Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
File: D8lnTtVfCnZcpdocb6-k3SXioXg.mft (raw, json)
Hash identifier: AwrPWdveIeDQNrjCugABTLzlcti95kncgecmlIxE6DM=
Subject key identifier: D2:25:99:EE:3E:16:F4:15:30:69:5E:C0:EF:2C:C4:8F:D3:2F:9A:B7
Authority key identifier: 0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
Certificate issuer: /CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Certificate serial: 0197493146CC8B986D59623227BAF464D297
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
Manifest number: 0661
Signing time: Sat 07 Jun 2025 07:00:55 +0000
Manifest this update: Sat 07 Jun 2025 07:00:55 +0000
Manifest next update: Sun 08 Jun 2025 07:00:55 +0000
Files and hashes: 1: D8lnTtVfCnZcpdocb6-k3SXioXg.crl (hash: PfrxQi7NWMoHVXesLvPklbCEeiWIn6Q8xciq4BT+02Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:46:cc:8b:98:6d:59:62:32:27:ba:f4:64:d2:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Validity
Not Before: Jun 7 07:00:55 2025 GMT
Not After : Jun 8 07:00:55 2025 GMT
Subject: CN=d22599ee3e16f41530695ec0ef2cc48fd32f9ab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3f:85:b8:48:fc:8b:ca:be:e6:1a:fd:a0:e5:
b0:0a:44:17:9f:f2:6a:b3:f4:40:e2:a2:01:b4:a2:
b3:65:40:e1:c4:a8:55:2f:1d:2d:64:76:4e:08:ec:
3d:95:95:52:eb:ed:7d:e4:dd:9a:e0:35:15:2a:6d:
66:ac:24:29:80:1c:26:ca:90:d4:94:c3:de:d6:df:
5a:3b:72:a0:cd:26:46:e2:0e:e8:8a:a3:51:19:61:
1c:48:01:32:0b:d4:95:90:d6:23:80:36:f6:a0:c5:
c8:8f:9d:28:8d:da:52:02:9e:6f:bc:39:27:d0:0a:
78:84:a2:35:17:83:22:64:65:2b:b3:17:7a:2a:43:
76:11:7b:14:90:54:9f:cf:9f:ef:73:13:8d:d2:06:
fa:7a:ca:79:00:6f:1e:4f:69:2a:2f:f1:3c:7e:66:
d7:f4:1f:10:66:e1:35:91:26:3e:20:d5:6b:9f:5f:
9e:64:85:9d:87:e5:71:d4:0e:89:e1:c8:ef:55:29:
5a:7c:f2:9c:11:da:31:a0:31:d5:ca:16:8f:d1:a5:
b8:44:24:1f:22:21:81:05:aa:9e:cd:2b:14:d0:91:
9d:fa:33:24:c6:20:29:19:c6:d5:94:eb:2c:9d:9b:
3d:e5:1c:03:d6:e8:f7:9e:35:ee:d5:4a:b8:5f:5f:
d3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:25:99:EE:3E:16:F4:15:30:69:5E:C0:EF:2C:C4:8F:D3:2F:9A:B7
X509v3 Authority Key Identifier:
keyid:0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
db:75:2a:06:fe:29:22:16:08:e7:5d:05:b9:15:1c:4b:ac:29:
81:14:eb:ca:a7:0e:f6:ed:d8:36:2e:bf:28:8b:a7:df:04:c6:
61:ed:75:63:a1:86:ae:e4:a1:18:78:de:0e:5e:43:33:a3:0b:
09:24:c8:4f:2c:99:ec:f7:7a:6b:ef:06:df:e6:f4:cb:39:4e:
69:b9:ba:02:42:ae:4e:09:7c:f9:e7:d3:9d:d9:60:80:1b:43:
84:60:e2:0d:5d:c2:af:46:cb:ff:46:f9:e2:a6:0f:84:56:a5:
83:c9:0e:fc:c3:d0:d8:8e:5a:b4:f3:7d:7d:87:cd:18:4e:bc:
39:69:4d:2c:99:fc:7e:84:76:6c:2a:72:c4:db:4a:46:33:2f:
af:8f:1d:a1:0a:1a:07:3a:6f:b6:bc:0e:28:56:03:3e:25:53:
23:f5:34:e6:6b:57:3e:f2:63:f1:b6:21:c4:c7:77:5c:93:8d:
a5:f5:fe:4c:b9:f8:88:b4:77:8c:a9:cc:d0:c2:54:27:e9:4f:
e9:8e:68:bf:e9:9e:01:49:a4:49:e1:eb:27:87:12:6f:62:56:
d7:b5:5d:de:c2:36:83:cc:f5:4c:9c:5a:ef:44:65:e0:89:25:
75:a3:22:8f:df:59:43:1b:4b:1d:6b:e1:ab:df:b0:58:69:86:
8b:b5:7f:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJMUbMi5htWWIyJ7r0ZNKXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmYzk2NzRlZDU1ZjBhNzY1Y2E1ZGExYzZmYWZhNGRkMjVl
MmExNzgwHhcNMjUwNjA3MDcwMDU1WhcNMjUwNjA4MDcwMDU1WjAzMTEwLwYDVQQD
EyhkMjI1OTllZTNlMTZmNDE1MzA2OTVlYzBlZjJjYzQ4ZmQzMmY5YWI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArj+FuEj8i8q+5hr9oOWwCkQXn/Jq
s/RA4qIBtKKzZUDhxKhVLx0tZHZOCOw9lZVS6+195N2a4DUVKm1mrCQpgBwmypDU
lMPe1t9aO3KgzSZG4g7oiqNRGWEcSAEyC9SVkNYjgDb2oMXIj50ojdpSAp5vvDkn
0Ap4hKI1F4MiZGUrsxd6KkN2EXsUkFSfz5/vcxON0gb6esp5AG8eT2kqL/E8fmbX
9B8QZuE1kSY+INVrn1+eZIWdh+Vx1A6J4cjvVSlafPKcEdoxoDHVyhaP0aW4RCQf
IiGBBaqezSsU0JGd+jMkxiApGcbVlOssnZs95RwD1uj3njXu1Uq4X1/TXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNIlme4+FvQVMGlewO8sxI/TL5q3MB8GA1UdIwQY
MBaAFA/JZ07VXwp2XKXaHG+vpN0l4qF4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDhsblR0VmZDblpjcGRvY2I2LWszU1hpb1hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC84YWIyYTMtMDg4ZS00ZTBjLWJlOWEt
NGE5NDZjNTJmYmMyLzEvRDhsblR0VmZDblpjcGRvY2I2LWszU1hpb1hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC84YWIyYTMtMDg4ZS00ZTBjLWJlOWEtNGE5NDZjNTJmYmMy
LzEvRDhsblR0VmZDblpjcGRvY2I2LWszU1hpb1hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA23UqBv4p
IhYI510FuRUcS6wpgRTryqcO9u3YNi6/KIun3wTGYe11Y6GGruShGHjeDl5DM6ML
CSTITyyZ7Pd6a+8G3+b0yzlOabm6AkKuTgl8+efTndlggBtDhGDiDV3Cr0bL/0b5
4qYPhFalg8kO/MPQ2I5atPN9fYfNGE68OWlNLJn8foR2bCpyxNtKRjMvr48doQoa
BzpvtrwOKFYDPiVTI/U05mtXPvJj8bYhxMd3XJONpfX+TLn4iLR3jKnM0MJUJ+lP
6Y5ov+meAUmkSeHrJ4cSb2JW17Vd3sI2g8z1TJxa70Rl4IkldaMij99ZQxtLHWvh
q9+wWGmGi7V//Q==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:10:30 2025 by rpki-client