Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft
File: 0phnd6RO0JQPKaeVx19Fpi9EuzM.mft (raw, json)
Hash identifier: jhdD2ScQo+yGYxi7vbwun23H7Ibfdr9mDnRvfcAZTDQ=
Subject key identifier: 3A:82:30:09:8A:E0:C0:01:98:E3:E9:ED:2C:AA:27:A7:23:B6:DF:23
Authority key identifier: D2:98:67:77:A4:4E:D0:94:0F:29:A7:95:C7:5F:45:A6:2F:44:BB:33
Certificate issuer: /CN=d2986777a44ed0940f29a795c75f45a62f44bb33
Certificate serial: 01975DCBA1D1B6A167E3CB8E951D5937625A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft
Manifest number: 0571
Signing time: Wed 11 Jun 2025 07:01:55 +0000
Manifest this update: Wed 11 Jun 2025 07:01:55 +0000
Manifest next update: Thu 12 Jun 2025 07:01:55 +0000
Files and hashes: 1: 0phnd6RO0JQPKaeVx19Fpi9EuzM.crl (hash: f3PVGVwyGlc6mx1Beu+w1UKyZtyMgT3RQ6T7//5dMY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 07:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:cb:a1:d1:b6:a1:67:e3:cb:8e:95:1d:59:37:62:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2986777a44ed0940f29a795c75f45a62f44bb33
Validity
Not Before: Jun 11 07:01:55 2025 GMT
Not After : Jun 12 07:01:55 2025 GMT
Subject: CN=3a8230098ae0c00198e3e9ed2caa27a723b6df23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:89:65:09:58:4c:89:0f:43:17:5a:04:a8:84:
87:dd:27:37:65:cd:39:0d:0a:0c:e1:9c:58:3e:9a:
e5:4f:54:93:c6:97:2c:88:6d:21:47:5c:cb:17:fa:
bd:f5:e1:38:b3:4b:ad:0a:f2:e5:cd:53:aa:98:55:
e9:21:85:43:ec:72:52:5a:36:d4:0e:cf:1c:54:59:
79:12:98:b4:de:e6:8e:de:f3:9b:f3:0c:50:95:27:
57:07:b6:83:38:8e:b4:87:10:58:e8:c3:85:e7:7d:
4a:1c:11:aa:4f:26:9c:9c:53:14:3e:4c:ac:ef:01:
c5:bb:bd:af:4f:e6:b1:53:e3:f1:db:29:3a:dd:94:
99:a8:40:e8:13:41:31:73:ff:bc:64:b4:36:02:93:
18:ac:57:9b:87:61:02:e3:d6:5e:fc:a1:f1:a0:e1:
5c:53:60:46:08:f1:06:67:fc:09:df:b7:b1:f2:88:
63:b6:59:f6:82:57:c3:00:68:9a:5a:a2:64:93:95:
60:84:97:b3:d6:d4:bd:5f:b4:ba:1f:2f:d6:ac:7a:
1f:36:9c:36:c3:44:a5:bb:ff:ed:5c:4c:a1:88:8e:
52:27:21:bd:ce:70:fa:78:41:de:64:71:7f:40:cd:
80:7f:5d:c7:89:8c:c4:b5:40:a4:f9:6e:17:85:88:
a2:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:82:30:09:8A:E0:C0:01:98:E3:E9:ED:2C:AA:27:A7:23:B6:DF:23
X509v3 Authority Key Identifier:
keyid:D2:98:67:77:A4:4E:D0:94:0F:29:A7:95:C7:5F:45:A6:2F:44:BB:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:98:65:fe:13:db:97:55:17:32:25:c3:1e:7f:6b:8d:07:46:
11:9b:1e:c8:22:2d:f1:2c:2c:23:94:a7:c5:0a:a2:cc:9b:41:
e5:66:b9:53:4e:a5:fc:79:17:5c:60:a0:34:c2:83:31:87:56:
9c:4b:e4:1d:48:01:9e:7e:6b:98:eb:24:5f:44:89:b1:86:f7:
e9:e4:6c:a5:a3:51:fe:6d:83:a9:42:d5:68:23:52:1f:66:0c:
d1:92:64:16:cc:5b:10:63:09:4e:08:11:74:75:96:4b:90:a2:
d2:cf:8f:82:87:b0:3b:3e:d6:7d:90:49:bd:fe:0f:68:04:09:
cb:f0:96:da:2c:1f:ad:13:f6:44:bf:bb:b3:48:0b:b1:96:be:
6d:98:eb:cd:d4:7e:55:08:34:f8:cd:ea:43:d5:2e:f5:99:0c:
cc:ff:19:5d:dd:96:b7:13:19:01:68:e9:50:56:18:bb:b0:67:
ed:23:86:6d:d3:f9:02:01:56:05:7a:85:48:f3:53:cc:87:a0:
c9:01:48:be:08:37:f9:ff:47:7a:af:0e:4e:69:13:aa:06:a2:
f5:81:a5:9f:c2:a6:8f:ac:10:9b:95:9b:14:4a:ea:e9:60:a3:
db:0e:77:7e:ec:96:5a:31:90:e7:aa:85:ce:f4:9b:46:2b:71:
26:18:10:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZddy6HRtqFn48uOlR1ZN2JaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyOTg2Nzc3YTQ0ZWQwOTQwZjI5YTc5NWM3NWY0NWE2MmY0
NGJiMzMwHhcNMjUwNjExMDcwMTU1WhcNMjUwNjEyMDcwMTU1WjAzMTEwLwYDVQQD
EygzYTgyMzAwOThhZTBjMDAxOThlM2U5ZWQyY2FhMjdhNzIzYjZkZjIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYllCVhMiQ9DF1oEqISH3Sc3Zc05
DQoM4ZxYPprlT1STxpcsiG0hR1zLF/q99eE4s0utCvLlzVOqmFXpIYVD7HJSWjbU
Ds8cVFl5Epi03uaO3vOb8wxQlSdXB7aDOI60hxBY6MOF531KHBGqTyacnFMUPkys
7wHFu72vT+axU+Px2yk63ZSZqEDoE0Exc/+8ZLQ2ApMYrFebh2EC49Ze/KHxoOFc
U2BGCPEGZ/wJ37ex8ohjtln2glfDAGiaWqJkk5VghJez1tS9X7S6Hy/WrHofNpw2
w0Slu//tXEyhiI5SJyG9znD6eEHeZHF/QM2Af13HiYzEtUCk+W4XhYii9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDqCMAmK4MABmOPp7SyqJ6cjtt8jMB8GA1UdIwQY
MBaAFNKYZ3ekTtCUDymnlcdfRaYvRLszMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHBobmQ2Uk8wSlFQS2FlVngxOUZwaTlFdXpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS85NzczZGMtZDhlOC00ODBkLTk4ZjIt
YzAwY2JjMTQ5MmJmLzEvMHBobmQ2Uk8wSlFQS2FlVngxOUZwaTlFdXpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS85NzczZGMtZDhlOC00ODBkLTk4ZjItYzAwY2JjMTQ5MmJm
LzEvMHBobmQ2Uk8wSlFQS2FlVngxOUZwaTlFdXpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPZhl/hPb
l1UXMiXDHn9rjQdGEZseyCIt8SwsI5SnxQqizJtB5Wa5U06l/HkXXGCgNMKDMYdW
nEvkHUgBnn5rmOskX0SJsYb36eRspaNR/m2DqULVaCNSH2YM0ZJkFsxbEGMJTggR
dHWWS5Ci0s+PgoewOz7WfZBJvf4PaAQJy/CW2iwfrRP2RL+7s0gLsZa+bZjrzdR+
VQg0+M3qQ9Uu9ZkMzP8ZXd2WtxMZAWjpUFYYu7Bn7SOGbdP5AgFWBXqFSPNTzIeg
yQFIvgg3+f9Heq8OTmkTqgai9YGln8Kmj6wQm5WbFErq6WCj2w53fuyWWjGQ56qF
zvSbRitxJhgQsA==
-----END CERTIFICATE-----
Generated at Wed Jun 11 11:57:51 2025 by rpki-client