Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft
File: Pq9YPXwbe09XMQE8iymLpQVGTlI.mft (raw, json)
Hash identifier: I8WDOtjA7aihrHMa6KSgMlqtLzMBEMNRoyUwWBXbVwo=
Subject key identifier: 58:55:36:EB:BA:9C:92:C6:A4:E1:D6:E8:C7:25:3E:3E:3A:AC:47:A0
Authority key identifier: 3E:AF:58:3D:7C:1B:7B:4F:57:31:01:3C:8B:29:8B:A5:05:46:4E:52
Certificate issuer: /CN=3eaf583d7c1b7b4f5731013c8b298ba505464e52
Certificate serial: 019768BC263A07F837FD7A1988681848EAC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pq9YPXwbe09XMQE8iymLpQVGTlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft
Manifest number: 11A6
Signing time: Fri 13 Jun 2025 10:00:50 +0000
Manifest this update: Fri 13 Jun 2025 10:00:50 +0000
Manifest next update: Sat 14 Jun 2025 10:00:50 +0000
Files and hashes: 1: Pq9YPXwbe09XMQE8iymLpQVGTlI.crl (hash: 1PL/EACCpYz780iKJN7ueFOnk8yttrm5HCoZSw+3peE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pq9YPXwbe09XMQE8iymLpQVGTlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 10:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:bc:26:3a:07:f8:37:fd:7a:19:88:68:18:48:ea:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eaf583d7c1b7b4f5731013c8b298ba505464e52
Validity
Not Before: Jun 13 10:00:50 2025 GMT
Not After : Jun 14 10:00:50 2025 GMT
Subject: CN=585536ebba9c92c6a4e1d6e8c7253e3e3aac47a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0d:67:58:df:6c:dd:92:0e:d6:80:de:58:c9:
8a:62:75:17:e3:50:8c:4b:f8:c2:71:5d:15:b5:22:
9e:75:cd:42:ee:e8:e8:c1:15:b5:e9:ed:e7:b4:d5:
f5:e1:9c:c8:cf:43:37:df:49:6f:9b:84:97:77:2d:
90:35:d6:0d:b7:9c:ea:3b:5d:8d:99:0c:57:79:f8:
d5:d9:6c:1c:ec:7b:81:85:0c:f0:b6:7e:b7:f8:6d:
17:94:8f:d6:54:31:83:6d:94:93:19:8f:82:06:b3:
c6:cf:f2:ce:f5:ca:1a:29:61:ca:6a:fa:cb:ca:4b:
bb:e6:b9:da:a3:d3:2a:c8:3f:3f:18:d5:a6:b3:2d:
42:7d:28:92:7d:93:54:7d:92:c6:01:44:9c:95:21:
e9:d0:ed:e2:e6:9a:fe:10:51:0a:47:7e:47:7f:4f:
48:d7:5f:7f:f8:69:d9:3b:b2:5a:ff:19:3d:fb:16:
cd:52:77:55:41:91:2e:c2:c8:13:97:b2:29:9b:47:
17:89:61:82:40:63:46:95:ac:24:74:68:76:af:fb:
24:0d:d6:09:fa:45:de:52:6c:cd:25:d5:a5:fe:50:
4f:1b:5b:39:d0:56:cf:84:d6:40:63:5e:ae:d6:09:
77:a9:d9:87:7b:21:c3:6d:08:46:7a:79:91:cc:99:
d6:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:55:36:EB:BA:9C:92:C6:A4:E1:D6:E8:C7:25:3E:3E:3A:AC:47:A0
X509v3 Authority Key Identifier:
keyid:3E:AF:58:3D:7C:1B:7B:4F:57:31:01:3C:8B:29:8B:A5:05:46:4E:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pq9YPXwbe09XMQE8iymLpQVGTlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d98e86-e41c-45e1-bbe7-8e19c4da8798/1/Pq9YPXwbe09XMQE8iymLpQVGTlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:5e:29:b9:f3:92:29:b6:d1:23:89:0c:f1:fe:29:85:36:5f:
2c:85:e4:f9:45:76:af:9f:a1:8e:c5:fe:8f:0b:2f:5f:72:2c:
9c:4e:0d:8d:1f:0b:77:9b:94:73:da:4c:25:c4:df:11:30:1c:
1c:4f:68:bc:cf:b5:c6:7d:de:31:96:59:ef:ca:28:1d:bc:3f:
19:77:34:f1:2f:32:fc:60:33:8b:d9:26:7c:dc:d3:aa:cd:0a:
27:02:7c:23:01:bd:d7:9a:07:54:4a:67:32:dc:50:c7:59:09:
48:91:ef:84:86:b5:4b:49:21:7d:23:06:60:26:a5:c9:77:a3:
c6:aa:68:db:ed:0c:cb:75:17:0a:23:7c:60:06:23:6a:bc:fd:
c9:be:44:2b:bb:fa:de:00:0f:8f:33:18:e8:3c:9a:5f:ef:f9:
5a:ba:c3:c7:92:28:f5:e6:22:79:38:fd:6a:15:bb:a1:fb:b0:
75:80:55:2d:b2:c8:4b:9f:e4:02:4c:69:c7:5c:b7:f8:0c:e1:
7f:f2:cb:27:c0:a0:d6:cd:35:68:66:ce:2e:c0:28:ba:15:25:
4b:ed:a7:87:74:a1:4c:0b:ce:3d:86:e8:26:f3:b5:f0:f8:d8:
c2:34:7d:57:4c:8b:e6:e2:13:db:d5:53:ff:86:d3:66:61:f2:
d7:60:fe:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdovCY6B/g3/XoZiGgYSOrDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlYWY1ODNkN2MxYjdiNGY1NzMxMDEzYzhiMjk4YmE1MDU0
NjRlNTIwHhcNMjUwNjEzMTAwMDUwWhcNMjUwNjE0MTAwMDUwWjAzMTEwLwYDVQQD
Eyg1ODU1MzZlYmJhOWM5MmM2YTRlMWQ2ZThjNzI1M2UzZTNhYWM0N2EwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQ1nWN9s3ZIO1oDeWMmKYnUX41CM
S/jCcV0VtSKedc1C7ujowRW16e3ntNX14ZzIz0M330lvm4SXdy2QNdYNt5zqO12N
mQxXefjV2Wwc7HuBhQzwtn63+G0XlI/WVDGDbZSTGY+CBrPGz/LO9coaKWHKavrL
yku75rnao9MqyD8/GNWmsy1CfSiSfZNUfZLGAUSclSHp0O3i5pr+EFEKR35Hf09I
119/+GnZO7Ja/xk9+xbNUndVQZEuwsgTl7Ipm0cXiWGCQGNGlawkdGh2r/skDdYJ
+kXeUmzNJdWl/lBPG1s50FbPhNZAY16u1gl3qdmHeyHDbQhGenmRzJnWfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFhVNuu6nJLGpOHW6MclPj46rEegMB8GA1UdIwQY
MBaAFD6vWD18G3tPVzEBPIspi6UFRk5SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHE5WVBYd2JlMDlYTVFFOGl5bUxwUVZHVGxJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9kOThlODYtZTQxYy00NWUxLWJiZTct
OGUxOWM0ZGE4Nzk4LzEvUHE5WVBYd2JlMDlYTVFFOGl5bUxwUVZHVGxJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy9kOThlODYtZTQxYy00NWUxLWJiZTctOGUxOWM0ZGE4Nzk4
LzEvUHE5WVBYd2JlMDlYTVFFOGl5bUxwUVZHVGxJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtF4pufOS
KbbRI4kM8f4phTZfLIXk+UV2r5+hjsX+jwsvX3IsnE4NjR8Ld5uUc9pMJcTfETAc
HE9ovM+1xn3eMZZZ78ooHbw/GXc08S8y/GAzi9kmfNzTqs0KJwJ8IwG915oHVEpn
MtxQx1kJSJHvhIa1S0khfSMGYCalyXejxqpo2+0My3UXCiN8YAYjarz9yb5EK7v6
3gAPjzMY6DyaX+/5WrrDx5Io9eYieTj9ahW7ofuwdYBVLbLIS5/kAkxpx1y3+Azh
f/LLJ8Cg1s01aGbOLsAouhUlS+2nh3ShTAvOPYboJvO18PjYwjR9V0yL5uIT29VT
/4bTZmHy12D+MA==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:09:13 2025 by rpki-client