Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json)
Hash identifier: oMcg3rrV0Q3+ny5gWYGgJEz1fscLkonrHcUTx7mqQ/M=
Subject key identifier: CD:FF:6C:BB:13:4E:72:DC:26:28:70:D6:78:3A:CA:CD:6E:94:0D:E5
Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Certificate serial: 01977309A0557AF942E13F6BE499065E6618
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
Manifest number: 0536
Signing time: Sun 15 Jun 2025 10:01:40 +0000
Manifest this update: Sun 15 Jun 2025 10:01:40 +0000
Manifest next update: Mon 16 Jun 2025 10:01:40 +0000
Files and hashes: 1: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: +XwG55jkzfWcq4BCgWalZuDWA6XKsMtBpXhWz+Ck1Cg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:09:a0:55:7a:f9:42:e1:3f:6b:e4:99:06:5e:66:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Validity
Not Before: Jun 15 10:01:40 2025 GMT
Not After : Jun 16 10:01:40 2025 GMT
Subject: CN=cdff6cbb134e72dc262870d6783acacd6e940de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2e:c8:c7:e3:65:ba:76:61:e3:e4:b0:15:d4:
53:3f:50:05:8d:af:1b:49:63:a6:a8:33:25:15:a2:
1b:a5:00:ec:86:a2:f3:02:e1:53:11:78:bf:2b:11:
4f:46:e9:10:37:32:09:5c:15:d3:8f:c7:63:53:cf:
e6:22:73:b4:cf:65:60:23:f0:97:7d:65:2d:eb:a7:
28:68:91:51:8d:5a:15:a5:d1:f9:79:df:cc:47:99:
9e:06:c6:60:b0:5e:1b:d5:f6:8c:dc:66:ed:1b:59:
a1:91:e5:8e:b0:14:df:1e:be:0d:b6:9c:91:9b:3f:
cb:ac:b8:90:d5:ac:f1:f4:28:9a:8f:8d:d7:a1:78:
74:2a:f8:0e:db:11:85:ef:b3:c2:65:3f:11:3c:88:
8b:6e:1c:7c:d2:f3:9d:97:25:a3:4b:64:ee:85:fb:
30:d8:45:a6:13:6f:e3:ff:a7:75:a2:b4:53:8d:37:
d9:83:9f:50:7a:63:7d:f6:9c:24:d3:ab:d1:ba:59:
0a:60:0d:2f:a5:0b:86:81:52:4d:15:af:d2:d4:21:
b4:2c:5c:89:7b:f7:18:64:15:3b:cc:19:bd:2b:22:
90:fc:3a:4d:42:9e:11:50:02:a8:fe:42:ac:b2:22:
3d:ec:2e:8b:8b:e0:57:e6:65:b4:7f:28:df:ce:2e:
2f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:FF:6C:BB:13:4E:72:DC:26:28:70:D6:78:3A:CA:CD:6E:94:0D:E5
X509v3 Authority Key Identifier:
keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:ae:a6:a6:b3:12:86:22:cb:82:7b:10:72:9c:95:a7:cf:50:
8a:02:e9:9e:95:9e:2b:d7:cd:17:77:02:d0:5d:50:e4:38:70:
e9:9e:4c:48:de:78:8a:41:ff:b7:96:9f:93:41:a2:04:a4:71:
48:be:d1:65:5d:2b:03:01:7d:02:a6:b9:54:46:22:f3:e5:ed:
41:88:a6:df:16:d4:01:39:0c:52:98:c2:db:2e:41:70:a4:c3:
c4:26:f9:f3:34:e7:13:28:92:b6:1a:da:7e:15:36:1b:02:e5:
57:17:07:fd:a4:d0:0e:27:13:09:6e:d1:c5:73:e9:75:ad:32:
b9:87:38:b1:c9:d7:82:c3:c1:8e:c3:28:89:5f:f4:49:0d:72:
70:1b:53:b9:60:5c:92:4a:d2:33:07:d2:2c:06:98:da:1d:f3:
5b:cf:14:79:9d:a7:c7:f2:51:3c:ce:c7:47:34:98:b4:38:7d:
28:61:4d:19:d7:24:00:9b:26:c0:50:ff:0e:e2:c9:e2:f6:e4:
35:68:34:d0:75:c3:a3:4e:b0:38:a9:76:d6:6c:c4:21:dc:31:
42:62:c6:09:66:92:2a:e2:0d:38:d6:ba:ad:8b:6b:39:a8:8d:
16:00:1d:09:23:72:88:87:b0:24:02:4d:b3:96:a4:02:29:ed:
f7:5f:ba:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdzCaBVevlC4T9r5JkGXmYYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjYTU5ODMyMmE2OTkwNWE1YzZlMDI5NWEwY2ExZmI1NTY2
NmMxNGIwHhcNMjUwNjE1MTAwMTQwWhcNMjUwNjE2MTAwMTQwWjAzMTEwLwYDVQQD
EyhjZGZmNmNiYjEzNGU3MmRjMjYyODcwZDY3ODNhY2FjZDZlOTQwZGU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnC7Ix+NlunZh4+SwFdRTP1AFja8b
SWOmqDMlFaIbpQDshqLzAuFTEXi/KxFPRukQNzIJXBXTj8djU8/mInO0z2VgI/CX
fWUt66coaJFRjVoVpdH5ed/MR5meBsZgsF4b1faM3GbtG1mhkeWOsBTfHr4NtpyR
mz/LrLiQ1azx9Ciaj43XoXh0KvgO2xGF77PCZT8RPIiLbhx80vOdlyWjS2Tuhfsw
2EWmE2/j/6d1orRTjTfZg59QemN99pwk06vRulkKYA0vpQuGgVJNFa/S1CG0LFyJ
e/cYZBU7zBm9KyKQ/DpNQp4RUAKo/kKssiI97C6Li+BX5mW0fyjfzi4vdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM3/bLsTTnLcJihw1ng6ys1ulA3lMB8GA1UdIwQY
MBaAFHylmDIqaZBaXG4ClaDKH7VWZsFLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUt
NTgwZDg3Njg4NWExLzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUtNTgwZDg3Njg4NWEx
LzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI66mprMS
hiLLgnsQcpyVp89QigLpnpWeK9fNF3cC0F1Q5Dhw6Z5MSN54ikH/t5afk0GiBKRx
SL7RZV0rAwF9Aqa5VEYi8+XtQYim3xbUATkMUpjC2y5BcKTDxCb58zTnEyiSthra
fhU2GwLlVxcH/aTQDicTCW7RxXPpda0yuYc4scnXgsPBjsMoiV/0SQ1ycBtTuWBc
kkrSMwfSLAaY2h3zW88UeZ2nx/JRPM7HRzSYtDh9KGFNGdckAJsmwFD/DuLJ4vbk
NWg00HXDo06wOKl21mzEIdwxQmLGCWaSKuINONa6rYtrOaiNFgAdCSNyiIewJAJN
s5akAint91+6ag==
-----END CERTIFICATE-----
Generated at Sun Jun 15 15:37:41 2025 by rpki-client