Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
File: dbh4BinZITNXwHDBwBBgU0dIg8E.mft (raw, json)
Hash identifier: D+5iJsF1SAexJ8yoa/GsXG64shE6etSsnNZfXRTcPHo=
Subject key identifier: 94:8D:8C:49:26:36:DB:8C:D2:99:1B:9E:FB:FF:8D:DC:07:83:2C:A8
Authority key identifier: 75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1
Certificate issuer: /CN=75b8780629d9213357c070c1c0106053474883c1
Certificate serial: 0196CB04F4F8FC099B3BDB21FDEAE1E3C716
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
Manifest number: 0B5F
Signing time: Tue 13 May 2025 19:00:21 +0000
Manifest this update: Tue 13 May 2025 19:00:21 +0000
Manifest next update: Wed 14 May 2025 19:00:21 +0000
Files and hashes: 1: dbh4BinZITNXwHDBwBBgU0dIg8E.crl (hash: kRaLITmzeIWkG3w4lngiAyKVKNJIHJUVbWgMgfe1Ako=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 19:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:04:f4:f8:fc:09:9b:3b:db:21:fd:ea:e1:e3:c7:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75b8780629d9213357c070c1c0106053474883c1
Validity
Not Before: May 13 19:00:21 2025 GMT
Not After : May 14 19:00:21 2025 GMT
Subject: CN=948d8c492636db8cd2991b9efbff8ddc07832ca8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:c0:ab:3f:66:81:7e:24:b3:7d:6e:f4:4f:cd:
e2:e9:c5:80:f1:d2:57:ca:86:13:70:0f:9c:13:6b:
ff:04:70:30:99:21:88:43:25:d4:7c:cc:e0:9a:52:
29:fc:6a:68:16:57:24:35:6a:2c:ba:cf:a4:b3:cb:
0b:77:0f:1e:e5:05:0d:5b:96:40:cd:66:81:4e:34:
0b:27:d6:f8:29:7e:7c:16:b8:ec:83:62:59:94:62:
43:e6:a4:db:f9:ef:a3:cf:2b:e6:ee:e4:24:f1:1a:
39:60:4e:85:e8:03:38:c3:fc:36:f2:f8:63:4d:15:
af:e3:d0:51:0e:81:79:e3:ab:81:ba:8f:75:ba:7a:
c6:a6:78:32:e1:9b:37:df:8b:62:d5:b3:5e:bc:af:
25:bd:ce:02:d5:a2:1b:00:bc:e2:ad:30:ea:e8:fb:
cf:27:e6:b5:13:5c:c8:8f:f5:ab:ab:cc:67:f0:c8:
af:08:64:eb:22:c8:97:b9:15:12:31:6d:ab:d8:82:
9c:0e:e1:db:a8:45:5f:67:59:98:6b:87:cb:20:06:
db:c4:70:d1:fb:7d:f0:5e:57:36:0e:68:24:5f:0c:
a3:3b:42:f6:eb:7d:60:c3:57:dd:d8:86:3d:07:56:
fb:f9:2b:d8:54:a6:bf:c5:d4:48:2c:2e:cb:74:d1:
8d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:8D:8C:49:26:36:DB:8C:D2:99:1B:9E:FB:FF:8D:DC:07:83:2C:A8
X509v3 Authority Key Identifier:
keyid:75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:9e:51:ca:37:68:61:bf:3d:a6:65:ff:76:c1:5e:70:d3:2e:
02:00:51:81:47:47:21:31:83:01:be:dd:db:14:a5:f8:8a:ec:
d9:34:d8:b7:52:c2:26:f0:00:94:20:46:f3:53:f4:84:d7:95:
78:92:37:15:64:b7:f9:67:5c:94:fc:a1:bf:b8:d1:29:66:ee:
65:5b:09:ca:7e:d2:bd:87:c9:49:ef:31:60:d7:aa:cf:dd:c8:
e6:3e:9d:f2:0a:90:ee:6c:c8:0c:c8:56:f7:f2:cb:e1:68:36:
3f:00:e9:31:58:f8:4a:85:08:a2:24:75:07:8f:74:41:5c:ca:
27:ef:0f:90:75:db:7b:e0:b4:32:cc:3c:24:1f:6b:f5:da:f4:
03:9c:fe:05:86:39:ac:4d:f2:80:0a:42:89:b9:ef:26:c8:62:
ed:32:89:9d:ab:63:ba:f3:12:22:dc:37:3d:71:ce:07:72:f1:
2d:6d:71:49:ce:8f:a8:c9:60:f8:2c:b7:14:94:b5:03:e7:b2:
c2:93:83:d1:1f:6b:d4:5d:86:dc:c9:57:93:e0:9c:12:4d:96:
51:26:90:c7:23:ab:26:c4:94:4b:5a:47:5c:48:a2:f8:08:13:
64:46:61:8e:e4:2f:aa:1c:de:e9:fc:25:da:a9:1d:3b:9a:3b:
86:55:4d:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbLBPT4/AmbO9sh/erh48cWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1Yjg3ODA2MjlkOTIxMzM1N2MwNzBjMWMwMTA2MDUzNDc0
ODgzYzEwHhcNMjUwNTEzMTkwMDIxWhcNMjUwNTE0MTkwMDIxWjAzMTEwLwYDVQQD
Eyg5NDhkOGM0OTI2MzZkYjhjZDI5OTFiOWVmYmZmOGRkYzA3ODMyY2E4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+MCrP2aBfiSzfW70T83i6cWA8dJX
yoYTcA+cE2v/BHAwmSGIQyXUfMzgmlIp/GpoFlckNWosus+ks8sLdw8e5QUNW5ZA
zWaBTjQLJ9b4KX58Frjsg2JZlGJD5qTb+e+jzyvm7uQk8Ro5YE6F6AM4w/w28vhj
TRWv49BRDoF546uBuo91unrGpngy4Zs334ti1bNevK8lvc4C1aIbALzirTDq6PvP
J+a1E1zIj/Wrq8xn8MivCGTrIsiXuRUSMW2r2IKcDuHbqEVfZ1mYa4fLIAbbxHDR
+33wXlc2DmgkXwyjO0L2631gw1fd2IY9B1b7+SvYVKa/xdRILC7LdNGNsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJSNjEkmNtuM0pkbnvv/jdwHgyyoMB8GA1UdIwQY
MBaAFHW4eAYp2SEzV8BwwcAQYFNHSIPBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGJoNEJpblpJVE5Yd0hEQndCQmdVMGRJZzhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS85NmZiOWQtZmY5Zi00ZDVkLWI2YzEt
ZDkxMGI3NzIxZDIwLzEvZGJoNEJpblpJVE5Yd0hEQndCQmdVMGRJZzhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS85NmZiOWQtZmY5Zi00ZDVkLWI2YzEtZDkxMGI3NzIxZDIw
LzEvZGJoNEJpblpJVE5Yd0hEQndCQmdVMGRJZzhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANJ5Ryjdo
Yb89pmX/dsFecNMuAgBRgUdHITGDAb7d2xSl+Irs2TTYt1LCJvAAlCBG81P0hNeV
eJI3FWS3+WdclPyhv7jRKWbuZVsJyn7SvYfJSe8xYNeqz93I5j6d8gqQ7mzIDMhW
9/LL4Wg2PwDpMVj4SoUIoiR1B490QVzKJ+8PkHXbe+C0Msw8JB9r9dr0A5z+BYY5
rE3ygApCibnvJshi7TKJnatjuvMSItw3PXHOB3LxLW1xSc6PqMlg+Cy3FJS1A+ey
wpOD0R9r1F2G3MlXk+CcEk2WUSaQxyOrJsSUS1pHXEii+AgTZEZhjuQvqhze6fwl
2qkdO5o7hlVNsQ==
-----END CERTIFICATE-----
Generated at Wed May 14 03:01:58 2025 by rpki-client