Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json)
Hash identifier: KXzIxBKVWUXtodMm7H/bdSZIyBd5lYXR18gCghSr6mQ=
Subject key identifier: F3:FC:1C:19:DA:54:BB:26:7C:BC:1D:EC:1A:26:8B:2A:AE:6A:CE:EC
Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Certificate serial: 01967BD7AC35076474C7FC43458E0D4C750A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
Manifest number: 08AE
Signing time: Mon 28 Apr 2025 10:00:53 +0000
Manifest this update: Mon 28 Apr 2025 10:00:53 +0000
Manifest next update: Tue 29 Apr 2025 10:00:53 +0000
Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: 2+ZhLAbUav3JrcDrQdZVKvs7F4E9IkRTulWFAervfKM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:d7:ac:35:07:64:74:c7:fc:43:45:8e:0d:4c:75:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Validity
Not Before: Apr 28 10:00:53 2025 GMT
Not After : Apr 29 10:00:53 2025 GMT
Subject: CN=f3fc1c19da54bb267cbc1dec1a268b2aae6aceec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f3:34:17:47:15:10:8a:71:ec:0f:c8:67:30:
7e:c5:41:07:c3:0f:f4:99:0c:53:6f:ab:33:43:a1:
af:76:38:0a:5a:e3:e4:4d:5c:9e:ef:9a:72:ee:aa:
b4:82:c4:ba:4d:d7:f8:78:73:88:70:dd:63:0c:e5:
b2:6e:f1:b6:01:1f:9c:e9:44:ed:24:e2:5c:90:65:
20:f5:a5:e3:ec:6b:db:e6:53:69:c1:cb:16:6f:f8:
41:79:11:1b:5b:4c:97:2c:26:10:03:8b:2a:50:18:
6f:eb:6b:73:48:dd:a0:cc:aa:9a:b2:a8:b1:cd:24:
58:a6:3a:4e:3e:aa:a0:1c:17:4e:01:d0:3c:48:f6:
12:ed:a7:43:d0:ba:f0:20:fc:c1:93:80:af:56:37:
76:1f:0d:81:2f:48:04:b9:65:a8:4a:fa:a0:54:12:
92:1f:0b:94:17:65:0e:ae:89:11:1c:9d:4d:40:23:
92:46:85:10:a9:2a:3f:c1:14:56:9d:f6:86:9b:2b:
56:dc:69:91:42:d0:68:d9:8c:64:f7:50:7d:be:54:
f8:5b:36:b2:92:c6:70:e8:04:a1:f2:cf:37:fe:32:
b8:0b:ad:6b:be:3a:e1:e3:4a:2f:4c:b6:80:1b:c2:
aa:73:93:64:71:c5:13:0f:0c:ea:17:ae:05:f8:28:
7e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:FC:1C:19:DA:54:BB:26:7C:BC:1D:EC:1A:26:8B:2A:AE:6A:CE:EC
X509v3 Authority Key Identifier:
keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:fd:cd:05:d3:87:24:4c:01:dc:30:a6:69:c7:79:57:c7:b0:
23:11:66:bd:61:75:69:36:ca:17:9b:b5:06:4c:a9:d2:c5:32:
6a:7e:f9:93:60:04:32:df:c6:63:72:ed:33:2c:6c:8a:d5:4e:
a1:3b:83:56:0e:7c:92:80:c5:c5:9e:38:cd:26:61:af:9b:86:
80:7b:44:0d:ed:1a:8c:69:e0:fe:7e:c4:d4:88:af:4f:e6:a0:
62:d4:ad:75:2c:ca:fb:37:9f:46:48:c2:c2:c0:47:c7:6d:50:
1a:7e:7f:6d:fc:71:08:3d:d9:5e:55:0a:e2:50:29:b7:5f:ee:
64:53:c2:67:84:71:17:40:82:03:38:5e:ca:c3:91:66:13:04:
80:17:67:1a:2e:12:5d:84:e7:a3:ff:c7:bf:d2:a3:e2:96:c3:
39:7f:21:c6:8a:30:55:05:48:2e:e1:e9:2f:45:c2:7e:d5:55:
1d:25:61:f1:9e:da:fa:b1:eb:27:60:62:0a:e4:4a:68:b5:1e:
d7:d4:02:38:7d:4f:9a:6a:78:08:aa:de:d7:f2:67:2b:47:03:
c7:79:7b:bf:d6:5a:82:ec:ad:72:be:68:0a:db:17:3f:96:08:
91:76:71:1c:e6:ea:41:4c:04:d6:b8:92:88:81:83:f0:35:37:
ac:bf:05:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ716w1B2R0x/xDRY4NTHUKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3YjE0M2Y2NGQ1MTBiYTMxMjk3Y2JhZTU2ODJmZDQxYjJj
ODExOTYwHhcNMjUwNDI4MTAwMDUzWhcNMjUwNDI5MTAwMDUzWjAzMTEwLwYDVQQD
EyhmM2ZjMWMxOWRhNTRiYjI2N2NiYzFkZWMxYTI2OGIyYWFlNmFjZWVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz/M0F0cVEIpx7A/IZzB+xUEHww/0
mQxTb6szQ6GvdjgKWuPkTVye75py7qq0gsS6Tdf4eHOIcN1jDOWybvG2AR+c6UTt
JOJckGUg9aXj7Gvb5lNpwcsWb/hBeREbW0yXLCYQA4sqUBhv62tzSN2gzKqasqix
zSRYpjpOPqqgHBdOAdA8SPYS7adD0LrwIPzBk4CvVjd2Hw2BL0gEuWWoSvqgVBKS
HwuUF2UOrokRHJ1NQCOSRoUQqSo/wRRWnfaGmytW3GmRQtBo2Yxk91B9vlT4Wzay
ksZw6ASh8s83/jK4C61rvjrh40ovTLaAG8Kqc5NkccUTDwzqF64F+Ch+EQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPP8HBnaVLsmfLwd7Bomiyquas7sMB8GA1UdIwQY
MBaAFPexQ/ZNUQujEpfLrlaC/UGyyBGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUt
MGZiZTJkZTA2MzZkLzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUtMGZiZTJkZTA2MzZk
LzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxP3NBdOH
JEwB3DCmacd5V8ewIxFmvWF1aTbKF5u1Bkyp0sUyan75k2AEMt/GY3LtMyxsitVO
oTuDVg58koDFxZ44zSZhr5uGgHtEDe0ajGng/n7E1IivT+agYtStdSzK+zefRkjC
wsBHx21QGn5/bfxxCD3ZXlUK4lApt1/uZFPCZ4RxF0CCAzheysORZhMEgBdnGi4S
XYTno//Hv9Kj4pbDOX8hxoowVQVILuHpL0XCftVVHSVh8Z7a+rHrJ2BiCuRKaLUe
19QCOH1Pmmp4CKre1/JnK0cDx3l7v9Zaguytcr5oCtsXP5YIkXZxHObqQUwE1riS
iIGD8DU3rL8FTA==
-----END CERTIFICATE-----
Generated at Mon Apr 28 14:25:17 2025 by rpki-client