Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/1e334d-98b5-47b9-b4fd-29f71ee1791d/1/dvLzQc-Yuei0bt04mkgGTHuub5o.mft
File: dvLzQc-Yuei0bt04mkgGTHuub5o.mft (raw, json)
Hash identifier: zTGEbMCEMSHQpsEDkT35arVSlv2fTIGCnm/byZ6g/uY=
Subject key identifier: 8A:AB:FC:1F:97:09:EC:57:7C:09:4F:3A:27:42:B7:42:5F:FD:B6:6D
Authority key identifier: 76:F2:F3:41:CF:98:B9:E8:B4:6E:DD:38:9A:48:06:4C:7B:AE:6F:9A
Certificate issuer: /CN=76f2f341cf98b9e8b46edd389a48064c7bae6f9a
Certificate serial: 0196BF6EF61C55BCF0A42B603EC287284695
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dvLzQc-Yuei0bt04mkgGTHuub5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/1e334d-98b5-47b9-b4fd-29f71ee1791d/1/dvLzQc-Yuei0bt04mkgGTHuub5o.mft
Manifest number: 0D18
Signing time: Sun 11 May 2025 13:00:42 +0000
Manifest this update: Sun 11 May 2025 13:00:42 +0000
Manifest next update: Mon 12 May 2025 13:00:42 +0000
Files and hashes: 1: dvLzQc-Yuei0bt04mkgGTHuub5o.crl (hash: B7HTgxwsxdkuGbo3cpP2AKKOV3CSuxFhYZanDhGx8Bg=)
2: pLFGIGuwO6p3VXl7848DpqUCykE.roa (hash: cQnY5M6yFrvUehgYlIPw55V4Prm/y9EByLYSiv2JqLY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/1e334d-98b5-47b9-b4fd-29f71ee1791d/1/dvLzQc-Yuei0bt04mkgGTHuub5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/1e334d-98b5-47b9-b4fd-29f71ee1791d/1/dvLzQc-Yuei0bt04mkgGTHuub5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/dvLzQc-Yuei0bt04mkgGTHuub5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:6e:f6:1c:55:bc:f0:a4:2b:60:3e:c2:87:28:46:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76f2f341cf98b9e8b46edd389a48064c7bae6f9a
Validity
Not Before: May 11 13:00:42 2025 GMT
Not After : May 12 13:00:42 2025 GMT
Subject: CN=8aabfc1f9709ec577c094f3a2742b7425ffdb66d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:be:11:76:b2:ef:7b:b5:c4:7f:41:04:56:c9:
3f:39:d1:9b:23:21:48:8a:cc:9d:0b:11:73:f2:03:
7a:7f:6e:56:3e:49:91:45:67:d0:71:98:a5:e8:24:
1b:61:32:29:7f:0f:9e:cf:b9:5e:fa:9d:a4:74:36:
84:84:ff:42:5b:dd:2d:3d:ab:49:e1:80:35:44:79:
22:94:3f:2c:06:9d:40:22:38:ee:56:24:d2:95:a3:
a3:f7:e7:d9:4b:52:6e:56:58:4d:fb:c6:87:10:27:
09:e3:51:8c:df:e7:d4:db:8c:17:97:64:74:09:31:
4c:2f:20:a2:78:24:c6:f2:46:a3:4e:e0:6e:94:8a:
99:1a:c0:41:cb:72:8e:86:b9:3b:0c:ea:e6:4e:8f:
16:c5:77:b5:77:d4:41:d8:9a:26:f0:1c:3d:32:5d:
c9:37:08:64:08:54:dd:2a:c2:d1:56:dd:fe:44:45:
bd:93:7f:76:6a:4b:44:a2:0a:63:a7:35:1a:ae:12:
76:2d:76:e8:77:24:83:78:7e:0c:80:d4:dd:5b:80:
3c:32:2c:31:b3:66:4d:eb:90:d8:17:3c:51:e0:7b:
b5:0a:a2:9d:8f:b6:bb:09:60:04:ca:14:b7:ec:c6:
f7:39:dc:5f:f4:82:98:4e:69:04:1f:51:99:4b:dd:
6d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:AB:FC:1F:97:09:EC:57:7C:09:4F:3A:27:42:B7:42:5F:FD:B6:6D
X509v3 Authority Key Identifier:
keyid:76:F2:F3:41:CF:98:B9:E8:B4:6E:DD:38:9A:48:06:4C:7B:AE:6F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dvLzQc-Yuei0bt04mkgGTHuub5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e334d-98b5-47b9-b4fd-29f71ee1791d/1/dvLzQc-Yuei0bt04mkgGTHuub5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e334d-98b5-47b9-b4fd-29f71ee1791d/1/dvLzQc-Yuei0bt04mkgGTHuub5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:c7:0c:41:95:76:4b:6f:28:e7:67:64:4f:59:b6:2b:24:42:
d2:cc:46:81:83:8f:7c:47:94:e5:c9:46:99:be:31:8c:c8:f2:
98:a8:f7:39:e1:c6:fe:9e:81:da:e7:10:c2:2b:3b:ab:67:d9:
60:cd:cf:96:d7:5a:29:dd:90:36:0a:e6:82:a7:10:e4:25:cc:
4a:4c:9c:4e:74:05:e5:f5:82:43:cc:21:87:10:29:f2:ac:29:
25:da:61:d9:a1:d7:6b:34:17:e9:a0:55:a8:26:08:d6:e3:a6:
0a:38:0c:11:b8:c2:41:6c:59:b7:50:db:70:1a:e1:55:76:7c:
b5:3f:a7:47:32:08:6c:23:6e:bf:90:4a:09:62:ba:25:27:9e:
84:ba:b0:ce:2a:03:0c:f9:54:e1:8a:63:2e:2a:72:85:05:9c:
66:6d:8e:92:b8:4a:d2:e8:7b:07:81:91:30:8c:c7:f8:09:c9:
44:48:12:4e:5b:de:db:ab:22:6c:bc:c0:cd:1c:24:f4:17:f3:
51:91:72:89:c9:8c:6b:c0:bf:8c:5d:32:2b:e5:f4:d1:ed:30:
21:06:29:e3:09:24:57:28:b8:62:17:dd:1f:f4:81:d2:16:cd:
0c:ef:4a:0d:c6:44:4d:26:bb:9e:52:d0:f2:52:db:2c:e9:0c:
39:ac:03:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa/bvYcVbzwpCtgPsKHKEaVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2ZjJmMzQxY2Y5OGI5ZThiNDZlZGQzODlhNDgwNjRjN2Jh
ZTZmOWEwHhcNMjUwNTExMTMwMDQyWhcNMjUwNTEyMTMwMDQyWjAzMTEwLwYDVQQD
Eyg4YWFiZmMxZjk3MDllYzU3N2MwOTRmM2EyNzQyYjc0MjVmZmRiNjZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA174RdrLve7XEf0EEVsk/OdGbIyFI
isydCxFz8gN6f25WPkmRRWfQcZil6CQbYTIpfw+ez7le+p2kdDaEhP9CW90tPatJ
4YA1RHkilD8sBp1AIjjuViTSlaOj9+fZS1JuVlhN+8aHECcJ41GM3+fU24wXl2R0
CTFMLyCieCTG8kajTuBulIqZGsBBy3KOhrk7DOrmTo8WxXe1d9RB2Jom8Bw9Ml3J
NwhkCFTdKsLRVt3+REW9k392aktEogpjpzUarhJ2LXbodySDeH4MgNTdW4A8Miwx
s2ZN65DYFzxR4Hu1CqKdj7a7CWAEyhS37Mb3Odxf9IKYTmkEH1GZS91tAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIqr/B+XCexXfAlPOidCt0Jf/bZtMB8GA1UdIwQY
MBaAFHby80HPmLnotG7dOJpIBkx7rm+aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHZMelFjLVl1ZWkwYnQwNG1rZ0dUSHV1YjVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My8xZTMzNGQtOThiNS00N2I5LWI0ZmQt
MjlmNzFlZTE3OTFkLzEvZHZMelFjLVl1ZWkwYnQwNG1rZ0dUSHV1YjVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My8xZTMzNGQtOThiNS00N2I5LWI0ZmQtMjlmNzFlZTE3OTFk
LzEvZHZMelFjLVl1ZWkwYnQwNG1rZ0dUSHV1YjVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm8cMQZV2
S28o52dkT1m2KyRC0sxGgYOPfEeU5clGmb4xjMjymKj3OeHG/p6B2ucQwis7q2fZ
YM3PltdaKd2QNgrmgqcQ5CXMSkycTnQF5fWCQ8whhxAp8qwpJdph2aHXazQX6aBV
qCYI1uOmCjgMEbjCQWxZt1DbcBrhVXZ8tT+nRzIIbCNuv5BKCWK6JSeehLqwzioD
DPlU4YpjLipyhQWcZm2OkrhK0uh7B4GRMIzH+AnJREgSTlve26sibLzAzRwk9Bfz
UZFyicmMa8C/jF0yK+X00e0wIQYp4wkkVyi4YhfdH/SB0hbNDO9KDcZETSa7nlLQ
8lLbLOkMOawDug==
-----END CERTIFICATE-----
Generated at Sun May 11 15:09:44 2025 by rpki-client