Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
File: X06OdhPaoX6FqhB4yOwlXPGNQio.mft (raw, json)
Hash identifier: IJc8M7n+Ok7aoVzojT5YAyxzHeFDKDsaTc1d6pyXa3Y=
Subject key identifier: 6D:FA:BC:7D:76:73:76:E6:9F:E5:8C:58:B7:5C:E6:7B:EF:7C:14:9F
Authority key identifier: 5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
Certificate issuer: /CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Certificate serial: 01984966F867A8E1D49FD301EB55B3E51BF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
Manifest number: 0D2C
Signing time: Sun 27 Jul 2025 01:02:21 +0000
Manifest this update: Sun 27 Jul 2025 01:02:21 +0000
Manifest next update: Mon 28 Jul 2025 01:02:21 +0000
Files and hashes: 1: X06OdhPaoX6FqhB4yOwlXPGNQio.crl (hash: U7CHYX/IOmcg3I7B6O/FNc02giyQ8X6ENoenlgsLSV4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:66:f8:67:a8:e1:d4:9f:d3:01:eb:55:b3:e5:1b:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Validity
Not Before: Jul 27 01:02:21 2025 GMT
Not After : Jul 28 01:02:21 2025 GMT
Subject: CN=6dfabc7d767376e69fe58c58b75ce67bef7c149f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:57:c5:72:b4:c1:da:60:18:1c:87:e2:79:d0:
d5:c7:a8:71:d7:a1:29:65:64:45:65:ce:5a:20:b2:
7f:b4:cb:35:34:bc:c4:06:cb:94:4d:4c:22:88:9a:
78:37:32:f6:17:61:f5:07:c1:24:12:8e:45:4f:27:
95:11:77:f8:20:d9:04:8d:90:6b:df:41:de:6d:1e:
a7:66:1d:50:ff:f4:10:d6:ce:86:36:21:9a:04:a9:
1a:e3:dd:db:5c:57:61:ab:2b:81:b0:88:32:f8:69:
62:45:3f:40:88:98:90:90:c7:c2:25:18:12:57:50:
5d:b2:f0:3c:95:b9:11:7c:3c:61:55:c1:3f:78:dc:
cb:80:3b:08:a3:09:53:a2:a2:3f:7d:e3:09:dc:6c:
f5:06:7f:15:2b:bc:33:90:2c:0d:e6:00:ad:b9:37:
e0:33:d2:cc:01:a4:09:83:fc:e2:7d:b1:d1:de:65:
bd:11:5c:b9:fa:90:d0:6b:3b:31:1a:e8:86:9f:fb:
7a:32:af:0e:ed:15:64:27:1e:ca:21:2d:7d:47:08:
65:6b:99:23:d7:cf:b4:00:13:23:22:f3:cb:cf:e2:
57:19:16:82:84:b8:c0:8a:d0:56:0e:89:0b:5b:00:
af:f1:2c:54:d6:ab:02:41:ba:80:3d:7a:bb:da:c3:
67:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:FA:BC:7D:76:73:76:E6:9F:E5:8C:58:B7:5C:E6:7B:EF:7C:14:9F
X509v3 Authority Key Identifier:
keyid:5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:94:2d:54:bb:6b:04:33:1d:87:f7:2c:4d:f5:72:d5:aa:43:
02:8e:7d:59:77:c0:f0:34:ef:61:fc:53:79:44:4a:68:0d:89:
a6:48:c9:07:66:16:72:75:0f:1d:8c:07:96:aa:5c:53:d8:2f:
34:d0:95:32:12:8d:a6:31:76:cf:eb:1b:b8:83:1d:9f:28:83:
a2:f5:f7:ab:8a:39:f7:4b:35:4d:c3:3a:be:a0:9d:b5:14:e9:
fa:52:6f:c9:dd:37:d5:77:e2:77:ac:48:56:98:91:35:ce:1e:
93:d9:e4:07:e9:2f:77:47:e5:dd:29:06:3d:dc:75:13:2c:d8:
ab:39:c8:98:40:e6:ad:6c:68:4c:d4:07:cd:b5:17:a5:88:aa:
7b:b6:94:7f:c8:9c:22:a8:9f:19:1b:8b:99:1f:f7:3a:fb:9d:
d6:86:f3:71:5c:e9:dd:53:0d:15:bc:06:09:33:aa:c2:00:96:
4a:f4:0d:ad:af:45:0f:66:01:f8:5d:2f:ec:e5:0e:da:26:2a:
d0:db:f8:15:ff:02:44:6b:1a:5a:60:06:91:63:f0:8c:51:41:
d7:e9:a8:c9:c3:7b:11:c8:2d:9f:55:ba:7d:cd:4e:20:16:9e:
50:1f:bf:3d:d9:83:d0:0c:25:fd:90:54:81:51:18:3d:60:62:
c4:aa:f7:1b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhJZvhnqOHUn9MB61Wz5Rv3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmNGU4ZTc2MTNkYWExN2U4NWFhMTA3OGM4ZWMyNTVjZjE4
ZDQyMmEwHhcNMjUwNzI3MDEwMjIxWhcNMjUwNzI4MDEwMjIxWjAzMTEwLwYDVQQD
Eyg2ZGZhYmM3ZDc2NzM3NmU2OWZlNThjNThiNzVjZTY3YmVmN2MxNDlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlfFcrTB2mAYHIfiedDVx6hx16Ep
ZWRFZc5aILJ/tMs1NLzEBsuUTUwiiJp4NzL2F2H1B8EkEo5FTyeVEXf4INkEjZBr
30HebR6nZh1Q//QQ1s6GNiGaBKka493bXFdhqyuBsIgy+GliRT9AiJiQkMfCJRgS
V1BdsvA8lbkRfDxhVcE/eNzLgDsIowlToqI/feMJ3Gz1Bn8VK7wzkCwN5gCtuTfg
M9LMAaQJg/zifbHR3mW9EVy5+pDQazsxGuiGn/t6Mq8O7RVkJx7KIS19Rwhla5kj
18+0ABMjIvPLz+JXGRaChLjAitBWDokLWwCv8SxU1qsCQbqAPXq72sNnvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG36vH12c3bmn+WMWLdc5nvvfBSfMB8GA1UdIwQY
MBaAFF9OjnYT2qF+haoQeMjsJVzxjUIqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy83MGJmZDctNzExZC00YWQ5LTgyZjct
MmYzYzAwMzJlNDQ2LzEvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy83MGJmZDctNzExZC00YWQ5LTgyZjctMmYzYzAwMzJlNDQ2
LzEvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmpQtVLtr
BDMdh/csTfVy1apDAo59WXfA8DTvYfxTeURKaA2JpkjJB2YWcnUPHYwHlqpcU9gv
NNCVMhKNpjF2z+sbuIMdnyiDovX3q4o590s1TcM6vqCdtRTp+lJvyd031Xfid6xI
VpiRNc4ek9nkB+kvd0fl3SkGPdx1EyzYqznImEDmrWxoTNQHzbUXpYiqe7aUf8ic
IqifGRuLmR/3Ovud1obzcVzp3VMNFbwGCTOqwgCWSvQNra9FD2YB+F0v7OUO2iYq
0Nv4Ff8CRGsaWmAGkWPwjFFB1+moycN7Ecgtn1W6fc1OIBaeUB+/PdmD0Awl/ZBU
gVEYPWBixKr3Gw==
-----END CERTIFICATE-----
Generated at Sun Jul 27 04:47:30 2025 by rpki-client