Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
File: u0OX5un46iWRVggDysuzI5Ytn64.mft (raw, json)
Hash identifier: g4NYUt7ZiOPIvdSiHWCq9rBv2M40fnr9DAy4t3PPu1Y=
Subject key identifier: E8:09:E2:8B:D3:B1:55:5C:6E:AC:EC:0A:BA:C4:77:46:44:CA:09:6E
Authority key identifier: BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
Certificate issuer: /CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Certificate serial: 019677FB2C73022B4FBFFF5C7D23520B9447
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
Manifest number: 0F50
Signing time: Sun 27 Apr 2025 16:01:11 +0000
Manifest this update: Sun 27 Apr 2025 16:01:11 +0000
Manifest next update: Mon 28 Apr 2025 16:01:11 +0000
Files and hashes: 1: u0OX5un46iWRVggDysuzI5Ytn64.crl (hash: BxQIyKZ+TdvbRS7idHFxUoFk/S9C4l9sF9kCD0zm0m4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fb:2c:73:02:2b:4f:bf:ff:5c:7d:23:52:0b:94:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Validity
Not Before: Apr 27 16:01:11 2025 GMT
Not After : Apr 28 16:01:11 2025 GMT
Subject: CN=e809e28bd3b1555c6eacec0abac4774644ca096e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e5:a1:e4:02:cc:0e:1d:35:07:12:d3:61:4e:
7e:b5:9d:bf:9e:ba:9f:fc:1a:07:f4:7b:50:ce:35:
33:7d:15:f0:c6:8d:ca:3a:cf:dc:33:4b:78:c4:6c:
71:94:9c:a7:55:c0:fb:79:3b:95:f4:8d:17:62:ab:
63:1c:ab:b1:37:fd:ae:0b:ac:40:14:0b:8c:02:2e:
45:bf:0c:14:c5:b4:a1:97:6b:39:64:0c:7e:b8:0d:
b0:70:93:e7:bd:fa:9d:d6:f5:06:c2:71:8a:a5:1f:
da:27:ad:f2:b9:20:04:64:6c:b1:2d:8d:74:6b:3f:
e8:0c:5b:94:f2:d4:1c:07:bd:65:94:3e:5b:1a:0d:
b9:e9:a4:f8:75:2e:a4:b1:1b:0a:6b:7e:18:03:06:
14:68:52:08:67:45:30:95:7e:3c:8d:3b:fe:b5:9c:
72:3a:9f:ff:eb:86:2a:1e:d4:30:b6:dd:83:3d:9d:
f9:7e:21:0f:b9:8c:ab:f8:65:ca:5b:b2:6e:7b:8c:
62:ed:31:4e:cf:f6:84:7d:3f:0a:e3:fa:cb:7a:68:
30:4a:0e:4a:5f:df:5b:68:20:ea:74:87:fc:8f:06:
80:66:a5:b9:80:9b:18:b4:ce:af:59:95:44:e8:52:
1a:7d:17:fb:9b:b8:39:b3:0c:c0:44:df:ea:cc:5b:
57:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:09:E2:8B:D3:B1:55:5C:6E:AC:EC:0A:BA:C4:77:46:44:CA:09:6E
X509v3 Authority Key Identifier:
keyid:BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:cf:b0:df:6a:fb:d6:be:66:aa:86:e3:61:6a:63:7d:2e:b2:
25:81:24:87:2c:0f:ec:ee:68:11:56:db:39:3b:fc:ed:c9:96:
a4:d6:4a:46:5d:5e:36:ed:b2:b8:66:ec:f0:76:ef:ac:b8:81:
ac:c4:d8:4b:5f:1b:df:14:73:e6:63:ea:90:73:ec:77:ec:cc:
39:2a:90:74:e5:62:51:08:40:1b:58:c6:be:b8:5b:6d:30:e0:
34:22:33:d2:e9:6f:19:12:d2:23:03:0b:a2:f0:11:d3:a3:54:
01:eb:5e:2f:b7:ab:12:63:77:23:2e:34:89:cb:a8:11:ab:23:
11:28:cd:a6:a2:18:21:92:bd:ff:2a:af:93:e1:f7:e3:70:56:
da:96:8c:8d:17:ee:08:a5:6d:67:e4:22:fa:c8:24:e3:78:2f:
51:7e:f0:4c:c0:65:ac:ca:d2:a2:f3:98:d6:15:d4:53:34:80:
a9:ed:e8:3c:13:c2:e1:63:76:b6:f7:e8:c2:05:9d:83:50:b8:
c1:32:bc:df:38:83:26:2f:f6:e6:76:e6:35:87:09:f9:f2:2a:
26:11:b3:81:93:45:48:9f:40:0b:0d:36:f8:17:96:c6:0e:b5:
8f:5a:3d:b2:59:f0:50:8f:7a:dc:10:24:3c:b0:12:7f:9a:11:
bd:4e:c8:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ3+yxzAitPv/9cfSNSC5RHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiNDM5N2U2ZTlmOGVhMjU5MTU2MDgwM2NhY2JiMzIzOTYy
ZDlmYWUwHhcNMjUwNDI3MTYwMTExWhcNMjUwNDI4MTYwMTExWjAzMTEwLwYDVQQD
EyhlODA5ZTI4YmQzYjE1NTVjNmVhY2VjMGFiYWM0Nzc0NjQ0Y2EwOTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1+Wh5ALMDh01BxLTYU5+tZ2/nrqf
/BoH9HtQzjUzfRXwxo3KOs/cM0t4xGxxlJynVcD7eTuV9I0XYqtjHKuxN/2uC6xA
FAuMAi5FvwwUxbShl2s5ZAx+uA2wcJPnvfqd1vUGwnGKpR/aJ63yuSAEZGyxLY10
az/oDFuU8tQcB71llD5bGg256aT4dS6ksRsKa34YAwYUaFIIZ0UwlX48jTv+tZxy
Op//64YqHtQwtt2DPZ35fiEPuYyr+GXKW7Jue4xi7TFOz/aEfT8K4/rLemgwSg5K
X99baCDqdIf8jwaAZqW5gJsYtM6vWZVE6FIafRf7m7g5swzARN/qzFtXyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOgJ4ovTsVVcbqzsCrrEd0ZEygluMB8GA1UdIwQY
MBaAFLtDl+bp+OolkVYIA8rLsyOWLZ+uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTBPWDV1bjQ2aVdSVmdnRHlzdXpJNVl0bjY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9iYzVlMmYtYTRhYi00YmRjLTlhMDct
NmZiMTBlZWFmNjI3LzEvdTBPWDV1bjQ2aVdSVmdnRHlzdXpJNVl0bjY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC9iYzVlMmYtYTRhYi00YmRjLTlhMDctNmZiMTBlZWFmNjI3
LzEvdTBPWDV1bjQ2aVdSVmdnRHlzdXpJNVl0bjY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmM+w32r7
1r5mqobjYWpjfS6yJYEkhywP7O5oEVbbOTv87cmWpNZKRl1eNu2yuGbs8HbvrLiB
rMTYS18b3xRz5mPqkHPsd+zMOSqQdOViUQhAG1jGvrhbbTDgNCIz0ulvGRLSIwML
ovAR06NUAeteL7erEmN3Iy40icuoEasjESjNpqIYIZK9/yqvk+H343BW2paMjRfu
CKVtZ+Qi+sgk43gvUX7wTMBlrMrSovOY1hXUUzSAqe3oPBPC4WN2tvfowgWdg1C4
wTK83ziDJi/25nbmNYcJ+fIqJhGzgZNFSJ9ACw02+BeWxg61j1o9slnwUI963BAk
PLASf5oRvU7IOQ==
-----END CERTIFICATE-----
Generated at Mon Apr 28 01:12:48 2025 by rpki-client