Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
File: 8KSyRplUYkr0JKVO8WdhwhWLJIM.mft (raw, json)
Hash identifier: S1Gfj5UIFD6UevLWsmkXGdSd7+hs817CRrN/nkxYm4g=
Subject key identifier: DA:64:6C:C0:25:71:C2:43:48:BA:48:8B:E1:55:19:D6:CD:B2:65:2F
Authority key identifier: F0:A4:B2:46:99:54:62:4A:F4:24:A5:4E:F1:67:61:C2:15:8B:24:83
Certificate issuer: /CN=f0a4b2469954624af424a54ef16761c2158b2483
Certificate serial: 01974967FE28AC3806EB94C2FCC08EAC218E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KSyRplUYkr0JKVO8WdhwhWLJIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
Manifest number: 14D9
Signing time: Sat 07 Jun 2025 08:00:41 +0000
Manifest this update: Sat 07 Jun 2025 08:00:41 +0000
Manifest next update: Sun 08 Jun 2025 08:00:41 +0000
Files and hashes: 1: 8KSyRplUYkr0JKVO8WdhwhWLJIM.crl (hash: 7EhR5On1FzBtr9qIzM1DXb/TtLM4KabQPAAHvKQXXxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KSyRplUYkr0JKVO8WdhwhWLJIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:fe:28:ac:38:06:eb:94:c2:fc:c0:8e:ac:21:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a4b2469954624af424a54ef16761c2158b2483
Validity
Not Before: Jun 7 08:00:41 2025 GMT
Not After : Jun 8 08:00:41 2025 GMT
Subject: CN=da646cc02571c24348ba488be15519d6cdb2652f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:80:a6:e0:ae:c1:3c:54:e3:c1:8e:ed:db:57:
53:26:59:69:df:87:45:9c:46:46:3e:6f:4e:6b:13:
41:ca:76:73:af:e0:a6:6c:a0:ad:e9:21:35:6f:c5:
45:80:c9:7a:2a:d2:b0:60:d5:2f:62:83:d2:56:2f:
8f:10:60:1e:74:82:ff:dc:2b:39:90:41:f5:f5:ce:
fc:06:e9:13:b6:5d:5c:c9:b6:60:3b:88:58:8e:ee:
1f:bf:96:c7:7c:2c:81:91:4f:8d:1c:e0:f7:81:44:
da:c0:4f:f1:46:5e:6d:8e:3d:12:0c:7c:cd:09:42:
99:48:0a:80:f6:75:89:cb:e9:85:1d:84:52:1e:4b:
1c:24:a6:38:38:7a:bc:af:ed:e9:f0:6f:ad:a8:f5:
b6:e4:cd:01:03:95:15:b2:d7:eb:c1:bf:3d:3d:fb:
3d:08:5f:ee:58:a9:32:e9:71:05:95:37:ec:38:76:
0e:9e:6b:9d:9e:95:43:47:45:f9:b3:7f:29:2c:41:
fa:17:0d:21:c4:45:0b:94:f7:4b:8e:f6:2c:9a:de:
dd:99:48:fc:70:9e:a1:68:1c:86:58:32:61:61:48:
7b:cd:89:5d:0b:c0:0b:bf:a3:c0:b6:d7:68:0b:d5:
1f:29:cc:65:42:0a:33:f5:0d:f4:f5:bc:23:a6:51:
e9:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:64:6C:C0:25:71:C2:43:48:BA:48:8B:E1:55:19:D6:CD:B2:65:2F
X509v3 Authority Key Identifier:
keyid:F0:A4:B2:46:99:54:62:4A:F4:24:A5:4E:F1:67:61:C2:15:8B:24:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KSyRplUYkr0JKVO8WdhwhWLJIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:c9:26:b3:fb:38:10:10:00:10:c6:8d:fa:c3:ea:fb:74:0a:
3d:b5:65:5a:15:de:5d:cb:25:f6:5d:12:4b:c6:e7:77:10:02:
c4:65:43:9a:3f:16:ac:9d:ee:b4:38:ea:d0:9d:6b:d7:d0:81:
65:52:36:88:a0:7a:80:43:f9:3c:68:d4:8d:c2:d4:96:90:ee:
27:6b:83:fd:0b:b8:07:2a:1d:37:28:45:c8:ad:80:48:54:84:
0d:3c:46:e8:ab:36:53:1e:80:74:d6:03:bb:7a:bc:63:a3:3a:
aa:2b:5a:63:c8:05:45:9a:a6:ec:b9:71:23:ca:cb:c3:64:1a:
29:93:fd:86:e1:b9:bb:c9:78:09:0a:cf:59:54:e8:c0:a9:4a:
94:7f:2a:9e:5e:81:15:59:28:2d:53:a7:a6:03:86:a8:cb:c9:
fe:5a:eb:67:38:2e:92:dd:b1:f8:42:33:d0:f6:6e:4a:34:4f:
cf:d1:69:e3:7a:6b:03:70:14:b9:b9:6d:e1:b5:ad:cb:80:bc:
e9:bd:dd:bd:35:c4:28:c5:1c:bc:6d:32:02:19:34:e8:e7:c6:
9f:b0:a7:8b:98:7f:94:81:0d:1a:ab:81:e4:70:9c:fe:e9:50:
ff:73:1a:2a:9a:09:ff:8a:cf:b6:50:99:b6:95:86:03:6e:41:
a7:76:af:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJZ/4orDgG65TC/MCOrCGOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwYTRiMjQ2OTk1NDYyNGFmNDI0YTU0ZWYxNjc2MWMyMTU4
YjI0ODMwHhcNMjUwNjA3MDgwMDQxWhcNMjUwNjA4MDgwMDQxWjAzMTEwLwYDVQQD
EyhkYTY0NmNjMDI1NzFjMjQzNDhiYTQ4OGJlMTU1MTlkNmNkYjI2NTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ICm4K7BPFTjwY7t21dTJllp34dF
nEZGPm9OaxNBynZzr+CmbKCt6SE1b8VFgMl6KtKwYNUvYoPSVi+PEGAedIL/3Cs5
kEH19c78BukTtl1cybZgO4hYju4fv5bHfCyBkU+NHOD3gUTawE/xRl5tjj0SDHzN
CUKZSAqA9nWJy+mFHYRSHkscJKY4OHq8r+3p8G+tqPW25M0BA5UVstfrwb89Pfs9
CF/uWKky6XEFlTfsOHYOnmudnpVDR0X5s38pLEH6Fw0hxEULlPdLjvYsmt7dmUj8
cJ6haByGWDJhYUh7zYldC8ALv6PAttdoC9UfKcxlQgoz9Q309bwjplHp0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNpkbMAlccJDSLpIi+FVGdbNsmUvMB8GA1UdIwQY
MBaAFPCkskaZVGJK9CSlTvFnYcIViySDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEtTeVJwbFVZa3IwSktWTzhXZGh3aFdMSklNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy81MmM5MTYtZmQ2Zi00MWMwLThmM2Et
NTg1NTlhOTRjNDI2LzEvOEtTeVJwbFVZa3IwSktWTzhXZGh3aFdMSklNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy81MmM5MTYtZmQ2Zi00MWMwLThmM2EtNTg1NTlhOTRjNDI2
LzEvOEtTeVJwbFVZa3IwSktWTzhXZGh3aFdMSklNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVMkms/s4
EBAAEMaN+sPq+3QKPbVlWhXeXcsl9l0SS8bndxACxGVDmj8WrJ3utDjq0J1r19CB
ZVI2iKB6gEP5PGjUjcLUlpDuJ2uD/Qu4ByodNyhFyK2ASFSEDTxG6Ks2Ux6AdNYD
u3q8Y6M6qitaY8gFRZqm7LlxI8rLw2QaKZP9huG5u8l4CQrPWVTowKlKlH8qnl6B
FVkoLVOnpgOGqMvJ/lrrZzgukt2x+EIz0PZuSjRPz9Fp43prA3AUublt4bWty4C8
6b3dvTXEKMUcvG0yAhk06OfGn7Cni5h/lIENGquB5HCc/ulQ/3MaKpoJ/4rPtlCZ
tpWGA25Bp3avEw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:31:27 2025 by rpki-client