Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
File: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft (raw, json)
Hash identifier: b7j7U29tXoKKdMiXEuxSoO6s8IrlSIdjijjxutV8GZM=
Subject key identifier: A0:35:74:74:AA:0B:47:30:60:DB:F0:C1:A5:DA:1E:EB:A9:42:1F:51
Authority key identifier: F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86
Certificate issuer: /CN=f12b381e00d61621acc45cf18a3e70597d5b9186
Certificate serial: 0197523499505A4FFF01A132CC317C57DB6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
Manifest number: 1221
Signing time: Mon 09 Jun 2025 01:01:08 +0000
Manifest this update: Mon 09 Jun 2025 01:01:08 +0000
Manifest next update: Tue 10 Jun 2025 01:01:08 +0000
Files and hashes: 1: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl (hash: TNRCPl5BrxIPVWrlpJh7y6LZlwnQ/qLv0ngwznAkecg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:34:99:50:5a:4f:ff:01:a1:32:cc:31:7c:57:db:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f12b381e00d61621acc45cf18a3e70597d5b9186
Validity
Not Before: Jun 9 01:01:08 2025 GMT
Not After : Jun 10 01:01:08 2025 GMT
Subject: CN=a0357474aa0b473060dbf0c1a5da1eeba9421f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4d:cb:23:c0:4b:11:ae:e5:f0:25:4a:c6:79:
e2:91:a7:26:22:50:e2:fd:e6:ed:b0:e2:5b:9a:c5:
ea:8e:03:cb:a6:62:c1:01:1f:5b:2d:73:49:2d:36:
b5:21:92:fc:d4:72:dd:21:65:14:7e:3a:ed:cb:91:
b8:90:eb:3e:5d:6c:58:44:80:65:25:f6:b1:2b:dc:
4b:dd:32:e9:99:46:64:5c:c7:6a:8f:ba:6e:24:2f:
9f:24:39:5f:99:43:62:9f:f6:18:4a:b3:3b:25:f6:
d3:30:02:34:55:04:67:7f:e0:cd:65:e8:66:71:cd:
fc:db:47:9c:d7:85:60:84:2d:e0:ba:9d:5c:90:2f:
73:2e:37:cc:f3:cf:e6:bf:2a:6e:cc:d4:8f:96:35:
55:5e:11:69:77:69:41:d5:68:84:a1:57:07:89:e9:
7a:ef:b5:5b:d9:da:a4:dd:ae:e2:c0:56:c2:87:a5:
d1:3f:a4:45:cd:60:eb:3c:4b:55:54:bd:50:f2:06:
3b:74:e0:b2:3c:86:79:97:a3:b5:99:55:e1:e8:d6:
8f:47:d0:ec:c7:94:47:03:c0:45:70:8b:30:4c:d1:
9c:41:a3:f8:b0:ab:e4:35:b4:10:38:b8:46:f7:03:
e2:4e:a2:1c:32:62:a0:9f:de:b5:e7:87:f7:c5:15:
ab:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:35:74:74:AA:0B:47:30:60:DB:F0:C1:A5:DA:1E:EB:A9:42:1F:51
X509v3 Authority Key Identifier:
keyid:F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:1e:e3:17:25:64:03:61:00:3c:92:40:f6:80:83:a2:bc:3e:
ed:22:18:0c:54:95:ee:37:31:c6:8b:6a:79:4f:ce:d1:8d:6d:
06:b0:eb:0f:77:01:26:87:b0:f2:a8:97:96:a1:f0:72:9c:f0:
21:15:20:89:aa:db:11:ba:48:6a:43:c6:53:a1:86:54:7e:4e:
d8:69:b6:39:64:11:ca:e6:15:a9:83:23:0b:fd:e8:67:f9:88:
18:e4:8d:56:35:1f:5c:d4:84:53:df:03:24:46:86:6f:49:8c:
b0:36:67:41:74:e1:4b:7d:8a:ab:05:37:0d:17:d3:bd:0d:6a:
6a:f3:00:d1:9d:96:6c:0e:57:c2:f5:2f:3c:fb:d4:53:14:af:
54:78:01:d7:f6:4d:14:ff:2b:92:eb:45:df:36:9a:1a:42:a3:
e5:79:af:0c:8b:cf:6b:17:92:79:a7:33:d4:4c:a3:70:db:eb:
ba:b0:ee:9d:d4:17:4c:5a:32:a4:75:fd:a3:3a:9d:4f:0c:b9:
aa:05:d2:85:9f:eb:66:fe:f9:6c:cb:18:a0:3f:bf:90:f6:bb:
d8:33:50:2c:e8:db:d3:e7:7e:2d:a4:8f:7d:5c:8d:42:29:dc:
7b:4d:2c:31:2e:06:56:5b:f0:96:f5:4b:aa:04:9b:d2:c3:b9:
af:38:53:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdSNJlQWk//AaEyzDF8V9ttMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxMmIzODFlMDBkNjE2MjFhY2M0NWNmMThhM2U3MDU5N2Q1
YjkxODYwHhcNMjUwNjA5MDEwMTA4WhcNMjUwNjEwMDEwMTA4WjAzMTEwLwYDVQQD
EyhhMDM1NzQ3NGFhMGI0NzMwNjBkYmYwYzFhNWRhMWVlYmE5NDIxZjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvk3LI8BLEa7l8CVKxnnikacmIlDi
/ebtsOJbmsXqjgPLpmLBAR9bLXNJLTa1IZL81HLdIWUUfjrty5G4kOs+XWxYRIBl
JfaxK9xL3TLpmUZkXMdqj7puJC+fJDlfmUNin/YYSrM7JfbTMAI0VQRnf+DNZehm
cc3820ec14VghC3gup1ckC9zLjfM88/mvypuzNSPljVVXhFpd2lB1WiEoVcHiel6
77Vb2dqk3a7iwFbCh6XRP6RFzWDrPEtVVL1Q8gY7dOCyPIZ5l6O1mVXh6NaPR9Ds
x5RHA8BFcIswTNGcQaP4sKvkNbQQOLhG9wPiTqIcMmKgn96154f3xRWrXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKA1dHSqC0cwYNvwwaXaHuupQh9RMB8GA1UdIwQY
MBaAFPErOB4A1hYhrMRc8Yo+cFl9W5GGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOFNzNEhnRFdGaUdzeEZ6eGlqNXdXWDFia1lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS84YjJjOWYtMTVjZS00MzRlLWJlOTMt
NWQ0MzZjZWY2MDhmLzEvOFNzNEhnRFdGaUdzeEZ6eGlqNXdXWDFia1lZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS84YjJjOWYtMTVjZS00MzRlLWJlOTMtNWQ0MzZjZWY2MDhm
LzEvOFNzNEhnRFdGaUdzeEZ6eGlqNXdXWDFia1lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqR7jFyVk
A2EAPJJA9oCDorw+7SIYDFSV7jcxxotqeU/O0Y1tBrDrD3cBJoew8qiXlqHwcpzw
IRUgiarbEbpIakPGU6GGVH5O2Gm2OWQRyuYVqYMjC/3oZ/mIGOSNVjUfXNSEU98D
JEaGb0mMsDZnQXThS32KqwU3DRfTvQ1qavMA0Z2WbA5XwvUvPPvUUxSvVHgB1/ZN
FP8rkutF3zaaGkKj5XmvDIvPaxeSeacz1EyjcNvrurDundQXTFoypHX9ozqdTwy5
qgXShZ/rZv75bMsYoD+/kPa72DNQLOjb0+d+LaSPfVyNQince00sMS4GVlvwlvVL
qgSb0sO5rzhT5A==
-----END CERTIFICATE-----
Generated at Mon Jun 9 06:49:44 2025 by rpki-client