Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
File: 1a8gwCbeEE2W8XrLr054fvnTAgY.mft (raw, json)
Hash identifier: NUBFqoCtJiA/LI3ptBz8abFBjkEj/GYu50lkPkXF/GA=
Subject key identifier: A7:2A:D6:67:E2:46:14:CF:4A:7B:1E:77:F4:9A:6A:C9:95:3D:7A:2C
Authority key identifier: D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
Certificate issuer: /CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Certificate serial: 019764718935749F8E4092689B340E469D2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
Manifest number: 09C9
Signing time: Thu 12 Jun 2025 14:00:51 +0000
Manifest this update: Thu 12 Jun 2025 14:00:51 +0000
Manifest next update: Fri 13 Jun 2025 14:00:51 +0000
Files and hashes: 1: 1a8gwCbeEE2W8XrLr054fvnTAgY.crl (hash: 8SPSjLVMHWkN7Bs2M2Kbo74BcmfdIkl5bZYnHnZIqi8=)
2: ZntZKX2L_8Ma0koJ3HPW10lURHI.roa (hash: OJbq7vowsXJwKs2XlYdhIC+ZaJvxn8OPWmKWbar3xew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:71:89:35:74:9f:8e:40:92:68:9b:34:0e:46:9d:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Validity
Not Before: Jun 12 14:00:51 2025 GMT
Not After : Jun 13 14:00:51 2025 GMT
Subject: CN=a72ad667e24614cf4a7b1e77f49a6ac9953d7a2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:2b:1d:27:77:09:23:b6:74:e4:16:7d:7f:07:
0f:e9:36:2c:40:61:cd:a9:df:43:6a:29:60:7d:5c:
cd:03:a8:9a:8f:11:50:49:6d:3d:7b:86:45:ef:a4:
07:e6:e3:c3:ba:f2:fe:fc:1d:8c:9a:ff:73:ec:5d:
6e:13:ec:8e:5e:9f:4f:1f:4a:7d:f7:a5:5f:a7:f4:
a1:93:71:b9:af:9b:33:79:aa:50:c0:65:73:e4:24:
be:18:e4:9d:18:dd:92:98:72:67:69:63:07:3e:31:
35:2c:93:31:0a:0d:31:a6:cf:69:0a:4c:a2:39:e5:
f8:0e:2d:6b:f6:93:fb:f6:ef:53:60:49:1f:c0:97:
f4:7b:e4:8f:39:d3:36:dc:18:fa:2a:66:b9:68:92:
e0:b7:ad:76:1a:51:50:4e:b9:de:6e:ba:58:dd:5a:
c8:e7:73:59:cd:35:ca:38:96:e0:f4:50:fa:28:a9:
47:10:77:75:4d:a3:38:25:48:b6:9d:dc:ac:a0:b7:
06:f9:ac:80:89:ef:1b:a8:59:ec:28:ba:98:c2:08:
5b:33:9c:d3:14:06:19:b3:d6:7f:ad:2c:7a:42:80:
4e:30:0b:50:b7:e3:43:d1:63:9b:6d:1e:ee:3d:4f:
16:d5:cc:6a:3c:f6:80:8d:e3:a4:a0:06:da:cb:52:
e1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2A:D6:67:E2:46:14:CF:4A:7B:1E:77:F4:9A:6A:C9:95:3D:7A:2C
X509v3 Authority Key Identifier:
keyid:D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:8a:c4:8b:9c:55:4c:a6:ea:24:ba:30:3e:ec:46:58:fe:0e:
68:6f:26:e3:3e:59:17:6f:08:fc:9c:21:9b:31:fe:6d:13:cc:
de:a7:42:5d:62:a1:db:34:5e:10:79:3a:31:69:53:ed:6f:60:
fa:ce:d4:b5:06:91:e4:18:e7:ce:72:4a:21:e6:79:30:29:57:
e4:b1:84:1e:88:8c:98:a4:b8:6e:74:78:c7:e8:10:4b:1f:84:
d4:3c:f8:56:de:42:29:12:1b:b2:fb:c4:12:61:c4:44:07:2b:
1e:71:94:1e:24:b2:a4:20:58:29:aa:a8:69:f3:53:ea:83:2c:
15:74:b6:cb:8d:ae:f2:77:30:9f:a2:4c:6f:d5:bc:b3:0b:a1:
2f:92:7a:9e:af:57:d2:dc:68:35:f4:11:43:7c:00:16:29:69:
f3:2f:8c:da:4b:a7:7f:f6:2e:ee:71:b6:5d:c7:23:bf:da:57:
28:47:6a:48:6f:55:90:02:39:dc:b8:8f:9e:a5:1d:24:af:29:
6e:4a:65:ce:f8:db:de:1a:f4:9d:e0:6b:ae:03:73:ae:58:5f:
b0:5b:d4:06:47:2d:3d:1a:75:2d:ab:1f:5e:ec:3d:f4:d6:ce:
34:3e:57:dd:09:db:d9:aa:fe:34:71:8d:f9:cc:29:0d:2d:3f:
5a:c5:52:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdkcYk1dJ+OQJJomzQORp0vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1YWYyMGMwMjZkZTEwNGQ5NmYxN2FjYmFmNGU3ODdlZjlk
MzAyMDYwHhcNMjUwNjEyMTQwMDUxWhcNMjUwNjEzMTQwMDUxWjAzMTEwLwYDVQQD
EyhhNzJhZDY2N2UyNDYxNGNmNGE3YjFlNzdmNDlhNmFjOTk1M2Q3YTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4CsdJ3cJI7Z05BZ9fwcP6TYsQGHN
qd9DailgfVzNA6iajxFQSW09e4ZF76QH5uPDuvL+/B2Mmv9z7F1uE+yOXp9PH0p9
96Vfp/Shk3G5r5szeapQwGVz5CS+GOSdGN2SmHJnaWMHPjE1LJMxCg0xps9pCkyi
OeX4Di1r9pP79u9TYEkfwJf0e+SPOdM23Bj6Kma5aJLgt612GlFQTrnebrpY3VrI
53NZzTXKOJbg9FD6KKlHEHd1TaM4JUi2ndysoLcG+ayAie8bqFnsKLqYwghbM5zT
FAYZs9Z/rSx6QoBOMAtQt+ND0WObbR7uPU8W1cxqPPaAjeOkoAbay1LhjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKcq1mfiRhTPSnsed/SaasmVPXosMB8GA1UdIwQY
MBaAFNWvIMAm3hBNlvF6y69OeH750wIGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWE4Z3dDYmVFRTJXOFhyTHIwNTRmdm5UQWdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8wOWQ3MmUtODI2Ny00MzkzLTgzNjMt
ODlmMTgxNWQ0YzE5LzEvMWE4Z3dDYmVFRTJXOFhyTHIwNTRmdm5UQWdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi8wOWQ3MmUtODI2Ny00MzkzLTgzNjMtODlmMTgxNWQ0YzE5
LzEvMWE4Z3dDYmVFRTJXOFhyTHIwNTRmdm5UQWdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKorEi5xV
TKbqJLowPuxGWP4OaG8m4z5ZF28I/JwhmzH+bRPM3qdCXWKh2zReEHk6MWlT7W9g
+s7UtQaR5BjnznJKIeZ5MClX5LGEHoiMmKS4bnR4x+gQSx+E1Dz4Vt5CKRIbsvvE
EmHERAcrHnGUHiSypCBYKaqoafNT6oMsFXS2y42u8ncwn6JMb9W8swuhL5J6nq9X
0txoNfQRQ3wAFilp8y+M2kunf/Yu7nG2Xccjv9pXKEdqSG9VkAI53LiPnqUdJK8p
bkplzvjb3hr0neBrrgNzrlhfsFvUBkctPRp1LasfXuw99NbOND5X3Qnb2ar+NHGN
+cwpDS0/WsVSbQ==
-----END CERTIFICATE-----
Generated at Thu Jun 12 17:41:58 2025 by rpki-client