Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
File: id8L4W7M0-twbmQXlLyQ1PfWeMk.mft (raw, json)
Hash identifier: Ytis4niTqBHRn9pf8xa0pKfo7CMJ49L9EoLwgChYrcU=
Subject key identifier: 46:A3:D1:06:D6:79:47:88:03:AC:51:32:53:77:13:74:9D:7F:FE:E9
Authority key identifier: 89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
Certificate issuer: /CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Certificate serial: 019775D2875B751066E8687EEAE262DCED63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
Manifest number: 158F
Signing time: Sun 15 Jun 2025 23:00:20 +0000
Manifest this update: Sun 15 Jun 2025 23:00:20 +0000
Manifest next update: Mon 16 Jun 2025 23:00:20 +0000
Files and hashes: 1: id8L4W7M0-twbmQXlLyQ1PfWeMk.crl (hash: Ple3pmWC5Rms/VqmTYrvUGHXGyi0dK2nJLNrKvckbjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 20:59:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:75:d2:87:5b:75:10:66:e8:68:7e:ea:e2:62:dc:ed:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Validity
Not Before: Jun 15 23:00:20 2025 GMT
Not After : Jun 16 23:00:20 2025 GMT
Subject: CN=46a3d106d679478803ac5132537713749d7ffee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a8:63:3e:d2:23:5b:29:bb:ab:b1:1c:db:9f:
18:e4:45:d8:6a:f4:a9:77:e0:2c:ac:4e:b4:06:02:
cc:b8:d6:e5:39:5e:94:b9:fd:7f:7e:30:37:bb:cc:
f8:33:e2:90:cd:ac:a6:04:33:56:ac:af:bb:59:61:
b3:86:44:40:02:85:60:ee:f8:38:36:8f:2a:7f:03:
40:54:6f:91:44:76:a0:84:39:f1:6a:1e:29:cb:48:
e5:96:cb:0d:1c:0a:55:46:d7:ba:08:d6:48:59:dc:
96:d0:11:bb:d8:c9:88:7b:3d:5c:d3:fb:2a:5b:32:
1b:16:1f:b5:07:a6:aa:bb:ad:00:bf:57:7b:3e:75:
c5:7c:06:56:84:ea:e8:42:26:75:24:e6:e2:d0:ed:
40:1a:27:a2:8b:de:bf:13:37:55:d7:9c:22:ff:82:
3b:75:74:f8:2f:3e:a3:38:20:bc:d5:2e:f9:1f:8c:
d5:9c:54:c9:b7:d4:79:8c:16:1b:6f:84:68:8d:5a:
df:c8:9f:4b:c7:67:99:63:29:af:a5:04:5d:6e:93:
12:2e:1e:a6:fe:fd:04:20:82:f1:04:32:f9:1b:94:
97:00:02:bd:93:4c:82:93:82:a4:5a:4e:db:e8:2c:
80:dd:98:48:bd:fe:75:c0:8a:93:b7:2d:97:a6:fc:
df:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A3:D1:06:D6:79:47:88:03:AC:51:32:53:77:13:74:9D:7F:FE:E9
X509v3 Authority Key Identifier:
keyid:89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:b0:e6:14:2d:83:cf:10:0e:ef:a1:59:3c:03:be:69:89:7a:
d8:78:9f:f0:74:a8:49:b0:bc:30:32:fe:13:dd:c6:1d:dd:90:
56:e0:e4:95:63:e3:70:39:1f:bc:8c:48:5c:dd:6a:82:21:e3:
cd:ca:87:a1:15:eb:29:35:0b:a3:0a:ee:da:9a:f7:06:a4:4a:
17:e5:12:58:88:ca:b7:74:2d:a3:10:65:d0:a5:c4:19:07:b5:
60:71:44:af:86:ea:4f:a9:c0:14:02:24:58:67:f8:28:61:4a:
83:73:a9:9b:81:3f:39:be:3f:78:76:3a:f5:36:43:65:47:bb:
f5:79:90:4c:b5:3a:ef:9e:d0:de:d4:c9:03:e7:b3:fc:62:f2:
89:6a:f6:02:4f:83:d6:a9:08:5b:38:b6:c6:b3:1e:6f:41:39:
74:03:6c:e5:6c:1a:19:f0:8d:b5:10:05:e8:c2:db:0f:4e:bd:
f5:18:37:fa:52:29:25:a7:8e:fe:c7:78:12:9b:ae:ef:12:b9:
de:e1:d9:42:fe:01:4f:18:43:12:5d:9c:c1:04:90:76:b1:79:
89:06:47:30:03:2d:d0:06:f5:c0:c4:07:9f:ae:20:03:41:22:
38:0c:93:06:e1:50:13:3f:af:f6:c3:1e:6d:84:81:c6:e5:75:
46:e8:44:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd10odbdRBm6Gh+6uJi3O1jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5ZGYwYmUxNmVjY2QzZWI3MDZlNjQxNzk0YmM5MGQ0Zjdk
Njc4YzkwHhcNMjUwNjE1MjMwMDIwWhcNMjUwNjE2MjMwMDIwWjAzMTEwLwYDVQQD
Eyg0NmEzZDEwNmQ2Nzk0Nzg4MDNhYzUxMzI1Mzc3MTM3NDlkN2ZmZWU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqhjPtIjWym7q7Ec258Y5EXYavSp
d+AsrE60BgLMuNblOV6Uuf1/fjA3u8z4M+KQzaymBDNWrK+7WWGzhkRAAoVg7vg4
No8qfwNAVG+RRHaghDnxah4py0jllssNHApVRte6CNZIWdyW0BG72MmIez1c0/sq
WzIbFh+1B6aqu60Av1d7PnXFfAZWhOroQiZ1JObi0O1AGieii96/EzdV15wi/4I7
dXT4Lz6jOCC81S75H4zVnFTJt9R5jBYbb4RojVrfyJ9Lx2eZYymvpQRdbpMSLh6m
/v0EIILxBDL5G5SXAAK9k0yCk4KkWk7b6CyA3ZhIvf51wIqTty2XpvzfsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEaj0QbWeUeIA6xRMlN3E3Sdf/7pMB8GA1UdIwQY
MBaAFInfC+FuzNPrcG5kF5S8kNT31njJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWQ4TDRXN00wLXR3Ym1RWGxMeVExUGZXZU1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC80ZjliZjItNjI1ZS00ZjdjLThmNGYt
MzA4MzllYzBlZWQ5LzEvaWQ4TDRXN00wLXR3Ym1RWGxMeVExUGZXZU1rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC80ZjliZjItNjI1ZS00ZjdjLThmNGYtMzA4MzllYzBlZWQ5
LzEvaWQ4TDRXN00wLXR3Ym1RWGxMeVExUGZXZU1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVrDmFC2D
zxAO76FZPAO+aYl62Hif8HSoSbC8MDL+E93GHd2QVuDklWPjcDkfvIxIXN1qgiHj
zcqHoRXrKTULowru2pr3BqRKF+USWIjKt3QtoxBl0KXEGQe1YHFEr4bqT6nAFAIk
WGf4KGFKg3Opm4E/Ob4/eHY69TZDZUe79XmQTLU6757Q3tTJA+ez/GLyiWr2Ak+D
1qkIWzi2xrMeb0E5dANs5WwaGfCNtRAF6MLbD0699Rg3+lIpJaeO/sd4Epuu7xK5
3uHZQv4BTxhDEl2cwQSQdrF5iQZHMAMt0Ab1wMQHn64gA0EiOAyTBuFQEz+v9sMe
bYSBxuV1RuhEJA==
-----END CERTIFICATE-----
Generated at Mon Jun 16 02:28:42 2025 by rpki-client