Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
File: d7AlLypnrNQplw-mSmQXd29y2NY.mft (raw, json)
Hash identifier: yGqQWZ5ojv8sh5n7QBYmMxUWcvIJze7P0w51Yrd8QVg=
Subject key identifier: 4D:26:8B:83:7A:89:65:B9:82:A8:80:7B:04:CB:31:C0:AB:AC:E1:A4
Authority key identifier: 77:B0:25:2F:2A:67:AC:D4:29:97:0F:A6:4A:64:17:77:6F:72:D8:D6
Certificate issuer: /CN=77b0252f2a67acd429970fa64a6417776f72d8d6
Certificate serial: 01976BF448E7E2B49F411ACD023C08B1E290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
Manifest number: 046A
Signing time: Sat 14 Jun 2025 01:01:00 +0000
Manifest this update: Sat 14 Jun 2025 01:01:00 +0000
Manifest next update: Sun 15 Jun 2025 01:01:00 +0000
Files and hashes: 1: d7AlLypnrNQplw-mSmQXd29y2NY.crl (hash: nT3IVP6S4a8nmKv6PVVN4qQHmkRnwKiOwn2Bl24EpVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:48:e7:e2:b4:9f:41:1a:cd:02:3c:08:b1:e2:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77b0252f2a67acd429970fa64a6417776f72d8d6
Validity
Not Before: Jun 14 01:01:00 2025 GMT
Not After : Jun 15 01:01:00 2025 GMT
Subject: CN=4d268b837a8965b982a8807b04cb31c0abace1a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:86:d3:c8:d8:a0:63:a9:71:40:21:c2:10:6c:
06:a3:a1:a6:f7:32:53:0a:57:82:fa:ba:8e:f2:4d:
58:91:c7:15:fd:90:75:5a:e6:e8:89:04:29:ea:46:
de:e8:83:05:74:32:d5:6c:95:4b:26:0f:6c:af:a3:
c8:9a:d6:66:89:3c:8c:5b:a5:58:30:79:ea:1e:09:
ab:80:2d:2c:2f:bb:3a:02:23:ee:65:82:ae:2b:19:
61:29:4e:17:99:a1:78:a9:f7:de:a4:3a:fe:b1:dd:
f2:6c:e9:ee:4b:3b:9f:af:7e:8d:31:81:19:b0:1e:
eb:4a:10:f7:c6:c3:f1:4c:8e:b3:10:ec:ca:dc:9c:
bf:7d:e9:c1:85:ee:f1:79:31:22:c9:15:0c:db:49:
30:c8:8a:22:22:57:bc:14:19:96:df:88:10:b6:71:
e6:a7:95:a9:5b:9b:92:8c:e5:a1:7a:06:1f:be:97:
34:8b:c9:7f:39:97:53:ca:92:3d:32:96:b3:7e:f0:
48:18:e2:8c:11:87:35:c8:6f:23:5d:5d:60:b6:24:
ac:32:25:dd:c0:65:89:07:20:12:1d:e4:15:b5:5d:
fe:63:43:cd:5c:f1:39:ce:fc:c9:16:b0:76:62:b7:
85:9b:c2:0a:f1:03:2b:8f:b1:7b:f7:a5:5b:77:81:
07:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:26:8B:83:7A:89:65:B9:82:A8:80:7B:04:CB:31:C0:AB:AC:E1:A4
X509v3 Authority Key Identifier:
keyid:77:B0:25:2F:2A:67:AC:D4:29:97:0F:A6:4A:64:17:77:6F:72:D8:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:02:85:6b:72:fd:8b:a0:2e:57:4d:bf:6b:65:b8:0e:6a:83:
c5:c2:29:2c:26:ba:d6:86:8a:06:89:69:fc:ee:42:03:0e:26:
15:7a:48:8b:ba:e7:f1:c0:4f:59:63:5a:0e:00:07:6a:ba:1b:
aa:95:b9:d7:85:52:d3:59:eb:ce:6e:4f:27:0d:8e:82:9b:4e:
f9:1b:97:db:57:57:81:af:5f:04:e5:29:ec:fd:f2:71:6a:f9:
43:fb:ce:49:eb:60:f6:88:c5:6c:85:f0:48:eb:64:15:f4:47:
2e:7f:a2:af:03:ef:06:2a:79:09:a3:d3:c5:a3:c3:1e:ac:9a:
a0:72:93:4a:6e:88:04:e2:6e:2a:3b:d6:aa:9d:8f:01:3e:3e:
0d:3e:54:47:2c:c6:37:87:25:bc:7c:12:bc:ba:86:0d:13:ee:
31:89:e0:fb:4b:1e:3a:f8:9f:c3:87:da:58:ea:81:bc:dc:7b:
5a:91:f2:30:82:cd:5b:68:93:ce:c0:51:a2:b1:fd:f7:a1:83:
9a:80:20:84:6e:72:e1:74:fb:a8:6f:e1:e9:ed:29:4f:95:0a:
ea:4d:58:34:2a:2b:30:40:18:4f:ae:0f:6d:f1:95:4a:6f:cc:
18:79:d9:33:dd:66:24:e7:77:7c:54:59:f1:6d:f6:22:e0:e1:
7f:d6:69:7a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdr9Ejn4rSfQRrNAjwIseKQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3YjAyNTJmMmE2N2FjZDQyOTk3MGZhNjRhNjQxNzc3NmY3
MmQ4ZDYwHhcNMjUwNjE0MDEwMTAwWhcNMjUwNjE1MDEwMTAwWjAzMTEwLwYDVQQD
Eyg0ZDI2OGI4MzdhODk2NWI5ODJhODgwN2IwNGNiMzFjMGFiYWNlMWE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYbTyNigY6lxQCHCEGwGo6Gm9zJT
CleC+rqO8k1YkccV/ZB1WuboiQQp6kbe6IMFdDLVbJVLJg9sr6PImtZmiTyMW6VY
MHnqHgmrgC0sL7s6AiPuZYKuKxlhKU4XmaF4qffepDr+sd3ybOnuSzufr36NMYEZ
sB7rShD3xsPxTI6zEOzK3Jy/fenBhe7xeTEiyRUM20kwyIoiIle8FBmW34gQtnHm
p5WpW5uSjOWhegYfvpc0i8l/OZdTypI9MpazfvBIGOKMEYc1yG8jXV1gtiSsMiXd
wGWJByASHeQVtV3+Y0PNXPE5zvzJFrB2YreFm8IK8QMrj7F796Vbd4EHJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE0mi4N6iWW5gqiAewTLMcCrrOGkMB8GA1UdIwQY
MBaAFHewJS8qZ6zUKZcPpkpkF3dvctjWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDdBbEx5cG5yTlFwbHctbVNtUVhkMjl5Mk5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC8yOTZlOTQtOTI5Ni00MmU1LWE0YjQt
OTk2YzUyOWVjOTg2LzEvZDdBbEx5cG5yTlFwbHctbVNtUVhkMjl5Mk5ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC8yOTZlOTQtOTI5Ni00MmU1LWE0YjQtOTk2YzUyOWVjOTg2
LzEvZDdBbEx5cG5yTlFwbHctbVNtUVhkMjl5Mk5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiAKFa3L9
i6AuV02/a2W4DmqDxcIpLCa61oaKBolp/O5CAw4mFXpIi7rn8cBPWWNaDgAHarob
qpW514VS01nrzm5PJw2OgptO+RuX21dXga9fBOUp7P3ycWr5Q/vOSetg9ojFbIXw
SOtkFfRHLn+irwPvBip5CaPTxaPDHqyaoHKTSm6IBOJuKjvWqp2PAT4+DT5URyzG
N4clvHwSvLqGDRPuMYng+0seOvifw4faWOqBvNx7WpHyMILNW2iTzsBRorH996GD
moAghG5y4XT7qG/h6e0pT5UK6k1YNCorMEAYT64PbfGVSm/MGHnZM91mJOd3fFRZ
8W32IuDhf9Zpeg==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:56:44 2025 by rpki-client