Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
File: CVAiiQS52-tHkqaXcn42qv2E0uk.mft (raw, json)
Hash identifier: RSOvoyJHrdQcdQXWwkT4plpxvA2yTQWO8/DcH12WJ1E=
Subject key identifier: B1:01:F9:CA:51:5B:6F:4A:42:84:46:51:D1:9F:0F:A7:BF:E5:02:99
Authority key identifier: 09:50:22:89:04:B9:DB:EB:47:92:A6:97:72:7E:36:AA:FD:84:D2:E9
Certificate issuer: /CN=0950228904b9dbeb4792a697727e36aafd84d2e9
Certificate serial: 0196BE2546180C9E8A682BB2CF1722AD619A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
Manifest number: 0C48
Signing time: Sun 11 May 2025 07:00:35 +0000
Manifest this update: Sun 11 May 2025 07:00:35 +0000
Manifest next update: Mon 12 May 2025 07:00:35 +0000
Files and hashes: 1: CVAiiQS52-tHkqaXcn42qv2E0uk.crl (hash: t7edsaIw9O99sx1N1Z9pNQIkQLl0IKocy6/LPveexuQ=)
2: P2VGtgj0Ve3JifdhxGXEPs8bYHw.roa (hash: krJRUyY9FgbmyjCpGEy7bhvyTA1VoPtEkFekALAvh2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:25:46:18:0c:9e:8a:68:2b:b2:cf:17:22:ad:61:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0950228904b9dbeb4792a697727e36aafd84d2e9
Validity
Not Before: May 11 07:00:35 2025 GMT
Not After : May 12 07:00:35 2025 GMT
Subject: CN=b101f9ca515b6f4a42844651d19f0fa7bfe50299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:78:71:c1:24:e0:90:69:fb:ef:fa:a8:c4:7f:
c7:66:07:de:ba:1b:24:8d:b5:f7:4d:25:d8:9e:17:
c3:5a:88:f7:6c:b3:ef:10:85:3c:79:92:74:c7:b8:
9a:1d:8f:ae:43:29:57:92:5f:d2:9c:80:5b:3f:17:
a7:75:e6:50:ec:cd:c5:2e:d4:cb:03:cb:da:56:2f:
66:50:48:82:bd:08:4a:df:84:f1:6c:12:80:7e:e3:
17:84:d4:84:1b:89:d4:99:46:aa:2c:e3:7d:87:73:
c2:fa:78:60:22:e1:61:bf:d6:03:80:8f:c4:76:48:
c6:b8:bf:fb:14:24:dd:f6:e1:17:fd:6f:50:0c:18:
34:67:ff:6a:68:1a:10:98:13:29:0d:90:aa:9b:c5:
f3:4f:59:b0:8c:0e:11:e8:a3:5d:32:d5:36:28:8c:
52:c5:62:44:c5:dc:6f:3e:dc:44:a2:f5:d1:d2:8a:
0d:08:9d:0e:16:72:ea:2a:4e:1e:ee:cd:69:ea:c6:
5e:71:87:b3:a5:e2:76:db:74:21:6c:38:e3:0c:ec:
27:8e:2b:84:0f:a8:fb:a2:1a:51:05:85:a5:64:8c:
f2:e4:f4:77:8c:d7:4f:c3:ff:23:d2:0e:f5:ed:b2:
96:b8:21:03:3e:97:37:24:be:9d:1e:f7:82:13:7e:
66:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:01:F9:CA:51:5B:6F:4A:42:84:46:51:D1:9F:0F:A7:BF:E5:02:99
X509v3 Authority Key Identifier:
keyid:09:50:22:89:04:B9:DB:EB:47:92:A6:97:72:7E:36:AA:FD:84:D2:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:87:ec:b6:c7:36:1d:36:ea:f8:35:1a:b3:72:6f:12:9d:f3:
39:fb:cd:5b:c5:eb:69:4a:02:c6:b5:aa:ad:88:61:c1:55:fa:
5d:43:f0:79:1d:17:0c:84:1d:bf:ce:4b:f8:39:30:ec:a6:22:
2f:c9:e4:b7:6a:13:b5:31:01:66:2f:85:b4:31:87:79:dc:ea:
d4:3b:02:50:9a:89:df:ee:d4:94:d2:83:4c:7e:73:96:0b:c6:
f3:bb:1e:3b:5c:b6:93:24:3a:e9:e8:70:57:28:dc:07:85:89:
a5:94:94:4b:39:96:e2:21:21:91:7c:b1:bd:1b:6c:81:aa:d5:
4e:df:24:c7:1b:e4:70:ed:7d:07:65:35:bb:f3:24:6b:c7:47:
37:b6:4d:2b:dd:41:50:13:c1:73:38:9e:57:0d:15:fb:48:11:
ec:54:82:54:53:95:4f:ad:38:f1:c6:75:19:f1:9c:8b:83:d3:
f3:28:38:6e:06:b9:77:b7:24:30:19:ae:6c:0c:29:5f:28:3f:
b8:f3:50:4d:fa:ad:10:c4:09:4d:b5:6c:d3:15:4b:2c:7f:e5:
34:68:46:ae:3d:47:1c:01:e0:1a:61:c2:25:df:08:18:25:a9:
b3:1b:b9:e7:54:b6:82:c1:03:26:fa:4a:d7:6d:8f:f1:36:3e:
10:e9:31:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa+JUYYDJ6KaCuyzxcirWGaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5NTAyMjg5MDRiOWRiZWI0NzkyYTY5NzcyN2UzNmFhZmQ4
NGQyZTkwHhcNMjUwNTExMDcwMDM1WhcNMjUwNTEyMDcwMDM1WjAzMTEwLwYDVQQD
EyhiMTAxZjljYTUxNWI2ZjRhNDI4NDQ2NTFkMTlmMGZhN2JmZTUwMjk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHhxwSTgkGn77/qoxH/HZgfeuhsk
jbX3TSXYnhfDWoj3bLPvEIU8eZJ0x7iaHY+uQylXkl/SnIBbPxendeZQ7M3FLtTL
A8vaVi9mUEiCvQhK34TxbBKAfuMXhNSEG4nUmUaqLON9h3PC+nhgIuFhv9YDgI/E
dkjGuL/7FCTd9uEX/W9QDBg0Z/9qaBoQmBMpDZCqm8XzT1mwjA4R6KNdMtU2KIxS
xWJExdxvPtxEovXR0ooNCJ0OFnLqKk4e7s1p6sZecYezpeJ223QhbDjjDOwnjiuE
D6j7ohpRBYWlZIzy5PR3jNdPw/8j0g717bKWuCEDPpc3JL6dHveCE35myQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLEB+cpRW29KQoRGUdGfD6e/5QKZMB8GA1UdIwQY
MBaAFAlQIokEudvrR5Kml3J+Nqr9hNLpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ZBaWlRUzUyLXRIa3FhWGNuNDJxdjJFMHVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS82NGQ5MTAtOTQ1Yy00MmU4LWJiNDQt
NjI4MjFjMmMyOTlmLzEvQ1ZBaWlRUzUyLXRIa3FhWGNuNDJxdjJFMHVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS82NGQ5MTAtOTQ1Yy00MmU4LWJiNDQtNjI4MjFjMmMyOTlm
LzEvQ1ZBaWlRUzUyLXRIa3FhWGNuNDJxdjJFMHVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr4fstsc2
HTbq+DUas3JvEp3zOfvNW8XraUoCxrWqrYhhwVX6XUPweR0XDIQdv85L+Dkw7KYi
L8nkt2oTtTEBZi+FtDGHedzq1DsCUJqJ3+7UlNKDTH5zlgvG87seO1y2kyQ66ehw
VyjcB4WJpZSUSzmW4iEhkXyxvRtsgarVTt8kxxvkcO19B2U1u/Mka8dHN7ZNK91B
UBPBczieVw0V+0gR7FSCVFOVT6048cZ1GfGci4PT8yg4bga5d7ckMBmubAwpXyg/
uPNQTfqtEMQJTbVs0xVLLH/lNGhGrj1HHAHgGmHCJd8IGCWpsxu551S2gsEDJvpK
122P8TY+EOkxXg==
-----END CERTIFICATE-----
Generated at Sun May 11 16:39:54 2025 by rpki-client