Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
File: r4poziKkwZ8XcA9izPi7bC2vUeE.mft (raw, json)
Hash identifier: KJBJoB4uCqYbTMwn1/Fn7UWOA+1XwLsSZCx4YwQh5hA=
Subject key identifier: FE:F2:14:71:E8:5B:84:E5:40:DD:EE:D2:28:F7:19:0A:10:CF:6A:7F
Authority key identifier: AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
Certificate issuer: /CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Certificate serial: 0196BC6E73FA70B599D03FAA6ED878A9583A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
Manifest number: 0EAF
Signing time: Sat 10 May 2025 23:01:17 +0000
Manifest this update: Sat 10 May 2025 23:01:17 +0000
Manifest next update: Sun 11 May 2025 23:01:17 +0000
Files and hashes: 1: r4poziKkwZ8XcA9izPi7bC2vUeE.crl (hash: 2t+qJnMyYkQDuxhLEqSmzi6DCLcP7db2uFOyhRRwF/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:6e:73:fa:70:b5:99:d0:3f:aa:6e:d8:78:a9:58:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Validity
Not Before: May 10 23:01:17 2025 GMT
Not After : May 11 23:01:17 2025 GMT
Subject: CN=fef21471e85b84e540ddeed228f7190a10cf6a7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:08:96:25:f7:c2:d4:16:da:d2:73:75:ec:46:
90:0d:eb:57:f2:5a:a9:a6:73:49:38:d3:27:c1:4e:
83:3e:a1:58:57:a2:ae:55:2e:46:7c:af:ce:49:68:
56:e3:46:c3:df:4b:bc:4c:c0:82:69:19:87:8c:06:
03:b6:28:d6:47:f5:fb:2b:b1:e0:ed:18:b7:5e:d2:
ac:75:48:07:f2:1c:34:df:45:d0:7d:b3:6e:27:d0:
4e:29:09:df:7c:5f:98:eb:f7:72:98:d9:cf:f4:e5:
5d:ae:9b:f1:6c:18:6c:24:6c:d0:ea:92:a3:c3:fb:
0f:62:31:74:09:31:85:9b:46:73:e4:80:a1:80:4f:
96:52:d4:00:8e:32:d9:58:ba:de:73:45:22:30:3e:
b8:94:47:1c:5c:6d:3e:ff:66:c2:95:bc:4a:fb:78:
17:89:7e:f5:e1:e3:e3:fa:b7:d9:8d:aa:09:26:90:
17:b3:38:2a:89:d4:1d:c5:3e:50:ee:c6:6e:f9:80:
75:a6:4e:80:65:4d:20:11:56:5b:9c:da:ae:b2:33:
6b:b6:49:4b:33:40:66:95:2b:e6:b2:cf:02:90:d8:
da:d5:33:01:7f:7d:c0:7e:f1:07:b7:d3:ec:c8:17:
f2:38:e8:8a:24:85:db:1d:1a:d7:af:f3:f8:87:46:
82:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F2:14:71:E8:5B:84:E5:40:DD:EE:D2:28:F7:19:0A:10:CF:6A:7F
X509v3 Authority Key Identifier:
keyid:AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:f7:fb:4f:f5:e4:93:e6:39:1b:06:19:2e:98:28:37:4f:40:
19:cb:ba:02:78:dc:cc:cc:c6:15:c0:f0:f4:b5:f7:d6:f5:e5:
d5:63:99:f6:e5:30:0e:e3:db:6f:03:bf:19:27:de:b0:92:a2:
9c:9f:00:b5:18:b6:48:10:d0:4b:56:2c:4f:99:50:ee:38:c5:
1c:67:48:3e:34:12:e9:ed:03:f0:fa:f1:da:46:c8:84:9b:1a:
79:25:bc:11:f6:a6:90:fd:d0:54:e2:29:14:1e:7e:87:f5:f6:
59:38:fb:01:86:ad:8d:d9:2d:4b:c4:a6:34:12:df:15:e6:e4:
8e:5b:d3:f4:e7:2a:da:1d:42:69:01:41:b5:b6:15:95:39:4e:
d4:f9:86:3a:ae:24:74:61:4f:bb:e7:f6:b7:ed:e5:d7:e2:07:
ff:e1:ee:f4:26:54:e5:1e:13:2e:9d:99:81:64:7c:fd:1b:16:
70:89:ae:af:19:29:3c:8f:13:3a:6c:81:e0:7c:d5:9f:2c:cc:
46:a7:ef:e2:29:88:05:02:05:f1:75:cd:ac:8e:62:ab:43:7f:
b7:e5:7e:1f:cf:89:d9:e9:db:8f:2c:4f:42:e9:d1:5e:06:c7:
e0:60:87:69:8a:01:7a:f1:7f:b1:f8:38:04:0a:ee:47:15:29:
46:94:4d:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa8bnP6cLWZ0D+qbth4qVg6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmOGE2OGNlMjJhNGMxOWYxNzcwMGY2MmNjZjhiYjZjMmRh
ZjUxZTEwHhcNMjUwNTEwMjMwMTE3WhcNMjUwNTExMjMwMTE3WjAzMTEwLwYDVQQD
EyhmZWYyMTQ3MWU4NWI4NGU1NDBkZGVlZDIyOGY3MTkwYTEwY2Y2YTdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQiWJffC1Bba0nN17EaQDetX8lqp
pnNJONMnwU6DPqFYV6KuVS5GfK/OSWhW40bD30u8TMCCaRmHjAYDtijWR/X7K7Hg
7Ri3XtKsdUgH8hw030XQfbNuJ9BOKQnffF+Y6/dymNnP9OVdrpvxbBhsJGzQ6pKj
w/sPYjF0CTGFm0Zz5IChgE+WUtQAjjLZWLrec0UiMD64lEccXG0+/2bClbxK+3gX
iX714ePj+rfZjaoJJpAXszgqidQdxT5Q7sZu+YB1pk6AZU0gEVZbnNqusjNrtklL
M0BmlSvmss8CkNja1TMBf33AfvEHt9PsyBfyOOiKJIXbHRrXr/P4h0aCqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP7yFHHoW4TlQN3u0ij3GQoQz2p/MB8GA1UdIwQY
MBaAFK+KaM4ipMGfF3APYsz4u2wtr1HhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjRwb3ppS2t3WjhYY0E5aXpQaTdiQzJ2VWVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi82YjhlYTYtZjkwNy00MGQxLTllN2Qt
ZDk0ZTYwMTg0M2QxLzEvcjRwb3ppS2t3WjhYY0E5aXpQaTdiQzJ2VWVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi82YjhlYTYtZjkwNy00MGQxLTllN2QtZDk0ZTYwMTg0M2Qx
LzEvcjRwb3ppS2t3WjhYY0E5aXpQaTdiQzJ2VWVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxff7T/Xk
k+Y5GwYZLpgoN09AGcu6AnjczMzGFcDw9LX31vXl1WOZ9uUwDuPbbwO/GSfesJKi
nJ8AtRi2SBDQS1YsT5lQ7jjFHGdIPjQS6e0D8Prx2kbIhJsaeSW8EfamkP3QVOIp
FB5+h/X2WTj7AYatjdktS8SmNBLfFebkjlvT9Ocq2h1CaQFBtbYVlTlO1PmGOq4k
dGFPu+f2t+3l1+IH/+Hu9CZU5R4TLp2ZgWR8/RsWcImurxkpPI8TOmyB4HzVnyzM
Rqfv4imIBQIF8XXNrI5iq0N/t+V+H8+J2enbjyxPQunRXgbH4GCHaYoBevF/sfg4
BAruRxUpRpRNpg==
-----END CERTIFICATE-----
Generated at Sun May 11 05:15:30 2025 by rpki-client