Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
File: bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft (raw, json)
Hash identifier: xS+5kMPnH42QD7QPGv1M+owHLmcumEE3MZ+VQpdoV0s=
Subject key identifier: F7:5D:BD:7E:32:CE:05:19:52:FF:B7:13:0C:60:20:24:98:B4:E7:F4
Authority key identifier: 6D:DA:05:6C:3B:54:E5:00:CA:19:C8:F5:C4:77:0A:C3:F4:50:E4:BD
Certificate issuer: /CN=6dda056c3b54e500ca19c8f5c4770ac3f450e4bd
Certificate serial: 0196C1CB876035C49FABE1639C26DCEE4E09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
Manifest number: 1532
Signing time: Mon 12 May 2025 00:01:03 +0000
Manifest this update: Mon 12 May 2025 00:01:03 +0000
Manifest next update: Tue 13 May 2025 00:01:03 +0000
Files and hashes: 1: bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl (hash: 2TK3ZdlI7QAeFJEfbJrSWVYcXpa5saoww+G/LWw1ToA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 00:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:cb:87:60:35:c4:9f:ab:e1:63:9c:26:dc:ee:4e:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dda056c3b54e500ca19c8f5c4770ac3f450e4bd
Validity
Not Before: May 12 00:01:03 2025 GMT
Not After : May 13 00:01:03 2025 GMT
Subject: CN=f75dbd7e32ce051952ffb7130c60202498b4e7f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:97:3d:b5:0d:f7:42:4c:b1:c8:77:4b:84:e7:
fa:f5:98:6c:25:17:90:cd:e4:68:f4:1f:0a:36:79:
45:7d:91:f9:8d:54:1f:74:9a:5a:c7:7a:35:92:86:
4c:be:9a:9e:39:43:a9:a0:b8:1b:3f:b9:b5:e1:ba:
cd:3c:cc:b5:b8:b0:18:0e:b2:ea:43:ea:36:36:c8:
88:29:c1:b5:21:7c:75:02:33:43:7c:02:e8:68:ed:
8d:91:99:ac:78:54:aa:47:9a:34:50:48:83:df:dd:
84:0a:79:0c:43:ef:b2:e5:5d:99:80:3c:e2:2c:86:
52:76:43:df:92:1a:4f:c4:2b:3c:de:31:37:4c:58:
82:ba:48:0f:0a:ad:51:a9:db:ba:32:a6:70:fb:e3:
9c:21:96:fb:db:5a:c6:d6:c2:ec:2d:7c:29:95:b5:
6e:df:8a:0a:ea:0a:d9:bb:55:e0:58:53:e5:09:66:
3e:38:46:bb:41:61:5a:bc:66:00:b3:e9:73:71:53:
61:f3:e8:d0:d5:1f:96:cd:83:21:1b:b1:02:7b:b9:
ef:af:c4:ed:ea:6d:b8:2a:47:21:19:5e:6f:84:21:
b0:ae:d0:09:ce:5a:f2:74:0d:79:1f:3e:49:05:2d:
2c:db:76:f6:af:fe:92:a2:0a:9a:39:e2:6f:80:77:
03:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:5D:BD:7E:32:CE:05:19:52:FF:B7:13:0C:60:20:24:98:B4:E7:F4
X509v3 Authority Key Identifier:
keyid:6D:DA:05:6C:3B:54:E5:00:CA:19:C8:F5:C4:77:0A:C3:F4:50:E4:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:1c:24:ef:8a:84:ee:45:20:e2:d1:25:ea:97:3f:06:50:47:
2a:45:ad:a5:c0:fd:f7:49:d7:0b:12:c4:53:c4:96:d1:0c:79:
61:d7:37:f9:a7:db:5c:87:80:7c:c6:03:73:32:46:f0:e7:15:
34:d8:33:6d:de:9a:91:c1:f9:af:e9:f4:9d:8a:4f:be:2c:cf:
10:3d:42:97:f4:f9:f9:70:6c:20:73:88:85:d2:b5:23:22:dd:
6b:12:f0:21:b8:5a:12:2f:d8:ad:3a:3d:c4:d2:63:07:e9:3f:
9e:cf:e6:44:1f:af:17:d8:76:65:af:56:6c:3f:a5:d5:01:46:
9f:53:63:98:3d:2a:64:48:6b:c7:61:75:4f:24:9f:de:de:e9:
1b:f6:2d:05:df:14:bd:cf:f0:09:65:2e:95:c5:b4:d2:ef:dd:
ca:c3:29:6f:5d:37:cf:b1:c6:7e:65:1a:3b:af:fd:85:0f:0b:
7e:3a:f5:e2:84:c5:d9:f8:e7:e2:d5:9d:d9:77:74:8e:6e:c3:
bc:e7:5d:50:6b:94:0c:a7:96:fb:55:ff:21:0c:eb:68:06:48:
cb:b9:9d:0b:30:5d:59:5e:52:41:c0:eb:b8:22:90:7d:1e:3b:
18:32:76:e5:ec:c2:b5:db:73:7d:66:a4:63:b4:d1:41:76:56:
de:19:3a:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbBy4dgNcSfq+FjnCbc7k4JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZGEwNTZjM2I1NGU1MDBjYTE5YzhmNWM0NzcwYWMzZjQ1
MGU0YmQwHhcNMjUwNTEyMDAwMTAzWhcNMjUwNTEzMDAwMTAzWjAzMTEwLwYDVQQD
EyhmNzVkYmQ3ZTMyY2UwNTE5NTJmZmI3MTMwYzYwMjAyNDk4YjRlN2Y0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Jc9tQ33QkyxyHdLhOf69ZhsJReQ
zeRo9B8KNnlFfZH5jVQfdJpax3o1koZMvpqeOUOpoLgbP7m14brNPMy1uLAYDrLq
Q+o2NsiIKcG1IXx1AjNDfALoaO2NkZmseFSqR5o0UEiD392ECnkMQ++y5V2ZgDzi
LIZSdkPfkhpPxCs83jE3TFiCukgPCq1Rqdu6MqZw++OcIZb721rG1sLsLXwplbVu
34oK6grZu1XgWFPlCWY+OEa7QWFavGYAs+lzcVNh8+jQ1R+WzYMhG7ECe7nvr8Tt
6m24KkchGV5vhCGwrtAJzlrydA15Hz5JBS0s23b2r/6SogqaOeJvgHcDwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPddvX4yzgUZUv+3EwxgICSYtOf0MB8GA1UdIwQY
MBaAFG3aBWw7VOUAyhnI9cR3CsP0UOS9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRvRmJEdFU1UURLR2NqMXhIY0t3X1JRNUwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9kYjhlZDUtMzdkYi00MTdlLTkxNTct
YTNjM2Y5YWE4NjA4LzEvYmRvRmJEdFU1UURLR2NqMXhIY0t3X1JRNUwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9kYjhlZDUtMzdkYi00MTdlLTkxNTctYTNjM2Y5YWE4NjA4
LzEvYmRvRmJEdFU1UURLR2NqMXhIY0t3X1JRNUwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeRwk74qE
7kUg4tEl6pc/BlBHKkWtpcD990nXCxLEU8SW0Qx5Ydc3+afbXIeAfMYDczJG8OcV
NNgzbd6akcH5r+n0nYpPvizPED1Cl/T5+XBsIHOIhdK1IyLdaxLwIbhaEi/YrTo9
xNJjB+k/ns/mRB+vF9h2Za9WbD+l1QFGn1NjmD0qZEhrx2F1TySf3t7pG/YtBd8U
vc/wCWUulcW00u/dysMpb103z7HGfmUaO6/9hQ8Lfjr14oTF2fjn4tWd2Xd0jm7D
vOddUGuUDKeW+1X/IQzraAZIy7mdCzBdWV5SQcDruCKQfR47GDJ25ezCtdtzfWak
Y7TRQXZW3hk6Vg==
-----END CERTIFICATE-----
Generated at Mon May 12 10:40:10 2025 by rpki-client