Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
File: 09XiCPMtcw1DHUpNTtgJWx59lDE.mft (raw, json)
Hash identifier: kb+++HRp+BK5E/lzOPrAmsr5UtJrNnyl4qmFSlJjLkg=
Subject key identifier: 33:38:AB:6B:B7:BA:53:50:22:D4:1D:30:F5:8C:59:DF:80:2C:6E:E3
Authority key identifier: D3:D5:E2:08:F3:2D:73:0D:43:1D:4A:4D:4E:D8:09:5B:1E:7D:94:31
Certificate issuer: /CN=d3d5e208f32d730d431d4a4d4ed8095b1e7d9431
Certificate serial: 019750468744C7185AA079723394226C4974
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
Manifest number: AD
Signing time: Sun 08 Jun 2025 16:01:28 +0000
Manifest this update: Sun 08 Jun 2025 16:01:28 +0000
Manifest next update: Mon 09 Jun 2025 16:01:28 +0000
Files and hashes: 1: 09XiCPMtcw1DHUpNTtgJWx59lDE.crl (hash: 4Ut+0ygi5KgwJixmil8axz8b7AiM98P0Ec+cAQhwvOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:46:87:44:c7:18:5a:a0:79:72:33:94:22:6c:49:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3d5e208f32d730d431d4a4d4ed8095b1e7d9431
Validity
Not Before: Jun 8 16:01:28 2025 GMT
Not After : Jun 9 16:01:28 2025 GMT
Subject: CN=3338ab6bb7ba535022d41d30f58c59df802c6ee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0d:3e:11:fa:dd:1f:11:e0:63:a6:8b:07:30:
b5:0c:26:c0:68:be:47:3f:ca:93:5e:ea:30:44:b4:
29:8f:b3:d0:9f:c7:81:91:19:ce:36:5b:b9:75:76:
79:a6:b7:ce:ff:bb:2c:6b:43:6f:b0:46:a6:e1:49:
6f:b0:f1:39:44:7d:98:3a:44:77:f4:78:b2:22:ca:
b1:14:ce:f7:63:ab:c5:ec:7a:87:db:83:3e:54:00:
38:0d:2b:31:4a:85:68:e9:c2:98:6a:ec:c2:04:0b:
30:e9:d2:69:33:d2:bd:a0:48:86:3e:df:11:e3:0b:
64:af:ce:bb:7d:7e:cf:3d:0d:ef:a3:60:ce:2a:71:
da:58:85:e7:2f:de:02:32:6f:68:ec:ee:94:4b:a2:
00:d9:24:50:36:61:b6:de:dc:f2:09:d2:79:bb:e4:
55:5d:e5:3a:33:9b:36:8c:80:b4:5a:ca:91:2f:4a:
5f:34:ae:78:21:7d:41:a4:93:f0:9c:35:d6:ae:51:
61:ba:20:56:49:e8:c5:a9:fa:b4:9e:f5:dc:68:15:
86:05:df:ba:c4:33:7f:01:8f:34:8e:20:7a:bd:48:
41:35:36:63:6f:1b:e5:fc:78:b5:7a:2d:53:01:bf:
12:5c:30:0a:d1:20:2a:0a:bb:6b:47:34:ee:5a:f3:
42:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:38:AB:6B:B7:BA:53:50:22:D4:1D:30:F5:8C:59:DF:80:2C:6E:E3
X509v3 Authority Key Identifier:
keyid:D3:D5:E2:08:F3:2D:73:0D:43:1D:4A:4D:4E:D8:09:5B:1E:7D:94:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:1b:0e:cd:2d:e5:76:bf:44:29:bd:22:70:f2:18:80:7c:aa:
f9:05:5d:97:cc:bd:97:ea:ce:fa:47:51:9d:e9:7a:2a:d7:d9:
73:b6:c3:53:13:b9:0e:e6:ab:a3:d6:f9:98:6e:1e:65:44:70:
4e:2e:ab:34:b4:55:66:87:b9:20:9f:43:94:85:06:22:31:c1:
63:5b:30:c9:21:fc:d6:9d:4b:3c:33:2a:de:5a:f0:ea:ad:40:
6c:8e:16:10:3c:e6:c7:90:c8:80:a4:1a:47:46:49:f9:98:1e:
49:aa:bc:26:f5:3e:ec:4a:33:37:80:f1:8b:20:61:43:57:0c:
a3:97:ba:bc:05:23:01:19:65:71:6b:61:cc:eb:ce:4d:95:a2:
a7:17:01:cb:d0:93:ce:85:d4:ea:5d:fa:24:9c:19:4a:08:32:
17:77:82:a3:33:76:4c:0b:3a:4f:e1:0e:80:2c:b8:0f:0d:c3:
37:33:6b:47:95:b8:90:e5:c3:a7:93:6d:6d:fb:dc:6a:dc:ee:
e1:c0:fd:0d:65:a0:d9:b1:7f:7e:cd:9f:4a:dd:bd:43:17:03:
f5:cb:98:80:04:64:11:c8:87:66:6d:60:c3:40:b6:92:ba:29:
98:c2:eb:42:f3:7b:0f:db:38:a8:42:8e:ca:fd:ab:8d:ad:d2:
1b:1c:f4:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQRodExxhaoHlyM5QibEl0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzZDVlMjA4ZjMyZDczMGQ0MzFkNGE0ZDRlZDgwOTViMWU3
ZDk0MzEwHhcNMjUwNjA4MTYwMTI4WhcNMjUwNjA5MTYwMTI4WjAzMTEwLwYDVQQD
EygzMzM4YWI2YmI3YmE1MzUwMjJkNDFkMzBmNThjNTlkZjgwMmM2ZWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Q0+EfrdHxHgY6aLBzC1DCbAaL5H
P8qTXuowRLQpj7PQn8eBkRnONlu5dXZ5prfO/7ssa0NvsEam4UlvsPE5RH2YOkR3
9HiyIsqxFM73Y6vF7HqH24M+VAA4DSsxSoVo6cKYauzCBAsw6dJpM9K9oEiGPt8R
4wtkr867fX7PPQ3vo2DOKnHaWIXnL94CMm9o7O6US6IA2SRQNmG23tzyCdJ5u+RV
XeU6M5s2jIC0WsqRL0pfNK54IX1BpJPwnDXWrlFhuiBWSejFqfq0nvXcaBWGBd+6
xDN/AY80jiB6vUhBNTZjbxvl/Hi1ei1TAb8SXDAK0SAqCrtrRzTuWvNCYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDM4q2u3ulNQItQdMPWMWd+ALG7jMB8GA1UdIwQY
MBaAFNPV4gjzLXMNQx1KTU7YCVsefZQxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDlYaUNQTXRjdzFESFVwTlR0Z0pXeDU5bERFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mYTM5NmUtMGRkNC00MjI2LWFlNjEt
NmU4OWE4OGRhZTkzLzEvMDlYaUNQTXRjdzFESFVwTlR0Z0pXeDU5bERFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9mYTM5NmUtMGRkNC00MjI2LWFlNjEtNmU4OWE4OGRhZTkz
LzEvMDlYaUNQTXRjdzFESFVwTlR0Z0pXeDU5bERFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqRsOzS3l
dr9EKb0icPIYgHyq+QVdl8y9l+rO+kdRnel6KtfZc7bDUxO5Duaro9b5mG4eZURw
Ti6rNLRVZoe5IJ9DlIUGIjHBY1swySH81p1LPDMq3lrw6q1AbI4WEDzmx5DIgKQa
R0ZJ+ZgeSaq8JvU+7EozN4DxiyBhQ1cMo5e6vAUjARllcWthzOvOTZWipxcBy9CT
zoXU6l36JJwZSggyF3eCozN2TAs6T+EOgCy4Dw3DNzNrR5W4kOXDp5Ntbfvcatzu
4cD9DWWg2bF/fs2fSt29QxcD9cuYgARkEciHZm1gw0C2kropmMLrQvN7D9s4qEKO
yv2rja3SGxz0cA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 22:23:55 2025 by rpki-client