Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
File: TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft (raw, json)
Hash identifier: 05smOcLfzDUUfzLnFEuxcjgvdcSVXA5nAU2ZwtINV/o=
Subject key identifier: F2:B8:5C:2F:E4:63:CB:BF:FA:18:CB:25:7E:C9:02:44:20:CD:B5:EB
Authority key identifier: 4E:91:16:2B:B0:D9:B5:51:BF:5F:7B:1C:15:EE:31:5A:51:A6:77:F4
Certificate issuer: /CN=4e91162bb0d9b551bf5f7b1c15ee315a51a677f4
Certificate serial: 01974967C0F581AB34A09CB72DCC72B61B07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
Manifest number: 0AEF
Signing time: Sat 07 Jun 2025 08:00:25 +0000
Manifest this update: Sat 07 Jun 2025 08:00:25 +0000
Manifest next update: Sun 08 Jun 2025 08:00:25 +0000
Files and hashes: 1: TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl (hash: fUPOEhL6vODyfxXkvpbEd3XLS9j0mcaER/GgqPEK3ho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:c0:f5:81:ab:34:a0:9c:b7:2d:cc:72:b6:1b:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e91162bb0d9b551bf5f7b1c15ee315a51a677f4
Validity
Not Before: Jun 7 08:00:25 2025 GMT
Not After : Jun 8 08:00:25 2025 GMT
Subject: CN=f2b85c2fe463cbbffa18cb257ec9024420cdb5eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:89:c6:20:53:18:80:1a:42:6c:c6:ce:ff:59:
58:23:17:fe:bf:20:54:ff:23:62:5a:cb:47:e4:96:
9a:02:a6:95:49:44:e1:6c:e7:69:be:fc:91:b9:31:
1c:76:10:a0:1f:45:00:76:42:ab:77:49:8f:6b:96:
1b:36:08:ec:73:0d:e5:42:0c:db:e3:11:34:9b:16:
0f:93:1d:40:80:9f:44:6a:4a:e9:61:4c:a1:e3:f2:
3e:e2:e1:6a:91:c2:08:0d:f1:3d:a6:ad:72:05:dc:
7d:f4:ba:65:cf:4a:b5:bd:ff:ed:4e:5f:4d:5e:fc:
7d:58:f3:af:28:11:ac:56:8b:26:53:f1:f5:3f:d0:
26:15:17:1a:58:32:37:1f:18:6f:4a:dc:26:3c:6c:
a5:c3:98:5b:34:14:c9:54:cb:6b:f4:f8:96:7f:7d:
f6:c6:6c:cc:ea:84:93:80:10:ff:1e:b9:ab:e0:24:
fa:c0:3d:3c:fe:d0:de:88:09:0c:fb:d4:76:a8:bf:
8c:b4:89:86:8c:c6:bd:1d:96:8f:ab:fb:c9:75:25:
1c:ba:3a:71:3b:ec:fa:f8:ba:1d:85:8b:63:9e:51:
a8:01:5a:9d:1a:fd:25:ac:b6:b4:15:38:d8:f3:30:
a1:85:cf:62:5f:1f:9f:c1:5d:c5:70:a6:8c:00:17:
44:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B8:5C:2F:E4:63:CB:BF:FA:18:CB:25:7E:C9:02:44:20:CD:B5:EB
X509v3 Authority Key Identifier:
keyid:4E:91:16:2B:B0:D9:B5:51:BF:5F:7B:1C:15:EE:31:5A:51:A6:77:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:8e:45:13:e9:47:5c:f7:ca:f9:bd:9c:1b:03:dc:4e:79:98:
69:c7:41:b5:b9:d1:28:96:3e:bb:e1:13:7f:0a:9b:57:75:c0:
12:9a:f6:d1:fa:89:d7:10:4e:d7:da:ee:9a:5a:ae:de:3a:34:
08:b1:e4:0f:17:11:4c:b0:d7:7c:ee:c1:44:7f:8b:59:40:c2:
42:7f:f8:b1:de:6b:66:fb:25:37:d0:c1:eb:a1:6d:8d:c3:11:
45:8f:1c:33:d1:88:27:f1:02:87:a4:01:8b:92:11:7e:ad:3a:
92:e0:97:38:ce:d9:ca:ea:e0:54:83:85:2c:dc:cc:c4:04:9e:
27:d2:20:ba:8d:7e:20:a4:86:78:f8:28:04:72:06:30:50:45:
e2:71:0c:d1:05:38:dd:97:98:c5:5d:dd:e7:07:d5:4d:70:10:
5a:01:c6:38:d9:02:99:d5:68:fa:9e:9e:ae:60:b7:9d:c1:d3:
6f:44:2a:8f:3e:fc:d2:91:85:5d:9b:24:60:24:bd:c8:be:ce:
d4:d1:40:af:d3:48:91:29:68:02:09:5a:58:01:e8:fd:2d:ab:
bb:2b:33:bb:0c:f7:2e:6d:c0:19:0e:e2:4d:51:07:c0:ef:d5:
b7:d3:20:c4:ea:c4:cc:61:b0:e8:c4:55:c9:98:d8:92:43:2a:
16:4e:88:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJZ8D1gas0oJy3LcxythsHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlOTExNjJiYjBkOWI1NTFiZjVmN2IxYzE1ZWUzMTVhNTFh
Njc3ZjQwHhcNMjUwNjA3MDgwMDI1WhcNMjUwNjA4MDgwMDI1WjAzMTEwLwYDVQQD
EyhmMmI4NWMyZmU0NjNjYmJmZmExOGNiMjU3ZWM5MDI0NDIwY2RiNWViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYnGIFMYgBpCbMbO/1lYIxf+vyBU
/yNiWstH5JaaAqaVSUThbOdpvvyRuTEcdhCgH0UAdkKrd0mPa5YbNgjscw3lQgzb
4xE0mxYPkx1AgJ9EakrpYUyh4/I+4uFqkcIIDfE9pq1yBdx99Lplz0q1vf/tTl9N
Xvx9WPOvKBGsVosmU/H1P9AmFRcaWDI3HxhvStwmPGylw5hbNBTJVMtr9PiWf332
xmzM6oSTgBD/Hrmr4CT6wD08/tDeiAkM+9R2qL+MtImGjMa9HZaPq/vJdSUcujpx
O+z6+LodhYtjnlGoAVqdGv0lrLa0FTjY8zChhc9iXx+fwV3FcKaMABdE9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPK4XC/kY8u/+hjLJX7JAkQgzbXrMB8GA1UdIwQY
MBaAFE6RFiuw2bVRv197HBXuMVpRpnf0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHBFV0s3RFp0VkdfWDNzY0ZlNHhXbEdtZF9RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8yMjljM2YtOTk3Mi00M2Q2LThlNDIt
NTcxM2YxNzQ5YzFkLzEvVHBFV0s3RFp0VkdfWDNzY0ZlNHhXbEdtZF9RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi8yMjljM2YtOTk3Mi00M2Q2LThlNDItNTcxM2YxNzQ5YzFk
LzEvVHBFV0s3RFp0VkdfWDNzY0ZlNHhXbEdtZF9RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP45FE+lH
XPfK+b2cGwPcTnmYacdBtbnRKJY+u+ETfwqbV3XAEpr20fqJ1xBO19rumlqu3jo0
CLHkDxcRTLDXfO7BRH+LWUDCQn/4sd5rZvslN9DB66FtjcMRRY8cM9GIJ/ECh6QB
i5IRfq06kuCXOM7ZyurgVIOFLNzMxASeJ9Iguo1+IKSGePgoBHIGMFBF4nEM0QU4
3ZeYxV3d5wfVTXAQWgHGONkCmdVo+p6ermC3ncHTb0Qqjz780pGFXZskYCS9yL7O
1NFAr9NIkSloAglaWAHo/S2ruyszuwz3Lm3AGQ7iTVEHwO/Vt9MgxOrEzGGw6MRV
yZjYkkMqFk6IWA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:50:49 2025 by rpki-client