Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
File: APfVbNN-MeClJfW7GluvX0meQG0.mft (raw, json)
Hash identifier: w0CsoLCpNLYylvX/rYQ0aLLy/+KnAozzJsU4ESsd0n4=
Subject key identifier: 4B:B2:84:5B:88:E4:6A:0C:7D:F3:15:F2:6A:1E:B4:B0:BD:1C:49:E6
Authority key identifier: 00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D
Certificate issuer: /CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
Certificate serial: 019749312F9D3EB0938745F8CF7BC19961E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
Manifest number: 14D1
Signing time: Sat 07 Jun 2025 07:00:49 +0000
Manifest this update: Sat 07 Jun 2025 07:00:49 +0000
Manifest next update: Sun 08 Jun 2025 07:00:49 +0000
Files and hashes: 1: APfVbNN-MeClJfW7GluvX0meQG0.crl (hash: 0ouCDvxvOLxYL0S5VI1G62dJYyFk2iYBYup1RxTYZ4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:2f:9d:3e:b0:93:87:45:f8:cf:7b:c1:99:61:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
Validity
Not Before: Jun 7 07:00:49 2025 GMT
Not After : Jun 8 07:00:49 2025 GMT
Subject: CN=4bb2845b88e46a0c7df315f26a1eb4b0bd1c49e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ae:0b:e9:de:79:c9:f6:22:3e:2f:18:38:71:
f4:56:54:cc:e3:fd:9e:1b:25:de:f2:4b:12:93:a5:
ed:5b:8c:35:82:95:69:d3:7e:46:b6:09:21:01:9e:
2a:9a:27:a5:a3:7c:1a:80:c6:11:52:d7:f9:f8:2a:
d4:6b:21:80:25:06:0a:74:29:5f:44:40:72:5f:31:
61:15:3b:5b:4d:28:92:2f:a8:ee:ab:5b:34:59:4a:
da:98:e5:79:9a:c3:15:92:b2:1d:99:eb:82:6b:fb:
32:a4:a4:d2:5c:2c:3f:69:3e:bf:55:1d:bd:ca:da:
c1:70:34:ff:db:1f:3d:42:44:b1:fe:d7:7d:86:14:
96:55:0a:52:11:3a:15:0e:88:21:88:3b:d9:15:5b:
09:7a:aa:71:ad:33:e7:ec:d4:4a:16:07:6e:5f:33:
2f:63:0a:a7:e1:9f:54:fd:c9:31:92:12:e7:52:bd:
41:e7:c5:b7:30:5d:25:71:07:06:80:fc:8d:c2:21:
12:01:35:78:b2:1b:3b:7f:6c:0b:cc:89:c9:b7:fe:
d9:86:df:ca:66:0e:f2:1f:a6:12:fd:7d:01:58:40:
78:7b:92:7a:c0:07:2f:56:49:61:4a:26:29:cc:86:
f8:6f:e8:3e:b9:87:b7:c1:60:da:62:20:3d:4f:39:
7c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B2:84:5B:88:E4:6A:0C:7D:F3:15:F2:6A:1E:B4:B0:BD:1C:49:E6
X509v3 Authority Key Identifier:
keyid:00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:26:6d:c1:85:e2:66:b5:07:51:54:6b:8c:2c:8e:88:5b:50:
13:c9:94:e4:1e:83:20:50:09:57:29:9a:57:8e:7a:00:73:49:
f9:69:08:05:c3:a6:21:c9:d5:27:38:72:2b:05:4f:5d:4e:d8:
1e:4b:2e:c7:d3:4a:a4:2a:30:e5:ba:e5:95:8d:5f:5d:64:ae:
a6:9d:1d:12:09:52:31:9e:a1:80:65:24:f9:e3:6a:dd:61:e9:
1c:cf:15:ae:ce:05:12:4e:18:c6:f7:e3:bd:f8:98:a8:46:b3:
3a:0a:29:7a:3b:c5:73:61:b2:47:03:40:dd:25:70:bc:87:19:
a8:e6:c2:3d:58:60:3a:4c:ac:91:21:9a:8b:a0:b6:0a:8e:03:
d2:04:19:2b:8b:ab:36:0b:c8:bf:36:dc:f2:2f:41:cc:ba:00:
ba:7e:ca:c0:92:f2:d7:96:66:fb:c9:c1:16:26:f0:e6:10:9b:
13:fc:e8:00:6d:96:3d:a0:11:a5:29:41:6e:a5:7b:39:19:52:
d5:d0:17:ac:b8:32:b4:6d:16:fc:3a:ac:a3:70:b4:c4:f3:45:
77:af:10:5e:c0:16:7a:93:d2:fa:ae:1e:fd:ee:fe:7f:0b:e6:
06:2e:03:95:bb:d4:01:4f:88:fa:23:05:2b:83:d6:9e:42:0f:
8d:04:dc:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJMS+dPrCTh0X4z3vBmWHpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwZjdkNTZjZDM3ZTMxZTBhNTI1ZjViYjFhNWJhZjVmNDk5
ZTQwNmQwHhcNMjUwNjA3MDcwMDQ5WhcNMjUwNjA4MDcwMDQ5WjAzMTEwLwYDVQQD
Eyg0YmIyODQ1Yjg4ZTQ2YTBjN2RmMzE1ZjI2YTFlYjRiMGJkMWM0OWU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2q4L6d55yfYiPi8YOHH0VlTM4/2e
GyXe8ksSk6XtW4w1gpVp035GtgkhAZ4qmielo3wagMYRUtf5+CrUayGAJQYKdClf
REByXzFhFTtbTSiSL6juq1s0WUramOV5msMVkrIdmeuCa/sypKTSXCw/aT6/VR29
ytrBcDT/2x89QkSx/td9hhSWVQpSEToVDoghiDvZFVsJeqpxrTPn7NRKFgduXzMv
Ywqn4Z9U/ckxkhLnUr1B58W3MF0lcQcGgPyNwiESATV4shs7f2wLzInJt/7Zht/K
Zg7yH6YS/X0BWEB4e5J6wAcvVklhSiYpzIb4b+g+uYe3wWDaYiA9Tzl8hQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEuyhFuI5GoMffMV8moetLC9HEnmMB8GA1UdIwQY
MBaAFAD31WzTfjHgpSX1uxpbr19JnkBtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC84Y2I3ZWEtZDc1ZC00NmY2LWE1YzMt
MTNiMjllYWUxOWIzLzEvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC84Y2I3ZWEtZDc1ZC00NmY2LWE1YzMtMTNiMjllYWUxOWIz
LzEvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmCZtwYXi
ZrUHUVRrjCyOiFtQE8mU5B6DIFAJVymaV456AHNJ+WkIBcOmIcnVJzhyKwVPXU7Y
Hksux9NKpCow5brllY1fXWSupp0dEglSMZ6hgGUk+eNq3WHpHM8Vrs4FEk4Yxvfj
vfiYqEazOgopejvFc2GyRwNA3SVwvIcZqObCPVhgOkyskSGai6C2Co4D0gQZK4ur
NgvIvzbc8i9BzLoAun7KwJLy15Zm+8nBFibw5hCbE/zoAG2WPaARpSlBbqV7ORlS
1dAXrLgytG0W/Dqso3C0xPNFd68QXsAWepPS+q4e/e7+fwvmBi4DlbvUAU+I+iMF
K4PWnkIPjQTcng==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:34:57 2025 by rpki-client