Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
File: cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft (raw, json)
Hash identifier: aRXBMr/LcGmM/hDtC5/W29yQUhGVcJkDj+CPJgPvis0=
Subject key identifier: C4:6B:B8:29:03:7A:38:C2:6F:60:70:D5:AD:69:6C:41:C3:41:43:7E
Authority key identifier: 70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
Certificate issuer: /CN=70cee62b79472dcae51ead4d8ea06923870f5197
Certificate serial: 0196B6348A60632C87D297E909B0404A55A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
Manifest number: 152C
Signing time: Fri 09 May 2025 18:00:18 +0000
Manifest this update: Fri 09 May 2025 18:00:18 +0000
Manifest next update: Sat 10 May 2025 18:00:18 +0000
Files and hashes: 1: cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl (hash: sxMiLC9o+6yrprNhPaq9cdDEV2frRQbs59UvxvS1k4A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 18:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:34:8a:60:63:2c:87:d2:97:e9:09:b0:40:4a:55:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cee62b79472dcae51ead4d8ea06923870f5197
Validity
Not Before: May 9 18:00:18 2025 GMT
Not After : May 10 18:00:18 2025 GMT
Subject: CN=c46bb829037a38c26f6070d5ad696c41c341437e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:09:69:07:bb:a2:4a:ae:5d:2f:4e:b8:d6:ee:
c2:d0:79:ee:ea:4a:ae:b9:55:eb:33:a3:1d:28:ba:
13:a5:8f:cb:a3:e1:88:eb:c5:92:14:2e:be:1e:bc:
36:88:63:e6:e7:e6:81:a6:cb:22:c8:c9:12:78:a2:
a1:90:6f:cb:f7:f9:6f:67:1e:1c:d3:58:bf:c8:96:
c0:29:17:cb:b9:ba:0d:a2:bf:bd:e1:bf:ba:b5:36:
2c:c5:53:3e:5e:63:cb:55:29:bd:4f:54:1f:5c:23:
0c:6f:8b:ae:bf:4e:79:90:10:f1:4a:30:ea:04:6a:
a9:33:24:77:a5:6e:71:1c:4a:8b:43:fa:2e:2f:ff:
89:45:0c:84:64:35:58:14:6d:06:6e:23:63:ca:07:
a9:fd:8b:28:74:76:82:e4:28:c5:47:35:c4:4c:bd:
bc:b1:9c:d0:e9:13:40:bf:83:0d:ba:72:bc:79:0c:
c6:fc:8d:2e:b4:f7:51:a5:95:d6:32:4f:76:06:4f:
72:e2:69:ab:36:db:82:b8:a1:27:30:c3:fc:13:85:
08:04:32:42:9d:50:2f:03:c9:d9:29:13:a0:8d:9c:
b0:33:a2:62:c4:05:65:ea:c3:d0:44:42:38:fc:b3:
4e:09:00:1e:c9:fb:c1:b9:17:1d:3a:25:e1:19:73:
75:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:6B:B8:29:03:7A:38:C2:6F:60:70:D5:AD:69:6C:41:C3:41:43:7E
X509v3 Authority Key Identifier:
keyid:70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:55:01:71:47:a7:3a:9e:55:80:7f:70:c9:f1:57:b9:7c:7d:
95:c8:2d:80:a9:ad:7a:50:d4:1f:26:de:db:99:6f:d0:f1:55:
59:73:7f:26:2d:21:5f:fe:3a:e7:29:83:7b:49:0d:1d:58:c4:
5d:8d:37:f9:fc:98:dc:58:bd:57:07:b9:37:8a:e0:7c:73:7a:
c8:79:88:eb:88:85:2b:a0:b9:de:7f:3a:90:9a:e8:3a:0d:17:
77:cc:6d:97:9d:a6:cd:f0:94:3d:af:14:d0:7e:01:a1:8f:35:
d5:6b:12:ea:3e:54:ec:57:1b:02:e8:e1:a2:75:14:f1:3b:85:
4f:5e:62:3d:a0:0d:ff:d5:eb:1e:db:6e:b5:f3:34:93:ac:11:
8d:45:e9:c1:ee:fd:14:17:01:94:73:87:0b:6f:91:9c:ad:57:
4b:3f:02:a1:33:04:88:ee:d7:93:ff:a6:59:6e:90:93:0c:db:
70:25:d1:03:51:5f:fd:37:7f:e3:b8:67:ad:8c:79:9b:6b:b3:
fe:79:f8:77:a0:1d:90:4a:bb:fe:de:d9:b9:7d:62:27:d9:97:
23:1b:9d:37:24:39:2b:0a:c8:e9:bd:8c:0b:5d:56:48:3c:ac:
23:79:2e:e8:04:64:ee:c6:52:70:0f:4a:7e:3f:c0:a0:3d:e2:
89:87:4d:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa2NIpgYyyH0pfpCbBASlWkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwY2VlNjJiNzk0NzJkY2FlNTFlYWQ0ZDhlYTA2OTIzODcw
ZjUxOTcwHhcNMjUwNTA5MTgwMDE4WhcNMjUwNTEwMTgwMDE4WjAzMTEwLwYDVQQD
EyhjNDZiYjgyOTAzN2EzOGMyNmY2MDcwZDVhZDY5NmM0MWMzNDE0MzdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqwlpB7uiSq5dL0641u7C0Hnu6kqu
uVXrM6MdKLoTpY/Lo+GI68WSFC6+Hrw2iGPm5+aBpssiyMkSeKKhkG/L9/lvZx4c
01i/yJbAKRfLuboNor+94b+6tTYsxVM+XmPLVSm9T1QfXCMMb4uuv055kBDxSjDq
BGqpMyR3pW5xHEqLQ/ouL/+JRQyEZDVYFG0GbiNjygep/YsodHaC5CjFRzXETL28
sZzQ6RNAv4MNunK8eQzG/I0utPdRpZXWMk92Bk9y4mmrNtuCuKEnMMP8E4UIBDJC
nVAvA8nZKROgjZywM6JixAVl6sPQREI4/LNOCQAeyfvBuRcdOiXhGXN1rwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMRruCkDejjCb2Bw1a1pbEHDQUN+MB8GA1UdIwQY
MBaAFHDO5it5Ry3K5R6tTY6gaSOHD1GXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTkt
ZDBlMjRmMDE3MDg4LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTktZDBlMjRmMDE3MDg4
LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtVUBcUen
Op5VgH9wyfFXuXx9lcgtgKmtelDUHybe25lv0PFVWXN/Ji0hX/465ymDe0kNHVjE
XY03+fyY3Fi9Vwe5N4rgfHN6yHmI64iFK6C53n86kJroOg0Xd8xtl52mzfCUPa8U
0H4BoY811WsS6j5U7FcbAujhonUU8TuFT15iPaAN/9XrHttutfM0k6wRjUXpwe79
FBcBlHOHC2+RnK1XSz8CoTMEiO7Xk/+mWW6QkwzbcCXRA1Ff/Td/47hnrYx5m2uz
/nn4d6AdkEq7/t7ZuX1iJ9mXIxudNyQ5KwrI6b2MC11WSDysI3ku6ARk7sZScA9K
fj/AoD3iiYdN/Q==
-----END CERTIFICATE-----
Generated at Sat May 10 03:52:22 2025 by rpki-client