Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
File: 20YNIBeVpqmS7UrBi7fFLBCLeFI.mft (raw, json)
Hash identifier: F842/MKNpIlWXUjEbBeaLMtDpW9GdJCwul0Qfe1ug8o=
Subject key identifier: 7B:8C:A0:FD:C7:A7:6F:16:5E:E5:56:48:5C:7C:79:A4:D8:74:3A:09
Authority key identifier: DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
Certificate issuer: /CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Certificate serial: 01976BF48787B94088808993ECDED1F67E33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
Manifest number: 158A
Signing time: Sat 14 Jun 2025 01:01:16 +0000
Manifest this update: Sat 14 Jun 2025 01:01:16 +0000
Manifest next update: Sun 15 Jun 2025 01:01:16 +0000
Files and hashes: 1: 20YNIBeVpqmS7UrBi7fFLBCLeFI.crl (hash: 9Wt+kNuuvYO7FoeQOCS0QuM0eyTuGXnkzBZUeSkYuyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:87:87:b9:40:88:80:89:93:ec:de:d1:f6:7e:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Validity
Not Before: Jun 14 01:01:16 2025 GMT
Not After : Jun 15 01:01:16 2025 GMT
Subject: CN=7b8ca0fdc7a76f165ee556485c7c79a4d8743a09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:48:8e:3c:74:3e:f3:17:3c:62:33:b8:0a:c3:
06:d5:08:50:3b:c9:91:c7:5c:f3:7d:ea:84:1f:90:
0f:7f:ea:f6:75:eb:28:10:ff:c2:89:d5:cd:99:ee:
ed:d7:49:17:dc:65:2c:19:c5:47:fe:47:07:03:fe:
ed:5c:ab:eb:9d:ea:6e:7f:38:53:ed:fc:16:dd:2d:
05:d1:e5:88:a9:0a:68:cd:86:9b:8a:ed:fd:f4:b9:
b4:75:d6:b3:b5:5b:ad:5e:36:34:15:22:b3:e0:c1:
d9:ab:fd:fa:6b:98:7e:27:7a:7c:4a:66:c8:22:2e:
3d:05:bc:3d:4a:2c:18:b0:8c:64:ca:75:dc:11:e4:
4f:5e:b5:a5:cd:0a:87:10:94:6d:cf:d1:a7:81:cf:
80:ea:82:00:75:61:88:cb:2c:6d:55:83:a1:07:25:
50:ef:33:5b:ed:a7:07:4e:7e:e4:26:11:da:1f:d6:
d9:ea:b9:72:01:c8:ab:e4:8b:b9:bf:60:7f:ed:a6:
f8:48:32:0a:2f:65:9a:6e:a4:4e:c5:b4:ae:9d:f3:
5b:52:24:e9:03:af:c5:c5:9f:1d:09:b2:f7:70:d5:
f2:20:41:df:c5:65:6d:74:37:0d:2f:aa:86:13:e1:
cc:62:1d:c8:ed:92:52:df:d0:0b:21:8c:dc:2c:1d:
2d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:8C:A0:FD:C7:A7:6F:16:5E:E5:56:48:5C:7C:79:A4:D8:74:3A:09
X509v3 Authority Key Identifier:
keyid:DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:77:3e:4a:53:53:f7:28:cb:5d:69:e1:af:94:65:f3:13:75:
ff:49:ec:d4:4b:4f:85:1c:75:54:c8:24:28:99:af:d4:a4:df:
40:9d:e6:f1:fb:cd:cc:ef:e1:26:dd:76:0e:25:cf:d6:84:63:
78:fc:11:94:7e:2e:7d:94:de:8f:25:2b:3f:67:3a:7f:08:73:
0a:4a:d3:90:e6:44:f3:c5:29:54:2a:60:c4:e6:33:44:07:f8:
ee:29:15:3b:1e:c9:4c:71:df:0a:27:f8:78:a0:96:97:03:c4:
0b:78:74:3e:2a:c6:5e:76:26:b8:23:03:44:17:51:72:9d:19:
8a:0f:ce:f1:07:2a:ce:57:4b:fa:5b:c7:9a:23:9e:b9:30:94:
41:44:82:e9:f4:08:81:30:7e:76:10:b0:bd:54:45:7e:2b:1e:
a4:11:74:b6:8d:70:04:9d:25:5f:0a:f5:a9:01:ed:51:3f:bf:
15:5b:1f:9a:2f:a9:eb:bc:6a:c6:31:61:7a:6e:de:68:4b:45:
e1:29:f5:ec:e9:05:9e:64:50:16:ab:cf:11:73:db:40:c4:5b:
b5:20:9f:aa:5f:ea:16:5c:9a:80:a9:c5:26:7c:80:0d:26:33:
4d:a9:2c:f4:39:64:a8:bc:fa:95:cd:1e:48:5e:47:39:23:69:
f2:56:ed:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdr9IeHuUCIgImT7N7R9n4zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiNDYwZDIwMTc5NWE2YTk5MmVkNGFjMThiYjdjNTJjMTA4
Yjc4NTIwHhcNMjUwNjE0MDEwMTE2WhcNMjUwNjE1MDEwMTE2WjAzMTEwLwYDVQQD
Eyg3YjhjYTBmZGM3YTc2ZjE2NWVlNTU2NDg1YzdjNzlhNGQ4NzQzYTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvEiOPHQ+8xc8YjO4CsMG1QhQO8mR
x1zzfeqEH5APf+r2desoEP/CidXNme7t10kX3GUsGcVH/kcHA/7tXKvrnepufzhT
7fwW3S0F0eWIqQpozYabiu399Lm0ddaztVutXjY0FSKz4MHZq/36a5h+J3p8SmbI
Ii49Bbw9SiwYsIxkynXcEeRPXrWlzQqHEJRtz9Gngc+A6oIAdWGIyyxtVYOhByVQ
7zNb7acHTn7kJhHaH9bZ6rlyAcir5Iu5v2B/7ab4SDIKL2WabqROxbSunfNbUiTp
A6/FxZ8dCbL3cNXyIEHfxWVtdDcNL6qGE+HMYh3I7ZJS39ALIYzcLB0t5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHuMoP3Hp28WXuVWSFx8eaTYdDoJMB8GA1UdIwQY
MBaAFNtGDSAXlaapku1KwYu3xSwQi3hSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjBZTklCZVZwcW1TN1VyQmk3ZkZMQkNMZUZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8xZjM0NmEtYTg3ZC00OTU3LWE0Y2Ut
ZTgyZWQzZDc2YTg3LzEvMjBZTklCZVZwcW1TN1VyQmk3ZkZMQkNMZUZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy8xZjM0NmEtYTg3ZC00OTU3LWE0Y2UtZTgyZWQzZDc2YTg3
LzEvMjBZTklCZVZwcW1TN1VyQmk3ZkZMQkNMZUZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABnc+SlNT
9yjLXWnhr5Rl8xN1/0ns1EtPhRx1VMgkKJmv1KTfQJ3m8fvNzO/hJt12DiXP1oRj
ePwRlH4ufZTejyUrP2c6fwhzCkrTkOZE88UpVCpgxOYzRAf47ikVOx7JTHHfCif4
eKCWlwPEC3h0PirGXnYmuCMDRBdRcp0Zig/O8QcqzldL+lvHmiOeuTCUQUSC6fQI
gTB+dhCwvVRFfisepBF0to1wBJ0lXwr1qQHtUT+/FVsfmi+p67xqxjFhem7eaEtF
4Sn17OkFnmRQFqvPEXPbQMRbtSCfql/qFlyagKnFJnyADSYzTaks9DlkqLz6lc0e
SF5HOSNp8lbtFw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:48:05 2025 by rpki-client