Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json)
Hash identifier: Zq69U+YjCanZczTqfkgKUNzeLGz3gykjQNazvp2U4hg=
Subject key identifier: F8:E8:C7:03:13:E4:03:16:6B:FA:41:05:BB:5A:AD:D5:8D:84:C6:3F
Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Certificate serial: 0196AE0DBC4483E52DB639D0ED619B18E5A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
Manifest number: 0B80
Signing time: Thu 08 May 2025 04:00:57 +0000
Manifest this update: Thu 08 May 2025 04:00:57 +0000
Manifest next update: Fri 09 May 2025 04:00:57 +0000
Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: qwkvnioyj4YbCYg0F6L29ePBBg5qbgD3lWnK+I/p85k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 20:38:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:0d:bc:44:83:e5:2d:b6:39:d0:ed:61:9b:18:e5:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Validity
Not Before: May 8 04:00:57 2025 GMT
Not After : May 9 04:00:57 2025 GMT
Subject: CN=f8e8c70313e403166bfa4105bb5aadd58d84c63f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:59:10:6c:be:18:f0:57:02:d2:ca:21:ea:33:
02:76:1c:77:35:8f:ed:e0:73:9d:63:c7:90:f6:58:
5c:b8:ff:19:7e:32:8b:30:23:de:f4:6c:3e:23:d1:
61:1b:52:f8:19:d4:a2:db:c7:0a:96:fc:3f:9a:ae:
f3:8c:12:e4:85:d6:d0:a0:0a:8a:9a:33:78:a6:40:
a8:7f:5f:c2:c1:7f:fa:33:12:84:88:44:7f:ef:f5:
40:7e:e1:fb:7d:44:d8:2e:c7:a4:0d:4a:10:5a:82:
8e:ef:71:b2:5d:03:6d:c8:d3:4f:26:7d:a1:41:ca:
f3:59:e4:74:5c:32:fa:02:c1:39:cb:7d:d6:ab:a3:
9d:c8:33:0e:ea:4a:2c:54:70:f7:a6:2c:44:04:8c:
3d:bf:a7:b7:80:47:c5:56:f1:a4:0e:5c:af:d8:ca:
0d:7e:68:d9:8c:69:cd:1a:7f:ad:91:a8:cf:35:17:
22:b3:c4:da:56:e6:50:2b:ee:6d:4d:ac:8d:eb:63:
91:65:54:12:41:55:1c:42:f2:29:0f:79:8a:10:79:
d4:40:46:d6:8a:20:f3:da:fc:e7:c4:d8:3c:9c:83:
35:15:a3:13:b9:c6:7b:41:2c:7d:d9:45:57:78:97:
0e:01:77:61:00:25:f5:68:75:7b:4a:47:1f:f2:78:
04:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:E8:C7:03:13:E4:03:16:6B:FA:41:05:BB:5A:AD:D5:8D:84:C6:3F
X509v3 Authority Key Identifier:
keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:23:b5:28:e1:a0:3b:be:4a:9e:e9:67:dd:a2:22:ba:6e:d7:
7d:8a:a4:7f:6a:67:96:b6:49:9b:69:38:20:91:61:7f:a3:02:
86:e7:dc:43:c9:55:e3:7a:c3:92:ee:66:11:2f:f9:68:18:4a:
6e:0c:aa:6b:a8:df:9b:e5:b4:c7:54:29:74:f9:e5:49:66:b8:
22:78:72:f3:9e:4d:e2:45:f4:f7:4b:b0:44:5c:3a:ab:5e:76:
eb:9a:d4:6e:f4:3d:1e:5c:36:e2:e9:4c:bc:b1:5a:64:dd:2c:
15:8d:4d:f3:8a:5b:07:88:76:ae:1a:03:bf:77:61:28:08:0f:
f3:b2:94:71:ac:c0:df:92:ae:d6:93:7a:92:68:2e:8e:5d:3b:
3a:19:7d:f1:86:2b:5a:1b:5a:58:94:77:fb:af:73:db:68:8f:
5d:c6:b4:8b:5c:a6:92:50:65:f6:58:7e:94:6c:b8:cd:b2:64:
79:82:49:e8:5e:6f:11:08:2a:a5:75:06:ca:5c:25:a9:1e:a2:
e4:be:35:50:72:a6:92:03:81:cc:20:dd:a3:60:5f:8b:25:5c:
d6:fc:eb:bf:1b:0d:a9:38:69:9c:28:3d:65:fe:b1:3d:3b:e9:
e0:4d:12:0f:f1:0a:8f:d0:9f:1b:34:b3:71:72:ca:fe:5d:98:
ea:2f:c2:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZauDbxEg+UttjnQ7WGbGOWiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2M2ZlOWMxMzQwNDFjZWJkYTU2OGI5ZjkwOGUyYWVmMzhh
YjdmNzUwHhcNMjUwNTA4MDQwMDU3WhcNMjUwNTA5MDQwMDU3WjAzMTEwLwYDVQQD
EyhmOGU4YzcwMzEzZTQwMzE2NmJmYTQxMDViYjVhYWRkNThkODRjNjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmlkQbL4Y8FcC0soh6jMCdhx3NY/t
4HOdY8eQ9lhcuP8ZfjKLMCPe9Gw+I9FhG1L4GdSi28cKlvw/mq7zjBLkhdbQoAqK
mjN4pkCof1/CwX/6MxKEiER/7/VAfuH7fUTYLsekDUoQWoKO73GyXQNtyNNPJn2h
QcrzWeR0XDL6AsE5y33Wq6OdyDMO6kosVHD3pixEBIw9v6e3gEfFVvGkDlyv2MoN
fmjZjGnNGn+tkajPNRcis8TaVuZQK+5tTayN62ORZVQSQVUcQvIpD3mKEHnUQEbW
iiDz2vznxNg8nIM1FaMTucZ7QSx92UVXeJcOAXdhACX1aHV7Skcf8ngEfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPjoxwMT5AMWa/pBBbtardWNhMY/MB8GA1UdIwQY
MBaAFPY/6cE0BBzr2laLn5COKu84q391MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYt
NWFlYzc2NmE0OWI0LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYtNWFlYzc2NmE0OWI0
LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAByO1KOGg
O75Knuln3aIium7XfYqkf2pnlrZJm2k4IJFhf6MChufcQ8lV43rDku5mES/5aBhK
bgyqa6jfm+W0x1QpdPnlSWa4Inhy855N4kX090uwRFw6q15265rUbvQ9Hlw24ulM
vLFaZN0sFY1N84pbB4h2rhoDv3dhKAgP87KUcazA35Ku1pN6kmgujl07Ohl98YYr
WhtaWJR3+69z22iPXca0i1ymklBl9lh+lGy4zbJkeYJJ6F5vEQgqpXUGylwlqR6i
5L41UHKmkgOBzCDdo2BfiyVc1vzrvxsNqThpnCg9Zf6xPTvp4E0SD/EKj9CfGzSz
cXLK/l2Y6i/Cfw==
-----END CERTIFICATE-----
Generated at Thu May 8 06:30:43 2025 by rpki-client