Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json)
Hash identifier: xCEJF57njOTImkWaLKIK7Q+wv8/dhSFwonbb34bMoG4=
Subject key identifier: BC:2B:44:6E:A9:CF:94:D5:FD:D9:79:B1:16:DC:2F:9E:C2:E3:85:43
Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Certificate serial: 019675D4F3A83ACC47FA4BF319A677FA21D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
Manifest number: BC
Signing time: Sun 27 Apr 2025 06:00:12 +0000
Manifest this update: Sun 27 Apr 2025 06:00:12 +0000
Manifest next update: Mon 28 Apr 2025 06:00:12 +0000
Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: blPrMZJWLPuNnSfKoBWxHRCBtntTp2MCJFEZWdqYeIs=)
2: DyBY2wfHB6a4dl33U3SXwgLJDGU.roa (hash: WRQJvvPjJahE1qm/vBTCrYOROs7sZwpvslZhT6hCk+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d4:f3:a8:3a:cc:47:fa:4b:f3:19:a6:77:fa:21:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Validity
Not Before: Apr 27 06:00:12 2025 GMT
Not After : Apr 28 06:00:12 2025 GMT
Subject: CN=bc2b446ea9cf94d5fdd979b116dc2f9ec2e38543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c8:8c:ba:ba:df:28:05:01:d7:0e:01:8d:1d:
16:07:cf:13:64:0c:81:87:b5:6b:18:21:6c:98:12:
7e:f9:81:3b:5e:cc:18:87:0d:f2:4a:e5:34:0a:2f:
bd:0d:7c:16:d2:41:7a:f8:3a:4a:59:54:ca:ac:c8:
d9:3b:a1:5b:d8:b6:ea:19:90:6b:64:71:ca:f1:e5:
76:eb:86:02:14:74:25:74:b7:ec:58:04:f8:8d:09:
d8:00:53:ad:00:94:13:08:78:5e:f1:08:9f:7e:c8:
9e:ac:a8:29:1c:a2:78:92:70:90:a1:64:a8:49:43:
b0:ef:77:67:06:15:77:e9:2b:fe:f3:d3:c3:8e:30:
3b:26:cc:d8:dc:ea:83:b1:d5:53:f0:4a:97:e9:b4:
08:3a:0d:92:b1:e6:d0:4f:50:8d:38:ee:41:09:e6:
39:66:5d:be:92:28:4e:c5:9f:76:06:6c:90:8d:bb:
c1:07:bd:1b:dd:b8:b9:2d:dc:87:95:66:8d:08:f4:
b0:de:af:2e:9e:44:68:73:30:ac:e8:51:38:35:d4:
b4:cc:45:98:b2:c4:4a:d5:28:32:fa:f4:d5:ce:2b:
da:c8:62:94:62:50:05:77:e8:d3:24:91:0d:52:42:
96:22:e0:80:8c:f9:6c:91:67:9d:b4:c5:47:08:90:
1b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:2B:44:6E:A9:CF:94:D5:FD:D9:79:B1:16:DC:2F:9E:C2:E3:85:43
X509v3 Authority Key Identifier:
keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:a6:9d:b6:f3:cd:65:ce:89:85:f9:93:28:0e:99:d3:df:3d:
a5:a9:07:6a:28:16:68:2d:2c:ae:7f:48:57:3a:0f:9c:3f:98:
42:11:81:39:8a:cb:68:e8:87:38:b5:84:9c:c6:69:11:85:ca:
8a:70:2e:9f:b8:a6:07:16:60:fc:0a:c4:49:49:ce:2e:15:ae:
8f:2f:4c:c6:3e:54:c5:25:78:bf:d4:66:1a:34:df:bf:4c:37:
e1:0b:de:e4:81:27:c3:56:24:ac:00:af:a2:34:04:af:da:81:
31:e1:eb:2d:e2:be:af:97:bb:a3:d8:c5:ff:a6:9d:0f:4d:76:
9e:bf:38:13:ec:76:cf:48:29:6a:d8:38:f8:35:32:de:68:d2:
1f:67:d3:e7:a4:01:5e:b7:d5:2b:c2:f7:bb:e2:0d:71:d8:98:
ef:40:a2:6b:76:c4:96:d5:b7:bb:99:dc:6a:fa:f6:d6:2a:37:
b0:db:8c:ec:2a:30:f6:61:ed:6c:ae:a6:99:0b:31:72:52:a6:
83:4e:aa:ef:5a:75:7e:84:c6:b6:41:20:3d:6f:af:6e:61:8a:
05:4b:e1:98:c1:87:73:70:64:43:38:91:a8:ec:5f:51:b2:53:
23:d3:8d:c1:d9:ea:41:2e:d8:07:ed:f7:ed:d4:e5:99:77:e2:
98:69:5f:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ11POoOsxH+kvzGaZ3+iHWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5NjljYjIxNTYzZTI2ZWRiNmFmYjIwZDFkOTJlODkzYThk
ZGI4MWQwHhcNMjUwNDI3MDYwMDEyWhcNMjUwNDI4MDYwMDEyWjAzMTEwLwYDVQQD
EyhiYzJiNDQ2ZWE5Y2Y5NGQ1ZmRkOTc5YjExNmRjMmY5ZWMyZTM4NTQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlciMurrfKAUB1w4BjR0WB88TZAyB
h7VrGCFsmBJ++YE7XswYhw3ySuU0Ci+9DXwW0kF6+DpKWVTKrMjZO6Fb2LbqGZBr
ZHHK8eV264YCFHQldLfsWAT4jQnYAFOtAJQTCHhe8QiffsierKgpHKJ4knCQoWSo
SUOw73dnBhV36Sv+89PDjjA7JszY3OqDsdVT8EqX6bQIOg2SsebQT1CNOO5BCeY5
Zl2+kihOxZ92BmyQjbvBB70b3bi5LdyHlWaNCPSw3q8unkRoczCs6FE4NdS0zEWY
ssRK1Sgy+vTVzivayGKUYlAFd+jTJJENUkKWIuCAjPlskWedtMVHCJAbDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLwrRG6pz5TV/dl5sRbcL57C44VDMB8GA1UdIwQY
MBaAFAlpyyFWPibttq+yDR2S6JOo3bgdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQt
MzYwMGQwMmE2ZjBlLzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQtMzYwMGQwMmE2ZjBl
LzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtqadtvPN
Zc6JhfmTKA6Z0989pakHaigWaC0srn9IVzoPnD+YQhGBOYrLaOiHOLWEnMZpEYXK
inAun7imBxZg/ArESUnOLhWujy9Mxj5UxSV4v9RmGjTfv0w34Qve5IEnw1YkrACv
ojQEr9qBMeHrLeK+r5e7o9jF/6adD012nr84E+x2z0gpatg4+DUy3mjSH2fT56QB
XrfVK8L3u+INcdiY70Cia3bEltW3u5ncavr21io3sNuM7Cow9mHtbK6mmQsxclKm
g06q71p1foTGtkEgPW+vbmGKBUvhmMGHc3BkQziRqOxfUbJTI9ONwdnqQS7YB+33
7dTlmXfimGlfzw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 15:22:17 2025 by rpki-client