Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
File: rRIanMsoPqIejQoHCi4LakDph30.mft (raw, json)
Hash identifier: bmEIdN9dFGNLQYzEnDrL/mnFUxIlzBc5f/xe/EajzZY=
Subject key identifier: 33:69:18:FB:88:C0:B0:50:D8:3D:8F:42:19:5C:0D:1C:B6:E3:33:59
Authority key identifier: AD:12:1A:9C:CB:28:3E:A2:1E:8D:0A:07:0A:2E:0B:6A:40:E9:87:7D
Certificate issuer: /CN=ad121a9ccb283ea21e8d0a070a2e0b6a40e9877d
Certificate serial: 019750469E87BB4E5F5AE2A07E9EB7EC0D00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
Manifest number: 157C
Signing time: Sun 08 Jun 2025 16:01:34 +0000
Manifest this update: Sun 08 Jun 2025 16:01:34 +0000
Manifest next update: Mon 09 Jun 2025 16:01:34 +0000
Files and hashes: 1: rRIanMsoPqIejQoHCi4LakDph30.crl (hash: 9NA2PFz+Ee5Jmir3Fj5kZL4rQEWABTkmhHk9FdaVG7c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:46:9e:87:bb:4e:5f:5a:e2:a0:7e:9e:b7:ec:0d:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad121a9ccb283ea21e8d0a070a2e0b6a40e9877d
Validity
Not Before: Jun 8 16:01:34 2025 GMT
Not After : Jun 9 16:01:34 2025 GMT
Subject: CN=336918fb88c0b050d83d8f42195c0d1cb6e33359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e9:ea:62:72:db:22:bc:eb:9d:27:42:19:7e:
71:4f:5a:c5:99:fb:2b:29:7c:71:e2:3a:e3:2c:c9:
20:22:c5:14:f8:a1:58:8d:9b:ea:f0:52:38:94:4f:
44:51:51:b0:a1:62:85:da:c6:03:0c:f1:e4:61:16:
a1:c8:be:8f:fd:2d:14:13:3f:a5:52:d5:47:44:ea:
12:a1:f4:aa:b0:d8:e5:05:23:56:cb:6d:94:b4:51:
a0:e3:ce:34:13:6a:68:58:e8:3a:88:57:a7:2d:22:
c9:3d:56:2d:27:e5:09:b2:9e:6c:e1:7a:7b:51:00:
aa:a1:bd:dd:b4:7b:1f:a3:b4:24:0a:23:fc:68:5b:
ba:59:15:92:e5:12:e5:a6:79:5c:75:8e:a4:1f:50:
73:ad:7d:51:da:27:6f:b5:39:6b:01:6e:56:bb:3c:
01:d5:fc:f9:79:46:6f:d7:3e:86:dc:44:0f:81:52:
a0:ab:60:fb:f7:2e:39:94:c6:e0:e6:cf:9b:8c:39:
ea:2c:5b:b7:fb:6c:66:28:0f:ec:04:f5:73:df:f2:
03:b1:ea:9b:3f:eb:b9:3f:13:40:16:37:cd:c9:7a:
aa:bb:21:90:92:26:c7:14:31:46:b5:f9:09:90:aa:
80:a9:0a:d7:82:b4:5d:80:ce:af:88:6b:56:02:71:
4d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:69:18:FB:88:C0:B0:50:D8:3D:8F:42:19:5C:0D:1C:B6:E3:33:59
X509v3 Authority Key Identifier:
keyid:AD:12:1A:9C:CB:28:3E:A2:1E:8D:0A:07:0A:2E:0B:6A:40:E9:87:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:f9:30:91:3e:37:8c:ba:60:3c:bf:a9:a2:d6:9b:eb:01:fa:
0d:14:d5:ce:db:56:1c:7e:8c:56:57:71:2e:aa:21:8b:0e:f3:
08:51:8a:7a:9b:f9:58:68:ac:c8:a2:b8:29:b0:59:8a:90:9f:
f7:49:4e:b3:cc:15:50:82:82:39:41:8a:68:c4:de:7a:f1:f5:
49:99:d8:49:ad:bc:18:c9:4d:c9:fa:de:46:c2:6a:44:30:7b:
a2:65:5c:32:53:6f:99:83:19:e6:c3:f6:0d:16:28:03:50:e4:
ce:f0:33:dd:ef:e8:40:4b:ba:21:f1:ba:56:2d:79:a8:14:cc:
d2:c5:b0:2e:40:e8:2c:22:64:63:9c:4e:97:e5:8d:eb:f4:fe:
b4:4c:c0:98:b7:ba:2f:f9:1f:83:3b:c7:fa:1a:a8:5e:74:c0:
4a:5b:10:f9:63:65:63:52:79:0c:de:ed:12:10:44:65:c5:98:
3d:80:e5:21:ca:0c:0c:aa:79:28:2d:1b:39:f5:29:74:e3:b5:
29:2c:b2:22:1d:9c:cc:4e:af:82:56:a4:46:ef:d3:6e:03:19:
f1:13:e7:52:89:36:63:e4:5f:30:06:61:ef:a3:a7:39:5f:a6:
a7:8c:f3:c4:a9:01:71:43:75:1c:85:9f:ca:a1:63:61:fa:d9:
3c:fb:b2:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQRp6Hu05fWuKgfp637A0AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMTIxYTljY2IyODNlYTIxZThkMGEwNzBhMmUwYjZhNDBl
OTg3N2QwHhcNMjUwNjA4MTYwMTM0WhcNMjUwNjA5MTYwMTM0WjAzMTEwLwYDVQQD
EygzMzY5MThmYjg4YzBiMDUwZDgzZDhmNDIxOTVjMGQxY2I2ZTMzMzU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+nqYnLbIrzrnSdCGX5xT1rFmfsr
KXxx4jrjLMkgIsUU+KFYjZvq8FI4lE9EUVGwoWKF2sYDDPHkYRahyL6P/S0UEz+l
UtVHROoSofSqsNjlBSNWy22UtFGg4840E2poWOg6iFenLSLJPVYtJ+UJsp5s4Xp7
UQCqob3dtHsfo7QkCiP8aFu6WRWS5RLlpnlcdY6kH1BzrX1R2idvtTlrAW5WuzwB
1fz5eUZv1z6G3EQPgVKgq2D79y45lMbg5s+bjDnqLFu3+2xmKA/sBPVz3/IDseqb
P+u5PxNAFjfNyXqquyGQkibHFDFGtfkJkKqAqQrXgrRdgM6viGtWAnFNiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDNpGPuIwLBQ2D2PQhlcDRy24zNZMB8GA1UdIwQY
MBaAFK0SGpzLKD6iHo0KBwouC2pA6Yd9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclJJYW5Nc29QcUllalFvSENpNExha0RwaDMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8yN2Y3ZmEtYjAxOS00ODQyLWE2YTYt
NTlkZjczZDNiYjkxLzEvclJJYW5Nc29QcUllalFvSENpNExha0RwaDMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8yN2Y3ZmEtYjAxOS00ODQyLWE2YTYtNTlkZjczZDNiYjkx
LzEvclJJYW5Nc29QcUllalFvSENpNExha0RwaDMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAovkwkT43
jLpgPL+potab6wH6DRTVzttWHH6MVldxLqohiw7zCFGKepv5WGisyKK4KbBZipCf
90lOs8wVUIKCOUGKaMTeevH1SZnYSa28GMlNyfreRsJqRDB7omVcMlNvmYMZ5sP2
DRYoA1DkzvAz3e/oQEu6IfG6Vi15qBTM0sWwLkDoLCJkY5xOl+WN6/T+tEzAmLe6
L/kfgzvH+hqoXnTASlsQ+WNlY1J5DN7tEhBEZcWYPYDlIcoMDKp5KC0bOfUpdOO1
KSyyIh2czE6vglakRu/TbgMZ8RPnUok2Y+RfMAZh76OnOV+mp4zzxKkBcUN1HIWf
yqFjYfrZPPuywQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 22:17:21 2025 by rpki-client