Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
File: chprP17V-3TQNRIhZRPEyB7-Hlw.mft (raw, json)
Hash identifier: /ecmlPI0KRH0dUfS5YcnL7eU6HOwDPMJHR2YXOrG9fw=
Subject key identifier: 37:6D:B5:80:62:9A:9B:77:1C:6C:B5:60:81:51:E5:FA:72:4D:5F:AC
Authority key identifier: 72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C
Certificate issuer: /CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c
Certificate serial: 0196B36A6A46214B155FE79478C32630BA07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
Manifest number: 0C12
Signing time: Fri 09 May 2025 05:00:17 +0000
Manifest this update: Fri 09 May 2025 05:00:17 +0000
Manifest next update: Sat 10 May 2025 05:00:17 +0000
Files and hashes: 1: chprP17V-3TQNRIhZRPEyB7-Hlw.crl (hash: 8GeGYvKV9tLFJYkduzApxn1Z+GUaZL6DD4PIvVkSMF8=)
2: kXwe6i_ywP7BuQfaKeMIx8MSFQ8.roa (hash: /QfuO16P3y+Nn1KiVZoDEz0J7D7ghuw9uLlF/vWhXd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b3:6a:6a:46:21:4b:15:5f:e7:94:78:c3:26:30:ba:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c
Validity
Not Before: May 9 05:00:17 2025 GMT
Not After : May 10 05:00:17 2025 GMT
Subject: CN=376db580629a9b771c6cb5608151e5fa724d5fac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ca:63:de:31:09:1f:2d:46:ee:e0:14:03:61:
26:1f:89:80:bc:95:cc:f2:19:bf:d9:34:17:53:e0:
0f:a8:39:1a:0d:23:2b:99:94:df:67:e9:1f:66:94:
ad:ab:f7:7d:b6:9d:d5:19:99:e6:00:2b:6c:30:f3:
47:0e:66:85:eb:ef:d6:ee:d4:0b:37:e9:77:2f:bc:
20:3d:bb:d1:1b:50:7c:69:34:59:f2:d3:03:d5:04:
f0:a0:ca:ff:8c:85:ec:92:31:25:7a:dd:f5:4e:6f:
1a:d2:21:77:2f:60:9c:51:6e:c0:a4:e9:4a:30:64:
24:3a:86:ff:3b:3a:09:8c:96:b6:a8:f6:24:6d:39:
fd:7d:59:1e:78:a8:8a:44:3c:52:51:68:01:1e:7d:
65:0c:71:8a:8b:10:64:33:bd:e3:d2:fd:f5:68:ac:
cc:8b:20:43:c3:1d:e5:b8:d0:b4:e3:27:59:d9:28:
e3:ea:a6:41:50:55:54:1d:67:9c:d9:36:95:6d:88:
46:8a:8e:7b:1c:75:bb:b1:17:99:06:2f:a0:5e:e4:
3f:33:3c:de:b4:a8:3d:7d:20:e0:d0:de:91:fe:4a:
5c:c7:d7:82:22:bf:5f:66:26:2a:20:99:8d:c8:dd:
0e:7b:81:11:d3:e5:d4:5d:2b:c9:60:b3:8e:08:8a:
0c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:6D:B5:80:62:9A:9B:77:1C:6C:B5:60:81:51:E5:FA:72:4D:5F:AC
X509v3 Authority Key Identifier:
keyid:72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:0f:e3:70:bd:d1:1a:91:ef:da:a7:6d:46:3e:92:8c:28:92:
28:05:8c:b1:13:50:25:43:e9:1f:46:5c:1d:d2:ff:18:fa:cb:
92:09:fa:51:47:26:fc:98:b2:02:72:22:0b:38:d2:e1:2d:1d:
07:b5:35:71:26:78:50:29:2c:d8:0e:20:58:16:94:65:0d:bd:
96:29:b2:00:f3:85:cd:ea:20:5a:21:86:d9:12:3d:d8:35:46:
41:fa:d6:eb:d1:77:c9:75:48:f7:8e:ba:fd:dc:15:99:4b:27:
24:71:59:2c:d5:94:25:ef:4c:6a:eb:4a:f0:cf:2b:cf:c3:f4:
6c:0b:25:c0:68:ef:80:dc:21:e6:e1:a0:f6:98:97:fa:13:11:
fa:29:0b:0e:bf:46:06:ac:1d:45:bf:1d:6d:d3:b0:24:fd:f8:
e8:97:a6:50:5c:05:01:d5:64:35:a7:b4:85:e9:56:a4:5a:63:
45:59:cb:4d:7e:a9:46:12:65:69:01:9f:15:f5:f0:90:86:ac:
4b:d1:5a:18:68:b8:2a:2c:bc:74:1e:de:50:75:bc:44:d5:a1:
a6:a4:d3:a4:12:65:b1:2b:e3:1b:18:a9:6b:5c:b4:86:35:f8:
e7:25:76:89:06:20:b7:5b:2b:d1:6f:fc:a0:f1:b6:41:a5:88:
bd:d5:af:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZazampGIUsVX+eUeMMmMLoHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMWE2YjNmNWVkNWZiNzRkMDM1MTIyMTY1MTNjNGM4MWVm
ZTFlNWMwHhcNMjUwNTA5MDUwMDE3WhcNMjUwNTEwMDUwMDE3WjAzMTEwLwYDVQQD
EygzNzZkYjU4MDYyOWE5Yjc3MWM2Y2I1NjA4MTUxZTVmYTcyNGQ1ZmFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8pj3jEJHy1G7uAUA2EmH4mAvJXM
8hm/2TQXU+APqDkaDSMrmZTfZ+kfZpStq/d9tp3VGZnmACtsMPNHDmaF6+/W7tQL
N+l3L7wgPbvRG1B8aTRZ8tMD1QTwoMr/jIXskjElet31Tm8a0iF3L2CcUW7ApOlK
MGQkOob/OzoJjJa2qPYkbTn9fVkeeKiKRDxSUWgBHn1lDHGKixBkM73j0v31aKzM
iyBDwx3luNC04ydZ2Sjj6qZBUFVUHWec2TaVbYhGio57HHW7sReZBi+gXuQ/Mzze
tKg9fSDg0N6R/kpcx9eCIr9fZiYqIJmNyN0Oe4ER0+XUXSvJYLOOCIoM5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDdttYBimpt3HGy1YIFR5fpyTV+sMB8GA1UdIwQY
MBaAFHIaaz9e1ft00DUSIWUTxMge/h5cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2hwclAxN1YtM1RRTlJJaFpSUEV5QjctSGx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9hZjMxMGMtMmJkOC00ZWZkLTg4ZTQt
ODBjMzFkYjIwYWM1LzEvY2hwclAxN1YtM1RRTlJJaFpSUEV5QjctSGx3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC9hZjMxMGMtMmJkOC00ZWZkLTg4ZTQtODBjMzFkYjIwYWM1
LzEvY2hwclAxN1YtM1RRTlJJaFpSUEV5QjctSGx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhA/jcL3R
GpHv2qdtRj6SjCiSKAWMsRNQJUPpH0ZcHdL/GPrLkgn6UUcm/JiyAnIiCzjS4S0d
B7U1cSZ4UCks2A4gWBaUZQ29limyAPOFzeogWiGG2RI92DVGQfrW69F3yXVI9466
/dwVmUsnJHFZLNWUJe9MautK8M8rz8P0bAslwGjvgNwh5uGg9piX+hMR+ikLDr9G
BqwdRb8dbdOwJP346JemUFwFAdVkNae0helWpFpjRVnLTX6pRhJlaQGfFfXwkIas
S9FaGGi4Kiy8dB7eUHW8RNWhpqTTpBJlsSvjGxipa1y0hjX45yV2iQYgt1sr0W/8
oPG2QaWIvdWv8A==
-----END CERTIFICATE-----
Generated at Fri May 9 08:26:13 2025 by rpki-client