Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json)
Hash identifier: 9TVar3PxmhHI3h6E5fx8rPGIW4AWP3u3OG7S9kDnml8=
Subject key identifier: 0F:6C:F3:43:E7:76:27:95:03:A9:8D:8B:CB:85:E9:92:1D:C7:04:67
Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d
Certificate serial: 01974A436DB72934F5B0B8295ABB07974496
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
Manifest number: 1579
Signing time: Sat 07 Jun 2025 12:00:22 +0000
Manifest this update: Sat 07 Jun 2025 12:00:22 +0000
Manifest next update: Sun 08 Jun 2025 12:00:22 +0000
Files and hashes: 1: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: xJZZY/lR0O9MwK4dxmcW9YygDoqiOpToPvjFZx7FgNc=)
2: luaqw9G-VvVeUOUerH8hYnJDYmk.roa (hash: cGv6tVYRF/4yXJn3TxE1a8gXuaOG4Us7R7XWbyYOP1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:6d:b7:29:34:f5:b0:b8:29:5a:bb:07:97:44:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d
Validity
Not Before: Jun 7 12:00:22 2025 GMT
Not After : Jun 8 12:00:22 2025 GMT
Subject: CN=0f6cf343e776279503a98d8bcb85e9921dc70467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:15:fd:b3:8c:0c:fc:99:4c:73:d9:a8:37:8d:
7c:17:d5:75:f5:e2:d3:1a:02:25:68:58:98:89:a1:
6c:8a:22:30:c0:d2:73:ad:87:a8:6b:cb:55:dc:89:
9a:4f:dd:9f:68:4b:48:c1:b0:a7:30:80:2b:0c:3b:
d4:bb:c2:8c:16:64:51:29:25:85:e4:9d:de:05:0c:
e7:7f:c9:2c:ba:9c:f6:5f:0d:e9:06:ea:bb:d5:10:
d7:6b:76:20:ae:12:1b:11:fc:94:d9:f9:8e:e7:fb:
dc:46:bf:8c:92:8e:23:33:47:66:95:1f:ed:35:83:
c7:2d:85:e6:0e:e5:f0:39:30:7c:ab:5d:db:a2:fd:
57:ee:eb:8e:e7:11:b0:13:85:f5:c5:fc:e7:db:b4:
25:0d:30:1c:a5:91:08:5e:9f:a3:ec:b2:5f:48:71:
1f:87:8b:15:de:ee:0a:f7:43:09:ab:92:07:a1:24:
63:ba:c8:43:c4:64:ca:4c:bc:ec:c1:79:d7:65:c7:
e6:1a:fc:c7:56:69:86:d7:22:a3:8f:fb:ea:53:34:
84:00:bf:86:86:3d:cf:fb:39:1e:a7:09:ca:1d:48:
f8:14:9f:c0:39:15:c1:ca:e6:b8:5e:8e:63:44:82:
cd:50:0b:b6:3d:d5:c8:3a:f9:9e:4a:c8:e3:c5:6c:
3f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:6C:F3:43:E7:76:27:95:03:A9:8D:8B:CB:85:E9:92:1D:C7:04:67
X509v3 Authority Key Identifier:
keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:28:f9:a5:4b:a4:df:8e:de:6c:f6:58:21:2d:8d:54:16:bb:
74:1e:f7:3c:bd:96:bf:01:aa:f9:75:cc:b8:73:53:91:81:38:
dc:ab:e9:f2:2a:e8:40:08:8b:45:a3:7d:fd:1f:ad:bc:5f:a7:
d0:97:d0:a6:66:8d:20:9a:ce:b9:8f:37:c1:9e:df:6b:20:ef:
4e:63:d1:4d:b7:46:67:92:3e:49:aa:85:9d:a6:ab:92:37:f5:
28:9d:21:cb:f7:72:8d:b4:88:50:1d:c0:5d:1b:f4:a3:99:64:
fb:34:03:f4:e8:b3:83:a9:8c:57:7e:eb:22:cd:f3:56:f9:fe:
36:ab:2b:eb:89:68:54:04:61:53:8f:72:bb:65:ac:1f:5c:5f:
d8:28:e8:6f:e7:3e:39:8d:29:54:44:04:5e:0c:b1:c2:e3:54:
c1:03:8b:d7:ee:20:6a:89:1b:a6:2a:e1:ad:d8:0c:42:27:c3:
05:52:ba:d2:f6:42:f1:41:c0:0e:51:cc:17:61:c1:ec:b6:e5:
31:82:4b:4e:4a:09:0e:dc:fc:c9:97:2d:ab:6b:13:47:7e:84:
0c:29:60:cc:e7:82:01:fb:37:d1:39:48:eb:97:72:36:69:a4:
b1:75:cb:6b:6f:04:52:63:ad:58:f7:31:5c:e9:51:d3:64:69:
08:92:5d:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKQ223KTT1sLgpWrsHl0SWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwNzQ4ODczZDgzMjAyMjg2NGZhYzkwMDY1ZDUxZDhlMjdi
NDNlNWQwHhcNMjUwNjA3MTIwMDIyWhcNMjUwNjA4MTIwMDIyWjAzMTEwLwYDVQQD
EygwZjZjZjM0M2U3NzYyNzk1MDNhOThkOGJjYjg1ZTk5MjFkYzcwNDY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRX9s4wM/JlMc9moN418F9V19eLT
GgIlaFiYiaFsiiIwwNJzrYeoa8tV3ImaT92faEtIwbCnMIArDDvUu8KMFmRRKSWF
5J3eBQznf8ksupz2Xw3pBuq71RDXa3YgrhIbEfyU2fmO5/vcRr+Mko4jM0dmlR/t
NYPHLYXmDuXwOTB8q13bov1X7uuO5xGwE4X1xfzn27QlDTAcpZEIXp+j7LJfSHEf
h4sV3u4K90MJq5IHoSRjushDxGTKTLzswXnXZcfmGvzHVmmG1yKjj/vqUzSEAL+G
hj3P+zkepwnKHUj4FJ/AORXByua4Xo5jRILNUAu2PdXIOvmeSsjjxWw/yQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA9s80PndieVA6mNi8uF6ZIdxwRnMB8GA1UdIwQY
MBaAFHB0iHPYMgIoZPrJAGXVHY4ntD5dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0hTSWM5Z3lBaWhrLXNrQVpkVWRqaWUwUGwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hYTMzNTAtYWEyYS00NDc3LTlmY2Qt
YTYwYjJjYzhkMDgwLzEvY0hTSWM5Z3lBaWhrLXNrQVpkVWRqaWUwUGwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hYTMzNTAtYWEyYS00NDc3LTlmY2QtYTYwYjJjYzhkMDgw
LzEvY0hTSWM5Z3lBaWhrLXNrQVpkVWRqaWUwUGwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAij5pUuk
347ebPZYIS2NVBa7dB73PL2WvwGq+XXMuHNTkYE43Kvp8iroQAiLRaN9/R+tvF+n
0JfQpmaNIJrOuY83wZ7fayDvTmPRTbdGZ5I+SaqFnaarkjf1KJ0hy/dyjbSIUB3A
XRv0o5lk+zQD9Oizg6mMV37rIs3zVvn+Nqsr64loVARhU49yu2WsH1xf2Cjob+c+
OY0pVEQEXgyxwuNUwQOL1+4gaokbpirhrdgMQifDBVK60vZC8UHADlHMF2HB7Lbl
MYJLTkoJDtz8yZctq2sTR36EDClgzOeCAfs30TlI65dyNmmksXXLa28EUmOtWPcx
XOlR02RpCJJdgw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 21:06:57 2025 by rpki-client