Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/74ac9d-2a53-4ae5-ba72-62afcb9972d7/1/iZFbtGEcVfYprTpMz-NXwECh3BI.mft
File: iZFbtGEcVfYprTpMz-NXwECh3BI.mft (raw, json)
Hash identifier: bqzaA7RYaSSpZFwoG5r9DhKaw/PcHXyVUZlI/cn+nSs=
Subject key identifier: C6:14:7B:30:A9:35:92:71:C5:9B:97:5A:06:1C:BF:F2:D2:88:BA:A9
Authority key identifier: 89:91:5B:B4:61:1C:55:F6:29:AD:3A:4C:CF:E3:57:C0:40:A1:DC:12
Certificate issuer: /CN=89915bb4611c55f629ad3a4ccfe357c040a1dc12
Certificate serial: 019745F9783B8FC509D3E9E3410B9672E1B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZFbtGEcVfYprTpMz-NXwECh3BI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/74ac9d-2a53-4ae5-ba72-62afcb9972d7/1/iZFbtGEcVfYprTpMz-NXwECh3BI.mft
Manifest number: 0546
Signing time: Fri 06 Jun 2025 16:01:04 +0000
Manifest this update: Fri 06 Jun 2025 16:01:04 +0000
Manifest next update: Sat 07 Jun 2025 16:01:04 +0000
Files and hashes: 1: iZFbtGEcVfYprTpMz-NXwECh3BI.crl (hash: lg66GPmAQaBe0eAE+e2VW4s7FmzZNHX4IcTIxtRSUa0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/74ac9d-2a53-4ae5-ba72-62afcb9972d7/1/iZFbtGEcVfYprTpMz-NXwECh3BI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/74ac9d-2a53-4ae5-ba72-62afcb9972d7/1/iZFbtGEcVfYprTpMz-NXwECh3BI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iZFbtGEcVfYprTpMz-NXwECh3BI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:f9:78:3b:8f:c5:09:d3:e9:e3:41:0b:96:72:e1:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89915bb4611c55f629ad3a4ccfe357c040a1dc12
Validity
Not Before: Jun 6 16:01:04 2025 GMT
Not After : Jun 7 16:01:04 2025 GMT
Subject: CN=c6147b30a9359271c59b975a061cbff2d288baa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:28:c7:db:c3:54:bf:d9:5f:d3:6a:5a:30:0e:
c8:cf:7c:2b:a6:45:d3:43:69:5f:64:4c:de:26:69:
d1:c2:d9:ff:f7:d4:4b:45:4c:1a:03:b3:07:ba:bd:
a6:eb:42:cb:48:13:00:a9:2f:47:82:b3:6d:51:d6:
3f:d0:8d:31:1b:18:e3:15:76:c9:e3:47:a8:63:6d:
8c:24:45:10:fe:78:f9:2b:4d:3a:5c:7d:4e:2c:12:
a1:fb:67:b1:94:72:7c:71:08:ac:a5:1f:82:2d:30:
5a:72:d6:3a:d2:e5:22:15:15:7a:63:67:67:1a:cd:
72:72:22:50:d5:42:d7:68:01:4f:ec:2b:f0:78:fe:
3b:4e:8e:09:8f:5c:ee:99:44:aa:8d:62:74:36:bc:
b3:e5:b6:56:3e:e6:a5:94:4b:03:f4:f7:36:3b:3a:
de:5e:6f:ad:b5:ab:76:43:d6:e3:2d:a7:e4:1a:b3:
71:4a:63:d4:8b:af:b1:f8:07:bf:df:82:1a:06:c7:
94:f5:b6:49:1b:19:7e:d7:f0:d3:bc:1a:28:0c:ea:
d5:6b:dc:4a:96:fb:b3:13:58:a2:29:65:6c:6d:d1:
e6:76:22:5e:5b:f8:89:e4:6c:9f:55:24:ad:d1:1f:
d4:8a:b5:d3:cb:d0:3a:33:47:a3:cf:b9:6e:5b:07:
74:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:14:7B:30:A9:35:92:71:C5:9B:97:5A:06:1C:BF:F2:D2:88:BA:A9
X509v3 Authority Key Identifier:
keyid:89:91:5B:B4:61:1C:55:F6:29:AD:3A:4C:CF:E3:57:C0:40:A1:DC:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZFbtGEcVfYprTpMz-NXwECh3BI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/74ac9d-2a53-4ae5-ba72-62afcb9972d7/1/iZFbtGEcVfYprTpMz-NXwECh3BI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/74ac9d-2a53-4ae5-ba72-62afcb9972d7/1/iZFbtGEcVfYprTpMz-NXwECh3BI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:ae:70:69:91:b6:b4:67:eb:af:b0:ad:26:ce:8b:31:f5:9a:
ce:eb:c2:da:c7:f8:e8:d7:ee:2f:d4:11:b4:17:2f:a6:4c:49:
eb:8c:fb:60:6c:1a:5f:1e:36:14:b8:ee:23:b5:4f:d7:5b:1c:
5a:9a:0b:fc:00:25:2c:ff:18:c8:52:3c:14:97:92:32:9c:2d:
cc:ef:37:b9:93:a6:bb:5a:3f:65:84:91:e1:c1:a1:e7:db:38:
22:b0:4d:2c:95:4c:46:5f:fd:3f:89:5b:5a:b7:67:ef:7d:95:
1f:bb:63:2b:51:6d:bb:8a:68:a7:fd:a2:fa:aa:62:34:da:f3:
ba:e1:a0:8b:4e:84:a7:3f:c4:66:bb:58:fd:da:dd:c4:12:df:
ed:25:88:ec:e9:ff:9e:70:e1:c2:f2:35:d9:3e:54:d3:61:40:
5f:00:5a:10:31:1d:02:e1:a4:f0:06:b8:3e:a8:fb:ea:e2:aa:
99:e4:f7:4d:59:b9:71:88:3e:f4:fe:9d:92:75:24:3e:1c:54:
a9:44:4d:d3:e4:5a:f3:d2:44:b0:15:e8:b7:a1:c9:08:91:3d:
54:7a:27:70:22:04:d3:0d:1c:9f:d8:d6:c2:ef:40:71:d8:5e:
21:a2:d8:8a:4d:f9:b5:a4:ec:3b:d7:07:fd:7c:63:22:ae:2b:
47:b5:01:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdF+Xg7j8UJ0+njQQuWcuG2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5OTE1YmI0NjExYzU1ZjYyOWFkM2E0Y2NmZTM1N2MwNDBh
MWRjMTIwHhcNMjUwNjA2MTYwMTA0WhcNMjUwNjA3MTYwMTA0WjAzMTEwLwYDVQQD
EyhjNjE0N2IzMGE5MzU5MjcxYzU5Yjk3NWEwNjFjYmZmMmQyODhiYWE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqyjH28NUv9lf02paMA7Iz3wrpkXT
Q2lfZEzeJmnRwtn/99RLRUwaA7MHur2m60LLSBMAqS9HgrNtUdY/0I0xGxjjFXbJ
40eoY22MJEUQ/nj5K006XH1OLBKh+2exlHJ8cQispR+CLTBactY60uUiFRV6Y2dn
Gs1yciJQ1ULXaAFP7CvweP47To4Jj1zumUSqjWJ0Nryz5bZWPuallEsD9Pc2Ozre
Xm+ttat2Q9bjLafkGrNxSmPUi6+x+Ae/34IaBseU9bZJGxl+1/DTvBooDOrVa9xK
lvuzE1iiKWVsbdHmdiJeW/iJ5GyfVSSt0R/UirXTy9A6M0ejz7luWwd0bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMYUezCpNZJxxZuXWgYcv/LSiLqpMB8GA1UdIwQY
MBaAFImRW7RhHFX2Ka06TM/jV8BAodwSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVpGYnRHRWNWZllwclRwTXotTlh3RUNoM0JJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC83NGFjOWQtMmE1My00YWU1LWJhNzIt
NjJhZmNiOTk3MmQ3LzEvaVpGYnRHRWNWZllwclRwTXotTlh3RUNoM0JJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC83NGFjOWQtMmE1My00YWU1LWJhNzItNjJhZmNiOTk3MmQ3
LzEvaVpGYnRHRWNWZllwclRwTXotTlh3RUNoM0JJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATa5waZG2
tGfrr7CtJs6LMfWazuvC2sf46NfuL9QRtBcvpkxJ64z7YGwaXx42FLjuI7VP11sc
WpoL/AAlLP8YyFI8FJeSMpwtzO83uZOmu1o/ZYSR4cGh59s4IrBNLJVMRl/9P4lb
Wrdn732VH7tjK1Ftu4pop/2i+qpiNNrzuuGgi06Epz/EZrtY/drdxBLf7SWI7On/
nnDhwvI12T5U02FAXwBaEDEdAuGk8Aa4Pqj76uKqmeT3TVm5cYg+9P6dknUkPhxU
qURN0+Ra89JEsBXot6HJCJE9VHoncCIE0w0cn9jWwu9AcdheIaLYik35taTsO9cH
/XxjIq4rR7UBog==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:23:50 2025 by rpki-client