Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
File: 1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft (raw, json)
Hash identifier: FL5A5wEhdTN6ABumzjmD2yzI5GOhhLL2alRv8SOH+co=
Subject key identifier: B9:5E:07:33:8A:34:07:08:AB:BF:C2:84:53:41:E0:E0:D8:40:8E:37
Authority key identifier: D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72
Certificate issuer: /CN=d422367433765b541a37390a998997b737c46472
Certificate serial: 01975346E45F24A9B8802401AF52195333DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
Manifest number: 1514
Signing time: Mon 09 Jun 2025 06:00:44 +0000
Manifest this update: Mon 09 Jun 2025 06:00:44 +0000
Manifest next update: Tue 10 Jun 2025 06:00:44 +0000
Files and hashes: 1: 1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl (hash: 1BEnVal0/ZHScYneRQHObsxmYbCxnawKzGSo/Im/uSc=)
2: dO1sDlUm4GNT1NLwZmfUYJ1pPqA.roa (hash: JWs3QU5N8u442ANJ16//ujHqSWgzP2/558mG+17RvNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:46:e4:5f:24:a9:b8:80:24:01:af:52:19:53:33:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d422367433765b541a37390a998997b737c46472
Validity
Not Before: Jun 9 06:00:44 2025 GMT
Not After : Jun 10 06:00:44 2025 GMT
Subject: CN=b95e07338a340708abbfc2845341e0e0d8408e37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:63:9c:eb:08:0c:5e:38:eb:81:74:dd:7c:10:
55:e3:53:c4:00:ba:9f:e0:66:5d:fc:52:2e:c0:bd:
8b:3b:9a:89:9f:a2:be:ac:9e:be:ad:86:eb:65:6b:
0e:32:4e:3b:39:31:58:9e:a5:8d:44:4f:77:2c:fd:
7c:06:97:89:5c:2c:0a:67:c8:69:13:92:bf:10:e8:
16:1a:c8:ef:ce:52:aa:d4:89:97:bd:54:7e:ac:ac:
4b:33:99:0b:eb:67:38:30:bc:eb:da:20:ce:af:ae:
d8:31:f6:b7:b0:1c:7d:f2:8e:bc:c4:06:98:de:0d:
6e:f6:4a:3b:eb:ec:17:b9:9b:82:43:d0:93:67:0e:
16:cc:54:05:da:b8:eb:1b:64:1e:5e:76:90:6b:00:
f2:75:20:86:7f:47:7a:40:01:5a:e2:fc:de:9d:32:
81:1e:dd:e3:00:98:3e:67:10:91:47:db:f6:92:9b:
4e:69:9c:d3:0c:b6:cf:96:17:99:13:0c:00:09:3a:
26:9f:5b:71:65:e7:1c:df:0f:df:66:b3:2c:67:58:
9a:81:4b:10:7c:6b:a6:5a:b6:bd:00:8e:1a:aa:99:
b7:ae:60:52:da:cb:f3:50:1e:44:2d:b6:19:a1:03:
22:16:be:d3:b4:af:22:d1:2a:d8:9f:97:9f:dd:2f:
c8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:5E:07:33:8A:34:07:08:AB:BF:C2:84:53:41:E0:E0:D8:40:8E:37
X509v3 Authority Key Identifier:
keyid:D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:1d:51:09:b0:88:50:50:ed:73:d3:5a:b3:2a:a5:80:fa:6a:
c2:70:d8:20:96:af:99:ac:05:29:e4:f2:42:92:b8:16:cf:9c:
49:1e:0c:bf:62:f1:f4:31:a0:8a:57:f0:b0:b4:43:1b:8b:d4:
fc:1f:c2:fc:d2:f2:c5:ae:94:a0:c2:6b:cc:69:b7:1d:f0:0d:
a1:26:f5:ee:f1:18:12:75:37:25:d0:ba:6a:e8:a3:b6:d8:8d:
37:b7:82:53:16:c1:f7:30:f5:2d:7c:83:50:38:57:aa:72:54:
dd:ff:b8:20:69:61:3d:cd:a1:0d:24:83:a9:21:87:b0:42:6b:
e8:27:b1:b6:19:64:72:9b:ad:f1:97:af:c1:be:32:d4:0a:5e:
cd:2c:96:ed:ae:13:0c:f8:66:f8:d0:00:08:54:c7:26:66:e0:
cc:e9:b1:11:b1:4e:4e:92:d9:f3:1a:63:b7:98:bb:7a:d3:ef:
17:81:32:b8:60:16:bf:7b:65:d2:3b:a4:fd:06:ca:c8:e9:cb:
fb:07:ff:93:5e:08:bd:14:2a:f9:66:1a:ef:bd:fd:3b:d3:9b:
bd:da:f0:b6:d2:b0:d6:5d:42:0c:0d:50:9d:04:f5:55:a6:6c:
51:a7:7e:e7:b4:5c:2e:dc:d8:78:7d:14:43:01:87:d1:77:8d:
7e:33:f2:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdTRuRfJKm4gCQBr1IZUzPbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0MjIzNjc0MzM3NjViNTQxYTM3MzkwYTk5ODk5N2I3Mzdj
NDY0NzIwHhcNMjUwNjA5MDYwMDQ0WhcNMjUwNjEwMDYwMDQ0WjAzMTEwLwYDVQQD
EyhiOTVlMDczMzhhMzQwNzA4YWJiZmMyODQ1MzQxZTBlMGQ4NDA4ZTM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx2Oc6wgMXjjrgXTdfBBV41PEALqf
4GZd/FIuwL2LO5qJn6K+rJ6+rYbrZWsOMk47OTFYnqWNRE93LP18BpeJXCwKZ8hp
E5K/EOgWGsjvzlKq1ImXvVR+rKxLM5kL62c4MLzr2iDOr67YMfa3sBx98o68xAaY
3g1u9ko76+wXuZuCQ9CTZw4WzFQF2rjrG2QeXnaQawDydSCGf0d6QAFa4vzenTKB
Ht3jAJg+ZxCRR9v2kptOaZzTDLbPlheZEwwACTomn1txZecc3w/fZrMsZ1iagUsQ
fGumWra9AI4aqpm3rmBS2svzUB5ELbYZoQMiFr7TtK8i0SrYn5ef3S/I1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLleBzOKNAcIq7/ChFNB4ODYQI43MB8GA1UdIwQY
MBaAFNQiNnQzdltUGjc5CpmJl7c3xGRyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUNJMmRETjJXMVFhTnprS21ZbVh0emZFWkhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy80NWJlMzItODIxZi00NTE0LWFhMzEt
YmM3NTQ2NjA0N2M5LzEvMUNJMmRETjJXMVFhTnprS21ZbVh0emZFWkhJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy80NWJlMzItODIxZi00NTE0LWFhMzEtYmM3NTQ2NjA0N2M5
LzEvMUNJMmRETjJXMVFhTnprS21ZbVh0emZFWkhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxh1RCbCI
UFDtc9NasyqlgPpqwnDYIJavmawFKeTyQpK4Fs+cSR4Mv2Lx9DGgilfwsLRDG4vU
/B/C/NLyxa6UoMJrzGm3HfANoSb17vEYEnU3JdC6auijttiNN7eCUxbB9zD1LXyD
UDhXqnJU3f+4IGlhPc2hDSSDqSGHsEJr6Cexthlkcput8Zevwb4y1ApezSyW7a4T
DPhm+NAACFTHJmbgzOmxEbFOTpLZ8xpjt5i7etPvF4EyuGAWv3tl0juk/QbKyOnL
+wf/k14IvRQq+WYa7739O9ObvdrwttKw1l1CDA1QnQT1VaZsUad+57RcLtzYeH0U
QwGH0XeNfjPyYA==
-----END CERTIFICATE-----
Generated at Mon Jun 9 14:30:42 2025 by rpki-client