Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.mft
File: tDlkbascuAzWConx-qE0bzlSO_o.mft (raw, json)
Hash identifier: AaG2rD8blhgnI+Pe5TIcU1sTbk9NiuAaNABi4EKSy0w=
Subject key identifier: 18:13:66:4E:D3:35:25:6E:10:D3:19:FD:0C:1B:CA:A1:34:B4:CA:86
Authority key identifier: B4:39:64:6D:AB:1C:B8:0C:D6:0A:89:F1:FA:A1:34:6F:39:52:3B:FA
Certificate issuer: /CN=b439646dab1cb80cd60a89f1faa1346f39523bfa
Certificate serial: 0196760CCAC61D0F654843C79FDBC880872A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlkbascuAzWConx-qE0bzlSO_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.mft
Manifest number: 150B
Signing time: Sun 27 Apr 2025 07:01:11 +0000
Manifest this update: Sun 27 Apr 2025 07:01:11 +0000
Manifest next update: Mon 28 Apr 2025 07:01:11 +0000
Files and hashes: 1: tDlkbascuAzWConx-qE0bzlSO_o.crl (hash: h48CgtvkKDYCvz1JoenOqLGPswwya0focauBcACNgrU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDlkbascuAzWConx-qE0bzlSO_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:ca:c6:1d:0f:65:48:43:c7:9f:db:c8:80:87:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b439646dab1cb80cd60a89f1faa1346f39523bfa
Validity
Not Before: Apr 27 07:01:11 2025 GMT
Not After : Apr 28 07:01:11 2025 GMT
Subject: CN=1813664ed335256e10d319fd0c1bcaa134b4ca86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1a:23:5d:c8:08:f4:28:ea:fd:89:55:7b:c8:
3c:1f:c2:d0:9d:2a:f8:1c:6e:68:03:7a:95:b5:0a:
fb:14:8f:06:08:8f:0e:68:1a:00:d0:f3:fc:79:ef:
e5:1e:bd:c0:05:e0:79:42:35:18:fd:be:58:58:91:
3c:50:62:27:1b:97:42:e5:0f:08:8e:42:ec:87:8d:
7f:cb:9a:41:49:b1:55:e5:03:1a:54:6c:73:10:bf:
2d:b5:38:e4:45:60:6b:bd:1e:20:8a:05:32:58:d9:
1a:c0:ce:f8:a5:28:c1:c0:ad:ee:81:62:da:1f:cf:
41:2c:ac:17:f4:ba:a7:a7:08:88:16:f8:c5:00:21:
57:35:f4:bd:e5:d2:6c:4e:d7:31:73:6d:f6:1b:e9:
3b:67:4e:09:a7:e9:e9:7e:78:ae:c9:08:58:a5:c8:
00:54:d7:84:e1:a7:91:b5:b7:78:19:fd:8e:82:3c:
3d:ca:57:dd:50:f2:fb:9b:be:1a:ef:39:fa:b2:1b:
88:7f:47:03:2e:24:34:3e:29:c6:a7:d7:d2:5a:4b:
ad:59:98:3f:c2:ff:54:83:93:3b:56:96:cc:67:0e:
26:5d:cc:d1:f1:76:fd:6a:d2:50:9a:a0:52:4e:d7:
0b:c9:bb:a4:49:d4:6d:4f:7c:53:bd:9a:9a:11:f5:
4c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:13:66:4E:D3:35:25:6E:10:D3:19:FD:0C:1B:CA:A1:34:B4:CA:86
X509v3 Authority Key Identifier:
keyid:B4:39:64:6D:AB:1C:B8:0C:D6:0A:89:F1:FA:A1:34:6F:39:52:3B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlkbascuAzWConx-qE0bzlSO_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:d1:96:7b:86:b4:93:c8:fa:03:07:fb:8f:95:2a:4d:d7:6c:
9e:3e:e1:bd:bc:77:61:43:99:73:4e:c9:3e:05:54:a3:40:43:
59:81:d7:84:2a:8c:b6:af:e7:3b:f1:e8:13:49:c8:17:b6:40:
65:1c:04:21:36:5c:7c:db:2c:f2:14:10:f3:13:2c:14:95:50:
d3:d3:79:df:ac:a3:ea:d8:7a:f4:c3:20:ab:fb:c1:fc:2e:1b:
b9:0e:8d:e7:98:64:53:83:2b:58:82:93:e7:86:07:58:74:bb:
bc:bb:8e:49:14:ae:7e:2b:e8:61:de:0f:2b:8b:a2:8d:77:0f:
51:06:ef:56:15:d5:74:8a:6c:ef:bc:85:fa:12:0f:c2:54:c4:
4e:97:21:c0:fd:a4:eb:0f:cd:d6:f0:f0:0c:c2:0e:e6:8a:2f:
72:15:6c:da:70:8b:d8:2d:a8:dc:25:fe:a9:fc:27:8b:ca:6a:
ea:0c:35:a6:d3:0e:04:4c:1c:ca:d0:72:e0:a6:42:82:94:41:
a3:65:46:9c:1e:be:6b:4f:10:93:95:38:1b:14:ed:ce:e5:7f:
45:80:fb:d8:2d:f2:28:01:1f:e7:77:ee:30:84:8c:69:1f:99:
bc:68:c0:5d:a0:19:7e:17:ad:61:99:4d:61:42:69:57:8a:45:
94:f7:f6:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2DMrGHQ9lSEPHn9vIgIcqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Mzk2NDZkYWIxY2I4MGNkNjBhODlmMWZhYTEzNDZmMzk1
MjNiZmEwHhcNMjUwNDI3MDcwMTExWhcNMjUwNDI4MDcwMTExWjAzMTEwLwYDVQQD
EygxODEzNjY0ZWQzMzUyNTZlMTBkMzE5ZmQwYzFiY2FhMTM0YjRjYTg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxRojXcgI9Cjq/YlVe8g8H8LQnSr4
HG5oA3qVtQr7FI8GCI8OaBoA0PP8ee/lHr3ABeB5QjUY/b5YWJE8UGInG5dC5Q8I
jkLsh41/y5pBSbFV5QMaVGxzEL8ttTjkRWBrvR4gigUyWNkawM74pSjBwK3ugWLa
H89BLKwX9LqnpwiIFvjFACFXNfS95dJsTtcxc232G+k7Z04Jp+npfniuyQhYpcgA
VNeE4aeRtbd4Gf2Ogjw9ylfdUPL7m74a7zn6shuIf0cDLiQ0PinGp9fSWkutWZg/
wv9Ug5M7VpbMZw4mXczR8Xb9atJQmqBSTtcLybukSdRtT3xTvZqaEfVM3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBgTZk7TNSVuENMZ/QwbyqE0tMqGMB8GA1UdIwQY
MBaAFLQ5ZG2rHLgM1gqJ8fqhNG85Ujv6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERsa2Jhc2N1QXpXQ29ueC1xRTBiemxTT19vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy9jZDRmNGQtYWE1OC00YTJmLWEzYzUt
N2U4YzU0NWE5N2FlLzEvdERsa2Jhc2N1QXpXQ29ueC1xRTBiemxTT19vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy9jZDRmNGQtYWE1OC00YTJmLWEzYzUtN2U4YzU0NWE5N2Fl
LzEvdERsa2Jhc2N1QXpXQ29ueC1xRTBiemxTT19vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiNGWe4a0
k8j6Awf7j5UqTddsnj7hvbx3YUOZc07JPgVUo0BDWYHXhCqMtq/nO/HoE0nIF7ZA
ZRwEITZcfNss8hQQ8xMsFJVQ09N536yj6th69MMgq/vB/C4buQ6N55hkU4MrWIKT
54YHWHS7vLuOSRSufivoYd4PK4uijXcPUQbvVhXVdIps77yF+hIPwlTETpchwP2k
6w/N1vDwDMIO5oovchVs2nCL2C2o3CX+qfwni8pq6gw1ptMOBEwcytBy4KZCgpRB
o2VGnB6+a08Qk5U4GxTtzuV/RYD72C3yKAEf53fuMISMaR+ZvGjAXaAZfhetYZlN
YUJpV4pFlPf2/Q==
-----END CERTIFICATE-----
Generated at Sun Apr 27 12:08:56 2025 by rpki-client