Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
File: lowsVdyOuZe_WRIdTC_9VESiLi0.mft (raw, json)
Hash identifier: 8aKnFVxQY1PwpeLoBxVeE2cW+OTsumNHvjc1YZAmJzY=
Subject key identifier: 24:60:D1:E8:91:BE:07:BC:D4:03:FA:32:91:B9:5A:0A:24:8A:3C:62
Authority key identifier: 96:8C:2C:55:DC:8E:B9:97:BF:59:12:1D:4C:2F:FD:54:44:A2:2E:2D
Certificate issuer: /CN=968c2c55dc8eb997bf59121d4c2ffd5444a22e2d
Certificate serial: 0196A2E5272CC6C39E7BCBB6BB7B53CD9CFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
Manifest number: 1523
Signing time: Tue 06 May 2025 00:00:48 +0000
Manifest this update: Tue 06 May 2025 00:00:48 +0000
Manifest next update: Wed 07 May 2025 00:00:48 +0000
Files and hashes: 1: lowsVdyOuZe_WRIdTC_9VESiLi0.crl (hash: cA2W9PX4UhzV1Ig3N4E4UNn5otguROAU6p6bOW70rOg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 00:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:e5:27:2c:c6:c3:9e:7b:cb:b6:bb:7b:53:cd:9c:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=968c2c55dc8eb997bf59121d4c2ffd5444a22e2d
Validity
Not Before: May 6 00:00:48 2025 GMT
Not After : May 7 00:00:48 2025 GMT
Subject: CN=2460d1e891be07bcd403fa3291b95a0a248a3c62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9d:09:26:39:16:ad:de:1a:c8:cb:72:f2:da:
31:d4:9d:a1:35:dc:9d:9e:a4:09:dd:99:a7:b2:b6:
91:37:2f:7e:91:a5:a9:47:e8:e4:eb:00:e5:57:6e:
25:10:97:70:0d:62:5f:9a:7d:52:3b:0a:d9:a3:cb:
a0:8a:1d:83:74:05:a7:3e:ea:de:39:e2:0f:85:e7:
99:58:4e:c6:c2:e6:a2:3e:81:27:5d:d5:d3:03:dc:
d5:52:2e:a3:fd:4f:3c:6a:65:ec:bf:e8:e0:6c:23:
b5:5d:9a:58:6e:c4:f0:23:7f:ec:9b:c3:ee:c1:97:
38:18:f2:db:31:fc:cd:08:27:f1:c0:3c:64:95:37:
4d:9c:d4:7c:27:92:11:77:79:c4:35:30:0d:e0:9b:
e2:0c:c9:a4:b7:d9:3b:f3:56:c8:8a:b8:9c:bd:f4:
d2:84:91:93:8e:b8:19:47:0f:dd:5f:62:26:ed:46:
10:88:0e:e5:f8:a3:ab:ca:fb:99:4c:ee:e6:cc:6b:
82:01:af:25:a2:02:ff:97:41:3f:a2:ee:10:20:79:
1e:d6:94:e0:13:1a:ff:04:f7:67:c3:2f:17:78:01:
c0:3a:b1:56:9a:93:9d:06:0f:8e:30:e5:b4:99:a5:
a9:30:32:bb:f2:a3:e6:3c:3f:e5:be:6f:b6:f3:b9:
fe:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:60:D1:E8:91:BE:07:BC:D4:03:FA:32:91:B9:5A:0A:24:8A:3C:62
X509v3 Authority Key Identifier:
keyid:96:8C:2C:55:DC:8E:B9:97:BF:59:12:1D:4C:2F:FD:54:44:A2:2E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:67:2d:2b:b3:e6:a6:ba:77:a0:c2:c4:90:de:38:05:a8:5f:
c2:bc:bc:65:7f:33:01:a2:da:97:cf:41:32:70:87:19:f5:03:
c5:9a:ec:b9:60:1f:19:11:18:b4:11:d8:56:a3:61:4f:98:d3:
c5:3b:fc:75:42:f4:a6:fe:69:53:20:9b:40:8b:66:0b:b2:cc:
47:e7:2d:c0:7f:3d:53:48:b0:c4:0a:20:ce:9b:85:bc:f9:0a:
4f:c0:44:90:94:0c:dc:78:07:93:e5:bb:50:37:d2:33:71:61:
a7:52:9b:3f:3c:66:b9:7a:16:48:c6:77:cd:95:e9:7c:41:91:
1c:01:b9:46:77:b1:91:41:9b:36:44:b0:6e:27:34:02:9e:a8:
44:d4:f0:7e:10:02:09:b4:86:0e:3e:de:82:e7:43:de:f3:f6:
65:b7:5f:03:fe:fb:d8:66:7b:9d:d9:64:37:67:8a:29:80:07:
cb:5d:a9:ed:a4:95:a1:23:a2:22:a3:7f:2f:cc:ba:90:8a:61:
3f:72:9d:28:17:86:d6:c5:d4:62:fc:8e:8a:02:1b:db:ba:fd:
38:82:ed:4b:3b:22:e7:42:05:e3:7a:3a:d3:77:ed:97:7a:ca:
cc:6b:46:9a:0b:ff:e1:bc:71:a1:ea:be:48:c8:53:b9:6d:f1:
b5:ce:81:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZai5ScsxsOee8u2u3tTzZz+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2OGMyYzU1ZGM4ZWI5OTdiZjU5MTIxZDRjMmZmZDU0NDRh
MjJlMmQwHhcNMjUwNTA2MDAwMDQ4WhcNMjUwNTA3MDAwMDQ4WjAzMTEwLwYDVQQD
EygyNDYwZDFlODkxYmUwN2JjZDQwM2ZhMzI5MWI5NWEwYTI0OGEzYzYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwp0JJjkWrd4ayMty8tox1J2hNdyd
nqQJ3ZmnsraRNy9+kaWpR+jk6wDlV24lEJdwDWJfmn1SOwrZo8ugih2DdAWnPure
OeIPheeZWE7GwuaiPoEnXdXTA9zVUi6j/U88amXsv+jgbCO1XZpYbsTwI3/sm8Pu
wZc4GPLbMfzNCCfxwDxklTdNnNR8J5IRd3nENTAN4JviDMmkt9k781bIiricvfTS
hJGTjrgZRw/dX2Im7UYQiA7l+KOryvuZTO7mzGuCAa8logL/l0E/ou4QIHke1pTg
Exr/BPdnwy8XeAHAOrFWmpOdBg+OMOW0maWpMDK78qPmPD/lvm+287n+5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCRg0eiRvge81AP6MpG5WgokijxiMB8GA1UdIwQY
MBaAFJaMLFXcjrmXv1kSHUwv/VREoi4tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbG93c1ZkeU91WmVfV1JJZFRDXzlWRVNpTGkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9lNDc0MWItZjViNS00MThmLThlOTYt
MTU0ZTU5OWZkMzVmLzEvbG93c1ZkeU91WmVfV1JJZFRDXzlWRVNpTGkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC9lNDc0MWItZjViNS00MThmLThlOTYtMTU0ZTU5OWZkMzVm
LzEvbG93c1ZkeU91WmVfV1JJZFRDXzlWRVNpTGkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOmctK7Pm
prp3oMLEkN44Bahfwry8ZX8zAaLal89BMnCHGfUDxZrsuWAfGREYtBHYVqNhT5jT
xTv8dUL0pv5pUyCbQItmC7LMR+ctwH89U0iwxAogzpuFvPkKT8BEkJQM3HgHk+W7
UDfSM3Fhp1KbPzxmuXoWSMZ3zZXpfEGRHAG5RnexkUGbNkSwbic0Ap6oRNTwfhAC
CbSGDj7egudD3vP2ZbdfA/772GZ7ndlkN2eKKYAHy12p7aSVoSOiIqN/L8y6kIph
P3KdKBeG1sXUYvyOigIb27r9OILtSzsi50IF43o603ftl3rKzGtGmgv/4bxxoeq+
SMhTuW3xtc6Bpg==
-----END CERTIFICATE-----
Generated at Tue May 6 10:07:39 2025 by rpki-client