Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
File: aPw7CfVvin8ea-PJTw8IikKiy1s.mft (raw, json)
Hash identifier: kRxlVmAmKNP+iigxuwVRiAS0FCPT9h5VxydEUmhzb8M=
Subject key identifier: A1:48:D4:EE:F0:02:6B:1D:6A:14:1A:E9:D1:B5:B4:D7:10:45:8E:D3
Authority key identifier: 68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B
Certificate issuer: /CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b
Certificate serial: 01975121FE86D68870592B65E25C44089A55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
Manifest number: 073E
Signing time: Sun 08 Jun 2025 20:01:11 +0000
Manifest this update: Sun 08 Jun 2025 20:01:11 +0000
Manifest next update: Mon 09 Jun 2025 20:01:11 +0000
Files and hashes: 1: aPw7CfVvin8ea-PJTw8IikKiy1s.crl (hash: r4E3xnuhBEPmFM89UFT801Im+6JrOTF05TKoQiLbYAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:21:fe:86:d6:88:70:59:2b:65:e2:5c:44:08:9a:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b
Validity
Not Before: Jun 8 20:01:11 2025 GMT
Not After : Jun 9 20:01:11 2025 GMT
Subject: CN=a148d4eef0026b1d6a141ae9d1b5b4d710458ed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:10:93:b0:e8:aa:d7:35:53:ec:af:4c:84:16:
8d:6b:21:6a:ad:da:e9:3b:7c:b1:15:75:e0:bf:ce:
8c:5b:7f:5c:41:05:ff:e8:e4:01:fc:26:4d:2d:98:
fc:be:6b:89:45:4f:bb:63:9e:ba:12:70:c4:e7:ce:
78:ce:4f:bf:fd:92:1c:d1:f1:ef:e7:f0:98:e0:a2:
fc:d0:1d:16:73:73:74:ea:76:5e:36:b1:ed:db:0e:
f4:64:8b:2b:3e:d5:bc:d0:38:59:17:0d:1e:6a:26:
e8:85:62:80:6c:6e:1c:03:8f:b9:66:71:62:8d:e7:
21:ad:d8:41:f2:bf:7b:c9:bf:24:5b:0c:29:26:17:
5a:94:23:e0:3e:69:88:00:cb:c5:98:3d:1b:45:20:
fe:02:a3:79:36:20:48:99:43:d1:20:00:1f:df:46:
03:74:2e:a7:a7:88:8d:72:1d:cb:5e:81:25:09:7b:
5b:d7:e1:7b:2b:93:e5:01:1d:39:1a:f6:bf:60:41:
ed:24:31:d8:a5:fa:ed:03:0d:d8:5a:51:b2:46:24:
9a:a8:f6:b2:2f:4f:82:56:88:c6:a7:31:14:20:ff:
82:d9:95:cd:98:22:8d:60:42:27:9d:68:47:07:a9:
f0:29:18:33:b8:f3:f2:b2:1a:b3:35:cc:93:ba:2a:
a9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:48:D4:EE:F0:02:6B:1D:6A:14:1A:E9:D1:B5:B4:D7:10:45:8E:D3
X509v3 Authority Key Identifier:
keyid:68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:83:89:2e:5b:33:40:a2:3d:36:3c:86:c4:f7:0b:b8:a3:6d:
a2:92:26:c7:f2:b2:af:f4:3a:52:ed:10:a5:04:d9:28:7d:cf:
5f:57:4a:a4:6a:ec:3a:2f:f9:56:46:9e:f9:35:82:89:c2:5d:
7e:be:46:ff:10:b6:be:a8:49:bd:48:42:e4:95:2c:92:08:d6:
19:38:95:c0:e4:64:02:86:40:39:b2:c5:5a:82:c2:0a:2d:a8:
9f:13:63:d7:2a:42:25:59:3d:98:0e:b4:3f:2e:ba:c1:f0:bb:
15:1a:ba:98:3c:30:ce:b7:9a:45:a8:24:6a:00:c6:59:e5:31:
f1:31:6b:40:56:5e:23:e8:32:cb:53:31:c2:9e:34:2b:88:04:
64:e9:01:28:00:e5:8b:68:da:10:ca:90:5c:1a:ca:7e:6f:94:
69:fb:87:42:d0:84:b9:83:26:b6:87:8f:f7:5b:0a:ce:bf:5a:
73:06:26:ab:2f:c1:ab:cf:40:10:ef:1e:42:f1:b0:ec:23:a3:
a9:a4:f5:e5:66:a5:5f:2c:90:5e:dc:78:24:14:83:3a:83:55:
ee:68:1f:59:2d:ba:ab:01:83:a9:6a:7d:89:9c:bc:cd:fd:3d:
bd:ce:24:30:af:ff:99:85:22:fc:30:66:0f:00:70:c7:bc:68:
fb:a5:94:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdRIf6G1ohwWStl4lxECJpVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZmMzYjA5ZjU2ZjhhN2YxZTZiZTNjOTRmMGYwODhhNDJh
MmNiNWIwHhcNMjUwNjA4MjAwMTExWhcNMjUwNjA5MjAwMTExWjAzMTEwLwYDVQQD
EyhhMTQ4ZDRlZWYwMDI2YjFkNmExNDFhZTlkMWI1YjRkNzEwNDU4ZWQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7BCTsOiq1zVT7K9MhBaNayFqrdrp
O3yxFXXgv86MW39cQQX/6OQB/CZNLZj8vmuJRU+7Y566EnDE5854zk+//ZIc0fHv
5/CY4KL80B0Wc3N06nZeNrHt2w70ZIsrPtW80DhZFw0eaibohWKAbG4cA4+5ZnFi
jechrdhB8r97yb8kWwwpJhdalCPgPmmIAMvFmD0bRSD+AqN5NiBImUPRIAAf30YD
dC6np4iNch3LXoElCXtb1+F7K5PlAR05Gva/YEHtJDHYpfrtAw3YWlGyRiSaqPay
L0+CVojGpzEUIP+C2ZXNmCKNYEInnWhHB6nwKRgzuPPyshqzNcyTuiqpJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKFI1O7wAmsdahQa6dG1tNcQRY7TMB8GA1UdIwQY
MBaAFGj8Own1b4p/HmvjyU8PCIpCostbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVB3N0NmVnZpbjhlYS1QSlR3OElpa0tpeTFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8zNmI5YjEtNmFiNi00NzBlLWFhNDMt
Yzg1MzRhM2M5NDk4LzEvYVB3N0NmVnZpbjhlYS1QSlR3OElpa0tpeTFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC8zNmI5YjEtNmFiNi00NzBlLWFhNDMtYzg1MzRhM2M5NDk4
LzEvYVB3N0NmVnZpbjhlYS1QSlR3OElpa0tpeTFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ4OJLlsz
QKI9NjyGxPcLuKNtopImx/Kyr/Q6Uu0QpQTZKH3PX1dKpGrsOi/5Vkae+TWCicJd
fr5G/xC2vqhJvUhC5JUskgjWGTiVwORkAoZAObLFWoLCCi2onxNj1ypCJVk9mA60
Py66wfC7FRq6mDwwzreaRagkagDGWeUx8TFrQFZeI+gyy1Mxwp40K4gEZOkBKADl
i2jaEMqQXBrKfm+UafuHQtCEuYMmtoeP91sKzr9acwYmqy/Bq89AEO8eQvGw7COj
qaT15WalXyyQXtx4JBSDOoNV7mgfWS26qwGDqWp9iZy8zf09vc4kMK//mYUi/DBm
DwBwx7xo+6WU9Q==
-----END CERTIFICATE-----
Generated at Mon Jun 9 00:52:26 2025 by rpki-client