Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
File: uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft (raw, json)
Hash identifier: jSTC10qCrjRlBXmn1sufogmv5K4UPLOLiFtpErCwiWk=
Subject key identifier: 4F:C3:79:81:74:E3:CE:E2:6E:30:DC:D8:E1:E8:19:14:4D:5B:68:2A
Authority key identifier: B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
Certificate issuer: /CN=b90907cee4fac50f3753622ad21a989ae7741c47
Certificate serial: 0196767AB2B8E57A9F3FC39D48D9995E89DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
Manifest number: 1211
Signing time: Sun 27 Apr 2025 09:01:14 +0000
Manifest this update: Sun 27 Apr 2025 09:01:14 +0000
Manifest next update: Mon 28 Apr 2025 09:01:14 +0000
Files and hashes: 1: uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl (hash: L/jzrlZ8wVwLfGCmBhfrh2iOWKr2Kr5a91dPo/v+Wg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:b2:b8:e5:7a:9f:3f:c3:9d:48:d9:99:5e:89:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90907cee4fac50f3753622ad21a989ae7741c47
Validity
Not Before: Apr 27 09:01:14 2025 GMT
Not After : Apr 28 09:01:14 2025 GMT
Subject: CN=4fc3798174e3cee26e30dcd8e1e819144d5b682a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:68:8f:ff:2e:77:04:7b:09:5c:3f:99:22:fa:
e2:84:be:99:16:8b:0c:37:41:2e:79:d5:e4:95:ea:
e1:0d:e9:fc:0c:e6:6a:05:e7:3f:83:4f:77:19:be:
c8:0d:8b:63:33:bb:e4:85:de:9e:94:5c:da:31:7a:
21:66:f8:0d:87:c7:fb:95:86:5b:ef:ce:ef:94:36:
bf:09:a6:7a:ee:27:9c:b9:21:00:6e:52:32:01:d1:
52:65:ec:00:24:af:42:90:6a:1e:a3:fd:18:d3:6b:
be:d4:ea:13:5c:d5:de:7d:46:81:5d:ba:3d:1c:e3:
37:af:12:2b:1e:a6:3a:30:c7:01:7d:8b:d3:0a:ce:
2a:55:10:10:cb:70:da:4c:4f:3b:01:20:39:f1:a0:
bf:9e:74:09:a4:d0:1c:c8:35:c5:c4:5d:77:db:3a:
a9:c1:1b:5e:bc:14:90:65:1b:17:1b:ab:06:b6:67:
71:ad:9e:d5:5a:c8:1e:df:26:f2:ca:23:32:67:a7:
ca:06:88:74:3a:ee:9a:8d:99:c4:f7:f8:64:ae:f3:
da:49:3b:f7:dc:f4:ff:96:43:c7:57:fe:6f:01:4c:
38:c5:10:37:d8:2e:d9:05:9f:ca:ae:82:a1:9f:1d:
ea:39:90:81:df:5f:f3:f0:4a:e6:3a:2b:17:6b:93:
86:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C3:79:81:74:E3:CE:E2:6E:30:DC:D8:E1:E8:19:14:4D:5B:68:2A
X509v3 Authority Key Identifier:
keyid:B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:cb:a8:c1:fe:cb:38:01:b2:b3:65:09:53:32:f5:97:fd:f4:
f1:0a:44:ae:e4:4b:5c:92:4e:97:51:dd:6c:bd:e1:35:8f:37:
eb:bd:35:f0:c4:cd:6b:7d:56:4e:4c:3a:30:07:8c:bc:79:4e:
5c:15:80:ff:9c:f5:01:34:aa:c3:5b:17:f0:49:51:fa:2a:ff:
c9:d9:3e:58:3e:c5:15:98:70:fe:e2:e3:9b:a3:7a:7b:1b:4f:
c2:a2:f3:72:da:5e:9e:ba:21:41:2d:80:bc:6a:7e:a0:7f:fb:
06:36:fb:3f:ce:d3:89:6e:7d:0e:1a:b7:b9:6b:e2:c5:60:4e:
b7:91:a6:d9:ff:2c:24:02:db:83:3b:82:68:e7:a9:f8:b3:7e:
8a:12:05:32:5e:5d:d9:24:68:78:19:85:97:07:53:27:66:98:
55:1b:b9:0d:91:24:57:ec:db:7f:ed:a1:fd:12:bb:c2:2f:bd:
09:67:fe:18:c6:e0:fb:23:38:80:9f:d0:ae:2c:d3:1b:d7:19:
9c:6d:ff:ce:8c:39:96:0a:d4:f1:fd:26:d8:07:48:56:96:16:
36:a6:65:7f:d7:09:f4:fe:c8:72:1a:89:6d:cc:61:62:d7:e6:
6a:00:0f:4c:85:d3:08:49:f4:6b:b5:4b:78:8c:4c:62:c3:f9:
a1:17:91:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2erK45XqfP8OdSNmZXondMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5MDkwN2NlZTRmYWM1MGYzNzUzNjIyYWQyMWE5ODlhZTc3
NDFjNDcwHhcNMjUwNDI3MDkwMTE0WhcNMjUwNDI4MDkwMTE0WjAzMTEwLwYDVQQD
Eyg0ZmMzNzk4MTc0ZTNjZWUyNmUzMGRjZDhlMWU4MTkxNDRkNWI2ODJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWiP/y53BHsJXD+ZIvrihL6ZFosM
N0EuedXklerhDen8DOZqBec/g093Gb7IDYtjM7vkhd6elFzaMXohZvgNh8f7lYZb
787vlDa/CaZ67iecuSEAblIyAdFSZewAJK9CkGoeo/0Y02u+1OoTXNXefUaBXbo9
HOM3rxIrHqY6MMcBfYvTCs4qVRAQy3DaTE87ASA58aC/nnQJpNAcyDXFxF132zqp
wRtevBSQZRsXG6sGtmdxrZ7VWsge3ybyyiMyZ6fKBoh0Ou6ajZnE9/hkrvPaSTv3
3PT/lkPHV/5vAUw4xRA32C7ZBZ/KroKhnx3qOZCB31/z8ErmOisXa5OG0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE/DeYF0487ibjDc2OHoGRRNW2gqMB8GA1UdIwQY
MBaAFLkJB87k+sUPN1NiKtIamJrndBxHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zYzE2ZDItZDI5MC00N2ZiLTkxMWQt
NTk5NmNhZTlkMTE1LzEvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC8zYzE2ZDItZDI5MC00N2ZiLTkxMWQtNTk5NmNhZTlkMTE1
LzEvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW8uowf7L
OAGys2UJUzL1l/308QpEruRLXJJOl1HdbL3hNY8367018MTNa31WTkw6MAeMvHlO
XBWA/5z1ATSqw1sX8ElR+ir/ydk+WD7FFZhw/uLjm6N6extPwqLzctpenrohQS2A
vGp+oH/7Bjb7P87TiW59Dhq3uWvixWBOt5Gm2f8sJALbgzuCaOep+LN+ihIFMl5d
2SRoeBmFlwdTJ2aYVRu5DZEkV+zbf+2h/RK7wi+9CWf+GMbg+yM4gJ/QrizTG9cZ
nG3/zow5lgrU8f0m2AdIVpYWNqZlf9cJ9P7IchqJbcxhYtfmagAPTIXTCEn0a7VL
eIxMYsP5oReROA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 12:12:01 2025 by rpki-client