Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
File: X06OdhPaoX6FqhB4yOwlXPGNQio.mft (raw, json)
Hash identifier: MGhilB+3idvr1E02gnj0XrW1h0X/g4E3cY4caKMQ2/I=
Subject key identifier: 7E:6D:D6:CA:F4:52:4B:4B:76:1C:46:42:01:4F:0F:C1:8B:6B:E0:2B
Authority key identifier: 5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
Certificate issuer: /CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Certificate serial: 0197488C28AB8E401E85BBDCC586EB0731A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
Manifest number: 0CA7
Signing time: Sat 07 Jun 2025 04:00:34 +0000
Manifest this update: Sat 07 Jun 2025 04:00:34 +0000
Manifest next update: Sun 08 Jun 2025 04:00:34 +0000
Files and hashes: 1: X06OdhPaoX6FqhB4yOwlXPGNQio.crl (hash: NedQ/7rD+NCYR6laJ2xp9egkS0gPASiDMJznfLwwtPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:28:ab:8e:40:1e:85:bb:dc:c5:86:eb:07:31:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Validity
Not Before: Jun 7 04:00:34 2025 GMT
Not After : Jun 8 04:00:34 2025 GMT
Subject: CN=7e6dd6caf4524b4b761c4642014f0fc18b6be02b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:56:51:b1:78:83:01:45:3b:ca:42:cf:70:72:
0e:ac:9f:aa:47:01:f9:a9:3d:4c:fb:fe:73:e5:3e:
d1:49:08:eb:b0:ca:cf:3e:ff:23:14:e1:be:01:8f:
7b:d5:88:e0:c7:88:68:71:47:91:d9:11:15:64:ea:
30:82:83:56:72:b2:da:3a:1f:38:ed:77:99:35:3f:
c9:a9:82:de:ac:65:31:97:b5:1d:36:d9:8d:28:9c:
fd:25:89:3a:7f:04:6e:a0:c6:fc:cf:49:88:16:a3:
d4:b7:fc:04:2d:d0:53:4d:ff:f3:e5:93:87:df:a2:
ec:ba:1b:be:9d:96:37:c2:26:f6:83:08:4f:93:69:
b0:74:19:2a:b4:7a:4f:d3:5e:b4:11:56:b4:cd:c5:
50:00:91:9d:fc:cd:ab:f8:98:4b:7b:da:f9:9f:d4:
ae:24:93:8f:29:e6:dc:53:eb:fe:54:bb:1c:9c:77:
93:8c:3c:63:bb:be:b1:d8:f8:25:98:ca:be:f5:e9:
a8:0b:0b:19:4d:ac:c2:9e:7f:0c:26:b7:b5:6d:37:
31:c2:f1:98:43:a7:1c:ae:ce:ab:39:84:88:b1:ab:
62:c2:02:48:d1:7b:41:f3:f1:40:82:d0:fb:fa:94:
54:f4:22:16:79:db:0a:ff:15:c8:7c:bd:0a:92:03:
63:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:6D:D6:CA:F4:52:4B:4B:76:1C:46:42:01:4F:0F:C1:8B:6B:E0:2B
X509v3 Authority Key Identifier:
keyid:5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:8a:84:a7:b2:28:b5:a1:37:8f:c3:cb:3d:88:7c:d1:8d:09:
20:4a:03:f3:92:3d:f6:e7:c2:1d:82:20:41:6d:2d:b8:03:6e:
d2:8f:a4:2c:a3:dc:b8:08:c4:98:22:8e:b0:59:bb:3e:4a:ca:
48:2c:5f:e4:65:13:ce:7b:0e:88:8e:56:23:3b:a2:04:7b:cf:
6e:c5:aa:33:90:fe:9e:f6:ab:fe:c2:d3:3e:6c:0b:1b:b8:3b:
36:ef:84:c8:1c:c2:84:a2:15:98:9a:19:43:2d:29:2e:da:35:
ec:36:2c:8d:57:c1:2e:f1:0a:3a:be:5b:0f:34:91:4b:d0:17:
c5:11:a2:36:d6:ff:db:70:d4:6f:d5:8f:08:f0:eb:35:3f:4f:
49:7c:10:40:8d:e4:4c:6c:71:e3:4b:c2:cd:0f:c5:f5:12:46:
98:39:a6:00:37:f7:a6:34:01:63:09:5c:ed:9b:b6:d1:0c:1e:
b1:4a:56:5f:2c:ac:00:4e:2d:cd:a4:27:7e:db:1c:fa:1d:57:
6c:b8:e4:d9:d2:70:6a:5e:3d:c1:e8:6a:b7:af:f0:b1:e9:78:
4a:5a:7d:23:27:f8:50:60:ce:5c:d2:0f:b9:7d:ee:16:23:af:
b6:96:f2:b8:9c:2a:eb:f9:1d:f6:b7:71:95:98:0b:45:9b:c3:
2c:e8:ee:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjCirjkAehbvcxYbrBzGnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmNGU4ZTc2MTNkYWExN2U4NWFhMTA3OGM4ZWMyNTVjZjE4
ZDQyMmEwHhcNMjUwNjA3MDQwMDM0WhcNMjUwNjA4MDQwMDM0WjAzMTEwLwYDVQQD
Eyg3ZTZkZDZjYWY0NTI0YjRiNzYxYzQ2NDIwMTRmMGZjMThiNmJlMDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVZRsXiDAUU7ykLPcHIOrJ+qRwH5
qT1M+/5z5T7RSQjrsMrPPv8jFOG+AY971Yjgx4hocUeR2REVZOowgoNWcrLaOh84
7XeZNT/JqYLerGUxl7UdNtmNKJz9JYk6fwRuoMb8z0mIFqPUt/wELdBTTf/z5ZOH
36Lsuhu+nZY3wib2gwhPk2mwdBkqtHpP0160EVa0zcVQAJGd/M2r+JhLe9r5n9Su
JJOPKebcU+v+VLscnHeTjDxju76x2PglmMq+9emoCwsZTazCnn8MJre1bTcxwvGY
Q6ccrs6rOYSIsatiwgJI0XtB8/FAgtD7+pRU9CIWedsK/xXIfL0KkgNjIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH5t1sr0UktLdhxGQgFPD8GLa+ArMB8GA1UdIwQY
MBaAFF9OjnYT2qF+haoQeMjsJVzxjUIqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy83MGJmZDctNzExZC00YWQ5LTgyZjct
MmYzYzAwMzJlNDQ2LzEvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy83MGJmZDctNzExZC00YWQ5LTgyZjctMmYzYzAwMzJlNDQ2
LzEvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS4qEp7Io
taE3j8PLPYh80Y0JIEoD85I99ufCHYIgQW0tuANu0o+kLKPcuAjEmCKOsFm7PkrK
SCxf5GUTznsOiI5WIzuiBHvPbsWqM5D+nvar/sLTPmwLG7g7Nu+EyBzChKIVmJoZ
Qy0pLto17DYsjVfBLvEKOr5bDzSRS9AXxRGiNtb/23DUb9WPCPDrNT9PSXwQQI3k
TGxx40vCzQ/F9RJGmDmmADf3pjQBYwlc7Zu20QwesUpWXyysAE4tzaQnftsc+h1X
bLjk2dJwal49wehqt6/wsel4Slp9Iyf4UGDOXNIPuX3uFiOvtpbyuJwq6/kd9rdx
lZgLRZvDLOjuhA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:46:47 2025 by rpki-client