Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.mft
File: 8M0rO57YMSbUXboSAD1sbjWms4A.mft (raw, json)
Hash identifier: 1zlW4ExkoUzpOFSkwD2ogoeJ2gUrIerndNnT+mzJALU=
Subject key identifier: FB:B5:39:3D:4B:E5:C7:4B:22:30:99:92:5A:93:E5:AA:DB:1D:D7:CC
Authority key identifier: F0:CD:2B:3B:9E:D8:31:26:D4:5D:BA:12:00:3D:6C:6E:35:A6:B3:80
Certificate issuer: /CN=f0cd2b3b9ed83126d45dba12003d6c6e35a6b380
Certificate serial: 019747E76E75C0EA9F5510E39A05F6D72C23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8M0rO57YMSbUXboSAD1sbjWms4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.mft
Manifest number: 12A2
Signing time: Sat 07 Jun 2025 01:00:38 +0000
Manifest this update: Sat 07 Jun 2025 01:00:38 +0000
Manifest next update: Sun 08 Jun 2025 01:00:38 +0000
Files and hashes: 1: 8M0rO57YMSbUXboSAD1sbjWms4A.crl (hash: YnNKuAyc2R4/l5T36E2hYvEoXHIXZ1J+vYpVQxw3NOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/8M0rO57YMSbUXboSAD1sbjWms4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:6e:75:c0:ea:9f:55:10:e3:9a:05:f6:d7:2c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0cd2b3b9ed83126d45dba12003d6c6e35a6b380
Validity
Not Before: Jun 7 01:00:38 2025 GMT
Not After : Jun 8 01:00:38 2025 GMT
Subject: CN=fbb5393d4be5c74b223099925a93e5aadb1dd7cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:eb:29:0c:5b:fd:39:27:c5:c4:0b:2c:43:df:
ba:d2:96:01:c7:8f:bc:4d:7e:bb:98:95:3c:6c:fb:
7a:3e:89:1d:7f:93:c0:b9:3d:4a:10:26:64:a2:71:
90:7d:b6:d3:05:3c:a8:8a:3d:5a:25:eb:f8:ac:73:
e2:5a:7b:60:69:8d:1b:15:c2:5a:1b:61:48:31:e8:
e8:8f:76:d9:29:d5:fa:ee:a6:de:20:6c:8a:93:ca:
c1:42:f9:14:9e:51:c6:ac:47:5e:96:ca:c6:c8:41:
49:8a:45:4f:d4:17:a9:cd:8c:72:03:f9:1c:48:9c:
f1:74:b0:bd:cc:e3:7a:7f:0c:94:93:d0:fe:b6:bc:
1d:09:d0:a9:50:2a:98:dc:3a:26:49:79:6d:69:75:
98:dc:77:d8:b9:d9:ce:02:18:c2:c5:a0:a2:7d:9c:
c2:d4:24:79:24:17:87:42:ec:f3:fc:ee:a1:6f:d3:
de:57:68:1f:80:eb:b2:6c:ee:f5:8f:5b:bb:a2:5c:
a7:9d:a8:3d:e5:f8:0b:73:ca:b4:74:30:07:3f:c7:
3e:01:6a:e6:64:70:e4:fd:e6:36:6d:f3:e1:4e:a1:
71:d6:95:d4:f2:77:69:f7:f8:b1:ec:d5:07:97:7e:
8b:f0:6c:9d:35:0b:8c:fb:2d:07:b2:97:e5:5d:01:
d2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:B5:39:3D:4B:E5:C7:4B:22:30:99:92:5A:93:E5:AA:DB:1D:D7:CC
X509v3 Authority Key Identifier:
keyid:F0:CD:2B:3B:9E:D8:31:26:D4:5D:BA:12:00:3D:6C:6E:35:A6:B3:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8M0rO57YMSbUXboSAD1sbjWms4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:f0:80:1f:23:4f:75:13:f1:16:04:77:2e:26:e8:c2:69:00:
6a:81:2f:d8:a9:b7:eb:00:9f:42:86:57:b1:6f:c6:e2:fd:21:
3d:ac:69:a8:b4:00:d6:a3:41:ca:37:d4:4b:54:73:2c:94:7a:
bd:34:d9:fe:ea:a4:69:c9:39:a3:31:b5:23:21:89:ee:ba:dc:
81:ec:69:57:80:cf:20:74:28:ea:10:b2:2d:c0:56:82:72:9b:
73:2c:24:a9:39:8c:00:21:9a:d4:a7:c2:21:33:54:e6:86:cd:
f5:17:a7:60:5b:d0:6d:bd:cb:d6:d0:53:12:ac:1d:f2:e7:1f:
73:ab:61:97:f7:f6:3c:48:67:82:4d:82:05:4a:02:7d:b1:e6:
1d:c4:32:b4:de:f0:c6:f0:09:0b:cb:82:44:d5:b1:be:3f:2a:
e2:ff:16:c6:19:6d:d2:32:7a:53:a3:6a:7e:c4:e8:22:43:18:
3d:77:ff:f1:47:63:66:62:9e:78:06:2d:f6:b0:1a:80:bc:73:
7a:f5:b9:ee:3e:c7:ca:f2:b0:48:bd:19:b2:4b:70:e4:63:d8:
bb:ca:4f:24:f8:d4:fb:c5:98:b8:79:54:c2:6f:2d:cd:5e:35:
98:96:20:8d:f9:0f:a4:7a:a3:59:9f:bf:0b:b5:75:13:ca:ce:
0f:6a:10:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdH5251wOqfVRDjmgX21ywjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwY2QyYjNiOWVkODMxMjZkNDVkYmExMjAwM2Q2YzZlMzVh
NmIzODAwHhcNMjUwNjA3MDEwMDM4WhcNMjUwNjA4MDEwMDM4WjAzMTEwLwYDVQQD
EyhmYmI1MzkzZDRiZTVjNzRiMjIzMDk5OTI1YTkzZTVhYWRiMWRkN2NjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7OspDFv9OSfFxAssQ9+60pYBx4+8
TX67mJU8bPt6Pokdf5PAuT1KECZkonGQfbbTBTyoij1aJev4rHPiWntgaY0bFcJa
G2FIMejoj3bZKdX67qbeIGyKk8rBQvkUnlHGrEdelsrGyEFJikVP1BepzYxyA/kc
SJzxdLC9zON6fwyUk9D+trwdCdCpUCqY3DomSXltaXWY3HfYudnOAhjCxaCifZzC
1CR5JBeHQuzz/O6hb9PeV2gfgOuybO71j1u7olynnag95fgLc8q0dDAHP8c+AWrm
ZHDk/eY2bfPhTqFx1pXU8ndp9/ix7NUHl36L8GydNQuM+y0HspflXQHSKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPu1OT1L5cdLIjCZklqT5arbHdfMMB8GA1UdIwQY
MBaAFPDNKzue2DEm1F26EgA9bG41prOAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOE0wck81N1lNU2JVWGJvU0FEMXNialdtczRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8wNDc5ODItMzdkZS00ZTcwLWJlYmQt
N2M5ZTEwNTE3YzI1LzEvOE0wck81N1lNU2JVWGJvU0FEMXNialdtczRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi8wNDc5ODItMzdkZS00ZTcwLWJlYmQtN2M5ZTEwNTE3YzI1
LzEvOE0wck81N1lNU2JVWGJvU0FEMXNialdtczRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuvCAHyNP
dRPxFgR3LibowmkAaoEv2Km36wCfQoZXsW/G4v0hPaxpqLQA1qNByjfUS1RzLJR6
vTTZ/uqkack5ozG1IyGJ7rrcgexpV4DPIHQo6hCyLcBWgnKbcywkqTmMACGa1KfC
ITNU5obN9RenYFvQbb3L1tBTEqwd8ucfc6thl/f2PEhngk2CBUoCfbHmHcQytN7w
xvAJC8uCRNWxvj8q4v8Wxhlt0jJ6U6NqfsToIkMYPXf/8UdjZmKeeAYt9rAagLxz
evW57j7HyvKwSL0Zsktw5GPYu8pPJPjU+8WYuHlUwm8tzV41mJYgjfkPpHqjWZ+/
C7V1E8rOD2oQUw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:12:50 2025 by rpki-client