Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
File: 04BE23ZiygAUgai9swt6vRi86ao.mft (raw, json)
Hash identifier: 0j1KlPjx8GvdGZHQ6SXQtuou3xeZIq4ear5Zmc9SFIc=
Subject key identifier: 53:45:46:C8:68:6A:44:A8:B0:D7:E1:BA:92:97:4F:1D:C1:F0:40:4E
Authority key identifier: D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
Certificate issuer: /CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Certificate serial: 019688125F357B8177D11A3DCFDC226F98C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
Manifest number: 0FDB
Signing time: Wed 30 Apr 2025 19:00:27 +0000
Manifest this update: Wed 30 Apr 2025 19:00:27 +0000
Manifest next update: Thu 01 May 2025 19:00:27 +0000
Files and hashes: 1: 04BE23ZiygAUgai9swt6vRi86ao.crl (hash: 8ROka50/9of6f3GiiGMf/P8xxc7aj8gHW3L6FeVhD7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:12:5f:35:7b:81:77:d1:1a:3d:cf:dc:22:6f:98:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Validity
Not Before: Apr 30 19:00:27 2025 GMT
Not After : May 1 19:00:27 2025 GMT
Subject: CN=534546c8686a44a8b0d7e1ba92974f1dc1f0404e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1a:5c:28:06:2b:b0:f1:fb:38:d5:f0:9e:2c:
1f:09:18:3c:4f:a2:49:e8:9e:b2:6b:6f:25:60:31:
7c:60:c7:e2:42:20:da:8a:64:ca:ec:0e:fc:26:78:
de:de:39:86:75:21:69:5d:2a:2c:83:b0:1d:33:f1:
f8:2a:c0:a1:ea:36:c2:1b:9f:d3:46:af:d2:56:b4:
b1:e0:66:5c:80:41:93:1b:9b:46:cb:3a:a5:2c:34:
5b:d3:97:95:1f:e7:6b:fa:86:d7:14:c5:69:2a:3e:
85:83:40:4d:39:30:39:b9:8c:43:08:2c:f6:6d:f8:
b5:8a:ab:48:bc:f0:fe:b2:8a:f2:8c:a5:b4:8d:d0:
d4:e5:e1:82:ba:f6:d8:63:2a:67:65:58:8e:af:a8:
c1:6e:1a:42:a6:56:e0:27:e9:fa:d6:0b:d4:ec:c0:
3f:85:5a:93:86:72:69:79:6d:25:94:f3:a9:6f:7f:
dc:69:49:dc:a4:8b:a5:8c:d9:ff:5b:f9:12:51:59:
65:26:11:51:36:85:78:20:22:8d:17:d5:07:5e:9e:
5d:b5:cb:82:de:79:4c:f7:3d:28:99:fb:25:12:50:
6c:a5:27:e7:24:ce:2d:8e:0c:08:ba:95:c8:9a:d2:
8b:ac:54:39:35:61:bf:2c:4a:95:2b:49:6c:97:14:
ff:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:45:46:C8:68:6A:44:A8:B0:D7:E1:BA:92:97:4F:1D:C1:F0:40:4E
X509v3 Authority Key Identifier:
keyid:D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:09:a4:69:f3:4b:8b:f3:24:a4:92:9b:eb:bf:20:53:01:71:
43:c2:c4:67:5a:f1:3e:08:5e:22:96:6c:93:0b:2f:2a:b0:e2:
ed:40:48:2d:53:7f:2e:10:a2:6c:5f:1e:00:df:4a:ca:aa:20:
44:48:a4:db:94:74:f6:91:0e:b1:41:e2:9e:a1:88:f0:a4:d4:
f6:f7:d1:b9:4c:80:3e:bd:58:57:fe:b4:b3:60:97:43:e8:fa:
69:68:10:1c:2b:3c:ab:fb:50:70:2e:a0:8d:fd:89:3e:28:6e:
a9:1a:e9:fe:13:d8:2d:ec:08:58:5a:44:86:e7:bc:d2:d0:d0:
67:43:71:af:e4:94:7b:77:99:50:95:a2:b4:92:02:d0:b7:0e:
cb:75:02:a8:98:5d:34:be:77:e0:b1:0e:b5:25:a1:aa:4d:d8:
59:cb:03:82:51:49:48:cd:7e:86:aa:7f:53:18:d8:d5:ae:65:
cc:ad:98:9f:e8:eb:b3:2d:b2:07:95:fb:a9:aa:bf:98:a7:53:
67:72:88:ce:fa:ba:b0:65:6d:c1:48:cb:f1:4d:76:a0:cd:57:
63:e5:a8:1d:0e:91:33:c4:c0:4a:f7:d1:53:df:9a:54:93:00:
fa:c7:fe:13:53:96:68:86:eb:5b:0b:c7:42:ef:58:ab:a1:da:
0a:7f:40:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaIEl81e4F30Ro9z9wib5jGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzODA0NGRiNzY2MmNhMDAxNDgxYThiZGIzMGI3YWJkMThi
Y2U5YWEwHhcNMjUwNDMwMTkwMDI3WhcNMjUwNTAxMTkwMDI3WjAzMTEwLwYDVQQD
Eyg1MzQ1NDZjODY4NmE0NGE4YjBkN2UxYmE5Mjk3NGYxZGMxZjA0MDRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BpcKAYrsPH7ONXwniwfCRg8T6JJ
6J6ya28lYDF8YMfiQiDaimTK7A78Jnje3jmGdSFpXSosg7AdM/H4KsCh6jbCG5/T
Rq/SVrSx4GZcgEGTG5tGyzqlLDRb05eVH+dr+obXFMVpKj6Fg0BNOTA5uYxDCCz2
bfi1iqtIvPD+soryjKW0jdDU5eGCuvbYYypnZViOr6jBbhpCplbgJ+n61gvU7MA/
hVqThnJpeW0llPOpb3/caUncpIuljNn/W/kSUVllJhFRNoV4ICKNF9UHXp5dtcuC
3nlM9z0omfslElBspSfnJM4tjgwIupXImtKLrFQ5NWG/LEqVK0lslxT/+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFNFRshoakSosNfhupKXTx3B8EBOMB8GA1UdIwQY
MBaAFNOARNt2YsoAFIGovbMLer0YvOmqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDRCRTIzWml5Z0FVZ2FpOXN3dDZ2Umk4NmFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8xNGU5NzctMzQ2Zi00NGFkLWIwZGYt
MGExMGI4ODFjM2FjLzEvMDRCRTIzWml5Z0FVZ2FpOXN3dDZ2Umk4NmFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS8xNGU5NzctMzQ2Zi00NGFkLWIwZGYtMGExMGI4ODFjM2Fj
LzEvMDRCRTIzWml5Z0FVZ2FpOXN3dDZ2Umk4NmFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtQmkafNL
i/MkpJKb678gUwFxQ8LEZ1rxPgheIpZskwsvKrDi7UBILVN/LhCibF8eAN9Kyqog
REik25R09pEOsUHinqGI8KTU9vfRuUyAPr1YV/60s2CXQ+j6aWgQHCs8q/tQcC6g
jf2JPihuqRrp/hPYLewIWFpEhue80tDQZ0Nxr+SUe3eZUJWitJIC0LcOy3UCqJhd
NL534LEOtSWhqk3YWcsDglFJSM1+hqp/UxjY1a5lzK2Yn+jrsy2yB5X7qaq/mKdT
Z3KIzvq6sGVtwUjL8U12oM1XY+WoHQ6RM8TASvfRU9+aVJMA+sf+E1OWaIbrWwvH
Qu9Yq6HaCn9Amg==
-----END CERTIFICATE-----
Generated at Thu May 1 00:43:07 2025 by rpki-client