Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/28343c-a4e4-4db0-92be-b58617e1888b/1/Xt--3qwGsBxaP3hM6gRuWiyVyl4.mft
File: Xt--3qwGsBxaP3hM6gRuWiyVyl4.mft (raw, json)
Hash identifier: z8vH6MVJYIa73mMJHDoqYczz2zIWWpzJRMm1JBUYXyA=
Subject key identifier: AE:7B:CD:C7:90:80:9C:31:9E:88:5F:1F:DB:5C:8B:DB:70:08:4F:E1
Authority key identifier: 5E:DF:BE:DE:AC:06:B0:1C:5A:3F:78:4C:EA:04:6E:5A:2C:95:CA:5E
Certificate issuer: /CN=5edfbedeac06b01c5a3f784cea046e5a2c95ca5e
Certificate serial: 0196B82387BC1E35BA107651E42FCFCDA338
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xt--3qwGsBxaP3hM6gRuWiyVyl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/28343c-a4e4-4db0-92be-b58617e1888b/1/Xt--3qwGsBxaP3hM6gRuWiyVyl4.mft
Manifest number: 0890
Signing time: Sat 10 May 2025 03:00:58 +0000
Manifest this update: Sat 10 May 2025 03:00:58 +0000
Manifest next update: Sun 11 May 2025 03:00:58 +0000
Files and hashes: 1: Xt--3qwGsBxaP3hM6gRuWiyVyl4.crl (hash: qXCL71RAWLwsNqlbTAOTb4DK4BIq/GEHEiY7SayfYDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/28343c-a4e4-4db0-92be-b58617e1888b/1/Xt--3qwGsBxaP3hM6gRuWiyVyl4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/28343c-a4e4-4db0-92be-b58617e1888b/1/Xt--3qwGsBxaP3hM6gRuWiyVyl4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xt--3qwGsBxaP3hM6gRuWiyVyl4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:23:87:bc:1e:35:ba:10:76:51:e4:2f:cf:cd:a3:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5edfbedeac06b01c5a3f784cea046e5a2c95ca5e
Validity
Not Before: May 10 03:00:58 2025 GMT
Not After : May 11 03:00:58 2025 GMT
Subject: CN=ae7bcdc790809c319e885f1fdb5c8bdb70084fe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:28:1f:ad:97:60:4c:f3:a7:bf:d0:ec:54:a7:
9f:19:22:97:54:50:c5:46:63:3a:ef:4a:66:eb:21:
3f:9d:92:18:71:bd:31:6b:b7:80:f6:80:db:bc:de:
95:1b:7f:0b:87:2e:86:04:1b:fe:d1:a4:eb:1f:0b:
69:bb:8a:ea:07:18:a6:a6:21:f0:8f:c3:f1:7b:80:
fc:cc:e5:2e:8a:11:a9:50:04:e3:0d:dd:3a:d2:cb:
1e:d2:8d:fd:0e:97:b3:a9:c3:1e:e1:b5:6e:db:61:
5a:e3:38:20:ce:b2:ac:93:d4:98:8e:d0:49:26:8f:
14:f5:2a:16:4f:d5:46:87:6c:2d:b6:80:77:23:56:
f1:98:c1:32:3f:2f:0e:63:5a:f2:71:6b:17:c6:20:
d2:59:a8:43:fa:10:b8:70:05:c0:8a:69:24:3d:3a:
7b:f6:d0:27:7d:7a:1c:bd:51:bd:de:b3:0b:d4:31:
18:ea:51:fd:d3:1e:ec:c4:4e:59:b1:19:82:e6:bf:
b2:4c:8e:8f:3a:55:44:74:ef:d0:40:e9:b3:4a:31:
2a:51:8d:cf:5b:a9:cd:e9:7b:7e:54:f9:02:9c:82:
e3:88:c8:c9:37:71:63:dc:01:60:e6:80:e2:56:00:
75:39:5f:42:30:6b:a6:17:bf:a5:43:96:53:39:d3:
42:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:7B:CD:C7:90:80:9C:31:9E:88:5F:1F:DB:5C:8B:DB:70:08:4F:E1
X509v3 Authority Key Identifier:
keyid:5E:DF:BE:DE:AC:06:B0:1C:5A:3F:78:4C:EA:04:6E:5A:2C:95:CA:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xt--3qwGsBxaP3hM6gRuWiyVyl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/28343c-a4e4-4db0-92be-b58617e1888b/1/Xt--3qwGsBxaP3hM6gRuWiyVyl4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/28343c-a4e4-4db0-92be-b58617e1888b/1/Xt--3qwGsBxaP3hM6gRuWiyVyl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:fc:c1:c8:73:2c:dd:89:80:67:4c:ac:5b:66:eb:15:19:10:
d9:53:06:7a:a8:b7:74:52:d8:a1:15:77:cf:d0:ee:70:ed:27:
6c:71:c3:ef:56:ad:c2:44:e2:f7:d7:0d:69:8f:5e:9b:3e:5c:
eb:71:cd:b8:15:c2:16:f8:75:5d:17:6e:4b:cc:48:74:c0:d6:
ee:c6:d9:79:d1:cd:85:8c:db:62:fa:6f:81:3a:61:21:ca:67:
f9:51:4a:d4:f8:bc:1b:b6:5b:17:a3:e3:0e:41:1b:be:35:92:
75:07:c1:84:f6:4f:9a:7d:60:a0:62:2a:08:3b:4f:85:6d:39:
f7:af:ed:b7:87:4f:a2:6a:d8:8d:a8:f0:eb:1d:a2:4f:8f:29:
92:21:25:b1:d2:51:94:3c:db:05:f5:a1:8b:4f:38:52:fc:61:
76:19:88:aa:9e:53:75:e4:cb:e7:84:a0:ab:14:56:76:b0:e1:
3e:61:65:2d:d7:96:0e:e0:e9:84:a7:60:e9:f1:f5:02:60:1e:
69:1a:19:a8:63:39:7b:39:75:71:f1:c0:c6:53:a4:4e:b0:55:
0d:16:fe:ac:7e:bc:d9:06:40:10:c0:80:3c:d0:26:75:47:4c:
10:d3:78:a8:df:3d:99:e2:b9:5f:97:b2:84:9f:8d:ac:f9:b5:
e2:2e:fa:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa4I4e8HjW6EHZR5C/PzaM4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZGZiZWRlYWMwNmIwMWM1YTNmNzg0Y2VhMDQ2ZTVhMmM5
NWNhNWUwHhcNMjUwNTEwMDMwMDU4WhcNMjUwNTExMDMwMDU4WjAzMTEwLwYDVQQD
EyhhZTdiY2RjNzkwODA5YzMxOWU4ODVmMWZkYjVjOGJkYjcwMDg0ZmUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSgfrZdgTPOnv9DsVKefGSKXVFDF
RmM670pm6yE/nZIYcb0xa7eA9oDbvN6VG38Lhy6GBBv+0aTrHwtpu4rqBximpiHw
j8Pxe4D8zOUuihGpUATjDd060sse0o39DpezqcMe4bVu22Fa4zggzrKsk9SYjtBJ
Jo8U9SoWT9VGh2wttoB3I1bxmMEyPy8OY1rycWsXxiDSWahD+hC4cAXAimkkPTp7
9tAnfXocvVG93rML1DEY6lH90x7sxE5ZsRmC5r+yTI6POlVEdO/QQOmzSjEqUY3P
W6nN6Xt+VPkCnILjiMjJN3Fj3AFg5oDiVgB1OV9CMGumF7+lQ5ZTOdNC3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK57zceQgJwxnohfH9tci9twCE/hMB8GA1UdIwQY
MBaAFF7fvt6sBrAcWj94TOoEbloslcpeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHQtLTNxd0dzQnhhUDNoTTZnUnVXaXlWeWw0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yODM0M2MtYTRlNC00ZGIwLTkyYmUt
YjU4NjE3ZTE4ODhiLzEvWHQtLTNxd0dzQnhhUDNoTTZnUnVXaXlWeWw0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8yODM0M2MtYTRlNC00ZGIwLTkyYmUtYjU4NjE3ZTE4ODhi
LzEvWHQtLTNxd0dzQnhhUDNoTTZnUnVXaXlWeWw0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAfzByHMs
3YmAZ0ysW2brFRkQ2VMGeqi3dFLYoRV3z9DucO0nbHHD71atwkTi99cNaY9emz5c
63HNuBXCFvh1XRduS8xIdMDW7sbZedHNhYzbYvpvgTphIcpn+VFK1Pi8G7ZbF6Pj
DkEbvjWSdQfBhPZPmn1goGIqCDtPhW0596/tt4dPomrYjajw6x2iT48pkiElsdJR
lDzbBfWhi084UvxhdhmIqp5TdeTL54SgqxRWdrDhPmFlLdeWDuDphKdg6fH1AmAe
aRoZqGM5ezl1cfHAxlOkTrBVDRb+rH682QZAEMCAPNAmdUdMENN4qN89meK5X5ey
hJ+NrPm14i76HQ==
-----END CERTIFICATE-----
Generated at Sat May 10 05:35:46 2025 by rpki-client