Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
File: 0jhr7YO2RaK64TifU9llfZGedtE.mft (raw, json)
Hash identifier: iFZiVItwPCyEjwYwuQsN1rtME2N4dgyupMaX5JETLUw=
Subject key identifier: 17:33:7F:72:5C:E2:CE:3F:E1:41:9C:59:44:32:E5:E2:37:BC:23:67
Authority key identifier: D2:38:6B:ED:83:B6:45:A2:BA:E1:38:9F:53:D9:65:7D:91:9E:76:D1
Certificate issuer: /CN=d2386bed83b645a2bae1389f53d9657d919e76d1
Certificate serial: 019696E0D502DFBE033C49B379E951E18A0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
Manifest number: 08E5
Signing time: Sat 03 May 2025 16:00:39 +0000
Manifest this update: Sat 03 May 2025 16:00:39 +0000
Manifest next update: Sun 04 May 2025 16:00:39 +0000
Files and hashes: 1: 0jhr7YO2RaK64TifU9llfZGedtE.crl (hash: KOGTnCMkwaM/uZOjhewSPSQx++GxHR3D1BlrpZjzKC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 16:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:96:e0:d5:02:df:be:03:3c:49:b3:79:e9:51:e1:8a:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2386bed83b645a2bae1389f53d9657d919e76d1
Validity
Not Before: May 3 16:00:39 2025 GMT
Not After : May 4 16:00:39 2025 GMT
Subject: CN=17337f725ce2ce3fe1419c594432e5e237bc2367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:11:c5:f9:2a:97:09:f6:83:34:8f:38:e4:3f:
2c:3d:d5:a9:99:ce:aa:73:4a:65:7b:e4:0a:96:65:
05:30:6a:63:f7:a6:29:5e:57:db:f3:30:7e:fd:8a:
6d:a8:36:6a:d6:79:6a:a5:11:5a:4a:4f:8a:ae:df:
2c:e0:f3:e9:e3:a9:80:a7:bf:76:12:b5:1e:41:7f:
65:4d:35:f3:1d:be:f6:0b:b8:98:48:2d:8c:9a:be:
77:c8:39:cd:da:de:06:e1:06:4c:1e:34:30:68:83:
43:79:a0:bb:65:93:21:06:01:77:e0:57:dc:a1:10:
1a:b0:76:7b:64:76:d2:3c:06:60:f2:87:a9:48:c4:
28:1f:cd:be:00:b8:ac:da:55:1a:22:47:b7:ac:b5:
2a:ec:69:3c:14:f6:3b:b8:20:03:e5:79:d3:ac:92:
c2:dc:22:ae:37:3c:af:47:86:c3:07:1c:ed:dc:59:
d6:2b:3e:af:32:da:86:eb:4f:6c:c3:5d:37:e6:65:
2e:4f:44:a9:10:b4:29:f4:2b:86:31:80:20:89:d8:
b5:44:a3:6b:34:de:a4:8e:d2:7b:95:66:20:5a:eb:
75:07:10:1e:52:4e:3d:c2:cf:bd:cf:be:a0:86:50:
d2:cd:47:b4:6b:42:2d:92:cb:16:2e:ef:32:85:58:
09:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:33:7F:72:5C:E2:CE:3F:E1:41:9C:59:44:32:E5:E2:37:BC:23:67
X509v3 Authority Key Identifier:
keyid:D2:38:6B:ED:83:B6:45:A2:BA:E1:38:9F:53:D9:65:7D:91:9E:76:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:b1:47:b7:85:af:8b:76:f3:b8:b1:56:03:c3:34:4e:ac:1e:
4b:24:8f:77:45:c8:21:6c:27:d2:20:52:63:c7:cb:b0:af:d8:
15:6d:97:90:64:31:59:bd:59:b4:35:39:ec:d6:95:69:a6:c7:
08:50:f8:19:f2:4c:71:fd:eb:ee:f2:89:bc:d5:00:fe:1c:8d:
41:5b:30:41:4c:f7:bc:8f:04:a1:63:78:e6:85:b5:7a:4e:9e:
5e:b0:bb:4e:bc:24:dd:97:d4:8c:1f:4e:3e:c3:3f:53:0a:cd:
6c:3d:ec:4d:6a:7f:59:67:da:d8:13:5b:82:77:bc:d6:6f:33:
ed:24:1e:90:fc:5e:6b:8e:65:6f:16:d6:9d:89:7e:95:30:6b:
61:d5:7a:4f:39:df:09:f9:a4:1e:1a:70:25:f9:a1:01:87:41:
f6:fe:b9:d4:27:32:bc:9a:d0:5d:50:0f:e0:ed:e2:fe:8f:3e:
46:bb:ca:a6:95:48:d8:a5:2a:49:ca:55:54:6d:a4:52:b6:d9:
fb:bb:2e:be:9c:bd:17:10:00:87:e3:6a:30:3d:66:00:86:f3:
24:01:f5:a7:eb:db:80:5c:63:d9:c1:17:b5:2a:8e:42:15:36:
43:b4:fd:cf:f3:d0:5f:a5:99:19:17:89:e5:9f:2b:68:c0:06:
68:5d:6b:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaW4NUC374DPEmzeelR4YoKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyMzg2YmVkODNiNjQ1YTJiYWUxMzg5ZjUzZDk2NTdkOTE5
ZTc2ZDEwHhcNMjUwNTAzMTYwMDM5WhcNMjUwNTA0MTYwMDM5WjAzMTEwLwYDVQQD
EygxNzMzN2Y3MjVjZTJjZTNmZTE0MTljNTk0NDMyZTVlMjM3YmMyMzY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjBHF+SqXCfaDNI845D8sPdWpmc6q
c0ple+QKlmUFMGpj96YpXlfb8zB+/YptqDZq1nlqpRFaSk+Krt8s4PPp46mAp792
ErUeQX9lTTXzHb72C7iYSC2Mmr53yDnN2t4G4QZMHjQwaINDeaC7ZZMhBgF34Ffc
oRAasHZ7ZHbSPAZg8oepSMQoH82+ALis2lUaIke3rLUq7Gk8FPY7uCAD5XnTrJLC
3CKuNzyvR4bDBxzt3FnWKz6vMtqG609sw1035mUuT0SpELQp9CuGMYAgidi1RKNr
NN6kjtJ7lWYgWut1BxAeUk49ws+9z76ghlDSzUe0a0ItkssWLu8yhVgJdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBczf3Jc4s4/4UGcWUQy5eI3vCNnMB8GA1UdIwQY
MBaAFNI4a+2DtkWiuuE4n1PZZX2RnnbRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGpocjdZTzJSYUs2NFRpZlU5bGxmWkdlZHRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi81NjMyOTctNjA1Ni00Njc1LTgzOTkt
MDM0MzgzNTFhMzY5LzEvMGpocjdZTzJSYUs2NFRpZlU5bGxmWkdlZHRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi81NjMyOTctNjA1Ni00Njc1LTgzOTktMDM0MzgzNTFhMzY5
LzEvMGpocjdZTzJSYUs2NFRpZlU5bGxmWkdlZHRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfbFHt4Wv
i3bzuLFWA8M0TqweSySPd0XIIWwn0iBSY8fLsK/YFW2XkGQxWb1ZtDU57NaVaabH
CFD4GfJMcf3r7vKJvNUA/hyNQVswQUz3vI8EoWN45oW1ek6eXrC7Trwk3ZfUjB9O
PsM/UwrNbD3sTWp/WWfa2BNbgne81m8z7SQekPxea45lbxbWnYl+lTBrYdV6Tznf
CfmkHhpwJfmhAYdB9v651CcyvJrQXVAP4O3i/o8+RrvKppVI2KUqScpVVG2kUrbZ
+7suvpy9FxAAh+NqMD1mAIbzJAH1p+vbgFxj2cEXtSqOQhU2Q7T9z/PQX6WZGReJ
5Z8raMAGaF1rzQ==
-----END CERTIFICATE-----
Generated at Sun May 4 00:33:29 2025 by rpki-client