Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
File: SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft (raw, json)
Hash identifier: BDfiX1GwQ9HJJFVd7bBnQgjD1c5uPZKZuBssgzQNgmI=
Subject key identifier: 3E:C9:C4:72:07:1D:CF:29:29:5E:E3:B7:3E:26:15:76:07:EF:AE:88
Authority key identifier: 4A:A2:FA:6F:67:70:F7:2D:80:84:BC:6C:18:30:58:B8:0E:83:8D:73
Certificate issuer: /CN=4aa2fa6f6770f72d8084bc6c183058b80e838d73
Certificate serial: 01987ABFC6C1C2667E5D7FE35C975F6BE6CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SqL6b2dw9y2AhLxsGDBYuA6DjXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
Manifest number: 01F9
Signing time: Tue 05 Aug 2025 15:00:45 +0000
Manifest this update: Tue 05 Aug 2025 15:00:45 +0000
Manifest next update: Wed 06 Aug 2025 15:00:45 +0000
Files and hashes: 1: SqL6b2dw9y2AhLxsGDBYuA6DjXM.crl (hash: PXez5rI9dfNBQwkCAPaOqRvr+XKjrl2ScEIde/U19Ow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/SqL6b2dw9y2AhLxsGDBYuA6DjXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 15:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:bf:c6:c1:c2:66:7e:5d:7f:e3:5c:97:5f:6b:e6:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aa2fa6f6770f72d8084bc6c183058b80e838d73
Validity
Not Before: Aug 5 15:00:45 2025 GMT
Not After : Aug 6 15:00:45 2025 GMT
Subject: CN=3ec9c472071dcf29295ee3b73e26157607efae88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:96:14:7a:88:47:8b:7c:ae:19:68:22:2d:de:
7f:6b:fa:0f:e1:89:6d:67:b9:41:d4:55:12:c7:6f:
cd:8d:ef:e4:64:22:d5:90:f0:bc:54:4d:24:c3:c3:
d4:4a:81:f2:3d:32:23:d6:ba:2b:f3:2d:fb:7e:1c:
6c:05:2a:a9:7f:b4:b5:7c:82:4f:39:e1:7c:5b:f3:
d2:35:fd:7b:ba:7e:f7:92:24:ab:7c:8c:94:c4:36:
3d:98:31:ac:26:25:1f:bf:51:4e:41:75:f7:a6:7a:
f3:78:71:b5:18:75:bb:47:26:cc:a0:8e:b0:8c:dc:
0a:ac:cf:de:13:54:be:d0:65:bc:ca:22:ae:57:f5:
6d:9e:6c:cf:5b:18:23:3b:ca:f6:47:ab:ce:f5:e4:
b8:0c:2d:bf:1a:d7:09:cf:9c:0d:56:23:c3:6a:9f:
d2:7f:b0:4e:ef:81:c1:6b:b0:5b:6c:a5:e5:c1:67:
cb:76:2f:dd:99:11:bb:28:70:b4:a2:9d:67:0c:78:
7b:b9:13:dc:3e:58:34:e2:64:49:e4:1e:ba:41:3e:
14:be:f1:e6:af:3d:b6:25:fd:99:79:87:31:b9:78:
b3:3a:d2:75:8a:f8:2c:14:1b:21:5c:cf:4e:c9:51:
8e:29:fc:14:17:8b:50:74:d7:e1:2b:3a:e3:c9:b0:
54:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C9:C4:72:07:1D:CF:29:29:5E:E3:B7:3E:26:15:76:07:EF:AE:88
X509v3 Authority Key Identifier:
keyid:4A:A2:FA:6F:67:70:F7:2D:80:84:BC:6C:18:30:58:B8:0E:83:8D:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SqL6b2dw9y2AhLxsGDBYuA6DjXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:2c:81:0d:88:48:b1:3f:c1:1f:fc:39:69:27:23:05:f0:66:
92:51:14:1d:76:7e:99:65:7c:e2:d3:e6:7e:c9:8e:5e:38:77:
4f:41:8d:7c:d8:82:61:88:61:04:bc:73:70:d6:f7:78:e8:b1:
11:a4:72:66:f3:7a:ca:10:50:e1:0b:62:b5:b3:41:4f:4d:85:
9d:0d:81:cd:3d:42:6e:fe:2d:02:ee:bf:39:03:cd:57:9c:20:
b1:ed:19:47:f5:20:76:6f:ea:fd:b5:69:08:74:56:06:47:97:
06:24:32:8c:7d:8a:61:97:b1:1f:6b:c3:3c:b9:73:be:12:e4:
9d:0d:26:ab:8f:47:6a:d7:3f:1c:7f:73:62:15:ab:56:fb:c1:
07:1c:9c:a4:e2:4e:d6:c5:cb:43:f5:77:31:1c:68:16:af:c6:
f7:6d:e5:9b:14:e2:a6:3a:79:82:13:55:49:58:9f:a1:5a:5d:
cb:60:22:52:2b:2f:18:34:56:d4:8f:d5:52:aa:33:ea:fd:4e:
60:4a:d6:b2:e9:04:1a:91:59:80:e5:bf:5e:8c:23:41:90:f7:
ee:55:05:bc:ab:7e:b9:df:70:22:ec:70:d1:98:0f:b3:c9:06:
0c:73:b1:07:b8:d6:66:48:c4:90:4c:15:30:e6:d9:4d:89:c1:
45:55:cf:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh6v8bBwmZ+XX/jXJdfa+bOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhYTJmYTZmNjc3MGY3MmQ4MDg0YmM2YzE4MzA1OGI4MGU4
MzhkNzMwHhcNMjUwODA1MTUwMDQ1WhcNMjUwODA2MTUwMDQ1WjAzMTEwLwYDVQQD
EygzZWM5YzQ3MjA3MWRjZjI5Mjk1ZWUzYjczZTI2MTU3NjA3ZWZhZTg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnJYUeohHi3yuGWgiLd5/a/oP4Ylt
Z7lB1FUSx2/Nje/kZCLVkPC8VE0kw8PUSoHyPTIj1ror8y37fhxsBSqpf7S1fIJP
OeF8W/PSNf17un73kiSrfIyUxDY9mDGsJiUfv1FOQXX3pnrzeHG1GHW7RybMoI6w
jNwKrM/eE1S+0GW8yiKuV/VtnmzPWxgjO8r2R6vO9eS4DC2/GtcJz5wNViPDap/S
f7BO74HBa7BbbKXlwWfLdi/dmRG7KHC0op1nDHh7uRPcPlg04mRJ5B66QT4UvvHm
rz22Jf2ZeYcxuXizOtJ1ivgsFBshXM9OyVGOKfwUF4tQdNfhKzrjybBUjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD7JxHIHHc8pKV7jtz4mFXYH766IMB8GA1UdIwQY
MBaAFEqi+m9ncPctgIS8bBgwWLgOg41zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3FMNmIyZHc5eTJBaEx4c0dEQll1QTZEalhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8yOTdiZDgtYmVhZi00NjA5LTljNjAt
NzQ3NGY5MTZkYjQ3LzEvU3FMNmIyZHc5eTJBaEx4c0dEQll1QTZEalhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8yOTdiZDgtYmVhZi00NjA5LTljNjAtNzQ3NGY5MTZkYjQ3
LzEvU3FMNmIyZHc5eTJBaEx4c0dEQll1QTZEalhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUiyBDYhI
sT/BH/w5aScjBfBmklEUHXZ+mWV84tPmfsmOXjh3T0GNfNiCYYhhBLxzcNb3eOix
EaRyZvN6yhBQ4QtitbNBT02FnQ2BzT1Cbv4tAu6/OQPNV5wgse0ZR/Ugdm/q/bVp
CHRWBkeXBiQyjH2KYZexH2vDPLlzvhLknQ0mq49Hatc/HH9zYhWrVvvBBxycpOJO
1sXLQ/V3MRxoFq/G923lmxTipjp5ghNVSVifoVpdy2AiUisvGDRW1I/VUqoz6v1O
YErWsukEGpFZgOW/XowjQZD37lUFvKt+ud9wIuxw0ZgPs8kGDHOxB7jWZkjEkEwV
MObZTYnBRVXPuw==
-----END CERTIFICATE-----
Generated at Wed Aug 6 00:45:04 2025 by rpki-client