Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
File: aQqw79d1diHIbXtpx29gssP6w1Y.mft (raw, json)
Hash identifier: zny76KC4LP/LDvw9bpzOJrJwHFa+PMoYRkNkOn5ungI=
Subject key identifier: 6C:E3:C6:84:E4:C3:A2:AE:B3:08:26:93:26:30:DB:AE:4F:C3:BB:BB
Authority key identifier: 69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
Certificate issuer: /CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Certificate serial: 01976C2A94FF1B133D1F6D9E59A7478846B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
Manifest number: 02DD
Signing time: Sat 14 Jun 2025 02:00:19 +0000
Manifest this update: Sat 14 Jun 2025 02:00:19 +0000
Manifest next update: Sun 15 Jun 2025 02:00:19 +0000
Files and hashes: 1: aQqw79d1diHIbXtpx29gssP6w1Y.crl (hash: blUP2O7Q8R7xALL7IsPBlIdwKtzxLCF9c37WT2XlbnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:94:ff:1b:13:3d:1f:6d:9e:59:a7:47:88:46:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Validity
Not Before: Jun 14 02:00:19 2025 GMT
Not After : Jun 15 02:00:19 2025 GMT
Subject: CN=6ce3c684e4c3a2aeb30826932630dbae4fc3bbbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:50:b4:97:67:95:f5:d2:95:b0:15:aa:82:44:
bf:1b:87:69:4b:dc:40:73:a2:de:04:af:fc:ce:40:
9c:2b:55:93:15:9c:66:03:bf:90:67:10:6c:0d:5b:
33:56:bd:d0:38:8e:49:39:c2:1a:d8:d6:38:00:ad:
ed:14:ee:ea:0a:35:38:19:91:8f:12:29:0f:21:ac:
d0:ab:34:80:05:4a:4c:d8:62:a9:3d:f1:2f:4a:93:
fc:6a:17:d2:08:ca:90:b7:f2:5a:00:29:43:07:b8:
5a:9a:42:55:4f:c1:a5:5c:f0:15:48:85:f5:41:75:
59:28:23:f5:2e:ba:3c:bd:56:a1:8b:c2:82:a2:d2:
ed:0e:7f:c7:ba:85:5f:f0:81:0e:44:4f:f4:aa:0b:
bb:80:85:7f:75:fc:19:6e:68:0b:d4:99:2a:fd:4f:
6e:29:4d:db:f0:70:db:3a:af:ee:6a:a2:d0:b1:e3:
eb:e9:5b:f5:53:32:e4:42:e3:da:a7:bc:98:cd:98:
2c:26:1f:a3:79:0e:e9:d6:12:f0:99:84:4e:9f:13:
45:81:6a:7c:2e:19:69:ca:4c:8f:f2:25:d5:c9:a6:
ed:43:40:a0:06:b1:4f:d7:9d:0b:1c:08:b8:fb:73:
27:b4:3c:3f:04:75:47:44:3e:d1:ff:0c:ac:c7:73:
fc:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:E3:C6:84:E4:C3:A2:AE:B3:08:26:93:26:30:DB:AE:4F:C3:BB:BB
X509v3 Authority Key Identifier:
keyid:69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:86:11:c1:3d:13:96:2c:bf:ff:0e:28:ce:3c:f3:40:a1:12:
96:14:7b:58:2f:5a:f0:22:8c:2a:7b:31:7e:da:92:b0:bf:67:
f7:0c:e9:ea:8c:92:11:40:18:d2:97:94:31:c6:d6:ad:b5:ae:
bb:df:02:2e:c7:28:ea:03:5d:1b:60:96:0b:72:2b:d0:56:7e:
3a:86:b9:6f:e1:35:72:b3:9d:0d:ff:d2:4f:2c:4f:ae:42:ab:
23:ec:60:a6:c8:6c:8d:91:4f:18:11:cd:46:ed:7d:71:19:b5:
59:d3:b4:f4:c6:6b:dd:06:9e:7b:7c:3c:a8:29:fe:5a:80:e6:
c0:39:ea:a0:0b:dc:ae:42:56:21:9e:34:74:23:78:5d:e8:a6:
31:e6:fb:f7:48:eb:21:de:06:25:a6:e8:9a:b3:4c:52:7e:c0:
3f:65:87:c8:79:17:3c:c4:48:f4:f8:c2:a5:54:a3:38:f3:4e:
c7:19:b1:81:5d:51:2f:b1:9a:1e:44:0a:a6:71:95:34:92:d4:
be:fe:04:99:09:4d:43:17:dc:61:cc:dc:c8:00:b5:9c:49:0c:
dd:f3:78:1e:30:dd:a0:3f:28:90:f8:67:93:b7:6c:8a:f7:1f:
f1:ce:37:a0:8e:38:ec:38:fe:c4:14:bd:8f:54:a0:d9:0f:c7:
c7:38:10:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsKpT/GxM9H22eWadHiEazMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MGFiMGVmZDc3NTc2MjFjODZkN2I2OWM3NmY2MGIyYzNm
YWMzNTYwHhcNMjUwNjE0MDIwMDE5WhcNMjUwNjE1MDIwMDE5WjAzMTEwLwYDVQQD
Eyg2Y2UzYzY4NGU0YzNhMmFlYjMwODI2OTMyNjMwZGJhZTRmYzNiYmJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4VC0l2eV9dKVsBWqgkS/G4dpS9xA
c6LeBK/8zkCcK1WTFZxmA7+QZxBsDVszVr3QOI5JOcIa2NY4AK3tFO7qCjU4GZGP
EikPIazQqzSABUpM2GKpPfEvSpP8ahfSCMqQt/JaAClDB7hamkJVT8GlXPAVSIX1
QXVZKCP1Lro8vVahi8KCotLtDn/HuoVf8IEORE/0qgu7gIV/dfwZbmgL1Jkq/U9u
KU3b8HDbOq/uaqLQsePr6Vv1UzLkQuPap7yYzZgsJh+jeQ7p1hLwmYROnxNFgWp8
LhlpykyP8iXVyabtQ0CgBrFP150LHAi4+3MntDw/BHVHRD7R/wysx3P8KwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGzjxoTkw6KuswgmkyYw265Pw7u7MB8GA1UdIwQY
MBaAFGkKsO/XdXYhyG17acdvYLLD+sNWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVFxdzc5ZDFkaUhJYlh0cHgyOWdzc1A2dzFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS80NWIyMjUtNjRlMy00ZDM0LTgwZDkt
MjFjODE1YTZlYjllLzEvYVFxdzc5ZDFkaUhJYlh0cHgyOWdzc1A2dzFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS80NWIyMjUtNjRlMy00ZDM0LTgwZDktMjFjODE1YTZlYjll
LzEvYVFxdzc5ZDFkaUhJYlh0cHgyOWdzc1A2dzFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhYYRwT0T
liy//w4ozjzzQKESlhR7WC9a8CKMKnsxftqSsL9n9wzp6oySEUAY0peUMcbWrbWu
u98CLsco6gNdG2CWC3Ir0FZ+Ooa5b+E1crOdDf/STyxPrkKrI+xgpshsjZFPGBHN
Ru19cRm1WdO09MZr3Qaee3w8qCn+WoDmwDnqoAvcrkJWIZ40dCN4XeimMeb790jr
Id4GJabomrNMUn7AP2WHyHkXPMRI9PjCpVSjOPNOxxmxgV1RL7GaHkQKpnGVNJLU
vv4EmQlNQxfcYczcyAC1nEkM3fN4HjDdoD8okPhnk7dsivcf8c43oI447Dj+xBS9
j1Sg2Q/HxzgQmQ==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:58:37 2025 by rpki-client