Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.mft
File: clOCbDGl92CXvNwqL2UZiKE2flM.mft (raw, json)
Hash identifier: ldsA2fPuf8yE9bbvTwITiSh/TdXcPNS0zqPwB/t9FJI=
Subject key identifier: 7C:EB:09:5F:7E:E7:3B:ED:4A:F8:02:AA:FC:2A:23:E9:C0:7F:16:8F
Authority key identifier: 72:53:82:6C:31:A5:F7:60:97:BC:DC:2A:2F:65:19:88:A1:36:7E:53
Certificate issuer: /CN=7253826c31a5f76097bcdc2a2f651988a1367e53
Certificate serial: 01967C45722CEE0B83EBEBC34ACCF15180B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/clOCbDGl92CXvNwqL2UZiKE2flM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.mft
Manifest number: 07EA
Signing time: Mon 28 Apr 2025 12:00:48 +0000
Manifest this update: Mon 28 Apr 2025 12:00:48 +0000
Manifest next update: Tue 29 Apr 2025 12:00:48 +0000
Files and hashes: 1: clOCbDGl92CXvNwqL2UZiKE2flM.crl (hash: hAzlaWB0p3yHsWZn6rZLNQmL1Gf3hrGhzeO8z3Lv1R0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.mft
rsync://rpki.ripe.net/repository/DEFAULT/clOCbDGl92CXvNwqL2UZiKE2flM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:45:72:2c:ee:0b:83:eb:eb:c3:4a:cc:f1:51:80:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7253826c31a5f76097bcdc2a2f651988a1367e53
Validity
Not Before: Apr 28 12:00:48 2025 GMT
Not After : Apr 29 12:00:48 2025 GMT
Subject: CN=7ceb095f7ee73bed4af802aafc2a23e9c07f168f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:20:6f:11:83:c5:ff:7d:1d:83:66:36:4c:bb:
7f:3a:9d:16:ed:0b:39:c5:ba:f6:90:37:de:99:bf:
a7:9f:6b:d9:03:65:07:68:be:e9:58:29:25:e8:ca:
4e:f4:3d:6a:c8:7c:ae:6d:ba:78:be:ea:33:5a:46:
ae:a8:03:ce:ac:7e:34:e4:9a:77:ed:14:19:33:e4:
3f:be:9a:02:bf:f0:26:58:00:36:1a:83:b5:92:3e:
0f:41:2b:9b:60:72:40:ff:85:75:bb:0a:da:9e:3d:
d8:96:dc:d1:dc:dd:fa:37:92:08:5f:a5:11:c1:1b:
53:b1:86:30:54:e9:4e:95:68:97:29:21:e4:6f:c5:
54:f9:ad:9b:af:26:ce:76:7e:f9:e4:1d:99:1e:c5:
cc:6a:67:d5:da:d8:63:06:f9:11:ed:0c:cd:47:f3:
17:66:86:f0:05:4b:e8:a1:42:92:c0:28:81:1c:e9:
e0:bf:4c:51:a9:5b:57:1b:ed:46:40:5c:a8:5f:12:
72:fe:d3:ae:ca:0f:e5:de:03:a3:05:41:6b:fd:83:
a1:fb:ea:42:30:b3:fb:c6:06:44:7e:d4:52:2e:c8:
29:5e:41:3d:ae:0c:fb:0a:95:ab:10:5b:08:c8:7e:
33:44:0a:81:b5:36:aa:c4:05:11:a0:e4:74:48:cc:
de:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:EB:09:5F:7E:E7:3B:ED:4A:F8:02:AA:FC:2A:23:E9:C0:7F:16:8F
X509v3 Authority Key Identifier:
keyid:72:53:82:6C:31:A5:F7:60:97:BC:DC:2A:2F:65:19:88:A1:36:7E:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/clOCbDGl92CXvNwqL2UZiKE2flM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:ae:13:d5:d9:76:cd:9e:d4:32:ab:a8:bf:7a:48:5a:98:b4:
aa:c8:32:8d:64:97:4d:13:07:97:9f:99:60:ba:5a:2b:4e:c5:
a6:de:7b:02:d3:91:9a:11:0d:69:67:e2:d8:8d:61:c6:69:58:
50:a6:e0:24:80:16:e2:dd:c8:52:0e:b5:48:5c:f4:e7:3e:6e:
89:29:6c:10:45:fe:62:97:b2:c8:da:39:03:1a:2d:64:82:91:
35:a4:29:89:d4:63:f7:70:7b:dd:da:92:76:54:c3:ef:a4:5c:
1d:d0:8d:dc:0f:7d:cb:cc:13:53:be:65:58:3a:58:95:1d:d6:
ee:3e:33:67:d8:0a:e5:56:fd:e8:84:d3:f6:b4:1f:93:08:fe:
03:a8:a4:c9:11:46:ef:6c:fe:98:8e:71:6e:0d:f9:0b:99:64:
bd:0d:d8:26:25:5d:d4:de:30:b6:d8:75:74:1b:f0:98:f0:29:
de:72:8d:f1:8a:de:ff:b9:7d:38:f1:30:6e:64:e5:fa:79:95:
14:73:14:02:ae:33:2c:c1:49:dc:e6:d9:e5:b5:4e:08:01:7a:
24:41:da:8f:25:09:26:ad:6f:5d:63:9d:d3:aa:78:77:c8:8e:
e7:4b:07:46:21:f6:2c:9f:94:31:9b:6e:20:0e:d8:eb:c9:6c:
b3:4e:8b:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ8RXIs7guD6+vDSszxUYC1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyNTM4MjZjMzFhNWY3NjA5N2JjZGMyYTJmNjUxOTg4YTEz
NjdlNTMwHhcNMjUwNDI4MTIwMDQ4WhcNMjUwNDI5MTIwMDQ4WjAzMTEwLwYDVQQD
Eyg3Y2ViMDk1ZjdlZTczYmVkNGFmODAyYWFmYzJhMjNlOWMwN2YxNjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApyBvEYPF/30dg2Y2TLt/Op0W7Qs5
xbr2kDfemb+nn2vZA2UHaL7pWCkl6MpO9D1qyHyubbp4vuozWkauqAPOrH405Jp3
7RQZM+Q/vpoCv/AmWAA2GoO1kj4PQSubYHJA/4V1uwranj3YltzR3N36N5IIX6UR
wRtTsYYwVOlOlWiXKSHkb8VU+a2brybOdn755B2ZHsXMamfV2thjBvkR7QzNR/MX
ZobwBUvooUKSwCiBHOngv0xRqVtXG+1GQFyoXxJy/tOuyg/l3gOjBUFr/YOh++pC
MLP7xgZEftRSLsgpXkE9rgz7CpWrEFsIyH4zRAqBtTaqxAURoOR0SMzePQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHzrCV9+5zvtSvgCqvwqI+nAfxaPMB8GA1UdIwQY
MBaAFHJTgmwxpfdgl7zcKi9lGYihNn5TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2xPQ2JER2w5MkNYdk53cUwyVVppS0UyZmxNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy83YTRhNDItN2RjNS00MGMwLTgwNGIt
ZjNmNTFjMTA3MGI5LzEvY2xPQ2JER2w5MkNYdk53cUwyVVppS0UyZmxNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy83YTRhNDItN2RjNS00MGMwLTgwNGItZjNmNTFjMTA3MGI5
LzEvY2xPQ2JER2w5MkNYdk53cUwyVVppS0UyZmxNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzK4T1dl2
zZ7UMquov3pIWpi0qsgyjWSXTRMHl5+ZYLpaK07Fpt57AtORmhENaWfi2I1hxmlY
UKbgJIAW4t3IUg61SFz05z5uiSlsEEX+YpeyyNo5AxotZIKRNaQpidRj93B73dqS
dlTD76RcHdCN3A99y8wTU75lWDpYlR3W7j4zZ9gK5Vb96ITT9rQfkwj+A6ikyRFG
72z+mI5xbg35C5lkvQ3YJiVd1N4wtth1dBvwmPAp3nKN8Yre/7l9OPEwbmTl+nmV
FHMUAq4zLMFJ3ObZ5bVOCAF6JEHajyUJJq1vXWOd06p4d8iO50sHRiH2LJ+UMZtu
IA7Y68lss06LNA==
-----END CERTIFICATE-----
Generated at Mon Apr 28 15:28:42 2025 by rpki-client