Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
File: I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft (raw, json)
Hash identifier: 1XVIdHxbl/YvTV5YSx7UQSJfuFoa6z6zuteWmlKMuXk=
Subject key identifier: D5:EA:A4:C7:15:A4:FB:5B:EE:5B:34:A4:FB:8D:40:FD:89:21:28:F2
Authority key identifier: 23:F8:9F:57:D0:72:84:9E:0C:AB:21:95:CD:0B:AF:25:57:93:5E:A0
Certificate issuer: /CN=23f89f57d072849e0cab2195cd0baf2557935ea0
Certificate serial: 0197B5FC236A4BFAD2772B4C3A2D24A9C5FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
Manifest number: 15B1
Signing time: Sat 28 Jun 2025 10:01:29 +0000
Manifest this update: Sat 28 Jun 2025 10:01:29 +0000
Manifest next update: Sun 29 Jun 2025 10:01:29 +0000
Files and hashes: 1: I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl (hash: ISTEXUFhhEuHDWX17SWMh89YzXPPioa87mFKbIfazwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fc:23:6a:4b:fa:d2:77:2b:4c:3a:2d:24:a9:c5:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f89f57d072849e0cab2195cd0baf2557935ea0
Validity
Not Before: Jun 28 10:01:29 2025 GMT
Not After : Jun 29 10:01:29 2025 GMT
Subject: CN=d5eaa4c715a4fb5bee5b34a4fb8d40fd892128f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:68:80:83:9c:33:e8:e4:75:e8:8d:a2:c7:a2:
7a:d7:f4:be:2d:71:42:78:61:d2:9b:11:9d:23:e3:
02:7a:a1:ce:00:4f:76:5c:46:ac:e3:6e:2e:74:96:
d1:6d:4c:02:87:e2:2a:e7:24:98:f5:b5:6f:41:fd:
3a:24:9f:b5:7d:8a:52:43:8d:9a:e3:a8:d0:9a:b4:
9a:9d:22:d7:0c:5d:2d:f5:46:6b:a5:72:bc:96:61:
26:41:d9:e3:88:62:2a:7b:03:0c:d0:39:95:b1:95:
29:6d:ce:eb:7a:8e:c4:28:ad:c3:0c:24:df:6d:03:
6d:22:66:f0:1a:43:2c:7d:96:bd:19:c2:01:88:bb:
15:cf:06:1d:df:32:11:0a:d1:51:e4:ed:ea:be:81:
41:35:95:60:f2:a6:ce:4f:df:1d:70:17:10:cc:fb:
98:3f:a4:15:a7:9c:85:0b:f5:73:c9:59:cc:85:be:
94:4b:28:0f:91:c5:ec:37:2c:47:36:26:60:46:a0:
5b:33:f4:05:1e:65:05:00:0d:e0:fe:ff:ed:39:cd:
4c:d3:42:96:bb:ef:b1:1c:96:a9:7e:0c:3c:37:ac:
64:ec:96:68:dd:0f:97:aa:c5:3c:2a:c0:40:71:b6:
34:fe:34:db:a5:99:ab:44:93:5c:50:8f:4e:bf:c3:
34:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:EA:A4:C7:15:A4:FB:5B:EE:5B:34:A4:FB:8D:40:FD:89:21:28:F2
X509v3 Authority Key Identifier:
keyid:23:F8:9F:57:D0:72:84:9E:0C:AB:21:95:CD:0B:AF:25:57:93:5E:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:4a:97:7f:c2:6a:b1:12:6d:42:6f:c3:30:f3:fa:1f:3c:c3:
8a:45:91:79:11:4b:cf:72:91:98:c0:90:76:20:36:2a:cc:73:
7d:1d:b2:41:ed:ca:45:78:82:ae:40:57:3a:62:80:fa:4f:68:
3e:2e:a9:77:fa:ff:c3:f8:6b:85:ea:01:40:91:c3:43:72:22:
9d:cb:0c:8d:18:0b:bd:f2:99:16:83:18:b1:bf:8c:36:b2:d6:
5b:e5:1a:5f:ba:67:6d:71:d3:e5:c6:8b:e1:8a:d9:f2:80:2c:
11:af:68:6f:71:94:16:60:07:06:e0:17:dd:7b:f5:6e:ae:e7:
69:46:85:46:f8:ad:24:0d:3c:1a:dd:8a:e8:22:52:0a:7d:2b:
fd:f5:25:fa:44:3a:fe:68:86:a0:14:b6:ce:90:7e:4b:96:11:
42:eb:f0:a7:cd:57:d2:02:4f:4c:4a:d9:4f:82:92:84:a0:09:
38:dc:37:81:f6:9c:87:71:db:99:3c:51:a4:b6:49:40:72:94:
2d:ae:4a:d5:7b:0d:78:bd:2c:51:e7:fb:0a:46:f6:7f:ac:5d:
ec:f1:b6:a6:49:42:36:87:26:85:e4:f0:d3:4b:d5:de:5a:76:
ed:2b:d8:d9:73:96:d4:b3:c6:68:b8:f7:47:83:9d:a1:aa:18:
8e:31:39:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe1/CNqS/rSdytMOi0kqcX8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzZjg5ZjU3ZDA3Mjg0OWUwY2FiMjE5NWNkMGJhZjI1NTc5
MzVlYTAwHhcNMjUwNjI4MTAwMTI5WhcNMjUwNjI5MTAwMTI5WjAzMTEwLwYDVQQD
EyhkNWVhYTRjNzE1YTRmYjViZWU1YjM0YTRmYjhkNDBmZDg5MjEyOGYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGiAg5wz6OR16I2ix6J61/S+LXFC
eGHSmxGdI+MCeqHOAE92XEas424udJbRbUwCh+Iq5ySY9bVvQf06JJ+1fYpSQ42a
46jQmrSanSLXDF0t9UZrpXK8lmEmQdnjiGIqewMM0DmVsZUpbc7reo7EKK3DDCTf
bQNtImbwGkMsfZa9GcIBiLsVzwYd3zIRCtFR5O3qvoFBNZVg8qbOT98dcBcQzPuY
P6QVp5yFC/VzyVnMhb6USygPkcXsNyxHNiZgRqBbM/QFHmUFAA3g/v/tOc1M00KW
u++xHJapfgw8N6xk7JZo3Q+XqsU8KsBAcbY0/jTbpZmrRJNcUI9Ov8M0hQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNXqpMcVpPtb7ls0pPuNQP2JISjyMB8GA1UdIwQY
MBaAFCP4n1fQcoSeDKshlc0LryVXk16gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSV9pZlY5QnloSjRNcXlHVnpRdXZKVmVUWHFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9mMWQ0MzktN2NjNy00NDlmLWE5ZTIt
MmVhNmY1ZWZiMjdmLzEvSV9pZlY5QnloSjRNcXlHVnpRdXZKVmVUWHFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC9mMWQ0MzktN2NjNy00NDlmLWE5ZTItMmVhNmY1ZWZiMjdm
LzEvSV9pZlY5QnloSjRNcXlHVnpRdXZKVmVUWHFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADkqXf8Jq
sRJtQm/DMPP6HzzDikWReRFLz3KRmMCQdiA2KsxzfR2yQe3KRXiCrkBXOmKA+k9o
Pi6pd/r/w/hrheoBQJHDQ3IincsMjRgLvfKZFoMYsb+MNrLWW+UaX7pnbXHT5caL
4YrZ8oAsEa9ob3GUFmAHBuAX3Xv1bq7naUaFRvitJA08Gt2K6CJSCn0r/fUl+kQ6
/miGoBS2zpB+S5YRQuvwp81X0gJPTErZT4KShKAJONw3gfach3HbmTxRpLZJQHKU
La5K1XsNeL0sUef7Ckb2f6xd7PG2pklCNocmheTw00vV3lp27SvY2XOW1LPGaLj3
R4OdoaoYjjE5hw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:17:16 2025 by rpki-client