Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
File: mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft (raw, json)
Hash identifier: SzHNwNWjnx/pSvKwCsi3b7P0LtKSi8NURXdCX9z1IWo=
Subject key identifier: 57:C4:16:3C:D5:B1:41:50:52:9D:B0:C3:39:E3:30:2F:5A:4B:27:FB
Authority key identifier: 9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
Certificate issuer: /CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Certificate serial: 01974C692EA7DEB6079CAE00B57A2398FFD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
Manifest number: 1020
Signing time: Sat 07 Jun 2025 22:00:50 +0000
Manifest this update: Sat 07 Jun 2025 22:00:50 +0000
Manifest next update: Sun 08 Jun 2025 22:00:50 +0000
Files and hashes: 1: mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl (hash: lWzw/Row71p1CHnirCJrghZY8kJNEh/Pe5AhSXg3xWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 22:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:2e:a7:de:b6:07:9c:ae:00:b5:7a:23:98:ff:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Validity
Not Before: Jun 7 22:00:50 2025 GMT
Not After : Jun 8 22:00:50 2025 GMT
Subject: CN=57c4163cd5b14150529db0c339e3302f5a4b27fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ed:6a:e4:ed:30:e9:f1:a5:55:cd:5d:a8:5e:
f9:81:21:f5:b8:81:e8:a1:86:52:b0:bb:a1:9f:93:
b4:cb:8b:2c:bf:97:37:eb:eb:59:fe:a0:91:e4:07:
0d:17:1e:b4:92:38:b6:14:2e:6d:82:a4:ec:74:b9:
ae:68:ae:ce:4f:8d:8e:b3:42:a2:70:13:92:a4:14:
02:a6:3c:52:94:61:ec:07:97:58:88:25:54:df:3d:
d6:74:d0:12:16:c8:f2:5c:92:29:06:f6:1c:b3:2f:
c7:b9:3b:e8:37:f2:1a:d1:0c:46:3b:4d:02:b3:d7:
69:8c:40:47:83:8a:a0:39:6d:83:66:66:86:b5:18:
82:de:ee:16:ff:6e:23:3b:16:b6:5a:5e:b1:55:27:
69:a5:4c:41:23:7c:ed:22:21:75:e3:2e:3a:62:48:
5a:e4:7f:82:d0:2f:d4:34:59:e4:94:5e:82:5c:51:
b6:03:69:31:ec:f5:43:4a:27:4f:ab:7b:9e:77:96:
e6:72:02:51:19:80:e5:92:99:f6:49:f0:92:b9:b9:
ac:42:52:9d:7c:1b:5c:f1:b6:8e:b6:45:4b:56:be:
8e:9e:4b:8b:97:7e:6e:49:42:df:a3:85:1d:bf:16:
34:d4:12:f4:1c:29:51:19:1b:10:19:d9:99:c2:ef:
7e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:C4:16:3C:D5:B1:41:50:52:9D:B0:C3:39:E3:30:2F:5A:4B:27:FB
X509v3 Authority Key Identifier:
keyid:9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:31:eb:c8:a9:d2:bf:a0:af:bc:73:c4:aa:04:cc:8d:ed:cd:
f3:a3:86:c3:2c:de:99:33:0b:d2:bb:ef:bb:27:33:a5:63:2c:
cb:cb:82:82:9f:59:80:c6:f1:96:c9:3f:a9:cb:28:10:8e:e0:
6a:25:b9:e2:ba:87:f8:f7:37:77:fe:fa:9f:a1:f7:95:60:7c:
a1:93:f4:1a:05:6c:39:f1:d3:6f:92:8b:b0:61:39:ec:04:d6:
90:87:ac:4a:d6:2b:69:cb:15:de:08:5f:cc:10:10:11:98:6b:
67:1c:e7:12:89:18:12:e6:ea:b6:a1:d1:75:99:f4:cc:f1:e9:
a5:9c:69:30:c8:56:c1:e9:a6:99:8b:5c:fb:9d:12:c7:d6:2c:
d0:94:3a:4e:7a:45:61:29:29:2f:2d:96:ea:b0:ef:e2:25:f5:
2c:fd:97:05:2c:ff:af:92:66:23:91:a7:2e:d0:14:1a:44:3d:
cb:30:f3:d9:6f:53:d7:f6:0d:52:51:34:30:d4:56:95:4a:6e:
fa:b5:38:bc:eb:4b:c1:67:f9:4e:cd:5a:d8:45:de:aa:64:78:
1a:88:e3:cf:05:7a:d5:6f:f8:4e:25:99:ba:92:0c:31:b6:0f:
74:e5:15:a7:dc:f8:ea:ca:5e:1c:ba:a9:bc:16:96:88:d9:f0:
f3:59:b5:46
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMaS6n3rYHnK4AtXojmP/ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhZjlkMWU1NWY0M2U0ZmRkNmQyNGZiNGIwZWRhNmU5ZDEy
OGFhNTEwHhcNMjUwNjA3MjIwMDUwWhcNMjUwNjA4MjIwMDUwWjAzMTEwLwYDVQQD
Eyg1N2M0MTYzY2Q1YjE0MTUwNTI5ZGIwYzMzOWUzMzAyZjVhNGIyN2ZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoe1q5O0w6fGlVc1dqF75gSH1uIHo
oYZSsLuhn5O0y4ssv5c36+tZ/qCR5AcNFx60kji2FC5tgqTsdLmuaK7OT42Os0Ki
cBOSpBQCpjxSlGHsB5dYiCVU3z3WdNASFsjyXJIpBvYcsy/HuTvoN/Ia0QxGO00C
s9dpjEBHg4qgOW2DZmaGtRiC3u4W/24jOxa2Wl6xVSdppUxBI3ztIiF14y46Ykha
5H+C0C/UNFnklF6CXFG2A2kx7PVDSidPq3ued5bmcgJRGYDlkpn2SfCSubmsQlKd
fBtc8baOtkVLVr6OnkuLl35uSULfo4UdvxY01BL0HClRGRsQGdmZwu9+RQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFfEFjzVsUFQUp2wwznjMC9aSyf7MB8GA1UdIwQY
MBaAFJr50eVfQ+T91tJPtLDtpunRKKpRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXZuUjVWOUQ1UDNXMGstMHNPMm02ZEVvcWxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS8wYzVlZDctMGU3Mi00ZWFkLTkwNmMt
MjkxYTMxNjRhMGI4LzEvbXZuUjVWOUQ1UDNXMGstMHNPMm02ZEVvcWxFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS8wYzVlZDctMGU3Mi00ZWFkLTkwNmMtMjkxYTMxNjRhMGI4
LzEvbXZuUjVWOUQ1UDNXMGstMHNPMm02ZEVvcWxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhTHryKnS
v6CvvHPEqgTMje3N86OGwyzemTML0rvvuyczpWMsy8uCgp9ZgMbxlsk/qcsoEI7g
aiW54rqH+Pc3d/76n6H3lWB8oZP0GgVsOfHTb5KLsGE57ATWkIesStYracsV3ghf
zBAQEZhrZxznEokYEubqtqHRdZn0zPHppZxpMMhWwemmmYtc+50Sx9Ys0JQ6TnpF
YSkpLy2W6rDv4iX1LP2XBSz/r5JmI5GnLtAUGkQ9yzDz2W9T1/YNUlE0MNRWlUpu
+rU4vOtLwWf5Ts1a2EXeqmR4GojjzwV61W/4TiWZupIMMbYPdOUVp9z46speHLqp
vBaWiNnw81m1Rg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:53:51 2025 by rpki-client