Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
File: Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft (raw, json)
Hash identifier: BjkQ6/xUQ7UsbPgQwtP1cS+vcUllnLEaGOXNIaeVWG0=
Subject key identifier: 63:63:4C:65:EF:26:51:DF:A8:E2:4F:D3:75:19:AA:D7:E8:E6:8E:72
Authority key identifier: 4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC
Certificate issuer: /CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec
Certificate serial: 01967C7C770179A8920F85CD90A4DEB27F63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
Manifest number: 1511
Signing time: Mon 28 Apr 2025 13:00:53 +0000
Manifest this update: Mon 28 Apr 2025 13:00:53 +0000
Manifest next update: Tue 29 Apr 2025 13:00:53 +0000
Files and hashes: 1: Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl (hash: jQ++8bC3O/AewsI1xMnUwYOmlbmv0LQ5053GTIMJN9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:7c:77:01:79:a8:92:0f:85:cd:90:a4:de:b2:7f:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec
Validity
Not Before: Apr 28 13:00:53 2025 GMT
Not After : Apr 29 13:00:53 2025 GMT
Subject: CN=63634c65ef2651dfa8e24fd37519aad7e8e68e72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:53:f9:c3:37:59:e3:b5:c3:1e:d9:6c:5f:1f:
6f:6c:ee:88:00:43:d8:b6:6a:ae:e6:f4:be:f1:40:
26:7d:fa:a3:a9:f4:79:96:8f:e5:07:f8:b6:49:5e:
8b:3f:c3:c6:c2:9f:6c:98:d7:5f:ad:45:54:6c:b3:
04:e1:5f:75:3e:e5:c4:c6:df:e4:e4:2e:91:2f:28:
42:f2:8a:56:81:a0:4f:4a:b8:aa:f7:e7:54:88:a5:
34:81:d1:13:75:b0:70:25:b7:9b:4f:83:e3:f5:fc:
bc:48:b0:75:58:07:c7:30:e8:3d:ae:37:fb:89:7e:
e7:6b:8f:d7:63:e0:ad:12:45:40:21:c5:16:05:eb:
9f:1c:67:ca:47:ce:b4:6d:49:6f:1f:5c:72:14:8e:
02:54:20:fd:94:7a:df:88:c3:c9:8e:9a:80:67:de:
d9:8d:30:94:7e:aa:c5:ed:8f:19:b8:8d:84:ed:69:
ef:65:60:07:b2:1f:32:66:ff:e4:00:19:81:06:20:
f6:cd:7a:ba:24:ac:bd:e7:7f:54:86:5c:02:fb:db:
c2:5b:45:53:01:18:c3:aa:5e:01:b3:1b:bd:cb:b8:
49:8f:ab:30:af:c1:77:56:fb:01:7f:fe:e0:aa:2e:
97:14:fa:c4:83:12:55:ce:47:7d:03:18:15:a3:6c:
d6:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:63:4C:65:EF:26:51:DF:A8:E2:4F:D3:75:19:AA:D7:E8:E6:8E:72
X509v3 Authority Key Identifier:
keyid:4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:b9:b8:a9:7a:b4:5d:ae:4f:fe:7b:7f:d4:74:99:60:5e:54:
a4:59:e1:54:b1:76:5d:b3:28:a6:19:f6:1b:b2:14:1f:75:cc:
de:02:09:84:7f:46:a7:dd:1c:47:fa:74:30:d8:e6:18:f5:55:
db:fb:94:d6:f0:59:4f:4c:27:e5:37:c8:1b:2b:be:0b:5e:68:
1b:19:17:b4:23:8e:14:77:eb:02:bf:fc:49:3b:0b:db:8d:dc:
19:3b:86:b0:e0:5a:27:10:e4:b6:76:a1:67:b1:a9:a2:5c:62:
8d:79:05:84:a9:ee:f6:ed:d5:3f:27:cb:69:1a:c0:ce:e4:0a:
3f:65:ba:bd:c7:79:69:c0:74:d3:30:32:70:6a:54:6f:67:89:
71:56:1c:5a:c7:aa:be:b3:e4:62:46:bc:9d:61:10:1e:ed:d3:
7f:66:79:a4:c1:9c:41:be:ea:a8:f4:97:2d:88:b6:ee:1c:06:
f5:f1:82:9e:e7:58:62:44:a8:74:1a:02:0a:b1:1d:5e:e2:c1:
51:32:a4:de:72:e3:14:78:e8:31:7f:a0:46:27:a7:bd:7a:12:
d8:4c:98:31:76:df:57:99:bf:20:27:91:8b:ff:92:9e:6e:bb:
1c:0a:05:aa:c3:49:a7:5f:bb:61:8b:a1:4e:5e:b5:f3:18:53:
89:81:4a:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ8fHcBeaiSD4XNkKTesn9jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhMWVkNGJmNTAyYzBmMmQ4YmM4NzAyNmMxOGFjOTg1OWIw
ZjFkZWMwHhcNMjUwNDI4MTMwMDUzWhcNMjUwNDI5MTMwMDUzWjAzMTEwLwYDVQQD
Eyg2MzYzNGM2NWVmMjY1MWRmYThlMjRmZDM3NTE5YWFkN2U4ZTY4ZTcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVP5wzdZ47XDHtlsXx9vbO6IAEPY
tmqu5vS+8UAmffqjqfR5lo/lB/i2SV6LP8PGwp9smNdfrUVUbLME4V91PuXExt/k
5C6RLyhC8opWgaBPSriq9+dUiKU0gdETdbBwJbebT4Pj9fy8SLB1WAfHMOg9rjf7
iX7na4/XY+CtEkVAIcUWBeufHGfKR860bUlvH1xyFI4CVCD9lHrfiMPJjpqAZ97Z
jTCUfqrF7Y8ZuI2E7WnvZWAHsh8yZv/kABmBBiD2zXq6JKy9539UhlwC+9vCW0VT
ARjDql4Bsxu9y7hJj6swr8F3VvsBf/7gqi6XFPrEgxJVzkd9AxgVo2zWKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGNjTGXvJlHfqOJP03UZqtfo5o5yMB8GA1UdIwQY
MBaAFEoe1L9QLA8ti8hwJsGKyYWbDx3sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2g3VXYxQXNEeTJMeUhBbXdZckpoWnNQSGV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC85N2M5MTYtODFiMS00YjNhLTlmZWUt
MzU2YTE5ZjU1NTA2LzEvU2g3VXYxQXNEeTJMeUhBbXdZckpoWnNQSGV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC85N2M5MTYtODFiMS00YjNhLTlmZWUtMzU2YTE5ZjU1NTA2
LzEvU2g3VXYxQXNEeTJMeUhBbXdZckpoWnNQSGV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABLm4qXq0
Xa5P/nt/1HSZYF5UpFnhVLF2XbMophn2G7IUH3XM3gIJhH9Gp90cR/p0MNjmGPVV
2/uU1vBZT0wn5TfIGyu+C15oGxkXtCOOFHfrAr/8STsL243cGTuGsOBaJxDktnah
Z7GpolxijXkFhKnu9u3VPyfLaRrAzuQKP2W6vcd5acB00zAycGpUb2eJcVYcWseq
vrPkYka8nWEQHu3Tf2Z5pMGcQb7qqPSXLYi27hwG9fGCnudYYkSodBoCCrEdXuLB
UTKk3nLjFHjoMX+gRienvXoS2EyYMXbfV5m/ICeRi/+Snm67HAoFqsNJp1+7YYuh
Tl618xhTiYFKUw==
-----END CERTIFICATE-----
Generated at Mon Apr 28 15:25:57 2025 by rpki-client