Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft
File: C86QcAXcPrBHC8PbRpCNoQkXuEo.mft (raw, json)
Hash identifier: byoCxIeitMLhY6dZcSSC63+n8HP7ROloW9kN2enhvX4=
Subject key identifier: F8:F9:03:15:75:D2:B4:07:63:85:B6:28:62:7A:CF:EA:F5:A2:FB:D5
Authority key identifier: 0B:CE:90:70:05:DC:3E:B0:47:0B:C3:DB:46:90:8D:A1:09:17:B8:4A
Certificate issuer: /CN=0bce907005dc3eb0470bc3db46908da10917b84a
Certificate serial: 0196C8DFBFA7B5E23F003545110B99A30AAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C86QcAXcPrBHC8PbRpCNoQkXuEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft
Manifest number: 0EE9
Signing time: Tue 13 May 2025 09:00:28 +0000
Manifest this update: Tue 13 May 2025 09:00:28 +0000
Manifest next update: Wed 14 May 2025 09:00:28 +0000
Files and hashes: 1: C86QcAXcPrBHC8PbRpCNoQkXuEo.crl (hash: FBHwleq2QWFkbe4mdGwYEyxRtBA+xHgz3svupIn9QOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/C86QcAXcPrBHC8PbRpCNoQkXuEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 09:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:df:bf:a7:b5:e2:3f:00:35:45:11:0b:99:a3:0a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bce907005dc3eb0470bc3db46908da10917b84a
Validity
Not Before: May 13 09:00:28 2025 GMT
Not After : May 14 09:00:28 2025 GMT
Subject: CN=f8f9031575d2b4076385b628627acfeaf5a2fbd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:71:34:e9:8d:15:c4:84:d1:9b:4a:38:88:46:
31:22:48:30:15:6a:d2:fa:d8:6a:c5:87:70:c5:dd:
33:93:65:79:13:4a:1b:e9:a5:c1:36:cc:4c:0d:91:
df:bb:84:50:31:74:3a:36:2a:a7:0a:35:18:0a:96:
bf:3c:83:84:ff:0b:16:92:06:d0:10:43:46:d2:58:
f4:90:09:e4:fe:39:10:8a:7a:be:6e:5f:cb:b3:63:
44:c0:9a:97:fb:ea:7a:9b:9f:ed:e6:29:2f:0a:8a:
dc:c7:5f:4a:bc:14:a4:61:aa:6a:03:a5:55:b7:05:
22:e0:38:b1:c3:df:a3:b9:a4:c3:cd:4d:0d:73:4f:
9a:95:f1:f1:72:79:29:92:d3:99:94:d4:c6:6f:96:
e5:77:88:69:32:71:73:23:a0:95:98:9a:64:93:7c:
85:5b:ed:22:a3:52:9f:1d:50:39:60:c9:a2:f4:1f:
dd:60:f6:22:ff:fa:18:6c:79:e8:eb:3e:fe:01:51:
65:aa:3a:05:6f:17:15:8a:16:d8:ce:5e:41:87:2b:
05:a7:84:b3:46:ec:68:bc:95:ff:c0:23:7c:52:0b:
a9:57:ec:9c:fc:a7:37:2d:19:3e:c0:ae:d9:77:06:
12:40:40:83:81:b1:a3:27:dc:c3:16:83:c1:9b:36:
06:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F9:03:15:75:D2:B4:07:63:85:B6:28:62:7A:CF:EA:F5:A2:FB:D5
X509v3 Authority Key Identifier:
keyid:0B:CE:90:70:05:DC:3E:B0:47:0B:C3:DB:46:90:8D:A1:09:17:B8:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C86QcAXcPrBHC8PbRpCNoQkXuEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/635f75-616b-4b93-ab40-e3718998b184/1/C86QcAXcPrBHC8PbRpCNoQkXuEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:f5:c9:fd:a9:13:27:bf:f4:e7:2d:94:73:86:4d:a1:d6:34:
2f:ab:4d:4f:e1:1d:d4:66:11:22:88:20:47:2d:d3:fe:dd:4a:
1d:26:1b:ff:2f:86:ff:4b:03:c1:22:48:a9:ea:40:b0:52:07:
af:88:54:44:c3:49:f8:af:2b:36:e5:ea:18:59:58:c4:de:95:
fe:66:b9:b5:de:10:37:29:23:2c:ff:42:e6:bb:5e:95:86:ca:
f1:6d:ad:08:3f:14:50:45:23:61:49:49:59:d9:ad:1f:59:00:
52:60:87:d4:59:92:a1:82:88:d4:b0:28:60:7c:f6:c6:2b:23:
93:ea:1c:ab:72:46:e9:6b:d1:ae:02:8d:b2:b2:51:58:c4:70:
d4:a9:2d:7a:ff:ef:24:08:25:bd:54:2e:3e:62:a1:c5:4e:dd:
56:bb:d7:61:9e:cc:53:b4:3d:4d:f1:88:d3:29:b7:7e:c5:0c:
0b:2a:41:77:34:5d:c6:e0:3a:31:20:37:ba:a5:e4:cc:36:31:
a6:05:f8:dc:b5:cb:0e:22:38:9b:b2:8a:a4:53:04:b4:bf:d3:
87:aa:d0:a8:dd:b0:b9:38:d7:de:af:1a:d7:ea:aa:f2:98:92:
ba:ed:b7:87:93:bc:b1:d1:a6:66:64:3e:4f:68:b3:f7:4c:9d:
5d:29:4a:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbI37+nteI/ADVFEQuZowqvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiY2U5MDcwMDVkYzNlYjA0NzBiYzNkYjQ2OTA4ZGExMDkx
N2I4NGEwHhcNMjUwNTEzMDkwMDI4WhcNMjUwNTE0MDkwMDI4WjAzMTEwLwYDVQQD
EyhmOGY5MDMxNTc1ZDJiNDA3NjM4NWI2Mjg2MjdhY2ZlYWY1YTJmYmQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjHE06Y0VxITRm0o4iEYxIkgwFWrS
+thqxYdwxd0zk2V5E0ob6aXBNsxMDZHfu4RQMXQ6NiqnCjUYCpa/PIOE/wsWkgbQ
EENG0lj0kAnk/jkQinq+bl/Ls2NEwJqX++p6m5/t5ikvCorcx19KvBSkYapqA6VV
twUi4Dixw9+juaTDzU0Nc0+alfHxcnkpktOZlNTGb5bld4hpMnFzI6CVmJpkk3yF
W+0io1KfHVA5YMmi9B/dYPYi//oYbHno6z7+AVFlqjoFbxcVihbYzl5BhysFp4Sz
RuxovJX/wCN8UgupV+yc/Kc3LRk+wK7ZdwYSQECDgbGjJ9zDFoPBmzYGjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPj5AxV10rQHY4W2KGJ6z+r1ovvVMB8GA1UdIwQY
MBaAFAvOkHAF3D6wRwvD20aQjaEJF7hKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQzg2UWNBWGNQckJIQzhQYlJwQ05vUWtYdUVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi82MzVmNzUtNjE2Yi00YjkzLWFiNDAt
ZTM3MTg5OThiMTg0LzEvQzg2UWNBWGNQckJIQzhQYlJwQ05vUWtYdUVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi82MzVmNzUtNjE2Yi00YjkzLWFiNDAtZTM3MTg5OThiMTg0
LzEvQzg2UWNBWGNQckJIQzhQYlJwQ05vUWtYdUVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABvXJ/akT
J7/05y2Uc4ZNodY0L6tNT+Ed1GYRIoggRy3T/t1KHSYb/y+G/0sDwSJIqepAsFIH
r4hURMNJ+K8rNuXqGFlYxN6V/ma5td4QNykjLP9C5rtelYbK8W2tCD8UUEUjYUlJ
WdmtH1kAUmCH1FmSoYKI1LAoYHz2xisjk+ocq3JG6WvRrgKNsrJRWMRw1Kktev/v
JAglvVQuPmKhxU7dVrvXYZ7MU7Q9TfGI0ym3fsUMCypBdzRdxuA6MSA3uqXkzDYx
pgX43LXLDiI4m7KKpFMEtL/Th6rQqN2wuTjX3q8a1+qq8piSuu23h5O8sdGmZmQ+
T2iz90ydXSlK3A==
-----END CERTIFICATE-----
Generated at Tue May 13 17:39:09 2025 by rpki-client