Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft
File: 1P97rGRNWVZyLl4YOiL7FFXnVUY.mft (raw, json)
Hash identifier: pin5tSOFScYO0whQ5RCWgUee+YtHZYNx5Oxs+T6dH3s=
Subject key identifier: 44:0D:85:AD:29:3B:3C:D3:8D:E5:43:79:BC:40:82:A1:DD:8A:F2:79
Authority key identifier: D4:FF:7B:AC:64:4D:59:56:72:2E:5E:18:3A:22:FB:14:55:E7:55:46
Certificate issuer: /CN=d4ff7bac644d5956722e5e183a22fb1455e75546
Certificate serial: 019779418C4CC8DCD503A49C0247FE0FD583
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1P97rGRNWVZyLl4YOiL7FFXnVUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft
Manifest number: 0221
Signing time: Mon 16 Jun 2025 15:00:28 +0000
Manifest this update: Mon 16 Jun 2025 15:00:28 +0000
Manifest next update: Tue 17 Jun 2025 15:00:28 +0000
Files and hashes: 1: 1P97rGRNWVZyLl4YOiL7FFXnVUY.crl (hash: gHNluq9LJAmqI1ndE4mNm5vh/pHTqqyeY7JlBED5fqM=)
2: BBrcZolorsy-tffprBkzb6kzxjw.roa (hash: LubTLYd6O/FVL7Y6tbf5xWEWtjZWCQG4GmiGhTzuDxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1P97rGRNWVZyLl4YOiL7FFXnVUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 14:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:79:41:8c:4c:c8:dc:d5:03:a4:9c:02:47:fe:0f:d5:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ff7bac644d5956722e5e183a22fb1455e75546
Validity
Not Before: Jun 16 15:00:28 2025 GMT
Not After : Jun 17 15:00:28 2025 GMT
Subject: CN=440d85ad293b3cd38de54379bc4082a1dd8af279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4b:e4:ab:90:18:92:ac:fb:8a:a7:c2:9f:4f:
61:83:95:28:ea:10:99:06:16:99:ff:a2:d7:d4:86:
e1:af:62:ce:85:23:b4:4c:47:b2:9a:f1:8c:7f:04:
48:3b:33:70:07:97:ad:12:95:06:11:78:b8:96:6c:
be:28:b3:65:6a:f9:d4:4a:dd:17:72:14:5f:ad:5d:
ee:38:8f:5d:20:e2:cc:b6:2c:d1:ef:6b:1a:dd:43:
5c:70:3f:df:48:ba:20:82:72:92:0b:6b:ad:56:d9:
2d:8c:76:3d:a3:0d:21:0e:6f:bd:9b:ea:96:b7:30:
45:d2:68:51:89:09:7a:21:15:6d:5c:6a:f5:37:bc:
7f:7e:1b:d4:e3:28:9c:16:85:dc:c0:ae:10:3f:18:
1f:58:5a:b0:e0:fc:c6:8b:89:cd:17:f2:e8:b6:8c:
15:6b:51:fe:f0:e9:1e:55:f8:1a:f0:85:da:ff:23:
70:a5:68:9c:ad:22:a9:fd:62:9b:8a:af:3c:e3:f8:
3c:dd:2c:2e:08:5b:46:82:36:28:b1:f8:e4:1d:c8:
71:1b:75:05:9c:d3:fc:c2:d8:66:9a:33:4a:dc:20:
73:69:cb:70:92:ec:d0:52:d2:3a:db:cb:9b:66:33:
14:6a:5b:d1:f8:f3:42:33:ff:09:d1:f4:af:bd:43:
5f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:0D:85:AD:29:3B:3C:D3:8D:E5:43:79:BC:40:82:A1:DD:8A:F2:79
X509v3 Authority Key Identifier:
keyid:D4:FF:7B:AC:64:4D:59:56:72:2E:5E:18:3A:22:FB:14:55:E7:55:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1P97rGRNWVZyLl4YOiL7FFXnVUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:a5:db:16:ad:42:b2:e6:19:81:08:1b:22:4a:07:ba:84:3e:
60:97:22:b6:c8:a7:5f:60:4e:49:cf:cc:22:6e:60:3e:b8:9f:
a7:b6:5f:17:33:e9:1e:43:b5:0c:17:f2:e5:1a:2b:5f:5e:b2:
b1:10:9f:89:45:5a:42:43:5e:95:93:0a:b1:0a:13:66:23:78:
54:20:98:c2:39:86:f0:6a:28:b3:d0:04:a4:82:ad:bd:ae:80:
9b:81:ad:d4:e9:5d:b0:8e:0f:bb:e4:67:80:f7:6e:28:b3:35:
09:a4:dd:89:c3:3d:4e:91:8c:e3:c6:1c:e8:e5:08:46:0f:a8:
5a:d8:e8:8b:4b:d6:ea:6e:1b:8d:57:c2:b4:41:4d:bf:97:8d:
8f:aa:73:8a:3b:fa:66:e1:d2:95:82:f2:c4:18:f6:8b:f8:6f:
ff:c6:a6:a4:37:96:26:f3:bc:3b:11:f8:4f:2a:e5:27:68:71:
22:66:e9:c6:d2:ac:8e:38:45:ee:ff:f8:50:73:ca:40:67:70:
2f:af:c2:82:b3:1f:51:a3:c4:36:d1:81:6e:8f:5a:24:51:f0:
3d:73:23:ee:e9:2f:17:65:f4:8e:e5:11:c0:3c:a1:d4:00:8a:
ed:44:c3:d4:74:1e:80:1c:b9:99:d0:3c:a8:2f:58:57:53:4a:
f9:29:5b:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd5QYxMyNzVA6ScAkf+D9WDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ZmY3YmFjNjQ0ZDU5NTY3MjJlNWUxODNhMjJmYjE0NTVl
NzU1NDYwHhcNMjUwNjE2MTUwMDI4WhcNMjUwNjE3MTUwMDI4WjAzMTEwLwYDVQQD
Eyg0NDBkODVhZDI5M2IzY2QzOGRlNTQzNzliYzQwODJhMWRkOGFmMjc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEvkq5AYkqz7iqfCn09hg5Uo6hCZ
BhaZ/6LX1Ibhr2LOhSO0TEeymvGMfwRIOzNwB5etEpUGEXi4lmy+KLNlavnUSt0X
chRfrV3uOI9dIOLMtizR72sa3UNccD/fSLoggnKSC2utVtktjHY9ow0hDm+9m+qW
tzBF0mhRiQl6IRVtXGr1N7x/fhvU4yicFoXcwK4QPxgfWFqw4PzGi4nNF/LotowV
a1H+8OkeVfga8IXa/yNwpWicrSKp/WKbiq884/g83SwuCFtGgjYosfjkHchxG3UF
nNP8wthmmjNK3CBzactwkuzQUtI628ubZjMUalvR+PNCM/8J0fSvvUNfHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEQNha0pOzzTjeVDebxAgqHdivJ5MB8GA1UdIwQY
MBaAFNT/e6xkTVlWci5eGDoi+xRV51VGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVA5N3JHUk5XVlp5TGw0WU9pTDdGRlhuVlVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy8xNjcyZDAtNWI2ZC00MTE1LWFmYjMt
ODgwYTgxYjk5Y2M1LzEvMVA5N3JHUk5XVlp5TGw0WU9pTDdGRlhuVlVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy8xNjcyZDAtNWI2ZC00MTE1LWFmYjMtODgwYTgxYjk5Y2M1
LzEvMVA5N3JHUk5XVlp5TGw0WU9pTDdGRlhuVlVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKqXbFq1C
suYZgQgbIkoHuoQ+YJcitsinX2BOSc/MIm5gPrifp7ZfFzPpHkO1DBfy5RorX16y
sRCfiUVaQkNelZMKsQoTZiN4VCCYwjmG8Goos9AEpIKtva6Am4Gt1OldsI4Pu+Rn
gPduKLM1CaTdicM9TpGM48Yc6OUIRg+oWtjoi0vW6m4bjVfCtEFNv5eNj6pzijv6
ZuHSlYLyxBj2i/hv/8ampDeWJvO8OxH4TyrlJ2hxImbpxtKsjjhF7v/4UHPKQGdw
L6/CgrMfUaPENtGBbo9aJFHwPXMj7ukvF2X0juURwDyh1ACK7UTD1HQegBy5mdA8
qC9YV1NK+Slb3w==
-----END CERTIFICATE-----
Generated at Mon Jun 16 19:41:10 2025 by rpki-client