Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
File: 37H24AFTpJGGEbFLawP2gS7YikM.mft (raw, json)
Hash identifier: LxYZpgiaPuvUm4x1HqLL7xE66jroNp6a6L+dox91xRs=
Subject key identifier: 3A:29:1F:7D:11:74:7E:1E:9F:95:50:E6:D4:42:10:A3:A0:A9:2A:45
Authority key identifier: DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
Certificate issuer: /CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Certificate serial: 019676E7FDC22097CE7CD2E0ACA239A43D2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
Manifest number: 0E1A
Signing time: Sun 27 Apr 2025 11:00:37 +0000
Manifest this update: Sun 27 Apr 2025 11:00:37 +0000
Manifest next update: Mon 28 Apr 2025 11:00:37 +0000
Files and hashes: 1: 37H24AFTpJGGEbFLawP2gS7YikM.crl (hash: f1nVzU3njzWDLCPSpk4RQ1FIlBPkm2J+FM8TTN8mDRw=)
2: BTmp1b2H10lDEyqaD6QbLg-QUfA.roa (hash: N5JJaG9nV6D42/n2t32zZB6XXWBTeaXuJO0OLEH8EXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 11:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e7:fd:c2:20:97:ce:7c:d2:e0:ac:a2:39:a4:3d:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Validity
Not Before: Apr 27 11:00:37 2025 GMT
Not After : Apr 28 11:00:37 2025 GMT
Subject: CN=3a291f7d11747e1e9f9550e6d44210a3a0a92a45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c9:1e:c3:d5:33:05:b0:bf:a0:4b:6e:7f:d7:
7f:fe:84:81:74:cb:5d:92:09:a9:3d:5e:15:7d:9f:
21:7a:43:58:dc:a5:3d:fa:ab:ad:bf:0e:3f:ec:e2:
30:a4:ae:56:30:ab:1e:69:be:07:d5:7a:18:38:41:
68:fb:d0:6c:7e:b7:d3:21:9e:26:d4:31:f5:84:95:
b9:4e:65:1f:77:0d:20:6a:13:b0:43:79:b8:7a:10:
b2:b5:da:eb:40:7c:a1:6b:3c:e0:40:0e:3c:7c:1e:
bd:46:a5:38:c0:42:14:fc:c0:34:9a:bd:f9:5e:fe:
a0:60:9a:bf:d7:21:af:06:7b:74:52:14:30:81:ab:
7c:f6:31:12:7d:c0:ac:26:e4:0f:5c:4a:30:e3:38:
a6:6c:70:16:e3:1c:83:f9:13:8f:a8:20:36:25:4c:
50:72:9b:32:5d:6d:11:be:89:08:e6:c4:f3:ac:97:
c1:d7:db:18:ed:80:ac:11:5b:eb:91:35:30:c7:e0:
7b:86:ad:01:2e:b0:92:f6:fe:33:a7:e9:aa:86:0d:
95:b7:65:04:eb:99:06:82:0b:1b:0c:4f:1a:af:b8:
e3:0a:ce:24:e3:28:10:96:9f:1e:29:fa:9b:6c:01:
36:08:4d:cb:ba:6f:ae:8b:ee:d6:5f:90:a4:d5:88:
c7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:29:1F:7D:11:74:7E:1E:9F:95:50:E6:D4:42:10:A3:A0:A9:2A:45
X509v3 Authority Key Identifier:
keyid:DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:65:5e:1e:dc:12:c8:74:2c:6a:ba:33:2b:f5:8b:d0:3c:fa:
ab:fd:7b:0c:85:ff:30:ff:d1:c1:e0:9d:51:a1:7e:eb:5a:84:
f4:38:2d:cd:af:9a:01:77:f7:ce:b4:f4:b1:26:84:3b:d8:85:
86:da:4b:9a:6c:04:01:6b:3f:d9:d3:20:40:b4:d5:18:57:8d:
78:08:c1:b2:6e:fb:b0:97:ce:ec:9a:4b:e4:f2:52:f5:2b:b7:
46:b8:f6:c4:eb:b2:3e:5d:a0:6e:7c:b8:d4:46:dc:00:87:d0:
bc:b7:7c:67:de:18:08:ee:35:34:8b:b1:1f:e0:eb:08:af:38:
f1:2a:82:79:ae:0d:91:b6:ea:66:0c:8f:0f:0a:b7:6f:1a:da:
17:93:62:b8:15:12:cf:c1:b5:13:d7:ce:5e:8a:91:70:0f:5e:
bb:9d:80:31:bb:4f:fd:6f:cf:d1:60:91:ae:34:5e:59:55:66:
75:34:33:13:74:a0:1c:fb:7c:51:a8:67:e6:2a:4b:a8:3d:e3:
a9:28:7f:5f:01:10:5d:85:30:fb:a3:8e:9e:68:63:c7:da:e3:
5b:1d:bb:8c:aa:5f:8c:8a:3d:8a:86:ee:00:dd:34:e3:de:81:
32:9c:39:a8:d5:ee:75:c7:73:c4:32:30:4b:8e:f4:1d:1b:15:
ff:06:77:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ25/3CIJfOfNLgrKI5pD0qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmYjFmNmUwMDE1M2E0OTE4NjExYjE0YjZiMDNmNjgxMmVk
ODhhNDMwHhcNMjUwNDI3MTEwMDM3WhcNMjUwNDI4MTEwMDM3WjAzMTEwLwYDVQQD
EygzYTI5MWY3ZDExNzQ3ZTFlOWY5NTUwZTZkNDQyMTBhM2EwYTkyYTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Mkew9UzBbC/oEtuf9d//oSBdMtd
kgmpPV4VfZ8hekNY3KU9+qutvw4/7OIwpK5WMKseab4H1XoYOEFo+9BsfrfTIZ4m
1DH1hJW5TmUfdw0gahOwQ3m4ehCytdrrQHyhazzgQA48fB69RqU4wEIU/MA0mr35
Xv6gYJq/1yGvBnt0UhQwgat89jESfcCsJuQPXEow4zimbHAW4xyD+ROPqCA2JUxQ
cpsyXW0RvokI5sTzrJfB19sY7YCsEVvrkTUwx+B7hq0BLrCS9v4zp+mqhg2Vt2UE
65kGggsbDE8ar7jjCs4k4ygQlp8eKfqbbAE2CE3Lum+ui+7WX5Ck1YjHZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDopH30RdH4en5VQ5tRCEKOgqSpFMB8GA1UdIwQY
MBaAFN+x9uABU6SRhhGxS2sD9oEu2IpDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMzdIMjRBRlRwSkdHRWJGTGF3UDJnUzdZaWtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS81Mzc5ZTUtM2Q4NS00MWIxLTlkNzEt
ODEwNjI3ZmIyNjcxLzEvMzdIMjRBRlRwSkdHRWJGTGF3UDJnUzdZaWtNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS81Mzc5ZTUtM2Q4NS00MWIxLTlkNzEtODEwNjI3ZmIyNjcx
LzEvMzdIMjRBRlRwSkdHRWJGTGF3UDJnUzdZaWtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAmVeHtwS
yHQsarozK/WL0Dz6q/17DIX/MP/RweCdUaF+61qE9Dgtza+aAXf3zrT0sSaEO9iF
htpLmmwEAWs/2dMgQLTVGFeNeAjBsm77sJfO7JpL5PJS9Su3Rrj2xOuyPl2gbny4
1EbcAIfQvLd8Z94YCO41NIuxH+DrCK848SqCea4NkbbqZgyPDwq3bxraF5NiuBUS
z8G1E9fOXoqRcA9eu52AMbtP/W/P0WCRrjReWVVmdTQzE3SgHPt8Uahn5ipLqD3j
qSh/XwEQXYUw+6OOnmhjx9rjWx27jKpfjIo9iobuAN00496BMpw5qNXudcdzxDIw
S470HRsV/wZ3cQ==
-----END CERTIFICATE-----
Generated at Sun Apr 27 20:21:53 2025 by rpki-client