Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
File: I5xF5DYlUiCArsU5UpiaE6KKvQA.mft (raw, json)
Hash identifier: kf3QEimmYEiulJdaIDUaWUYIfoBG794uIbN0np6HvXY=
Subject key identifier: 54:B4:98:C4:0A:01:7F:EF:56:EB:33:60:15:10:E2:53:53:56:6A:7F
Authority key identifier: 23:9C:45:E4:36:25:52:20:80:AE:C5:39:52:98:9A:13:A2:8A:BD:00
Certificate issuer: /CN=239c45e43625522080aec53952989a13a28abd00
Certificate serial: 01974C69EB083FF9936EC3AD6D5BD2AB73F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
Manifest number: 1581
Signing time: Sat 07 Jun 2025 22:01:39 +0000
Manifest this update: Sat 07 Jun 2025 22:01:39 +0000
Manifest next update: Sun 08 Jun 2025 22:01:39 +0000
Files and hashes: 1: I5xF5DYlUiCArsU5UpiaE6KKvQA.crl (hash: 1ofrMWZX1UhebCx2k7iIH0InMXqpJx2ko4IakKNwFyY=)
2: lw90sey6Y2XkP3Sip6ebzWQtTKU.roa (hash: IdqbojAlXr4XwjmKtJYEU/2zd7cvDplQCfLZ9IO+/d0=)
3: uBZl19XYTdc5SBXaRHXvV0GGF98.roa (hash: 1Ti03xYR3EsLOQdndtqiFtUtuVxyXY66yoLYTtqG1ik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:eb:08:3f:f9:93:6e:c3:ad:6d:5b:d2:ab:73:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=239c45e43625522080aec53952989a13a28abd00
Validity
Not Before: Jun 7 22:01:39 2025 GMT
Not After : Jun 8 22:01:39 2025 GMT
Subject: CN=54b498c40a017fef56eb33601510e25353566a7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7b:98:34:f5:82:56:40:c0:b3:2e:c7:cf:5b:
61:83:15:0b:f6:64:f7:4e:88:24:aa:c8:53:8c:6b:
11:c1:ad:7d:88:c9:6f:e4:35:4f:ea:4a:1e:fa:70:
36:e2:7a:4a:24:73:9f:33:0d:f0:34:22:9e:8b:b6:
6d:bf:46:6b:45:2c:d8:3e:5a:4b:b2:13:03:e2:cb:
cc:42:48:97:cc:3d:a0:f1:64:98:99:95:0f:37:2f:
09:6b:88:49:ce:f0:4d:f8:09:3f:98:b1:0f:6b:ac:
ba:77:57:d3:08:b4:57:36:f1:27:2e:d8:c2:fe:b6:
27:2f:4d:78:3c:81:7c:90:d4:81:52:41:f0:6c:8f:
cb:f2:a9:06:f0:91:f5:0e:37:49:05:c4:de:6f:96:
39:2f:65:fd:6d:bc:72:de:dc:d0:08:5b:23:d7:2a:
08:d2:a5:12:fd:a3:01:cc:aa:14:43:cb:86:2e:b0:
60:2e:7a:f9:97:27:4b:fa:fa:11:01:ab:e8:08:41:
05:ab:ec:5b:9e:e0:fc:b9:a2:b8:ee:28:50:f3:ec:
84:43:7f:0f:16:cf:73:a9:92:88:ae:b4:f9:3e:4a:
f6:31:63:f7:23:f1:c0:2a:8a:55:fb:06:03:14:6f:
64:c0:55:cd:5a:e8:47:85:2d:94:43:97:15:60:e2:
7a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B4:98:C4:0A:01:7F:EF:56:EB:33:60:15:10:E2:53:53:56:6A:7F
X509v3 Authority Key Identifier:
keyid:23:9C:45:E4:36:25:52:20:80:AE:C5:39:52:98:9A:13:A2:8A:BD:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:ee:68:4c:b6:38:c6:7e:b2:89:b4:81:85:c3:4c:91:17:47:
7e:b0:c3:c1:a1:fb:ab:c0:05:c3:d3:75:5a:22:47:56:b0:a6:
43:cb:59:3f:83:4c:03:68:de:3a:86:37:5b:e8:92:13:cc:eb:
2b:24:e4:5f:b8:e0:2c:7d:5c:02:2c:43:89:e7:89:cb:1d:08:
a5:c2:1e:a2:a0:3d:48:20:3e:1f:e3:b9:b8:25:32:91:53:86:
92:de:10:d0:d9:27:c8:25:a8:18:df:c7:8b:7b:8b:c7:27:4e:
1e:98:23:30:42:1b:1d:92:77:0c:c2:ee:5a:df:8f:0e:46:92:
cb:78:66:ba:1e:80:f9:37:20:2d:6c:e8:77:13:0a:91:ee:18:
28:f3:e2:00:c3:c1:f3:d1:32:ec:3e:6b:68:66:cf:6d:a0:84:
ce:d9:d8:6e:68:be:cc:09:9f:a4:55:b6:9f:91:00:9b:d1:7d:
ca:27:7b:1e:8b:5b:82:7d:22:94:93:7c:25:14:30:f3:e5:5b:
83:65:73:44:23:8e:3a:da:eb:c8:63:37:83:81:47:19:5a:39:
1d:36:40:f2:3a:74:0b:7a:e4:bf:2d:a3:d8:9d:9d:09:1b:00:
94:d5:b1:72:b8:28:75:28:60:3b:bb:7d:96:7b:37:6d:4b:8c:
32:59:26:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMaesIP/mTbsOtbVvSq3PzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzOWM0NWU0MzYyNTUyMjA4MGFlYzUzOTUyOTg5YTEzYTI4
YWJkMDAwHhcNMjUwNjA3MjIwMTM5WhcNMjUwNjA4MjIwMTM5WjAzMTEwLwYDVQQD
Eyg1NGI0OThjNDBhMDE3ZmVmNTZlYjMzNjAxNTEwZTI1MzUzNTY2YTdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnuYNPWCVkDAsy7Hz1thgxUL9mT3
TogkqshTjGsRwa19iMlv5DVP6koe+nA24npKJHOfMw3wNCKei7Ztv0ZrRSzYPlpL
shMD4svMQkiXzD2g8WSYmZUPNy8Ja4hJzvBN+Ak/mLEPa6y6d1fTCLRXNvEnLtjC
/rYnL014PIF8kNSBUkHwbI/L8qkG8JH1DjdJBcTeb5Y5L2X9bbxy3tzQCFsj1yoI
0qUS/aMBzKoUQ8uGLrBgLnr5lydL+voRAavoCEEFq+xbnuD8uaK47ihQ8+yEQ38P
Fs9zqZKIrrT5Pkr2MWP3I/HAKopV+wYDFG9kwFXNWuhHhS2UQ5cVYOJ6nwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFS0mMQKAX/vVuszYBUQ4lNTVmp/MB8GA1UdIwQY
MBaAFCOcReQ2JVIggK7FOVKYmhOiir0AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTV4RjVEWWxVaUNBcnNVNVVwaWFFNktLdlFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi80YzQ4OTQtODBmYy00OGVmLWI2Njgt
OTc1YTIzN2VjZDA2LzEvSTV4RjVEWWxVaUNBcnNVNVVwaWFFNktLdlFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi80YzQ4OTQtODBmYy00OGVmLWI2NjgtOTc1YTIzN2VjZDA2
LzEvSTV4RjVEWWxVaUNBcnNVNVVwaWFFNktLdlFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR+5oTLY4
xn6yibSBhcNMkRdHfrDDwaH7q8AFw9N1WiJHVrCmQ8tZP4NMA2jeOoY3W+iSE8zr
KyTkX7jgLH1cAixDieeJyx0IpcIeoqA9SCA+H+O5uCUykVOGkt4Q0NknyCWoGN/H
i3uLxydOHpgjMEIbHZJ3DMLuWt+PDkaSy3hmuh6A+TcgLWzodxMKke4YKPPiAMPB
89Ey7D5raGbPbaCEztnYbmi+zAmfpFW2n5EAm9F9yid7Hotbgn0ilJN8JRQw8+Vb
g2VzRCOOOtrryGM3g4FHGVo5HTZA8jp0C3rkvy2j2J2dCRsAlNWxcrgodShgO7t9
lns3bUuMMlkmyg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:34:36 2025 by rpki-client