Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft
File: EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft (raw, json)
Hash identifier: R3MuYpjAVLTPFB7WIxYsSzLYeHud8kcsBz64V+B1ot4=
Subject key identifier: 0F:AE:F0:E7:30:B7:07:57:3A:77:60:E9:19:E4:27:1A:BF:7D:37:24
Authority key identifier: 10:79:7E:B5:F9:AA:9A:BE:52:00:8C:E7:F2:1A:B4:4A:FD:EE:A0:D0
Certificate issuer: /CN=10797eb5f9aa9abe52008ce7f21ab44afdeea0d0
Certificate serial: 0197470BC84F887B37313DF9BC4FD4C4C045
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft
Manifest number: 1577
Signing time: Fri 06 Jun 2025 21:00:43 +0000
Manifest this update: Fri 06 Jun 2025 21:00:43 +0000
Manifest next update: Sat 07 Jun 2025 21:00:43 +0000
Files and hashes: 1: EHl-tfmqmr5SAIzn8hq0Sv3uoNA.crl (hash: nqkvDgNyTAJaETCud4t4A3UnGDE9JEQH3nzh5+EJ51M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:c8:4f:88:7b:37:31:3d:f9:bc:4f:d4:c4:c0:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10797eb5f9aa9abe52008ce7f21ab44afdeea0d0
Validity
Not Before: Jun 6 21:00:43 2025 GMT
Not After : Jun 7 21:00:43 2025 GMT
Subject: CN=0faef0e730b707573a7760e919e4271abf7d3724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e6:1d:96:1b:38:50:6c:31:c5:67:15:39:cb:
0e:2c:13:68:77:4b:55:a7:3c:37:4c:c3:3d:90:44:
b8:c3:f4:3b:28:74:e1:05:03:e1:ce:09:fc:9d:07:
c8:81:f6:00:2f:f7:3d:8d:67:0f:5b:84:83:f0:cc:
9f:0b:b6:0d:28:43:8a:12:8c:01:8f:a6:5d:ba:4a:
30:af:c3:89:20:bb:3c:91:f6:20:0e:76:3c:b1:73:
26:fa:ce:c3:28:67:99:32:d1:08:a9:0d:f8:2a:7c:
0e:86:65:59:24:45:b1:39:6f:0d:02:6c:76:b0:45:
f4:44:29:6f:32:de:bc:25:b3:e2:7c:3c:bd:b2:45:
2c:49:d0:77:04:d9:32:5f:5a:ec:84:b3:16:84:e4:
9b:d1:63:a8:5f:aa:7d:5e:c0:ab:f7:fd:3b:24:37:
1e:f2:53:58:45:80:31:59:76:2b:b5:93:89:74:80:
a4:36:82:e6:d1:3a:ff:5a:59:f2:9c:64:63:06:16:
94:fd:41:04:01:ae:9b:6f:d8:6f:6b:6c:4a:5d:58:
54:5b:62:5c:c1:a6:05:e0:dc:05:4e:97:39:f8:9b:
2a:73:37:8e:a3:5c:65:0a:55:ec:d2:8f:ef:4a:d5:
8d:f3:db:f4:11:ff:76:4d:c4:1c:99:57:55:c6:af:
61:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:AE:F0:E7:30:B7:07:57:3A:77:60:E9:19:E4:27:1A:BF:7D:37:24
X509v3 Authority Key Identifier:
keyid:10:79:7E:B5:F9:AA:9A:BE:52:00:8C:E7:F2:1A:B4:4A:FD:EE:A0:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:f8:45:32:74:bb:6a:81:93:05:86:bd:96:ac:33:72:fe:4f:
d9:88:15:22:d3:ed:a9:23:7d:89:c4:6d:0a:9c:75:27:ec:56:
d7:a0:1c:80:0a:47:b7:fa:af:92:b1:46:42:17:2a:f0:ec:4f:
98:5e:44:3a:14:3d:b1:e3:5c:89:89:75:a3:7a:9b:c2:a0:e9:
52:f8:aa:9b:f7:64:88:2a:d1:4b:17:84:57:c0:4b:bf:5f:e5:
bc:4e:b9:15:8a:90:e2:a0:f0:f6:bd:cf:ea:05:5e:11:5a:ab:
95:fa:26:ef:3f:36:4a:bc:4b:d9:a7:c6:87:58:94:1a:b6:da:
f5:2e:0a:d8:a2:4b:1f:21:3a:5a:41:94:06:e7:55:7a:c1:6e:
5b:18:10:9a:33:fb:44:12:d0:08:58:91:1d:17:e8:10:4d:f7:
80:58:aa:5f:68:54:06:b8:88:61:fb:69:9a:90:89:67:a5:0a:
60:57:51:b3:ce:93:fb:c1:6e:0e:d6:2e:b9:cd:76:7d:4b:5d:
6f:d2:89:72:b5:c9:01:01:97:74:1c:2b:1a:1b:cd:e6:4f:54:
8f:a8:5f:1a:f9:09:a2:7a:d6:27:86:9b:f0:25:22:52:69:b3:
11:c4:d0:e1:26:b6:fd:4a:6c:65:da:6c:d9:a2:3a:a2:f1:1a:
ad:5c:bf:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHC8hPiHs3MT35vE/UxMBFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwNzk3ZWI1ZjlhYTlhYmU1MjAwOGNlN2YyMWFiNDRhZmRl
ZWEwZDAwHhcNMjUwNjA2MjEwMDQzWhcNMjUwNjA3MjEwMDQzWjAzMTEwLwYDVQQD
EygwZmFlZjBlNzMwYjcwNzU3M2E3NzYwZTkxOWU0MjcxYWJmN2QzNzI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+Ydlhs4UGwxxWcVOcsOLBNod0tV
pzw3TMM9kES4w/Q7KHThBQPhzgn8nQfIgfYAL/c9jWcPW4SD8MyfC7YNKEOKEowB
j6Zdukowr8OJILs8kfYgDnY8sXMm+s7DKGeZMtEIqQ34KnwOhmVZJEWxOW8NAmx2
sEX0RClvMt68JbPifDy9skUsSdB3BNkyX1rshLMWhOSb0WOoX6p9XsCr9/07JDce
8lNYRYAxWXYrtZOJdICkNoLm0Tr/WlnynGRjBhaU/UEEAa6bb9hva2xKXVhUW2Jc
waYF4NwFTpc5+JsqczeOo1xlClXs0o/vStWN89v0Ef92TcQcmVdVxq9hmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA+u8OcwtwdXOndg6RnkJxq/fTckMB8GA1UdIwQY
MBaAFBB5frX5qpq+UgCM5/IatEr97qDQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUhsLXRmbXFtcjVTQUl6bjhocTBTdjN1b05BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9mNWM4YTMtZTVjYS00MWFlLWFmOGEt
OGRiNzA4MzQ3NDM4LzEvRUhsLXRmbXFtcjVTQUl6bjhocTBTdjN1b05BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS9mNWM4YTMtZTVjYS00MWFlLWFmOGEtOGRiNzA4MzQ3NDM4
LzEvRUhsLXRmbXFtcjVTQUl6bjhocTBTdjN1b05BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAovhFMnS7
aoGTBYa9lqwzcv5P2YgVItPtqSN9icRtCpx1J+xW16AcgApHt/qvkrFGQhcq8OxP
mF5EOhQ9seNciYl1o3qbwqDpUviqm/dkiCrRSxeEV8BLv1/lvE65FYqQ4qDw9r3P
6gVeEVqrlfom7z82SrxL2afGh1iUGrba9S4K2KJLHyE6WkGUBudVesFuWxgQmjP7
RBLQCFiRHRfoEE33gFiqX2hUBriIYftpmpCJZ6UKYFdRs86T+8FuDtYuuc12fUtd
b9KJcrXJAQGXdBwrGhvN5k9Uj6hfGvkJonrWJ4ab8CUiUmmzEcTQ4Sa2/UpsZdps
2aI6ovEarVy/HQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:02:10 2025 by rpki-client