Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
File: 0kvL9emk_kMp8iPBFFBykFOPnMI.mft (raw, json)
Hash identifier: iwmo5YTnKQspXMosVK7H3dAJBuFBvt1GG50f3rf35yQ=
Subject key identifier: FB:DC:A4:04:23:50:27:4A:26:6F:CB:5C:A9:44:95:B9:72:9C:7F:BF
Authority key identifier: D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
Certificate issuer: /CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Certificate serial: 0197488C7EBFA1E88DD8A6605344B3AA0F4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
Manifest number: 10C7
Signing time: Sat 07 Jun 2025 04:00:56 +0000
Manifest this update: Sat 07 Jun 2025 04:00:56 +0000
Manifest next update: Sun 08 Jun 2025 04:00:56 +0000
Files and hashes: 1: 0kvL9emk_kMp8iPBFFBykFOPnMI.crl (hash: lUhcm7efLp3+tSvrE88kGY1MTmgEdgZv/Hbvf/3XhKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:7e:bf:a1:e8:8d:d8:a6:60:53:44:b3:aa:0f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Validity
Not Before: Jun 7 04:00:56 2025 GMT
Not After : Jun 8 04:00:56 2025 GMT
Subject: CN=fbdca4042350274a266fcb5ca94495b9729c7fbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:65:ee:fa:31:ef:64:c7:d0:92:ab:11:9d:67:
22:53:b0:9a:fa:5e:b2:58:52:1f:d1:3b:ef:64:98:
5d:c7:80:db:a6:6f:17:83:72:43:bb:f4:5e:ae:3b:
df:56:f8:5a:aa:c8:d7:b8:b2:5d:56:ed:b1:4e:af:
bb:20:f0:8a:5e:37:3e:f6:71:d0:84:65:5b:07:8f:
d0:6d:ae:f2:ef:0a:df:35:fb:71:1a:99:0b:84:dd:
ce:56:7a:6f:45:4f:7a:4f:c4:88:aa:cf:11:31:63:
98:3e:12:f5:c4:b2:f3:71:03:e0:fc:a8:17:19:dd:
ed:ca:f3:b9:3d:42:c5:f2:2f:83:ab:04:35:fb:43:
16:c5:8b:e7:d6:c4:8e:16:6e:1d:7a:0d:91:a5:4e:
66:03:56:52:06:67:5b:3f:b3:6c:6e:4b:17:86:0a:
ee:30:ae:af:fc:76:78:2e:17:aa:82:14:54:a3:d9:
4b:f7:d9:93:5a:16:91:c9:b3:e3:c3:90:37:ca:4c:
df:8f:82:9d:ac:9a:90:49:39:e1:f0:b1:84:49:1e:
21:89:19:97:ce:e2:89:4f:39:08:8c:6f:ef:05:ee:
28:8b:db:58:6c:1a:e4:3a:48:f6:46:3e:c2:34:ef:
5d:cd:77:05:34:96:7d:21:f4:ce:8a:b3:08:75:4f:
d6:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:DC:A4:04:23:50:27:4A:26:6F:CB:5C:A9:44:95:B9:72:9C:7F:BF
X509v3 Authority Key Identifier:
keyid:D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:87:c5:66:76:0f:24:18:29:b9:a7:13:84:a2:17:05:e4:55:
69:26:87:29:df:e8:f2:d5:fe:66:8b:40:59:57:e1:d9:24:0f:
44:0f:b6:26:c9:58:3c:76:94:06:82:b6:66:02:91:24:8a:36:
08:c3:93:ce:29:ef:90:97:b9:89:37:54:e9:e1:f3:ac:ca:39:
07:49:de:e3:fc:11:6f:72:e7:17:25:82:aa:de:97:b7:19:af:
61:a4:d1:00:ba:4b:ea:65:8e:cf:d8:f6:9c:b1:84:f7:92:3b:
df:28:57:19:c8:7c:b0:bd:5a:e7:ac:42:28:75:e7:eb:2e:cc:
3a:89:d8:72:c4:62:56:ac:e9:ac:79:71:ab:f1:4b:5d:30:c1:
56:46:ee:2a:d3:79:f8:d8:72:27:7b:b4:a4:31:19:25:08:39:
2c:84:44:7c:8b:9b:ab:42:f3:9a:99:7e:d8:2f:21:a2:17:0b:
8a:bb:a7:f5:8c:b0:f2:59:20:9b:e0:c9:67:40:06:4d:99:d3:
81:6e:88:a0:20:c3:9a:38:bf:e2:5c:a8:b8:32:bd:c7:64:72:
32:75:48:32:5e:3a:00:83:45:f0:d3:5b:e4:d9:e1:34:8b:57:
64:c0:cd:b3:65:e7:c1:2e:4c:0c:3b:a2:23:30:2f:65:61:21:
95:15:7e:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjH6/oeiN2KZgU0Szqg9LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNGJjYmY1ZTlhNGZlNDMyOWYyMjNjMTE0NTA3MjkwNTM4
ZjljYzIwHhcNMjUwNjA3MDQwMDU2WhcNMjUwNjA4MDQwMDU2WjAzMTEwLwYDVQQD
EyhmYmRjYTQwNDIzNTAyNzRhMjY2ZmNiNWNhOTQ0OTViOTcyOWM3ZmJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmXu+jHvZMfQkqsRnWciU7Ca+l6y
WFIf0TvvZJhdx4Dbpm8Xg3JDu/RerjvfVvhaqsjXuLJdVu2xTq+7IPCKXjc+9nHQ
hGVbB4/Qba7y7wrfNftxGpkLhN3OVnpvRU96T8SIqs8RMWOYPhL1xLLzcQPg/KgX
Gd3tyvO5PULF8i+DqwQ1+0MWxYvn1sSOFm4deg2RpU5mA1ZSBmdbP7NsbksXhgru
MK6v/HZ4LheqghRUo9lL99mTWhaRybPjw5A3ykzfj4KdrJqQSTnh8LGESR4hiRmX
zuKJTzkIjG/vBe4oi9tYbBrkOkj2Rj7CNO9dzXcFNJZ9IfTOirMIdU/WuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPvcpAQjUCdKJm/LXKlElblynH+/MB8GA1UdIwQY
MBaAFNJLy/XppP5DKfIjwRRQcpBTj5zCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGt2TDllbWtfa01wOGlQQkZGQnlrRk9Qbk1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9iYzQxYTQtZmM5MS00OTZmLWEyMjUt
MmU2ZTVlNWY1ZDliLzEvMGt2TDllbWtfa01wOGlQQkZGQnlrRk9Qbk1JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9iYzQxYTQtZmM5MS00OTZmLWEyMjUtMmU2ZTVlNWY1ZDli
LzEvMGt2TDllbWtfa01wOGlQQkZGQnlrRk9Qbk1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVofFZnYP
JBgpuacThKIXBeRVaSaHKd/o8tX+ZotAWVfh2SQPRA+2JslYPHaUBoK2ZgKRJIo2
CMOTzinvkJe5iTdU6eHzrMo5B0ne4/wRb3LnFyWCqt6XtxmvYaTRALpL6mWOz9j2
nLGE95I73yhXGch8sL1a56xCKHXn6y7MOonYcsRiVqzprHlxq/FLXTDBVkbuKtN5
+NhyJ3u0pDEZJQg5LIREfIubq0Lzmpl+2C8hohcLirun9Yyw8lkgm+DJZ0AGTZnT
gW6IoCDDmji/4lyouDK9x2RyMnVIMl46AINF8NNb5NnhNItXZMDNs2XnwS5MDDui
IzAvZWEhlRV+Xw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:12:25 2025 by rpki-client