Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
File: pol1o9gy4UUny7or4QujwebGOFY.mft (raw, json)
Hash identifier: MGL8LrByU3B9N2SpyhEOYQPCRExBoD/qBRc1d9QL+Bk=
Subject key identifier: 8E:77:E1:FA:EA:D4:88:CB:14:24:C9:5F:7E:F2:97:15:CB:8B:0F:DA
Authority key identifier: A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
Certificate issuer: /CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Certificate serial: 0197711ADF433780B0C10D19CE862042E7E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
Manifest number: 0565
Signing time: Sun 15 Jun 2025 01:01:15 +0000
Manifest this update: Sun 15 Jun 2025 01:01:15 +0000
Manifest next update: Mon 16 Jun 2025 01:01:15 +0000
Files and hashes: 1: pol1o9gy4UUny7or4QujwebGOFY.crl (hash: GGGgBVxA/W5kJ1SYAAs6omUVA/WJIdowgC7mk9YhTP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:1a:df:43:37:80:b0:c1:0d:19:ce:86:20:42:e7:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Validity
Not Before: Jun 15 01:01:15 2025 GMT
Not After : Jun 16 01:01:15 2025 GMT
Subject: CN=8e77e1faead488cb1424c95f7ef29715cb8b0fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:57:b8:8d:c1:4b:57:0c:95:e7:18:b4:64:23:
31:52:1c:2e:ff:e8:7c:19:6e:e8:4c:2c:d9:9a:db:
b7:df:53:9a:ef:2e:22:f5:7d:a2:46:61:33:70:0c:
f2:5a:b1:e9:ad:b6:79:3c:20:88:1e:d4:b3:21:2d:
09:62:ef:b8:e9:5a:25:88:5b:c3:e3:83:88:90:d3:
b9:c5:67:cc:b3:41:7e:70:9d:7a:0a:af:67:ee:3b:
11:13:da:e1:23:e0:ea:10:9f:ae:63:bd:0c:45:5e:
bd:a1:ad:f6:e7:b8:d7:2d:99:f9:89:9d:89:3e:61:
f5:e8:a3:f9:d4:4c:7a:19:07:16:94:c7:8b:d1:f3:
b2:69:41:10:f6:60:b9:7a:ad:fc:05:e2:0c:f6:c8:
b7:e2:13:62:28:a4:e8:18:99:c8:0a:39:af:53:44:
a8:f6:a7:22:ba:cf:2c:f6:d4:60:c6:1f:0b:0f:8d:
7a:0f:2e:3e:c9:c1:d5:61:ae:91:17:eb:47:f1:11:
f2:ee:c2:81:18:79:76:66:cc:a9:c1:ad:28:bc:e3:
df:5d:51:dc:68:63:8b:fc:14:06:e4:47:c0:34:9b:
da:fd:c2:a2:49:d3:4e:7d:22:77:8b:21:5e:a5:80:
4d:36:c4:38:aa:c3:a0:19:b9:7d:45:12:a3:d7:f2:
e8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:77:E1:FA:EA:D4:88:CB:14:24:C9:5F:7E:F2:97:15:CB:8B:0F:DA
X509v3 Authority Key Identifier:
keyid:A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:87:c4:4b:b5:1e:0d:53:24:7b:8c:2a:1e:29:89:1c:f4:ac:
aa:84:53:68:f3:63:dc:c1:96:8e:6c:bf:32:9c:1c:0b:97:04:
d0:a4:24:eb:3b:4f:08:ad:77:1f:2d:e7:65:b4:7d:28:a7:2d:
93:36:d7:a7:24:8a:ea:1c:35:bc:ba:79:c9:21:25:83:e8:ff:
22:68:7c:9d:c3:34:15:eb:7d:25:62:2c:13:41:55:13:12:8a:
da:94:dd:22:98:cd:9e:78:54:d1:72:9c:4d:9c:fb:af:d8:a9:
29:f9:b0:bf:91:32:d5:ac:d6:c1:0e:02:d0:fa:c4:88:77:d3:
52:e7:31:95:48:12:95:4d:82:29:22:6a:9b:2f:9a:0a:1a:63:
b7:12:21:f4:12:d7:5a:68:8b:3b:b8:51:5f:ec:58:63:6e:94:
dd:43:be:4e:ca:b0:19:00:11:30:9e:2d:6e:a9:82:fe:25:85:
95:29:ff:cc:73:15:23:8f:bb:29:6c:72:12:92:d9:2f:0a:f0:
de:62:63:bf:09:2f:27:b1:69:89:4b:22:32:21:b3:ee:05:76:
6c:2a:a5:e4:2b:e1:c7:7d:ae:6c:b1:2e:8c:92:1a:80:1e:d9:
fe:4d:78:4a:f3:36:f9:6c:3a:c4:7a:4a:b1:d3:4b:7d:bc:94:
2d:2d:e9:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdxGt9DN4CwwQ0ZzoYgQufhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2ODk3NWEzZDgzMmUxNDUyN2NiYmEyYmUxMGJhM2MxZTZj
NjM4NTYwHhcNMjUwNjE1MDEwMTE1WhcNMjUwNjE2MDEwMTE1WjAzMTEwLwYDVQQD
Eyg4ZTc3ZTFmYWVhZDQ4OGNiMTQyNGM5NWY3ZWYyOTcxNWNiOGIwZmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1e4jcFLVwyV5xi0ZCMxUhwu/+h8
GW7oTCzZmtu331Oa7y4i9X2iRmEzcAzyWrHprbZ5PCCIHtSzIS0JYu+46VoliFvD
44OIkNO5xWfMs0F+cJ16Cq9n7jsRE9rhI+DqEJ+uY70MRV69oa3257jXLZn5iZ2J
PmH16KP51Ex6GQcWlMeL0fOyaUEQ9mC5eq38BeIM9si34hNiKKToGJnICjmvU0So
9qcius8s9tRgxh8LD416Dy4+ycHVYa6RF+tH8RHy7sKBGHl2Zsypwa0ovOPfXVHc
aGOL/BQG5EfANJva/cKiSdNOfSJ3iyFepYBNNsQ4qsOgGbl9RRKj1/LoywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI534frq1IjLFCTJX37ylxXLiw/aMB8GA1UdIwQY
MBaAFKaJdaPYMuFFJ8u6K+ELo8HmxjhWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wYjNjYzEtMzE4ZS00OTdmLWEyYjUt
MTMxNmFkODA1ZTY0LzEvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi8wYjNjYzEtMzE4ZS00OTdmLWEyYjUtMTMxNmFkODA1ZTY0
LzEvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAz4fES7Ue
DVMke4wqHimJHPSsqoRTaPNj3MGWjmy/MpwcC5cE0KQk6ztPCK13Hy3nZbR9KKct
kzbXpySK6hw1vLp5ySElg+j/Imh8ncM0Fet9JWIsE0FVExKK2pTdIpjNnnhU0XKc
TZz7r9ipKfmwv5Ey1azWwQ4C0PrEiHfTUucxlUgSlU2CKSJqmy+aChpjtxIh9BLX
WmiLO7hRX+xYY26U3UO+TsqwGQARMJ4tbqmC/iWFlSn/zHMVI4+7KWxyEpLZLwrw
3mJjvwkvJ7FpiUsiMiGz7gV2bCql5Cvhx32ubLEujJIagB7Z/k14SvM2+Ww6xHpK
sdNLfbyULS3p/A==
-----END CERTIFICATE-----
Generated at Sun Jun 15 07:44:37 2025 by rpki-client