Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
File: sUgIa40dx_EOND_RZXGSOadVvTQ.mft (raw, json)
Hash identifier: 7V9uSiu1/IJ1xraCTA0fq2W8Wbp+DXg2crEqIJ3k53M=
Subject key identifier: F5:09:6B:A7:D1:0C:0C:8F:F6:27:69:66:0E:F5:A9:B3:56:D4:84:87
Authority key identifier: B1:48:08:6B:8D:1D:C7:F1:0E:34:3F:D1:65:71:92:39:A7:55:BD:34
Certificate issuer: /CN=b148086b8d1dc7f10e343fd165719239a755bd34
Certificate serial: 019687DBD266F291C4DD2915BED54FDBE553
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUgIa40dx_EOND_RZXGSOadVvTQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
Manifest number: 0E94
Signing time: Wed 30 Apr 2025 18:00:52 +0000
Manifest this update: Wed 30 Apr 2025 18:00:52 +0000
Manifest next update: Thu 01 May 2025 18:00:52 +0000
Files and hashes: 1: sUgIa40dx_EOND_RZXGSOadVvTQ.crl (hash: v9RwQQvUIMz8TvSE6ohitC90J4yPxIpJLHpimD4i5xg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sUgIa40dx_EOND_RZXGSOadVvTQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 13:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:87:db:d2:66:f2:91:c4:dd:29:15:be:d5:4f:db:e5:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b148086b8d1dc7f10e343fd165719239a755bd34
Validity
Not Before: Apr 30 18:00:52 2025 GMT
Not After : May 1 18:00:52 2025 GMT
Subject: CN=f5096ba7d10c0c8ff62769660ef5a9b356d48487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5c:91:b6:a6:dd:32:a6:65:d1:a7:cd:10:63:
34:75:3d:d5:2a:0f:8c:94:70:33:7a:95:0e:a5:1e:
84:fa:c0:ea:ae:10:e5:b4:9f:09:f1:c5:c1:49:8b:
6a:53:c8:13:7f:86:75:ac:1e:36:28:e8:04:91:81:
1d:34:03:7b:30:c3:51:81:b8:7e:01:10:2d:b2:21:
f1:aa:b5:55:38:a3:70:fa:4e:a2:e2:f2:2d:25:a6:
ba:9e:84:55:cb:78:13:f0:48:4d:ff:f8:c2:83:88:
af:39:7d:75:13:95:3a:72:0e:08:b5:18:7c:72:75:
ab:2b:41:ed:f6:7e:9c:96:56:67:c4:70:1d:b3:3f:
a9:10:45:6f:ed:f3:61:14:1f:b5:03:33:8a:74:92:
64:98:f8:b5:f9:23:af:7c:7c:1c:d5:5e:2b:a7:a8:
9a:14:dc:0e:05:df:bf:aa:bb:e3:c4:cc:f3:00:ec:
1b:1c:20:52:bc:ea:0a:bd:1c:11:d2:a9:a3:94:0f:
99:04:92:e8:a7:b4:1b:f2:66:ee:74:d9:aa:89:81:
35:68:34:79:68:a9:94:ea:92:7f:7e:e2:69:3a:ab:
f0:22:3b:94:35:05:e0:85:ab:46:33:26:ae:de:ae:
3f:57:53:59:70:b5:01:67:41:91:f8:1f:31:36:76:
75:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:09:6B:A7:D1:0C:0C:8F:F6:27:69:66:0E:F5:A9:B3:56:D4:84:87
X509v3 Authority Key Identifier:
keyid:B1:48:08:6B:8D:1D:C7:F1:0E:34:3F:D1:65:71:92:39:A7:55:BD:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUgIa40dx_EOND_RZXGSOadVvTQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:42:13:81:13:af:81:45:f5:cc:00:2e:c9:17:bb:21:eb:84:
a7:d1:bf:dc:31:18:d0:90:e5:ea:ef:89:5f:40:43:04:ff:f2:
0c:e9:e0:07:92:fa:6e:31:f4:2a:0f:75:bf:25:35:18:53:40:
4f:21:9d:4b:cc:dd:23:92:37:19:e5:d8:3d:42:62:22:01:95:
e4:da:cd:31:ad:24:e8:fa:67:a0:6b:31:23:23:f3:df:b4:de:
3d:72:4d:43:9b:36:63:18:3c:63:88:8e:44:40:43:a7:b2:cd:
45:0b:e0:11:e0:d7:f9:15:e3:b7:2a:41:fe:a6:78:b0:a6:07:
4f:c8:4c:36:bc:22:89:cc:d0:96:88:b3:f8:79:b6:5d:36:43:
69:7e:c4:6f:68:4a:9c:00:04:a2:95:85:df:6e:84:38:8b:c1:
05:da:bb:cf:e3:02:fe:76:6d:28:e4:88:2d:23:c4:16:44:c4:
1f:97:47:23:b9:58:2d:da:b8:81:b4:97:97:7c:a3:89:7b:d6:
b6:b8:21:0a:a5:04:06:21:a0:4f:c6:9f:35:17:bf:04:09:a6:
b4:8e:c2:56:1a:3b:3c:e6:3d:b3:a8:ff:90:17:90:08:89:c6:
a1:8d:3e:ec:40:06:c9:5c:f8:1c:12:73:5c:ca:75:d5:3d:55:
7a:7e:fc:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaH29Jm8pHE3SkVvtVP2+VTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNDgwODZiOGQxZGM3ZjEwZTM0M2ZkMTY1NzE5MjM5YTc1
NWJkMzQwHhcNMjUwNDMwMTgwMDUyWhcNMjUwNTAxMTgwMDUyWjAzMTEwLwYDVQQD
EyhmNTA5NmJhN2QxMGMwYzhmZjYyNzY5NjYwZWY1YTliMzU2ZDQ4NDg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVyRtqbdMqZl0afNEGM0dT3VKg+M
lHAzepUOpR6E+sDqrhDltJ8J8cXBSYtqU8gTf4Z1rB42KOgEkYEdNAN7MMNRgbh+
ARAtsiHxqrVVOKNw+k6i4vItJaa6noRVy3gT8EhN//jCg4ivOX11E5U6cg4ItRh8
cnWrK0Ht9n6cllZnxHAdsz+pEEVv7fNhFB+1AzOKdJJkmPi1+SOvfHwc1V4rp6ia
FNwOBd+/qrvjxMzzAOwbHCBSvOoKvRwR0qmjlA+ZBJLop7Qb8mbudNmqiYE1aDR5
aKmU6pJ/fuJpOqvwIjuUNQXghatGMyau3q4/V1NZcLUBZ0GR+B8xNnZ1vQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPUJa6fRDAyP9idpZg71qbNW1ISHMB8GA1UdIwQY
MBaAFLFICGuNHcfxDjQ/0WVxkjmnVb00MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1VnSWE0MGR4X0VPTkRfUlpYR1NPYWRWdlRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9kYWRmMzQtMWYzZi00Y2VhLTgwMDEt
ZTNkNWQ3ZWY0MjMyLzEvc1VnSWE0MGR4X0VPTkRfUlpYR1NPYWRWdlRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9kYWRmMzQtMWYzZi00Y2VhLTgwMDEtZTNkNWQ3ZWY0MjMy
LzEvc1VnSWE0MGR4X0VPTkRfUlpYR1NPYWRWdlRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKEITgROv
gUX1zAAuyRe7IeuEp9G/3DEY0JDl6u+JX0BDBP/yDOngB5L6bjH0Kg91vyU1GFNA
TyGdS8zdI5I3GeXYPUJiIgGV5NrNMa0k6PpnoGsxIyPz37TePXJNQ5s2Yxg8Y4iO
REBDp7LNRQvgEeDX+RXjtypB/qZ4sKYHT8hMNrwiiczQloiz+Hm2XTZDaX7Eb2hK
nAAEopWF326EOIvBBdq7z+MC/nZtKOSILSPEFkTEH5dHI7lYLdq4gbSXl3yjiXvW
trghCqUEBiGgT8afNRe/BAmmtI7CVho7POY9s6j/kBeQCInGoY0+7EAGyVz4HBJz
XMp11T1Ven78og==
-----END CERTIFICATE-----
Generated at Wed Apr 30 21:25:26 2025 by rpki-client