Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
File: 0WLUzQwan_4krVFT0Zzpwx3LTH0.mft (raw, json)
Hash identifier: N79J2tygZlILaYdA2tEe3N2UMEHUyzNS9wXIZqcbyPs=
Subject key identifier: 48:06:62:E7:57:11:27:47:E7:2E:57:BF:9F:F5:27:6B:06:BB:E8:9D
Authority key identifier: D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D
Certificate issuer: /CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
Certificate serial: 019676E7B66E7CDE9559EA2902C01ED8FFC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
Manifest number: 150A
Signing time: Sun 27 Apr 2025 11:00:18 +0000
Manifest this update: Sun 27 Apr 2025 11:00:18 +0000
Manifest next update: Mon 28 Apr 2025 11:00:18 +0000
Files and hashes: 1: 0WLUzQwan_4krVFT0Zzpwx3LTH0.crl (hash: MMCNZa9r1wcx4oc87I/HA7MTjcz+A320AzcFlfa1ktU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 11:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e7:b6:6e:7c:de:95:59:ea:29:02:c0:1e:d8:ff:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
Validity
Not Before: Apr 27 11:00:18 2025 GMT
Not After : Apr 28 11:00:18 2025 GMT
Subject: CN=480662e757112747e72e57bf9ff5276b06bbe89d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e7:d1:de:00:be:8d:5d:e8:43:d6:96:cd:4e:
7f:e8:aa:2b:3d:ae:24:56:fc:bd:8c:93:26:46:14:
8c:29:81:9e:83:56:7b:f7:68:e1:6a:20:26:57:23:
c8:bb:7a:19:4a:f1:3b:66:91:bd:53:f6:12:e9:54:
3b:9f:c1:bf:d7:be:09:d0:03:52:c5:36:21:2d:91:
0b:22:14:bd:c2:4f:47:a5:97:e0:93:ce:0c:d9:73:
aa:e6:b4:d1:13:35:92:ae:4d:67:7c:5f:e2:05:22:
13:95:1e:1b:e4:c0:fd:7e:4f:58:32:7c:ff:78:95:
1a:80:1e:74:da:9e:24:a6:41:ac:1c:2f:66:cb:ea:
74:25:7c:25:da:f1:ad:ca:22:19:19:f9:6b:a9:b1:
ae:23:54:02:8c:38:83:e4:62:74:a0:d6:66:22:54:
1d:b1:4c:6c:85:4a:2f:95:13:4c:55:db:fb:3f:19:
e1:7e:98:13:02:88:06:54:04:83:62:fd:57:6e:60:
2c:1b:cb:86:fb:fb:bc:a8:fc:b8:96:61:9c:34:92:
70:ac:13:3a:97:ca:67:f9:fe:c8:1f:52:bd:d8:63:
73:40:47:35:e2:73:7b:82:ac:9b:63:fb:d0:5b:95:
c3:6f:3b:1a:c7:49:3a:84:eb:41:36:2e:73:0a:9e:
44:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:06:62:E7:57:11:27:47:E7:2E:57:BF:9F:F5:27:6B:06:BB:E8:9D
X509v3 Authority Key Identifier:
keyid:D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:da:0b:09:16:86:5b:70:7f:a9:b8:63:80:f4:4a:c0:61:59:
f4:21:3e:94:16:b2:91:77:03:57:c0:66:70:88:44:52:da:1d:
03:3e:a5:9d:8c:9a:0e:ae:8b:cb:60:b6:4f:5b:fb:14:97:d9:
7a:52:e4:3a:a5:22:d9:cc:d3:f0:b4:e8:74:40:4a:ee:d5:ae:
15:35:76:d8:39:34:6c:c8:3a:bf:74:8e:39:2e:f5:15:c4:69:
94:fc:f4:d7:ee:28:b6:51:39:cb:63:50:e2:10:9e:ee:5f:98:
79:d2:6a:39:c3:1f:23:44:a0:d6:25:00:55:ee:7c:2d:54:5b:
2b:dd:ca:95:c2:00:94:58:e1:a0:a9:e4:0d:1e:4a:3b:d7:4c:
2e:b7:e9:54:cd:8f:6b:85:46:33:c3:3b:aa:03:52:84:6d:ce:
88:81:fb:14:1b:4e:1e:e6:6d:fc:69:f1:2f:85:c7:85:4a:6d:
7f:36:b1:de:41:37:ac:4e:49:9f:27:54:fc:b1:22:42:d6:d2:
50:6a:54:4c:0c:5a:72:1d:8e:3a:f5:f2:ed:d9:74:b7:18:f8:
a2:97:5d:7a:aa:66:c4:a4:d7:6d:02:b5:a2:af:3d:a8:b4:2e:
81:cd:a6:63:3c:0c:21:b2:bc:3e:d0:4a:af:ad:d2:1e:c4:6e:
8b:dd:9f:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ257ZufN6VWeopAsAe2P/FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxNjJkNGNkMGMxYTlmZmUyNGFkNTE1M2QxOWNlOWMzMWRj
YjRjN2QwHhcNMjUwNDI3MTEwMDE4WhcNMjUwNDI4MTEwMDE4WjAzMTEwLwYDVQQD
Eyg0ODA2NjJlNzU3MTEyNzQ3ZTcyZTU3YmY5ZmY1Mjc2YjA2YmJlODlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+fR3gC+jV3oQ9aWzU5/6KorPa4k
Vvy9jJMmRhSMKYGeg1Z792jhaiAmVyPIu3oZSvE7ZpG9U/YS6VQ7n8G/174J0ANS
xTYhLZELIhS9wk9HpZfgk84M2XOq5rTREzWSrk1nfF/iBSITlR4b5MD9fk9YMnz/
eJUagB502p4kpkGsHC9my+p0JXwl2vGtyiIZGflrqbGuI1QCjDiD5GJ0oNZmIlQd
sUxshUovlRNMVdv7PxnhfpgTAogGVASDYv1XbmAsG8uG+/u8qPy4lmGcNJJwrBM6
l8pn+f7IH1K92GNzQEc14nN7gqybY/vQW5XDbzsax0k6hOtBNi5zCp5EOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEgGYudXESdH5y5Xv5/1J2sGu+idMB8GA1UdIwQY
MBaAFNFi1M0MGp/+JK1RU9Gc6cMdy0x9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi81Zjg0YTEtZThkYy00MTE1LWE2NDUt
ZTgxNzIwYTM5NzhkLzEvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi81Zjg0YTEtZThkYy00MTE1LWE2NDUtZTgxNzIwYTM5Nzhk
LzEvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS9oLCRaG
W3B/qbhjgPRKwGFZ9CE+lBaykXcDV8BmcIhEUtodAz6lnYyaDq6Ly2C2T1v7FJfZ
elLkOqUi2czT8LTodEBK7tWuFTV22Dk0bMg6v3SOOS71FcRplPz01+4otlE5y2NQ
4hCe7l+YedJqOcMfI0Sg1iUAVe58LVRbK93KlcIAlFjhoKnkDR5KO9dMLrfpVM2P
a4VGM8M7qgNShG3OiIH7FBtOHuZt/GnxL4XHhUptfzax3kE3rE5JnydU/LEiQtbS
UGpUTAxach2OOvXy7dl0txj4opddeqpmxKTXbQK1oq89qLQugc2mYzwMIbK8PtBK
r63SHsRui92ffQ==
-----END CERTIFICATE-----
Generated at Sun Apr 27 21:30:27 2025 by rpki-client