:b4:80:
6f:42:e5:1c:0d:62:57:1d:68:ac:cb:8e:a3:00:30:be:5b:83:
21:eb:1b:58:ec:4b:28:a1:aa:7b:0a:0f:c8:39:6a:28:09:f8:
0f:31:44:e6:84:44:bd:24:24:97:43:84:07:68:3f:67:27:6a:
5b:bb:a7:f2:f3:c6:6a:14:db:62:00:87:f1:68:23:cd:60:ea:
1e:3c:61:dc:df:e3:d4:3b:57:eb:88:04:3d:38:64:cf:cc:2a:
fc:71:be:c2:3f:69:af:4e:25:79:e5:5b:5c:20:c4:bd:d9:4b:
47:b9:aa:9b:e0:78:b7:88:c9:88:43:12:5c:4f:a5:42:0c:c8:
36:e9:83:8a:83:ad:b5:aa:de:ac:82:2a:38:f7:4e:03:4d:4f:
71:44:06:4c:bf:a1:8a:28:2f:38:49:f5:13:cd:e4:51:a1:60:
92:63:7b:56:cd:77:9b:d8:7c:06:a1:c8:8f:11:65:a1:8b:cf:
6c:3f:20:b0:aa:8a:e2:2d:e6:29:90:de:f9:97:7d:55:5e:92:
ad:a6:40:ff:07:4b:24:79:1f:b3:b5:40:9c:2d:db:d0:32:b9:
81:bd:63:c0:f5:c4:7e:71:cd:54:53:41:41:1a:30:5c:7a:62:
76:3b:be:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ5Q+eO2CBQw0SBF8lFmZ3QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiZDk1MmJkNDBjZTA5NzNmOTEwNDExZjU5MmUzNmU5MDEz
NmMyZWEwHhcNMjUwNDI3MjIwMDE1WhcNMjUwNDI4MjIwMDE1WjAzMTEwLwYDVQQD
Eyg4NzU0OWRkMzk3Njk3MDUzMGM4MTBlNTkzZDdhZjY1YjY1ZDcxMjhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxX4V8hn7+/cwMEZqVLCRniJOZxz
cVTKEFWLu4RjHYYFVbK3UlBaAe6+6RTnxcqoAEe6T5io8VfKkdbrgxf5nskivAGP
6z88gtEK94NlNYCRg0cNPKtj/EMhKI1FwTIdoOcmzejE8AMH+y1uxlapLDNWuDYw
TNvfpD/tM9ZMbAkwCb/jgM4jFgdqShrSKYz2vWhNlswp+h65jIZe7Q7OQpnUjGf+
KPJARhuwGAwh6+Q0kCPfKZ9fTg2WlyeUhY0dHCllW1iQYflrZmZripHtEF2jg5GY
Pl9bNm9kqXdseitUuvFyVEHsA0wAewRm7Wy4yYjNhMje0A2Vor0LmYqBUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIdUndOXaXBTDIEOWT169ltl1xKOMB8GA1UdIwQY
MBaAFIvZUr1Azglz+RBBH1kuNukBNsLqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTlsU3ZVRE9DWFA1RUVFZldTNDI2UUUyd3VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS8zZWRiOGMtMTg1MC00ODhmLWFmZGYt
NWMyYWJlNTM5NGU2LzEvaTlsU3ZVRE9DWFA1RUVFZldTNDI2UUUyd3VvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS8zZWRiOGMtMTg1MC00ODhmLWFmZGYtNWMyYWJlNTM5NGU2
LzEvaTlsU3ZVRE9DWFA1RUVFZldTNDI2UUUyd3VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEtBoZDbx
4rcThbc4fo95X7SAb0LlHA1iVx1orMuOowAwvluDIesbWOxLKKGqewoPyDlqKAn4
DzFE5oREvSQkl0OEB2g/ZydqW7un8vPGahTbYgCH8WgjzWDqHjxh3N/j1DtX64gE
PThkz8wq/HG+wj9pr04leeVbXCDEvdlLR7mqm+B4t4jJiEMSXE+lQgzINumDioOt
tarerIIqOPdOA01PcUQGTL+hiigvOEn1E83kUaFgkmN7Vs13m9h8BqHIjxFloYvP
bD8gsKqK4i3mKZDe+Zd9VV6SraZA/wdLJHkfs7VAnC3b0DK5gb1jwPXEfnHNVFNB
QRowXHpidju+0g==
-----END CERTIFICATE-----
Generated at Mon Apr 28 01:57:40 2025 by rpki-client