Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
File: cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft (raw, json)
Hash identifier: EgV58PtD9SSptl9yrOw8/GaLbqGozLW16HCLuMuRf3Y=
Subject key identifier: 09:52:DA:44:72:E7:61:E0:D9:FA:07:64:8A:87:51:C9:AB:8D:16:94
Authority key identifier: 70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
Certificate issuer: /CN=70cee62b79472dcae51ead4d8ea06923870f5197
Certificate serial: 01974AE906E35379AD021E479DD2C06FA665
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
Manifest number: 1579
Signing time: Sat 07 Jun 2025 15:01:14 +0000
Manifest this update: Sat 07 Jun 2025 15:01:14 +0000
Manifest next update: Sun 08 Jun 2025 15:01:14 +0000
Files and hashes: 1: cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl (hash: Ekm3akeupWlaZFRbIhRc8VYHckiKtipwKembgeU7DHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e9:06:e3:53:79:ad:02:1e:47:9d:d2:c0:6f:a6:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cee62b79472dcae51ead4d8ea06923870f5197
Validity
Not Before: Jun 7 15:01:14 2025 GMT
Not After : Jun 8 15:01:14 2025 GMT
Subject: CN=0952da4472e761e0d9fa07648a8751c9ab8d1694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d9:3a:07:71:1d:23:1a:4c:aa:67:83:9c:a4:
7a:cf:30:5c:c8:eb:87:23:fe:9c:2b:26:25:77:70:
e0:b7:fb:6e:1d:e5:c3:68:fa:37:25:1a:31:89:8e:
fd:b9:11:55:50:0e:34:8e:51:e0:8a:bc:6f:c8:e6:
0b:d2:a2:3e:81:26:63:68:ba:07:36:88:b7:86:40:
b0:33:a0:e7:5b:a6:e1:f7:91:a3:52:3d:d7:d1:eb:
88:87:a5:7a:44:85:b9:6c:0d:26:96:69:7b:9b:35:
51:6a:29:ae:c6:1b:58:f8:d5:bc:81:85:13:88:39:
26:65:4b:66:e4:31:9f:89:80:11:06:b0:df:09:a0:
28:70:28:fd:b1:57:1c:e3:dc:be:de:df:a6:88:84:
b3:e8:60:d3:43:b2:bc:f0:d9:32:55:80:af:5d:b6:
bc:40:78:5f:da:6e:06:30:34:9c:07:0e:79:82:e6:
54:bb:fd:1d:44:96:81:cb:e2:14:e0:f4:61:f8:80:
2a:6e:04:70:dc:db:be:06:ad:73:58:cb:88:49:36:
24:5b:4b:ef:b6:e7:c9:bb:78:44:9a:0a:01:94:92:
74:1e:6c:a6:3a:a7:71:7c:4c:ee:8b:a1:9f:9c:27:
18:ed:38:fe:5a:e6:b6:7a:c0:8e:7f:eb:96:3d:5e:
f2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:52:DA:44:72:E7:61:E0:D9:FA:07:64:8A:87:51:C9:AB:8D:16:94
X509v3 Authority Key Identifier:
keyid:70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:8e:2a:5c:88:cc:e8:99:09:15:dd:47:0e:9f:01:9b:12:15:
1d:18:71:a6:39:af:40:95:ca:96:45:51:07:14:25:e0:78:e1:
e0:ea:57:06:cf:fd:29:83:ac:da:0d:e9:20:33:48:d0:ba:5a:
0c:6a:d4:73:9f:c8:de:88:8e:63:e9:42:7c:93:df:58:c5:24:
bd:20:dd:e1:cf:ce:57:3f:d4:1c:7f:c1:cc:f9:9b:16:96:c6:
bc:1a:17:f7:6b:67:fc:db:ef:87:cc:7d:63:47:12:5c:9a:95:
e8:ba:67:60:c4:b3:50:06:a3:6c:ee:8f:a5:37:5c:2a:51:5e:
cb:90:76:c3:bf:51:e4:c8:f3:8a:08:71:d7:5f:91:ec:8a:48:
af:84:5a:01:f6:72:af:19:f0:d0:2c:6b:82:11:5e:41:9f:53:
9f:e9:3d:0e:96:7a:73:a8:24:c8:7e:cf:6c:e9:88:2f:8c:84:
0b:f8:d5:53:33:c9:5d:61:06:3e:25:3e:6c:16:2c:62:1e:73:
f7:cf:be:34:63:c5:ce:ca:a1:5c:3c:f8:f9:5c:bb:0e:e1:c7:
d8:42:83:48:b5:84:3d:60:47:df:2b:23:e1:18:8d:7c:ee:51:
fe:10:e5:92:2b:56:5b:9a:d5:f7:69:cb:c2:55:dc:e0:a5:df:
8e:c0:a9:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdK6QbjU3mtAh5HndLAb6ZlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwY2VlNjJiNzk0NzJkY2FlNTFlYWQ0ZDhlYTA2OTIzODcw
ZjUxOTcwHhcNMjUwNjA3MTUwMTE0WhcNMjUwNjA4MTUwMTE0WjAzMTEwLwYDVQQD
EygwOTUyZGE0NDcyZTc2MWUwZDlmYTA3NjQ4YTg3NTFjOWFiOGQxNjk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2tk6B3EdIxpMqmeDnKR6zzBcyOuH
I/6cKyYld3Dgt/tuHeXDaPo3JRoxiY79uRFVUA40jlHgirxvyOYL0qI+gSZjaLoH
Noi3hkCwM6DnW6bh95GjUj3X0euIh6V6RIW5bA0mlml7mzVRaimuxhtY+NW8gYUT
iDkmZUtm5DGfiYARBrDfCaAocCj9sVcc49y+3t+miISz6GDTQ7K88NkyVYCvXba8
QHhf2m4GMDScBw55guZUu/0dRJaBy+IU4PRh+IAqbgRw3Nu+Bq1zWMuISTYkW0vv
tufJu3hEmgoBlJJ0HmymOqdxfEzui6GfnCcY7Tj+Wua2esCOf+uWPV7yDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAlS2kRy52Hg2foHZIqHUcmrjRaUMB8GA1UdIwQY
MBaAFHDO5it5Ry3K5R6tTY6gaSOHD1GXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTkt
ZDBlMjRmMDE3MDg4LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTktZDBlMjRmMDE3MDg4
LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp44qXIjM
6JkJFd1HDp8BmxIVHRhxpjmvQJXKlkVRBxQl4Hjh4OpXBs/9KYOs2g3pIDNI0Lpa
DGrUc5/I3oiOY+lCfJPfWMUkvSDd4c/OVz/UHH/BzPmbFpbGvBoX92tn/Nvvh8x9
Y0cSXJqV6LpnYMSzUAajbO6PpTdcKlFey5B2w79R5Mjzighx11+R7IpIr4RaAfZy
rxnw0CxrghFeQZ9Tn+k9DpZ6c6gkyH7PbOmIL4yEC/jVUzPJXWEGPiU+bBYsYh5z
98++NGPFzsqhXDz4+Vy7DuHH2EKDSLWEPWBH3ysj4RiNfO5R/hDlkitWW5rV92nL
wlXc4KXfjsCp0w==
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:23:48 2025 by rpki-client