Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
File: PI_isZvT639wpO7atha1MlABFSA.mft (raw, json)
Hash identifier: pHXsuc9kZJkkQa2KaFB/xepKRNPQ+zcksdLuiiDzpN0=
Subject key identifier: 38:59:54:4C:EB:D8:5C:13:89:5D:F0:58:F6:5C:D0:03:A2:95:80:51
Authority key identifier: 3C:8F:E2:B1:9B:D3:EB:7F:70:A4:EE:DA:B6:16:B5:32:50:01:15:20
Certificate issuer: /CN=3c8fe2b19bd3eb7f70a4eedab616b53250011520
Certificate serial: 01976E19C2C1E6871510B313C4CF859FEE8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
Manifest number: 0262
Signing time: Sat 14 Jun 2025 11:01:11 +0000
Manifest this update: Sat 14 Jun 2025 11:01:11 +0000
Manifest next update: Sun 15 Jun 2025 11:01:11 +0000
Files and hashes: 1: PI_isZvT639wpO7atha1MlABFSA.crl (hash: pZzAy2/aSqP3kJokX3vkoVx8qMSknT3lZXAJEpVDzLY=)
2: iTxg6a45pQs6yguLKNzKJpXtu1I.roa (hash: IbbuNrBXDC3r/NQaAU8s873gXp019KR8EegJpijUcwo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:19:c2:c1:e6:87:15:10:b3:13:c4:cf:85:9f:ee:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c8fe2b19bd3eb7f70a4eedab616b53250011520
Validity
Not Before: Jun 14 11:01:11 2025 GMT
Not After : Jun 15 11:01:11 2025 GMT
Subject: CN=3859544cebd85c13895df058f65cd003a2958051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fb:b8:af:b5:b7:95:5d:76:fe:3b:bf:ba:fc:
5d:0a:f7:1a:cd:65:69:61:d1:b3:b4:ad:21:11:17:
d5:1a:bc:f4:4d:07:5d:93:a5:7d:86:e2:12:55:66:
59:60:13:52:b8:46:d2:34:7a:ad:ce:32:ff:c7:f7:
e8:ec:70:fe:fd:6d:06:7b:76:f6:fb:76:0a:7c:01:
e5:34:c4:1c:79:7b:35:9d:56:00:1f:e6:4c:b7:fb:
9f:8b:40:41:62:65:18:79:b2:98:a3:46:46:2c:db:
e3:32:79:e2:ac:72:49:51:a1:dd:95:f6:ad:ae:b8:
1f:5b:de:e4:76:d4:ff:e2:29:de:a0:5e:78:9a:c6:
80:07:62:e9:7b:16:70:7c:1f:26:e0:33:c5:4c:2f:
88:fa:4c:67:5d:fa:68:8c:ee:25:79:29:ed:77:7f:
1b:4a:ba:59:7c:14:8f:91:ae:c3:b6:6a:57:f9:84:
85:bb:e8:13:d5:3a:62:0f:7d:f2:7c:38:fb:e6:ab:
a6:fa:39:e4:d6:c1:9a:f2:45:ab:26:6a:8d:bf:2d:
68:12:d7:cc:58:e8:56:83:06:b0:b4:29:69:34:f6:
57:76:a9:14:92:87:ec:99:73:0e:a4:ca:9a:9d:19:
64:43:92:0b:fa:16:a0:da:2c:cb:2c:13:51:42:24:
fc:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:59:54:4C:EB:D8:5C:13:89:5D:F0:58:F6:5C:D0:03:A2:95:80:51
X509v3 Authority Key Identifier:
keyid:3C:8F:E2:B1:9B:D3:EB:7F:70:A4:EE:DA:B6:16:B5:32:50:01:15:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:4e:86:01:ab:74:a6:7e:b7:79:4f:d6:cb:64:ca:6e:28:11:
f0:2f:77:84:d0:0c:43:85:6d:f9:4e:6e:ef:0b:0f:24:e6:9f:
99:32:99:5c:3c:3f:b1:e0:55:1d:a2:4e:7c:6e:a4:70:7c:1f:
8f:93:7f:e1:bf:b8:d1:d5:52:dd:b7:75:53:9f:0f:31:6b:ba:
bf:3c:31:90:c6:74:34:fe:b8:6b:cf:f0:d4:df:8d:da:ae:93:
b3:5a:de:8f:21:a6:d3:c5:3e:63:8a:26:14:c1:70:17:d4:74:
b2:75:65:fe:08:2a:73:ec:dd:61:8f:e0:a7:f6:b0:50:e7:ea:
48:e0:e2:fe:12:3a:8b:dd:6f:a6:6e:b8:41:79:1d:cd:f9:e2:
cf:07:10:e0:4d:13:7e:3b:58:03:37:45:f0:e0:79:c0:6b:dc:
75:a3:7a:a2:25:e3:ab:7d:38:08:79:f2:ed:28:9b:f6:b3:08:
66:cc:b5:04:8f:c6:f4:06:58:8b:e4:a8:15:05:7b:ce:4b:39:
c2:6a:cc:82:65:f2:5e:60:40:5c:70:16:35:fe:d6:b7:70:c9:
62:a7:d6:23:78:a7:a4:1a:83:24:78:df:15:85:d7:00:b0:98:
51:d5:25:53:dc:a2:dc:6d:4e:8a:67:e1:8b:db:7a:54:c8:dd:
60:9c:d6:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZduGcLB5ocVELMTxM+Fn+6KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjOGZlMmIxOWJkM2ViN2Y3MGE0ZWVkYWI2MTZiNTMyNTAw
MTE1MjAwHhcNMjUwNjE0MTEwMTExWhcNMjUwNjE1MTEwMTExWjAzMTEwLwYDVQQD
EygzODU5NTQ0Y2ViZDg1YzEzODk1ZGYwNThmNjVjZDAwM2EyOTU4MDUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfu4r7W3lV12/ju/uvxdCvcazWVp
YdGztK0hERfVGrz0TQddk6V9huISVWZZYBNSuEbSNHqtzjL/x/fo7HD+/W0Ge3b2
+3YKfAHlNMQceXs1nVYAH+ZMt/ufi0BBYmUYebKYo0ZGLNvjMnnirHJJUaHdlfat
rrgfW97kdtT/4ineoF54msaAB2LpexZwfB8m4DPFTC+I+kxnXfpojO4leSntd38b
SrpZfBSPka7DtmpX+YSFu+gT1TpiD33yfDj75qum+jnk1sGa8kWrJmqNvy1oEtfM
WOhWgwawtClpNPZXdqkUkofsmXMOpMqanRlkQ5IL+hag2izLLBNRQiT8XwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDhZVEzr2FwTiV3wWPZc0AOilYBRMB8GA1UdIwQY
MBaAFDyP4rGb0+t/cKTu2rYWtTJQARUgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUElfaXNadlQ2Mzl3cE83YXRoYTFNbEFCRlNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9lN2VkZDEtYzc5Zi00ODkwLWExNzUt
MTJlNmE2ZWRkMTI0LzEvUElfaXNadlQ2Mzl3cE83YXRoYTFNbEFCRlNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni9lN2VkZDEtYzc5Zi00ODkwLWExNzUtMTJlNmE2ZWRkMTI0
LzEvUElfaXNadlQ2Mzl3cE83YXRoYTFNbEFCRlNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd06GAat0
pn63eU/Wy2TKbigR8C93hNAMQ4Vt+U5u7wsPJOafmTKZXDw/seBVHaJOfG6kcHwf
j5N/4b+40dVS3bd1U58PMWu6vzwxkMZ0NP64a8/w1N+N2q6Ts1rejyGm08U+Y4om
FMFwF9R0snVl/ggqc+zdYY/gp/awUOfqSODi/hI6i91vpm64QXkdzfnizwcQ4E0T
fjtYAzdF8OB5wGvcdaN6oiXjq304CHny7Sib9rMIZsy1BI/G9AZYi+SoFQV7zks5
wmrMgmXyXmBAXHAWNf7Wt3DJYqfWI3inpBqDJHjfFYXXALCYUdUlU9yi3G1Oimfh
i9t6VMjdYJzWzQ==
-----END CERTIFICATE-----
Generated at Sat Jun 14 19:53:47 2025 by rpki-client