Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
File: h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft (raw, json)
Hash identifier: tAuwmq2xzNwvV0eRcnGdzuhp/UstuQ6tNI84eGIjwcA=
Subject key identifier: 5E:01:66:C6:2E:E6:FA:CD:1E:09:0D:9D:41:88:79:98:04:9A:45:E7
Authority key identifier: 87:C0:A7:B4:3D:42:92:49:17:A5:90:59:8B:44:32:5E:4C:C9:2E:E4
Certificate issuer: /CN=87c0a7b43d42924917a590598b44325e4cc92ee4
Certificate serial: 0196C23907F85ECAFE2ECEF8101DB92C749F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
Manifest number: 090A
Signing time: Mon 12 May 2025 02:00:39 +0000
Manifest this update: Mon 12 May 2025 02:00:39 +0000
Manifest next update: Tue 13 May 2025 02:00:39 +0000
Files and hashes: 1: h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl (hash: 6H0exFZQ3YTCFpDLYnGoGY4D/j2YC3DE10jQmALPz1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 02:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:39:07:f8:5e:ca:fe:2e:ce:f8:10:1d:b9:2c:74:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87c0a7b43d42924917a590598b44325e4cc92ee4
Validity
Not Before: May 12 02:00:39 2025 GMT
Not After : May 13 02:00:39 2025 GMT
Subject: CN=5e0166c62ee6facd1e090d9d41887998049a45e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2a:d5:34:39:df:92:32:17:6a:38:9a:43:e8:
15:86:f4:07:0a:53:d9:61:21:50:0b:60:ed:6d:42:
c0:ee:cc:8b:23:72:b8:06:0a:e0:67:19:b9:f3:93:
30:10:e3:62:f8:3a:93:87:4e:7d:d5:6c:45:fe:cd:
7a:44:95:3f:51:92:a4:00:78:90:eb:e1:7c:af:17:
d5:12:59:b2:91:a4:c8:e0:21:16:67:16:cd:77:eb:
75:a3:86:bb:b4:86:32:dc:6b:38:47:9a:79:57:f8:
64:41:6f:88:86:92:e5:a3:6a:fe:f5:ee:13:b5:b2:
ab:65:45:3e:a4:17:f7:91:28:6c:84:f4:6e:f9:2a:
5c:10:ec:a8:31:04:4c:0a:30:7b:3f:c8:ce:4d:7d:
50:f8:f4:7f:a2:ea:09:62:c4:67:8b:9c:12:76:a6:
f8:eb:57:44:63:99:88:e7:12:3c:62:9f:f8:3b:83:
e0:67:74:3e:aa:f0:8f:07:26:78:6d:83:e7:ad:5b:
4f:f3:ad:4a:56:f9:78:68:17:d9:32:7c:36:c0:09:
6e:17:3e:89:1f:ce:ec:0b:1f:00:59:b0:a8:6b:d0:
f6:e3:cc:c5:c4:15:c5:78:33:e9:12:cc:f2:f1:30:
e3:cf:70:99:e0:db:b0:89:f4:03:44:84:ea:63:8e:
8f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:01:66:C6:2E:E6:FA:CD:1E:09:0D:9D:41:88:79:98:04:9A:45:E7
X509v3 Authority Key Identifier:
keyid:87:C0:A7:B4:3D:42:92:49:17:A5:90:59:8B:44:32:5E:4C:C9:2E:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:cc:3d:7f:0c:83:2f:34:14:4e:98:4f:13:ba:b6:66:b6:68:
c4:e9:61:c7:6c:54:72:d8:79:fc:b6:0e:0a:74:ea:f9:46:07:
46:14:72:75:72:fc:b3:be:7a:c2:7d:31:e5:7f:c6:ab:cc:c0:
b4:07:12:f3:e6:91:bd:48:20:6c:a0:5d:c2:a6:46:48:ff:d2:
c4:84:92:5f:48:28:ae:39:b8:dd:e5:55:3a:33:a4:8e:98:a4:
5c:40:d1:bf:19:a5:02:03:a8:6d:66:ae:d7:fb:c6:74:e0:6e:
53:51:9f:2d:96:dd:20:c2:87:ca:a8:0b:71:fb:d8:45:6b:c3:
0a:6f:9f:e4:5c:1f:e8:20:77:ce:9f:09:90:10:74:90:7e:0b:
35:67:17:80:a3:8e:95:22:53:7a:83:29:d0:fc:04:5f:f2:e4:
0a:74:37:21:82:08:b8:5a:56:29:09:5d:75:d1:36:01:83:3f:
92:3e:04:0d:68:9b:a8:ae:e7:c0:a9:34:87:61:2d:e5:ea:e3:
ff:f7:86:8f:80:9a:2a:0d:c5:ed:b5:5f:8e:b4:a0:54:8e:0c:
f1:4b:fa:b6:8c:bd:b4:81:eb:b6:be:68:2f:bc:00:87:27:43:
fb:21:07:a6:5e:35:03:3b:98:93:83:cd:7d:57:9b:60:4b:1c:
0f:62:81:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbCOQf4Xsr+Ls74EB25LHSfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3YzBhN2I0M2Q0MjkyNDkxN2E1OTA1OThiNDQzMjVlNGNj
OTJlZTQwHhcNMjUwNTEyMDIwMDM5WhcNMjUwNTEzMDIwMDM5WjAzMTEwLwYDVQQD
Eyg1ZTAxNjZjNjJlZTZmYWNkMWUwOTBkOWQ0MTg4Nzk5ODA0OWE0NWU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzirVNDnfkjIXajiaQ+gVhvQHClPZ
YSFQC2DtbULA7syLI3K4BgrgZxm585MwEONi+DqTh0591WxF/s16RJU/UZKkAHiQ
6+F8rxfVElmykaTI4CEWZxbNd+t1o4a7tIYy3Gs4R5p5V/hkQW+IhpLlo2r+9e4T
tbKrZUU+pBf3kShshPRu+SpcEOyoMQRMCjB7P8jOTX1Q+PR/ouoJYsRni5wSdqb4
61dEY5mI5xI8Yp/4O4PgZ3Q+qvCPByZ4bYPnrVtP861KVvl4aBfZMnw2wAluFz6J
H87sCx8AWbCoa9D248zFxBXFeDPpEszy8TDjz3CZ4NuwifQDRITqY46PsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF4BZsYu5vrNHgkNnUGIeZgEmkXnMB8GA1UdIwQY
MBaAFIfAp7Q9QpJJF6WQWYtEMl5MyS7kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDhDbnREMUNra2tYcFpCWmkwUXlYa3pKTHVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9hMDA4M2MtZDBhOC00ZDhhLTk0YjQt
NzM1NjI1ZTBkMjk3LzEvaDhDbnREMUNra2tYcFpCWmkwUXlYa3pKTHVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS9hMDA4M2MtZDBhOC00ZDhhLTk0YjQtNzM1NjI1ZTBkMjk3
LzEvaDhDbnREMUNra2tYcFpCWmkwUXlYa3pKTHVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHcw9fwyD
LzQUTphPE7q2ZrZoxOlhx2xUcth5/LYOCnTq+UYHRhRydXL8s756wn0x5X/Gq8zA
tAcS8+aRvUggbKBdwqZGSP/SxISSX0gorjm43eVVOjOkjpikXEDRvxmlAgOobWau
1/vGdOBuU1GfLZbdIMKHyqgLcfvYRWvDCm+f5Fwf6CB3zp8JkBB0kH4LNWcXgKOO
lSJTeoMp0PwEX/LkCnQ3IYIIuFpWKQldddE2AYM/kj4EDWibqK7nwKk0h2Et5erj
//eGj4CaKg3F7bVfjrSgVI4M8Uv6toy9tIHrtr5oL7wAhydD+yEHpl41AzuYk4PN
fVebYEscD2KBxA==
-----END CERTIFICATE-----
Generated at Mon May 12 12:47:04 2025 by rpki-client