Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
File: cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft (raw, json)
Hash identifier: WBlDrp1dz1jXDx9LNa+3UhwBweZgTQAWj+Hr/NyEmf4=
Subject key identifier: 03:F7:4C:89:28:EA:76:90:2C:67:F9:82:86:5E:16:B8:E3:43:0B:83
Authority key identifier: 70:80:29:A6:74:17:7E:FD:99:25:22:75:09:46:18:C0:C9:CF:BD:1D
Certificate issuer: /CN=708029a674177efd99252275094618c0c9cfbd1d
Certificate serial: 01974AB1517BDDC006B62A8EA8D1B654F5B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
Manifest number: 0548
Signing time: Sat 07 Jun 2025 14:00:23 +0000
Manifest this update: Sat 07 Jun 2025 14:00:23 +0000
Manifest next update: Sun 08 Jun 2025 14:00:23 +0000
Files and hashes: 1: cIAppnQXfv2ZJSJ1CUYYwMnPvR0.crl (hash: ADM4XfXpw2MdMo2N/S0Fv5zXcnPNp8onABYiJ0Oov6o=)
2: gf0Xy6qbBLzQzsLjIlFfh_7JZjk.roa (hash: Ah/uhPrNkgzcI+es99gluPPaRScN93x4JTQmt+pb9V0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:51:7b:dd:c0:06:b6:2a:8e:a8:d1:b6:54:f5:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=708029a674177efd99252275094618c0c9cfbd1d
Validity
Not Before: Jun 7 14:00:23 2025 GMT
Not After : Jun 8 14:00:23 2025 GMT
Subject: CN=03f74c8928ea76902c67f982865e16b8e3430b83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:db:2c:a8:59:5c:c8:4e:1c:be:41:10:2d:54:
0d:75:da:ed:7b:28:1c:ae:59:4c:b7:a7:2f:c0:85:
40:d0:b9:fa:d8:cb:99:db:c8:90:5a:65:f7:39:9b:
73:51:f4:48:a0:83:3e:e1:bb:50:72:55:1f:ba:3e:
80:03:02:37:3e:28:64:3c:89:f0:b5:96:17:fa:f1:
20:9f:84:96:60:b9:e2:67:40:62:fc:e7:1d:c4:b3:
4c:55:07:ff:d6:98:ad:03:49:f6:6a:17:0b:bf:d0:
cc:54:8b:23:31:31:45:00:49:fa:1e:e3:72:94:60:
60:0a:19:d7:df:1c:da:b7:b9:68:1c:88:05:97:bd:
f7:6e:45:fe:a4:7f:04:66:7a:fb:aa:77:57:4b:85:
fd:b4:76:e6:97:65:45:7a:b3:09:f6:a7:86:99:0e:
bd:44:c5:87:fb:84:1e:43:6b:12:40:cf:86:0e:87:
c4:96:33:e1:37:ad:9e:01:18:fb:53:a4:ff:e6:50:
a9:1f:1f:5d:ee:ed:d8:69:d0:40:d8:f8:8d:10:e5:
17:5d:39:12:38:41:d7:70:4d:b7:1a:2a:84:81:68:
e4:e0:ba:75:0c:ef:a7:05:b0:0d:fb:a0:5d:b1:74:
6f:4b:4c:82:52:a5:18:a4:66:e2:52:54:b9:7f:fb:
c5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F7:4C:89:28:EA:76:90:2C:67:F9:82:86:5E:16:B8:E3:43:0B:83
X509v3 Authority Key Identifier:
keyid:70:80:29:A6:74:17:7E:FD:99:25:22:75:09:46:18:C0:C9:CF:BD:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:70:11:23:55:33:14:c5:eb:b6:7b:5f:59:f9:44:f9:1c:26:
e8:ed:78:ed:41:1d:2d:cc:a6:d2:94:45:46:b7:ec:c1:ef:b6:
eb:73:22:cb:fb:50:17:41:b3:ae:96:fb:c5:6c:f5:0e:2f:c4:
0f:6b:0d:4c:e5:04:0d:a0:6c:d0:0e:86:73:99:f3:17:98:29:
0f:08:fa:3b:3b:46:83:24:50:32:a4:c6:d5:0b:29:b9:da:14:
09:19:47:06:ce:0b:2b:ba:6a:71:ce:62:f5:69:69:ac:20:ad:
d0:a4:a2:f5:19:83:8d:3b:3f:88:d8:a4:1c:be:6a:f0:93:1d:
23:b8:a6:94:0f:f4:39:26:ea:95:d0:72:b8:9b:ec:ec:f2:9b:
0d:d1:43:c2:ef:83:9d:08:87:66:45:dd:27:17:ab:a8:83:bf:
9b:9e:b0:0b:8d:95:41:90:ad:52:af:9a:76:8c:86:94:1a:f6:
4d:65:12:50:38:7b:f0:62:b4:d3:45:a2:c8:57:5c:a6:57:bd:
8e:e3:ed:f0:da:a6:13:a5:91:c5:02:96:08:bc:60:68:ef:6b:
56:6b:30:f7:7a:66:36:73:63:f4:04:e9:6e:a6:2c:8b:90:f0:
c9:b7:2b:ce:b0:2f:97:b4:78:ec:52:32:6e:53:94:1e:59:53:
28:52:17:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKsVF73cAGtiqOqNG2VPW3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwODAyOWE2NzQxNzdlZmQ5OTI1MjI3NTA5NDYxOGMwYzlj
ZmJkMWQwHhcNMjUwNjA3MTQwMDIzWhcNMjUwNjA4MTQwMDIzWjAzMTEwLwYDVQQD
EygwM2Y3NGM4OTI4ZWE3NjkwMmM2N2Y5ODI4NjVlMTZiOGUzNDMwYjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutssqFlcyE4cvkEQLVQNddrteygc
rllMt6cvwIVA0Ln62MuZ28iQWmX3OZtzUfRIoIM+4btQclUfuj6AAwI3PihkPInw
tZYX+vEgn4SWYLniZ0Bi/OcdxLNMVQf/1pitA0n2ahcLv9DMVIsjMTFFAEn6HuNy
lGBgChnX3xzat7loHIgFl733bkX+pH8EZnr7qndXS4X9tHbml2VFerMJ9qeGmQ69
RMWH+4QeQ2sSQM+GDofEljPhN62eARj7U6T/5lCpHx9d7u3YadBA2PiNEOUXXTkS
OEHXcE23GiqEgWjk4Lp1DO+nBbAN+6BdsXRvS0yCUqUYpGbiUlS5f/vFBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAP3TIko6naQLGf5goZeFrjjQwuDMB8GA1UdIwQY
MBaAFHCAKaZ0F379mSUidQlGGMDJz70dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0lBcHBuUVhmdjJaSlNKMUNVWVl3TW5QdlIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8wOGQ0NGMtZjEwMi00YjcwLThkYjAt
NzJhYmVlZmVkYTRhLzEvY0lBcHBuUVhmdjJaSlNKMUNVWVl3TW5QdlIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC8wOGQ0NGMtZjEwMi00YjcwLThkYjAtNzJhYmVlZmVkYTRh
LzEvY0lBcHBuUVhmdjJaSlNKMUNVWVl3TW5QdlIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYnARI1Uz
FMXrtntfWflE+Rwm6O147UEdLcym0pRFRrfswe+263Miy/tQF0Gzrpb7xWz1Di/E
D2sNTOUEDaBs0A6Gc5nzF5gpDwj6OztGgyRQMqTG1QspudoUCRlHBs4LK7pqcc5i
9WlprCCt0KSi9RmDjTs/iNikHL5q8JMdI7imlA/0OSbqldByuJvs7PKbDdFDwu+D
nQiHZkXdJxerqIO/m56wC42VQZCtUq+adoyGlBr2TWUSUDh78GK000WiyFdcple9
juPt8NqmE6WRxQKWCLxgaO9rVmsw93pmNnNj9ATpbqYsi5DwybcrzrAvl7R47FIy
blOUHllTKFIX2w==
-----END CERTIFICATE-----
Generated at Sat Jun 7 20:30:44 2025 by rpki-client