Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
File: 8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft (raw, json)
Hash identifier: v3+8bDGVT/WIBBP0QPAEVAyTTmlZsXVtgZvtwjIpqiE=
Subject key identifier: B1:1F:07:A9:F0:B1:BB:AB:C7:BD:F2:4B:1F:D3:40:18:F9:78:CE:B1
Authority key identifier: F0:AC:0C:E7:00:B1:7D:49:9E:89:8E:C7:A1:47:30:40:51:57:C4:78
Certificate issuer: /CN=f0ac0ce700b17d499e898ec7a14730405157c478
Certificate serial: 0197C94B58E29BA48BD4216942E34037057F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
Manifest number: 15BD
Signing time: Wed 02 Jul 2025 04:00:47 +0000
Manifest this update: Wed 02 Jul 2025 04:00:47 +0000
Manifest next update: Thu 03 Jul 2025 04:00:47 +0000
Files and hashes: 1: 8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl (hash: TEDqT/lYUMoBlJaykyuSvZarvV+0zcefrWUwnGjGh1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:4b:58:e2:9b:a4:8b:d4:21:69:42:e3:40:37:05:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0ac0ce700b17d499e898ec7a14730405157c478
Validity
Not Before: Jul 2 04:00:47 2025 GMT
Not After : Jul 3 04:00:47 2025 GMT
Subject: CN=b11f07a9f0b1bbabc7bdf24b1fd34018f978ceb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:94:a2:fe:bc:0b:4d:4e:92:97:6e:f6:e8:b4:
7d:a9:b4:63:73:bb:f3:b7:eb:56:24:de:04:3b:c1:
80:f1:e3:bf:69:e0:21:9e:b2:10:ed:0f:25:8f:c3:
c7:77:5b:ba:c8:d7:7a:94:a9:df:24:e1:96:8d:f9:
a9:72:c1:ad:30:aa:14:fc:f4:1d:fd:da:9f:bf:71:
ee:65:27:b0:50:37:e3:40:ac:bf:f6:1f:33:21:db:
bf:25:1f:b6:e3:be:ba:9c:ab:79:92:28:17:c0:20:
e9:f0:14:71:e2:71:36:58:49:70:09:ca:ee:f3:ca:
94:64:66:e3:92:29:76:a0:66:23:4d:d7:1d:41:b9:
79:25:49:65:d1:58:d0:8a:82:72:16:44:ed:ea:78:
2f:aa:21:aa:97:56:c3:fd:22:4f:ce:16:bb:a8:59:
8e:33:22:c6:af:98:88:38:60:82:44:d7:37:57:ee:
c3:2f:59:76:17:84:0a:31:a8:10:75:91:36:2e:db:
2f:ed:87:7d:8e:a9:23:c8:dc:16:8b:61:e6:74:58:
03:2a:15:ed:be:4c:04:ea:b6:7a:09:b9:a9:a9:0b:
4d:9c:bb:97:58:52:a1:6d:d9:d6:55:15:1a:c3:f6:
7a:3a:dc:29:1a:29:6a:d5:e7:14:a7:c6:89:47:d4:
07:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:1F:07:A9:F0:B1:BB:AB:C7:BD:F2:4B:1F:D3:40:18:F9:78:CE:B1
X509v3 Authority Key Identifier:
keyid:F0:AC:0C:E7:00:B1:7D:49:9E:89:8E:C7:A1:47:30:40:51:57:C4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:d2:e1:d8:6c:1b:45:b5:8f:c6:25:fa:8f:ad:5e:f5:e0:02:
ec:9f:6c:1d:2e:30:85:bb:4b:1c:7a:cb:d5:1b:c9:9d:e4:b6:
75:c7:11:af:3f:bc:e6:11:08:7d:8d:db:87:98:1d:6d:83:a8:
79:96:c3:18:e1:10:0f:be:72:e3:cb:d2:0e:ce:17:60:05:83:
cd:0b:56:ff:4b:e6:e5:eb:47:59:6a:df:4e:dc:c0:c9:e7:7c:
bf:43:b9:7d:68:66:c0:48:d0:37:86:a6:89:70:6c:5e:a1:b4:
5f:02:0d:c9:b4:b3:4a:79:a9:0e:c3:db:a5:f3:fd:a5:99:fc:
a1:74:e3:eb:0a:4e:c4:8b:9a:b2:63:6e:44:4a:15:1b:ac:f7:
ac:b7:47:1f:c8:82:48:f6:bc:64:a6:7f:5e:6b:aa:10:90:a8:
5c:ef:b2:e1:6d:17:db:24:3e:92:57:8d:c0:d9:96:34:1f:53:
38:93:07:04:2d:b0:a6:05:b5:ea:14:8b:05:4f:8a:ff:02:a9:
5b:5c:40:f7:b2:fa:b1:4e:8d:b8:e8:8e:ef:5a:1c:3a:d8:cc:
86:ea:2e:e8:b4:43:f6:31:dd:c3:95:c0:ba:27:ac:f8:a0:bc:
2e:4b:fa:b7:2e:de:ea:1e:12:70:1c:f4:37:06:22:cf:e2:7c:
de:c5:36:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfJS1jim6SL1CFpQuNANwV/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwYWMwY2U3MDBiMTdkNDk5ZTg5OGVjN2ExNDczMDQwNTE1
N2M0NzgwHhcNMjUwNzAyMDQwMDQ3WhcNMjUwNzAzMDQwMDQ3WjAzMTEwLwYDVQQD
EyhiMTFmMDdhOWYwYjFiYmFiYzdiZGYyNGIxZmQzNDAxOGY5NzhjZWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZSi/rwLTU6Sl2726LR9qbRjc7vz
t+tWJN4EO8GA8eO/aeAhnrIQ7Q8lj8PHd1u6yNd6lKnfJOGWjfmpcsGtMKoU/PQd
/dqfv3HuZSewUDfjQKy/9h8zIdu/JR+24766nKt5kigXwCDp8BRx4nE2WElwCcru
88qUZGbjkil2oGYjTdcdQbl5JUll0VjQioJyFkTt6ngvqiGql1bD/SJPzha7qFmO
MyLGr5iIOGCCRNc3V+7DL1l2F4QKMagQdZE2Ltsv7Yd9jqkjyNwWi2HmdFgDKhXt
vkwE6rZ6CbmpqQtNnLuXWFKhbdnWVRUaw/Z6OtwpGilq1ecUp8aJR9QH2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLEfB6nwsburx73ySx/TQBj5eM6xMB8GA1UdIwQY
MBaAFPCsDOcAsX1JnomOx6FHMEBRV8R4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEt3TTV3Q3hmVW1laVk3SG9VY3dRRkZYeEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC84ZmIyYTYtY2FlNS00ZjM5LWE4NTgt
N2U0NmNjMzcwMWI5LzEvOEt3TTV3Q3hmVW1laVk3SG9VY3dRRkZYeEhnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC84ZmIyYTYtY2FlNS00ZjM5LWE4NTgtN2U0NmNjMzcwMWI5
LzEvOEt3TTV3Q3hmVW1laVk3SG9VY3dRRkZYeEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxNLh2Gwb
RbWPxiX6j61e9eAC7J9sHS4whbtLHHrL1RvJneS2dccRrz+85hEIfY3bh5gdbYOo
eZbDGOEQD75y48vSDs4XYAWDzQtW/0vm5etHWWrfTtzAyed8v0O5fWhmwEjQN4am
iXBsXqG0XwINybSzSnmpDsPbpfP9pZn8oXTj6wpOxIuasmNuREoVG6z3rLdHH8iC
SPa8ZKZ/XmuqEJCoXO+y4W0X2yQ+kleNwNmWNB9TOJMHBC2wpgW16hSLBU+K/wKp
W1xA97L6sU6NuOiO71ocOtjMhuou6LRD9jHdw5XAuies+KC8Lkv6ty7e6h4ScBz0
NwYiz+J83sU27w==
-----END CERTIFICATE-----
Generated at Wed Jul 2 11:28:45 2025 by rpki-client