Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
File: jR4EozwylZxnL0X0a-EIZLgemEo.mft (raw, json)
Hash identifier: DZA2BMk+RaK5qF1YVK445mG2AFJzFLFzmJgmWDTnw3I=
Subject key identifier: 2C:D8:0D:A4:70:CF:64:2B:EA:43:55:FA:2A:11:06:EF:36:E8:C5:FD
Authority key identifier: 8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A
Certificate issuer: /CN=8d1e04a33c32959c672f45f46be10864b81e984a
Certificate serial: 01968059405A48D8279C7D92B487DE1FBA0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
Manifest number: 150F
Signing time: Tue 29 Apr 2025 07:00:54 +0000
Manifest this update: Tue 29 Apr 2025 07:00:54 +0000
Manifest next update: Wed 30 Apr 2025 07:00:54 +0000
Files and hashes: 1: jR4EozwylZxnL0X0a-EIZLgemEo.crl (hash: jAp2brw+j702CSUaEHHtayx+2R6+AVwNJcnbb3OOR4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 07:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:59:40:5a:48:d8:27:9c:7d:92:b4:87:de:1f:ba:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1e04a33c32959c672f45f46be10864b81e984a
Validity
Not Before: Apr 29 07:00:54 2025 GMT
Not After : Apr 30 07:00:54 2025 GMT
Subject: CN=2cd80da470cf642bea4355fa2a1106ef36e8c5fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:76:3f:73:ac:8e:15:27:d7:06:2b:0f:68:21:
cc:91:ed:54:ac:f1:00:c0:85:c2:ee:47:83:db:22:
92:2f:dc:b6:7d:00:c1:a9:d0:92:6c:51:b0:6f:67:
ba:33:6c:e2:e2:6b:49:55:88:c2:27:7a:8b:e5:28:
34:6a:f9:ea:49:41:c2:10:a9:fd:56:8b:29:b1:ed:
a7:5b:6d:b9:46:d6:5b:20:6b:15:c0:40:16:40:ff:
ff:e9:30:c8:28:89:e3:61:89:2a:c7:11:0b:e0:a5:
8c:a7:ef:b5:ae:c5:f5:b2:c8:56:c5:c6:a7:66:a1:
1c:3e:8e:df:e3:ff:46:86:54:3c:08:9e:f0:29:1f:
53:22:3f:77:db:31:97:e0:93:cf:d2:1f:24:eb:93:
a8:9b:b1:ff:0b:11:97:6d:43:1e:64:36:b5:ba:ad:
7d:18:43:24:0d:4e:29:6b:a9:c3:e6:e7:f9:66:01:
ad:51:24:1b:91:f5:49:6a:cb:1c:a4:c7:90:8c:80:
97:2d:01:8c:59:6b:3a:e0:a7:e5:a5:b0:d4:b2:b5:
e1:46:f1:4a:3c:c5:95:63:76:c6:ac:7e:56:78:65:
36:2b:d8:48:08:e6:a5:d3:d9:82:dd:1b:4b:ff:f2:
a0:1b:25:69:fe:a5:32:65:61:28:d6:6c:e0:93:f2:
e6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:D8:0D:A4:70:CF:64:2B:EA:43:55:FA:2A:11:06:EF:36:E8:C5:FD
X509v3 Authority Key Identifier:
keyid:8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:9b:0c:7e:9c:4c:e6:07:18:a8:df:de:a7:62:90:43:08:53:
5b:c0:2c:cb:a4:83:23:5b:23:f2:dc:13:09:4d:3b:e2:9f:07:
f5:41:42:19:ae:1a:bb:f9:db:53:50:0d:82:23:e5:72:c8:34:
3e:da:10:b3:7b:dd:bb:98:8d:48:65:73:e1:64:97:e1:90:3b:
e7:24:df:bb:df:9f:b2:aa:25:bb:c1:34:cc:8d:d3:b5:b6:4b:
f1:e2:ba:1d:a1:bd:50:03:af:2b:64:73:c4:07:74:53:a7:f6:
42:88:51:29:f6:63:e8:da:ec:48:9f:17:fa:55:66:6b:ce:77:
e8:31:72:a4:e7:f3:cf:b1:e3:f9:b3:f3:d5:e1:8c:a3:fa:4e:
c5:55:9b:36:94:21:f0:70:f0:8c:3a:2c:3e:f4:20:57:77:8b:
fe:ea:96:fe:53:f2:21:69:99:9d:a2:55:ea:d2:1b:2c:da:42:
cd:72:3b:f0:c2:63:d3:d0:9b:19:5a:fe:1c:63:b7:68:d9:11:
fb:45:43:e5:4b:cb:8c:d8:4e:c3:6c:c9:c9:d5:b0:b4:89:a5:
d4:6d:6c:c8:bc:f7:65:d4:51:f2:da:0c:49:e1:54:21:c3:88:
a9:a9:1e:52:09:d0:6c:19:be:58:02:de:7e:ae:ad:b9:c2:64:
be:27:90:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaAWUBaSNgnnH2StIfeH7oOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMWUwNGEzM2MzMjk1OWM2NzJmNDVmNDZiZTEwODY0Yjgx
ZTk4NGEwHhcNMjUwNDI5MDcwMDU0WhcNMjUwNDMwMDcwMDU0WjAzMTEwLwYDVQQD
EygyY2Q4MGRhNDcwY2Y2NDJiZWE0MzU1ZmEyYTExMDZlZjM2ZThjNWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA83Y/c6yOFSfXBisPaCHMke1UrPEA
wIXC7keD2yKSL9y2fQDBqdCSbFGwb2e6M2zi4mtJVYjCJ3qL5Sg0avnqSUHCEKn9
Vospse2nW225RtZbIGsVwEAWQP//6TDIKInjYYkqxxEL4KWMp++1rsX1sshWxcan
ZqEcPo7f4/9GhlQ8CJ7wKR9TIj932zGX4JPP0h8k65Oom7H/CxGXbUMeZDa1uq19
GEMkDU4pa6nD5uf5ZgGtUSQbkfVJasscpMeQjICXLQGMWWs64KflpbDUsrXhRvFK
PMWVY3bGrH5WeGU2K9hICOal09mC3RtL//KgGyVp/qUyZWEo1mzgk/LmawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCzYDaRwz2Qr6kNV+ioRBu826MX9MB8GA1UdIwQY
MBaAFI0eBKM8MpWcZy9F9GvhCGS4HphKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalI0RW96d3lsWnhuTDBYMGEtRUlaTGdlbUVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9lZTYzZjMtN2Q0OC00OWU3LWFlYTct
ZTI0OWU3M2VjY2YxLzEvalI0RW96d3lsWnhuTDBYMGEtRUlaTGdlbUVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS9lZTYzZjMtN2Q0OC00OWU3LWFlYTctZTI0OWU3M2VjY2Yx
LzEvalI0RW96d3lsWnhuTDBYMGEtRUlaTGdlbUVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMJsMfpxM
5gcYqN/ep2KQQwhTW8Asy6SDI1sj8twTCU074p8H9UFCGa4au/nbU1ANgiPlcsg0
PtoQs3vdu5iNSGVz4WSX4ZA75yTfu9+fsqolu8E0zI3TtbZL8eK6HaG9UAOvK2Rz
xAd0U6f2QohRKfZj6NrsSJ8X+lVma8536DFypOfzz7Hj+bPz1eGMo/pOxVWbNpQh
8HDwjDosPvQgV3eL/uqW/lPyIWmZnaJV6tIbLNpCzXI78MJj09CbGVr+HGO3aNkR
+0VD5UvLjNhOw2zJydWwtIml1G1syLz3ZdRR8toMSeFUIcOIqakeUgnQbBm+WALe
fq6tucJkvieQOw==
-----END CERTIFICATE-----
Generated at Tue Apr 29 12:04:31 2025 by rpki-client