Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
File: tY6n73bYACz8pmxSD3ybYIo5XZU.mft (raw, json)
Hash identifier: 4V2ZvqqaIIU6hrzH2XBmVhxSJ+zg/SXUve18AoRxLek=
Subject key identifier: B7:67:1E:42:B1:0F:B6:2C:2F:BC:88:33:9B:0D:43:D9:CE:14:C5:69
Authority key identifier: B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95
Certificate issuer: /CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
Certificate serial: 019675678C43A4190C398102883BFB3DE68B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
Manifest number: 049F
Signing time: Sun 27 Apr 2025 04:00:42 +0000
Manifest this update: Sun 27 Apr 2025 04:00:42 +0000
Manifest next update: Mon 28 Apr 2025 04:00:42 +0000
Files and hashes: 1: tY6n73bYACz8pmxSD3ybYIo5XZU.crl (hash: w6oXqnHZXE5maS0uRGWPBkaRNuBccKw+eIm8oklizy8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:67:8c:43:a4:19:0c:39:81:02:88:3b:fb:3d:e6:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
Validity
Not Before: Apr 27 04:00:42 2025 GMT
Not After : Apr 28 04:00:42 2025 GMT
Subject: CN=b7671e42b10fb62c2fbc88339b0d43d9ce14c569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ec:bc:57:af:7e:06:d4:e5:11:70:38:02:c9:
87:18:28:8d:77:5f:4e:c1:51:d2:db:fd:d7:48:f0:
7d:29:de:45:49:16:0f:a9:cb:2e:5c:7c:51:4e:c3:
26:1a:6c:eb:c5:c9:f1:2f:e7:e4:7a:b8:14:3a:b1:
d3:f1:49:1b:18:46:e9:24:2a:7f:28:9f:e6:a4:2d:
d7:ec:5e:70:67:03:26:82:5d:01:4a:8d:30:9d:64:
06:df:57:17:15:0a:3f:61:29:e4:bc:7e:05:18:e8:
5a:98:0e:6f:74:6e:7e:8e:e4:89:ea:88:f0:17:11:
76:74:5a:2a:13:0a:5f:21:9d:a1:d6:45:c8:6c:32:
0b:74:5e:36:a2:5b:e5:16:01:7b:96:7c:58:d7:c2:
53:fe:d6:98:38:a2:d8:29:b8:f9:31:d1:5c:7a:98:
ec:1e:a7:54:f1:c0:34:36:d8:99:7d:88:a7:5b:ac:
ae:69:d3:37:91:0d:d5:33:d8:ed:4f:a7:9b:7c:a4:
45:1d:68:88:7d:3d:cb:2f:77:f5:1b:f5:45:1e:cb:
eb:3b:0c:c9:8f:51:34:8d:4e:c8:37:80:d3:60:9d:
7e:d4:d2:23:08:e3:dd:ce:84:d9:af:77:da:38:3f:
db:bf:8e:c4:6a:5d:2f:29:26:ac:f4:56:9d:92:7f:
20:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:67:1E:42:B1:0F:B6:2C:2F:BC:88:33:9B:0D:43:D9:CE:14:C5:69
X509v3 Authority Key Identifier:
keyid:B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:2e:9a:cd:b4:d4:0d:ac:4e:4d:92:d3:db:72:9a:5d:cc:ba:
5b:e9:c4:11:2c:76:07:a6:30:6a:93:b8:89:bb:70:79:fb:71:
69:ed:a8:27:10:41:2f:44:f6:82:90:5d:f7:14:70:e2:3b:90:
d1:d6:da:b7:29:71:13:6b:8c:65:09:50:e7:56:23:43:c9:40:
76:09:2b:83:67:59:b6:34:58:78:0f:8f:93:67:3a:37:8e:b4:
85:ee:b9:08:f7:ff:94:bc:22:66:7f:a1:f5:6b:bf:23:34:64:
0b:4d:dd:f0:e5:0d:1d:91:3e:7a:d6:40:68:bf:c9:3a:ae:d0:
73:3b:4a:1d:6e:23:2c:10:a0:da:7e:45:a5:c4:f1:24:61:59:
46:60:86:b8:d4:ea:1a:3c:54:1a:57:20:3f:3f:0f:0f:73:50:
75:d3:e9:1d:ae:71:52:75:6f:24:cc:a0:4c:50:ad:83:b1:87:
9b:0c:d3:50:7a:f9:51:f1:1e:10:c1:f0:d0:c0:af:d0:d8:44:
a9:18:19:ca:eb:6b:50:d7:d4:ff:12:13:0b:28:c9:99:e6:9d:
90:91:c0:25:07:6c:04:47:fe:23:ec:e5:d6:72:3c:e5:78:45:
5a:34:e7:23:54:82:1e:5a:a5:12:7f:10:e8:a3:b5:27:e3:93:
d3:63:1e:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ1Z4xDpBkMOYECiDv7PeaLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1OGVhN2VmNzZkODAwMmNmY2E2NmM1MjBmN2M5YjYwOGEz
OTVkOTUwHhcNMjUwNDI3MDQwMDQyWhcNMjUwNDI4MDQwMDQyWjAzMTEwLwYDVQQD
EyhiNzY3MWU0MmIxMGZiNjJjMmZiYzg4MzM5YjBkNDNkOWNlMTRjNTY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqey8V69+BtTlEXA4AsmHGCiNd19O
wVHS2/3XSPB9Kd5FSRYPqcsuXHxRTsMmGmzrxcnxL+fkergUOrHT8UkbGEbpJCp/
KJ/mpC3X7F5wZwMmgl0BSo0wnWQG31cXFQo/YSnkvH4FGOhamA5vdG5+juSJ6ojw
FxF2dFoqEwpfIZ2h1kXIbDILdF42olvlFgF7lnxY18JT/taYOKLYKbj5MdFcepjs
HqdU8cA0NtiZfYinW6yuadM3kQ3VM9jtT6ebfKRFHWiIfT3LL3f1G/VFHsvrOwzJ
j1E0jU7IN4DTYJ1+1NIjCOPdzoTZr3faOD/bv47Eal0vKSas9Fadkn8gOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLdnHkKxD7YsL7yIM5sNQ9nOFMVpMB8GA1UdIwQY
MBaAFLWOp+922AAs/KZsUg98m2CKOV2VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFk2bjczYllBQ3o4cG14U0QzeWJZSW81WFpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS80ZDk1YmEtOTlmYy00OTNlLWE1YzQt
NmI5ZmYyY2ZhMDdmLzEvdFk2bjczYllBQ3o4cG14U0QzeWJZSW81WFpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS80ZDk1YmEtOTlmYy00OTNlLWE1YzQtNmI5ZmYyY2ZhMDdm
LzEvdFk2bjczYllBQ3o4cG14U0QzeWJZSW81WFpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdC6azbTU
DaxOTZLT23KaXcy6W+nEESx2B6YwapO4ibtweftxae2oJxBBL0T2gpBd9xRw4juQ
0dbatylxE2uMZQlQ51YjQ8lAdgkrg2dZtjRYeA+Pk2c6N460he65CPf/lLwiZn+h
9Wu/IzRkC03d8OUNHZE+etZAaL/JOq7QcztKHW4jLBCg2n5FpcTxJGFZRmCGuNTq
GjxUGlcgPz8PD3NQddPpHa5xUnVvJMygTFCtg7GHmwzTUHr5UfEeEMHw0MCv0NhE
qRgZyutrUNfU/xITCyjJmeadkJHAJQdsBEf+I+zl1nI85XhFWjTnI1SCHlqlEn8Q
6KO1J+OT02Me9g==
-----END CERTIFICATE-----
Generated at Sun Apr 27 08:43:53 2025 by rpki-client