Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.mft
File: v5ulghwIWljj4dM6TvQem3YQXuU.mft (raw, json)
Hash identifier: 5Zj2lvIbyUvqGus+Oieq+aYcntt8Wj5//BAe2QjF2fo=
Subject key identifier: 37:8E:6B:65:A8:8E:11:E0:99:15:8E:F3:41:FA:CC:50:F1:90:C7:5C
Authority key identifier: BF:9B:A5:82:1C:08:5A:58:E3:E1:D3:3A:4E:F4:1E:9B:76:10:5E:E5
Certificate issuer: /CN=bf9ba5821c085a58e3e1d33a4ef41e9b76105ee5
Certificate serial: 0196C539F268A80C67296B309513FFEDC7F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5ulghwIWljj4dM6TvQem3YQXuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.mft
Manifest number: 10FC
Signing time: Mon 12 May 2025 16:00:31 +0000
Manifest this update: Mon 12 May 2025 16:00:31 +0000
Manifest next update: Tue 13 May 2025 16:00:31 +0000
Files and hashes: 1: v5ulghwIWljj4dM6TvQem3YQXuU.crl (hash: x9QPy162W+36RBybdt+y8kn/n8b7o8/cae/GvPV9Jrw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.mft
rsync://rpki.ripe.net/repository/DEFAULT/v5ulghwIWljj4dM6TvQem3YQXuU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:39:f2:68:a8:0c:67:29:6b:30:95:13:ff:ed:c7:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf9ba5821c085a58e3e1d33a4ef41e9b76105ee5
Validity
Not Before: May 12 16:00:31 2025 GMT
Not After : May 13 16:00:31 2025 GMT
Subject: CN=378e6b65a88e11e099158ef341facc50f190c75c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:db:0a:82:84:32:fa:0b:78:e8:c0:7b:05:84:
cf:0b:98:29:05:26:bb:ae:21:79:bd:02:dd:ec:ad:
14:ff:28:9a:0b:ee:b5:5d:84:08:87:59:50:f1:d6:
68:ff:11:e0:d1:0c:b0:d8:18:87:6f:36:0a:0e:f2:
63:a0:81:8d:d4:6f:79:95:f8:4d:2b:d3:70:bc:fe:
58:8b:b3:50:b7:f0:9b:10:4f:d7:1c:54:b3:1d:af:
a4:28:09:0e:c4:ff:fb:40:1c:b7:79:7f:8a:a7:c3:
0e:00:58:00:13:fb:bb:75:6b:dd:16:2a:cb:44:61:
00:5d:07:39:6b:d8:3e:07:5f:56:10:ec:42:44:82:
53:ee:05:00:b3:6c:d6:7b:2e:fc:03:9d:18:36:ee:
5e:d0:35:75:28:51:50:2d:dd:9c:85:b7:1d:08:55:
fa:52:20:c0:f8:13:2b:2f:39:04:5e:89:d3:cd:5e:
eb:c0:7b:ed:b7:73:0c:b1:24:3f:0c:c1:ed:af:52:
ee:e2:9e:58:bd:53:86:d2:41:61:dd:cd:49:32:2f:
39:2c:b9:9a:8b:e2:0a:dd:f3:80:a8:83:d6:16:cc:
7d:4f:4e:65:1a:9f:55:42:3d:0b:25:c3:33:7a:79:
57:b1:82:87:20:0e:2a:a6:ac:9c:39:70:4b:53:59:
b6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:8E:6B:65:A8:8E:11:E0:99:15:8E:F3:41:FA:CC:50:F1:90:C7:5C
X509v3 Authority Key Identifier:
keyid:BF:9B:A5:82:1C:08:5A:58:E3:E1:D3:3A:4E:F4:1E:9B:76:10:5E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5ulghwIWljj4dM6TvQem3YQXuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:ec:35:b8:0e:91:d2:fd:0a:e2:47:1c:03:85:73:e7:ee:2c:
80:75:d0:52:50:5f:c0:d4:17:d3:c8:99:7d:04:d2:70:cd:05:
fc:52:1b:2d:79:fe:9d:12:0c:c4:1f:9b:71:6f:2c:c2:82:6b:
75:cc:c9:57:2c:1d:77:89:20:f6:f3:f0:b6:35:16:93:72:a4:
5d:61:a8:b5:ae:23:df:3f:cf:a1:60:84:94:3a:95:46:cf:e4:
99:e5:12:c1:69:f4:b6:0e:c0:17:d4:19:bf:b8:a4:63:2f:88:
09:17:af:ef:57:1b:62:90:4c:2d:69:dd:1e:81:6e:a4:1f:d8:
60:2a:39:b3:bd:3d:12:b1:40:60:50:7f:c7:5c:e7:d5:c8:94:
01:ab:31:e6:ab:34:59:7c:23:fb:b5:ec:6e:1d:c3:d6:d2:19:
89:0e:2a:3d:53:88:0c:25:6c:5d:34:6f:e8:19:09:1c:71:6d:
cb:c7:57:91:3b:27:f3:e1:ec:91:3a:27:98:4a:65:77:c9:bd:
11:2a:60:04:2e:16:5d:69:45:bb:40:b3:55:4d:c8:c0:85:1d:
28:56:d6:fd:08:d8:6a:31:5b:2a:93:a7:bf:8d:5a:66:c8:e2:
05:38:b7:e5:a5:a5:2f:77:b4:2a:12:e6:1c:ef:52:06:ef:85:
13:27:84:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbFOfJoqAxnKWswlRP/7cfwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmOWJhNTgyMWMwODVhNThlM2UxZDMzYTRlZjQxZTliNzYx
MDVlZTUwHhcNMjUwNTEyMTYwMDMxWhcNMjUwNTEzMTYwMDMxWjAzMTEwLwYDVQQD
EygzNzhlNmI2NWE4OGUxMWUwOTkxNThlZjM0MWZhY2M1MGYxOTBjNzVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNsKgoQy+gt46MB7BYTPC5gpBSa7
riF5vQLd7K0U/yiaC+61XYQIh1lQ8dZo/xHg0Qyw2BiHbzYKDvJjoIGN1G95lfhN
K9NwvP5Yi7NQt/CbEE/XHFSzHa+kKAkOxP/7QBy3eX+Kp8MOAFgAE/u7dWvdFirL
RGEAXQc5a9g+B19WEOxCRIJT7gUAs2zWey78A50YNu5e0DV1KFFQLd2chbcdCFX6
UiDA+BMrLzkEXonTzV7rwHvtt3MMsSQ/DMHtr1Lu4p5YvVOG0kFh3c1JMi85LLma
i+IK3fOAqIPWFsx9T05lGp9VQj0LJcMzenlXsYKHIA4qpqycOXBLU1m2SwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDeOa2WojhHgmRWO80H6zFDxkMdcMB8GA1UdIwQY
MBaAFL+bpYIcCFpY4+HTOk70Hpt2EF7lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjV1bGdod0lXbGpqNGRNNlR2UWVtM1lRWHVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9mYmM4YjUtYzVmNS00MGI4LThhNzQt
YmZhZmIyOTM3MWNmLzEvdjV1bGdod0lXbGpqNGRNNlR2UWVtM1lRWHVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9mYmM4YjUtYzVmNS00MGI4LThhNzQtYmZhZmIyOTM3MWNm
LzEvdjV1bGdod0lXbGpqNGRNNlR2UWVtM1lRWHVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhOw1uA6R
0v0K4kccA4Vz5+4sgHXQUlBfwNQX08iZfQTScM0F/FIbLXn+nRIMxB+bcW8swoJr
dczJVywdd4kg9vPwtjUWk3KkXWGota4j3z/PoWCElDqVRs/kmeUSwWn0tg7AF9QZ
v7ikYy+ICRev71cbYpBMLWndHoFupB/YYCo5s709ErFAYFB/x1zn1ciUAasx5qs0
WXwj+7Xsbh3D1tIZiQ4qPVOIDCVsXTRv6BkJHHFty8dXkTsn8+HskTonmEpld8m9
ESpgBC4WXWlFu0CzVU3IwIUdKFbW/QjYajFbKpOnv41aZsjiBTi35aWlL3e0KhLm
HO9SBu+FEyeEfQ==
-----END CERTIFICATE-----
Generated at Mon May 12 23:36:49 2025 by rpki-client