Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
File: 1GRmfDSn27AvBTC85ILRGtQkh70.mft (raw, json)
Hash identifier: OkTclsplE59u61FUfQ52+wlVzKXrY6DmKqREMQp1BO0=
Subject key identifier: C8:15:09:F6:6A:FC:FC:98:79:BB:B4:78:61:54:A7:32:42:1D:89:5C
Authority key identifier: D4:64:66:7C:34:A7:DB:B0:2F:05:30:BC:E4:82:D1:1A:D4:24:87:BD
Certificate issuer: /CN=d464667c34a7dbb02f0530bce482d11ad42487bd
Certificate serial: 01974742825C9E47DA08ED49884E167D3FF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
Manifest number: 0866
Signing time: Fri 06 Jun 2025 22:00:30 +0000
Manifest this update: Fri 06 Jun 2025 22:00:30 +0000
Manifest next update: Sat 07 Jun 2025 22:00:30 +0000
Files and hashes: 1: 1GRmfDSn27AvBTC85ILRGtQkh70.crl (hash: VmuPJNE7Ir2uiJN2zk6XlBUTX/zw33Ms45AZovxm2QE=)
2: ngLzTXL9yL8qZxP4JODs6i0oJzI.roa (hash: D6+JXEaHb1tO3mpKT7yT9VZcfkQ3PmJxwgv/yQik0ys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:82:5c:9e:47:da:08:ed:49:88:4e:16:7d:3f:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d464667c34a7dbb02f0530bce482d11ad42487bd
Validity
Not Before: Jun 6 22:00:30 2025 GMT
Not After : Jun 7 22:00:30 2025 GMT
Subject: CN=c81509f66afcfc9879bbb4786154a732421d895c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b6:91:09:2c:2a:84:db:bf:07:ab:61:e1:1c:
cb:25:df:7f:46:6d:5a:c3:48:09:dd:c0:36:a0:07:
2c:f9:31:ee:26:cf:6d:21:ef:b4:b3:80:ca:9f:a3:
60:9a:ae:9b:13:fd:70:c5:d4:aa:d1:ef:d3:aa:e8:
c5:21:28:b6:07:fd:bf:c9:d0:21:55:a7:b4:a3:ac:
b3:c0:cb:96:ad:35:c9:89:4b:4e:f2:68:22:2b:8d:
9b:46:3b:41:39:04:bf:cd:52:2a:90:70:77:11:7b:
98:6e:20:f9:d9:9f:5d:c7:b2:ae:65:87:69:0b:47:
ba:f6:cb:0d:ed:a2:cd:61:ee:aa:d6:37:7c:1f:2f:
54:22:08:da:59:ce:c7:96:df:a4:50:18:4a:d9:87:
e8:73:d7:b7:3e:d5:62:b2:9c:52:33:0d:4b:3c:3d:
b3:13:44:67:8e:21:8d:9c:58:71:37:4d:a3:5c:1b:
86:24:16:df:14:76:d3:6a:a1:b5:21:b6:84:44:d3:
ee:f9:37:53:9f:31:31:b6:89:b2:ac:43:3f:96:77:
bc:68:a4:ad:e9:1f:14:10:23:0c:a7:be:d5:14:70:
f5:8a:5a:4a:7a:aa:65:eb:29:bd:8b:3e:9f:d2:d7:
6d:4a:2e:03:fc:69:c5:3a:80:d9:bb:a1:f9:cd:c4:
72:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:15:09:F6:6A:FC:FC:98:79:BB:B4:78:61:54:A7:32:42:1D:89:5C
X509v3 Authority Key Identifier:
keyid:D4:64:66:7C:34:A7:DB:B0:2F:05:30:BC:E4:82:D1:1A:D4:24:87:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:8a:f7:b2:f2:93:e5:58:22:d5:cd:aa:b3:8b:a4:09:84:d0:
c1:7c:03:a8:62:d8:12:6a:3b:65:a6:24:8b:f9:2a:a5:5a:52:
20:ec:c1:7f:d6:d1:d3:ff:ff:96:99:07:f7:40:9c:45:b9:d6:
87:e8:84:01:7e:03:44:47:0f:5e:fa:3b:0d:74:1c:c2:ab:4d:
f1:36:9b:4d:0c:11:ad:4f:6b:2d:09:2f:63:41:56:89:77:6d:
54:86:67:62:a3:03:71:21:06:f1:de:91:b3:ac:21:29:03:54:
0b:b4:64:69:ce:31:38:18:a5:f4:e0:ea:dd:f3:db:2c:f5:e9:
c7:fe:70:ed:d2:d6:45:1f:f6:fe:9e:3a:c7:b1:e8:16:f0:11:
29:94:f0:2f:78:dd:10:f0:03:29:65:44:a8:1f:4e:91:07:03:
4d:0e:db:29:42:18:05:48:90:11:fa:83:eb:9e:8f:17:35:3e:
bc:2e:1c:42:de:a3:c5:7a:06:f1:99:ae:7c:f9:73:7f:60:83:
e9:6d:f6:fa:26:db:6e:a9:ad:e0:83:92:41:24:63:c8:8f:12:
a8:71:e1:d8:88:fc:f9:11:c4:89:84:0f:09:b5:7c:32:73:bb:
6b:b6:c0:bb:cb:15:34:e1:4e:cf:1b:ba:6e:b0:cd:35:57:f9:
ba:e9:bf:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHQoJcnkfaCO1JiE4WfT/5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NjQ2NjdjMzRhN2RiYjAyZjA1MzBiY2U0ODJkMTFhZDQy
NDg3YmQwHhcNMjUwNjA2MjIwMDMwWhcNMjUwNjA3MjIwMDMwWjAzMTEwLwYDVQQD
EyhjODE1MDlmNjZhZmNmYzk4NzliYmI0Nzg2MTU0YTczMjQyMWQ4OTVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7aRCSwqhNu/B6th4RzLJd9/Rm1a
w0gJ3cA2oAcs+THuJs9tIe+0s4DKn6Ngmq6bE/1wxdSq0e/TqujFISi2B/2/ydAh
Vae0o6yzwMuWrTXJiUtO8mgiK42bRjtBOQS/zVIqkHB3EXuYbiD52Z9dx7KuZYdp
C0e69ssN7aLNYe6q1jd8Hy9UIgjaWc7Hlt+kUBhK2Yfoc9e3PtVispxSMw1LPD2z
E0RnjiGNnFhxN02jXBuGJBbfFHbTaqG1IbaERNPu+TdTnzExtomyrEM/lne8aKSt
6R8UECMMp77VFHD1ilpKeqpl6ym9iz6f0tdtSi4D/GnFOoDZu6H5zcRyBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMgVCfZq/PyYebu0eGFUpzJCHYlcMB8GA1UdIwQY
MBaAFNRkZnw0p9uwLwUwvOSC0RrUJIe9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUdSbWZEU24yN0F2QlRDODVJTFJHdFFraDcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9iZjQ3OTMtMGM4NC00MjJjLTliOGUt
MjYwZGU2Y2JmNDU2LzEvMUdSbWZEU24yN0F2QlRDODVJTFJHdFFraDcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi9iZjQ3OTMtMGM4NC00MjJjLTliOGUtMjYwZGU2Y2JmNDU2
LzEvMUdSbWZEU24yN0F2QlRDODVJTFJHdFFraDcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeor3svKT
5Vgi1c2qs4ukCYTQwXwDqGLYEmo7ZaYki/kqpVpSIOzBf9bR0///lpkH90CcRbnW
h+iEAX4DREcPXvo7DXQcwqtN8TabTQwRrU9rLQkvY0FWiXdtVIZnYqMDcSEG8d6R
s6whKQNUC7Rkac4xOBil9ODq3fPbLPXpx/5w7dLWRR/2/p46x7HoFvARKZTwL3jd
EPADKWVEqB9OkQcDTQ7bKUIYBUiQEfqD656PFzU+vC4cQt6jxXoG8ZmufPlzf2CD
6W32+ibbbqmt4IOSQSRjyI8SqHHh2Ij8+RHEiYQPCbV8MnO7a7bAu8sVNOFOzxu6
brDNNVf5uum/+g==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:25:19 2025 by rpki-client