Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.mft
File: rh967y8S0HaqitWli8uNyvPwvUw.mft (raw, json)
Hash identifier: AL2CDv+L1Eb66k1qKsaCyghN0D/1tRFKXjyoy+VOZGA=
Subject key identifier: BF:7C:06:B0:A5:92:E4:55:EA:F2:1E:38:47:E2:D6:D6:90:70:88:EE
Authority key identifier: AE:1F:7A:EF:2F:12:D0:76:AA:8A:D5:A5:8B:CB:8D:CA:F3:F0:BD:4C
Certificate issuer: /CN=ae1f7aef2f12d076aa8ad5a58bcb8dcaf3f0bd4c
Certificate serial: 019768171E4E80519B7F315E0EC74D460E00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rh967y8S0HaqitWli8uNyvPwvUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.mft
Manifest number: 10DB
Signing time: Fri 13 Jun 2025 07:00:34 +0000
Manifest this update: Fri 13 Jun 2025 07:00:34 +0000
Manifest next update: Sat 14 Jun 2025 07:00:34 +0000
Files and hashes: 1: rh967y8S0HaqitWli8uNyvPwvUw.crl (hash: 42b2X85M3tzXHFCaGiZgwx5yYdvBeLAN9BtLbn6ucL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rh967y8S0HaqitWli8uNyvPwvUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 06:40:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:17:1e:4e:80:51:9b:7f:31:5e:0e:c7:4d:46:0e:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae1f7aef2f12d076aa8ad5a58bcb8dcaf3f0bd4c
Validity
Not Before: Jun 13 07:00:34 2025 GMT
Not After : Jun 14 07:00:34 2025 GMT
Subject: CN=bf7c06b0a592e455eaf21e3847e2d6d6907088ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:11:d0:e4:75:88:0b:e8:f6:d7:b9:2b:d8:cd:
6d:06:b6:98:52:59:c7:eb:c4:0b:23:50:83:38:1e:
01:56:a4:99:be:9d:a2:6d:ca:a9:58:90:0c:82:aa:
c0:4a:72:eb:26:70:06:2a:69:e1:87:6b:66:73:bb:
b0:1e:bc:3b:71:ea:72:c5:a2:2c:84:e3:4d:02:fc:
b3:02:a0:d1:dd:dd:b6:01:2c:ad:9c:c1:e5:c5:4f:
1f:9e:64:1d:83:e6:68:a0:a0:9f:cc:47:22:eb:2c:
eb:d7:46:b3:94:13:35:e4:a1:91:47:ce:fd:c8:25:
f8:43:c6:7c:9e:31:eb:31:b7:39:06:92:37:06:a2:
7f:54:e4:91:b7:f7:36:d7:7e:a7:98:e7:65:4d:c6:
ab:5d:22:36:cd:53:39:58:9c:0f:c2:99:80:61:12:
a4:7a:2d:6e:4e:7e:29:17:84:03:b2:f7:aa:08:a2:
53:94:27:13:1f:a8:e6:08:76:f8:bf:ff:99:be:c5:
b9:2a:8e:cb:98:59:be:62:1d:03:8a:51:03:9e:fa:
ac:cd:dc:8f:6d:3d:8e:fe:c0:de:f0:24:63:32:7c:
ed:12:9b:29:bc:c6:6e:dd:a7:d4:18:0f:8e:a1:df:
d3:bd:fa:e3:81:1f:13:5b:50:39:d2:67:b5:ad:70:
b4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:7C:06:B0:A5:92:E4:55:EA:F2:1E:38:47:E2:D6:D6:90:70:88:EE
X509v3 Authority Key Identifier:
keyid:AE:1F:7A:EF:2F:12:D0:76:AA:8A:D5:A5:8B:CB:8D:CA:F3:F0:BD:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rh967y8S0HaqitWli8uNyvPwvUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:cf:3c:4b:fa:99:cb:2b:87:6f:4a:06:ec:26:4e:7b:1f:f1:
a0:f9:0c:a6:69:fa:c4:e6:e9:45:b5:a4:a3:9d:ae:c4:fc:fc:
0c:6a:bf:80:d4:25:f5:2c:7f:74:28:e5:a2:20:d7:a7:8a:05:
5d:42:c6:84:f2:da:30:f7:df:10:ef:58:15:d1:62:b8:3c:7d:
19:0f:2e:32:e8:d6:e7:59:06:62:e6:99:12:c8:c6:0c:da:9e:
94:64:15:5e:c6:22:f0:49:e6:06:08:48:c7:d8:66:84:39:c1:
35:12:10:4c:77:96:3c:ad:7d:cb:d3:8e:2d:41:8f:5c:93:83:
62:bd:fd:0e:6c:48:04:9b:f2:9f:b0:87:d7:5b:ed:8c:3a:a3:
36:9a:cc:c7:50:ac:ed:97:12:13:f6:3b:01:36:8b:a8:bc:6a:
bc:3b:88:55:17:be:cf:8f:b5:7a:6c:8b:2f:5a:c7:ed:5e:01:
b1:3d:81:a4:fb:7c:6a:bd:91:96:a5:c2:5a:d5:cd:44:a9:4e:
76:7a:ea:0e:2e:cb:39:70:8e:a6:ac:dc:08:6f:ad:bd:0a:e4:
b3:1c:18:21:ed:51:b3:32:a0:11:29:96:67:45:15:4d:51:a1:
15:f5:0c:bf:cf:99:f3:e9:13:7f:4b:f0:da:ec:d7:bd:70:05:
74:26:7f:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdoFx5OgFGbfzFeDsdNRg4AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlMWY3YWVmMmYxMmQwNzZhYThhZDVhNThiY2I4ZGNhZjNm
MGJkNGMwHhcNMjUwNjEzMDcwMDM0WhcNMjUwNjE0MDcwMDM0WjAzMTEwLwYDVQQD
EyhiZjdjMDZiMGE1OTJlNDU1ZWFmMjFlMzg0N2UyZDZkNjkwNzA4OGVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhHQ5HWIC+j217kr2M1tBraYUlnH
68QLI1CDOB4BVqSZvp2ibcqpWJAMgqrASnLrJnAGKmnhh2tmc7uwHrw7cepyxaIs
hONNAvyzAqDR3d22ASytnMHlxU8fnmQdg+ZooKCfzEci6yzr10azlBM15KGRR879
yCX4Q8Z8njHrMbc5BpI3BqJ/VOSRt/c2136nmOdlTcarXSI2zVM5WJwPwpmAYRKk
ei1uTn4pF4QDsveqCKJTlCcTH6jmCHb4v/+ZvsW5Ko7LmFm+Yh0DilEDnvqszdyP
bT2O/sDe8CRjMnztEpspvMZu3afUGA+Ood/TvfrjgR8TW1A50me1rXC0/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL98BrClkuRV6vIeOEfi1taQcIjuMB8GA1UdIwQY
MBaAFK4feu8vEtB2qorVpYvLjcrz8L1MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmg5Njd5OFMwSGFxaXRXbGk4dU55dlB3dlV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9mNjBkMzEtYzc0OC00ZWI3LWI3ODEt
MDk4ZDNiZDBiOTUxLzEvcmg5Njd5OFMwSGFxaXRXbGk4dU55dlB3dlV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS9mNjBkMzEtYzc0OC00ZWI3LWI3ODEtMDk4ZDNiZDBiOTUx
LzEvcmg5Njd5OFMwSGFxaXRXbGk4dU55dlB3dlV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABM88S/qZ
yyuHb0oG7CZOex/xoPkMpmn6xObpRbWko52uxPz8DGq/gNQl9Sx/dCjloiDXp4oF
XULGhPLaMPffEO9YFdFiuDx9GQ8uMujW51kGYuaZEsjGDNqelGQVXsYi8EnmBghI
x9hmhDnBNRIQTHeWPK19y9OOLUGPXJODYr39DmxIBJvyn7CH11vtjDqjNprMx1Cs
7ZcSE/Y7ATaLqLxqvDuIVRe+z4+1emyLL1rH7V4BsT2BpPt8ar2RlqXCWtXNRKlO
dnrqDi7LOXCOpqzcCG+tvQrksxwYIe1RszKgESmWZ0UVTVGhFfUMv8+Z8+kTf0vw
2uzXvXAFdCZ/Hw==
-----END CERTIFICATE-----
Generated at Fri Jun 13 08:39:10 2025 by rpki-client