Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/iqR9CPyFIT30_aLPlWG45ovCc9w.mft
File: iqR9CPyFIT30_aLPlWG45ovCc9w.mft (raw, json)
Hash identifier: E+jF/5juOqbkCWc5kt429AHcA+FbJ9tAUaBlBxOopPo=
Subject key identifier: 45:84:F7:07:8E:22:6D:BE:7E:C6:3D:F0:83:F6:B0:C3:17:68:5A:ED
Authority key identifier: 8A:A4:7D:08:FC:85:21:3D:F4:FD:A2:CF:95:61:B8:E6:8B:C2:73:DC
Certificate issuer: /CN=8aa47d08fc85213df4fda2cf9561b8e68bc273dc
Certificate serial: 0197B6D79F2329747B3DB5B3F8CCDE29CD51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqR9CPyFIT30_aLPlWG45ovCc9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/iqR9CPyFIT30_aLPlWG45ovCc9w.mft
Manifest number: 0A45
Signing time: Sat 28 Jun 2025 14:01:13 +0000
Manifest this update: Sat 28 Jun 2025 14:01:13 +0000
Manifest next update: Sun 29 Jun 2025 14:01:13 +0000
Files and hashes: 1: iqR9CPyFIT30_aLPlWG45ovCc9w.crl (hash: eviJlfc+wFNZCHyZGVsDymLMXtiOjSJ96NXtYjpXbbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/iqR9CPyFIT30_aLPlWG45ovCc9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/iqR9CPyFIT30_aLPlWG45ovCc9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/iqR9CPyFIT30_aLPlWG45ovCc9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:9f:23:29:74:7b:3d:b5:b3:f8:cc:de:29:cd:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aa47d08fc85213df4fda2cf9561b8e68bc273dc
Validity
Not Before: Jun 28 14:01:13 2025 GMT
Not After : Jun 29 14:01:13 2025 GMT
Subject: CN=4584f7078e226dbe7ec63df083f6b0c317685aed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a3:cc:0f:07:04:50:a1:7b:f4:2d:99:d4:69:
61:23:46:c7:b0:54:97:93:af:0e:e5:b6:7b:71:bf:
b4:73:80:80:d8:da:1c:59:85:5e:cf:19:6f:88:23:
2f:ce:65:d7:6a:38:80:b0:7f:cd:6b:20:95:f2:43:
3c:cd:9a:b4:61:a1:aa:d3:ec:d6:51:2c:ab:e9:16:
fa:61:2f:52:22:2e:cf:71:77:70:b4:b3:ec:3a:74:
ec:4c:f1:41:9f:05:8a:74:b8:4e:7b:0c:f7:df:7e:
c1:37:9e:6a:a8:2f:af:23:da:7f:e6:12:a0:ca:15:
d6:d5:0a:31:68:f6:3c:20:c9:64:27:a3:1a:7c:72:
e9:52:2a:bb:b9:ab:79:13:b2:85:e2:4a:e6:c0:de:
8c:3f:2c:c2:eb:0a:f5:2b:95:65:e0:33:11:20:bf:
11:8c:6c:be:6f:bd:28:a7:5e:76:27:d8:3e:ab:72:
bc:2c:7b:49:11:a1:ee:67:60:f8:5d:bd:28:8b:c5:
81:ab:0a:97:b2:63:d2:06:75:69:4a:c8:1f:0a:75:
28:f3:e3:17:93:bc:b5:df:80:eb:b9:f6:87:7a:d8:
23:f8:f1:48:61:26:32:7d:86:d3:46:43:24:a1:26:
1c:08:8d:b6:2b:3e:9d:de:80:e1:60:ef:28:e3:fb:
b9:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:84:F7:07:8E:22:6D:BE:7E:C6:3D:F0:83:F6:B0:C3:17:68:5A:ED
X509v3 Authority Key Identifier:
keyid:8A:A4:7D:08:FC:85:21:3D:F4:FD:A2:CF:95:61:B8:E6:8B:C2:73:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqR9CPyFIT30_aLPlWG45ovCc9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/iqR9CPyFIT30_aLPlWG45ovCc9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/iqR9CPyFIT30_aLPlWG45ovCc9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:2a:07:15:31:b8:d4:b1:9e:dc:1a:c9:db:e9:e6:51:60:03:
66:77:66:a6:00:19:d7:e5:f4:2d:ac:9a:6c:5d:f5:20:2a:19:
57:06:20:f4:6f:cc:75:9a:30:2d:4d:8b:8c:0d:5f:1d:42:ba:
6a:65:d8:a3:71:de:1d:39:ee:38:ff:b3:e8:2a:26:98:d0:cc:
0f:ef:11:4c:24:08:14:36:ea:1f:e8:4f:14:ed:f1:3b:8f:dc:
81:92:0c:7b:1b:3c:29:5a:86:eb:7e:9b:68:54:ed:14:a0:52:
20:34:85:5d:6a:2f:50:78:1e:ac:b7:fe:b7:d7:d3:3f:f4:da:
ca:16:b9:bc:d9:20:ff:67:89:ad:10:d0:ca:3f:4f:0a:69:5a:
f5:26:57:14:2d:0f:3e:a6:f3:15:b9:51:c5:81:df:c2:78:ad:
62:65:f0:80:63:8f:41:2f:7d:3b:74:a9:be:61:d6:86:5d:e3:
13:12:75:33:62:f7:49:63:b4:7c:8b:95:92:8c:11:6d:c9:92:
96:5a:be:84:2b:01:6a:5e:8d:8c:53:65:78:cf:2e:49:c6:8a:
0b:19:7b:6e:b7:1e:12:8a:f5:f6:2b:ca:ad:8a:a3:bf:c2:5d:
8a:1d:95:27:56:69:26:9d:e9:f0:5d:d8:8f:c8:2b:23:6c:c6:
e3:8e:d3:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2158jKXR7PbWz+MzeKc1RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYTQ3ZDA4ZmM4NTIxM2RmNGZkYTJjZjk1NjFiOGU2OGJj
MjczZGMwHhcNMjUwNjI4MTQwMTEzWhcNMjUwNjI5MTQwMTEzWjAzMTEwLwYDVQQD
Eyg0NTg0ZjcwNzhlMjI2ZGJlN2VjNjNkZjA4M2Y2YjBjMzE3Njg1YWVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqaPMDwcEUKF79C2Z1GlhI0bHsFSX
k68O5bZ7cb+0c4CA2NocWYVezxlviCMvzmXXajiAsH/NayCV8kM8zZq0YaGq0+zW
USyr6Rb6YS9SIi7PcXdwtLPsOnTsTPFBnwWKdLhOewz3337BN55qqC+vI9p/5hKg
yhXW1QoxaPY8IMlkJ6MafHLpUiq7uat5E7KF4krmwN6MPyzC6wr1K5Vl4DMRIL8R
jGy+b70op152J9g+q3K8LHtJEaHuZ2D4Xb0oi8WBqwqXsmPSBnVpSsgfCnUo8+MX
k7y134DrufaHetgj+PFIYSYyfYbTRkMkoSYcCI22Kz6d3oDhYO8o4/u59QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEWE9weOIm2+fsY98IP2sMMXaFrtMB8GA1UdIwQY
MBaAFIqkfQj8hSE99P2iz5VhuOaLwnPcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXFSOUNQeUZJVDMwX2FMUGxXRzQ1b3ZDYzl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9hMWYwYTAtNDM5ZC00MjY2LWEzZGIt
ZTZiMWU5ODZmOTVmLzEvaXFSOUNQeUZJVDMwX2FMUGxXRzQ1b3ZDYzl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi9hMWYwYTAtNDM5ZC00MjY2LWEzZGItZTZiMWU5ODZmOTVm
LzEvaXFSOUNQeUZJVDMwX2FMUGxXRzQ1b3ZDYzl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADioHFTG4
1LGe3BrJ2+nmUWADZndmpgAZ1+X0LayabF31ICoZVwYg9G/MdZowLU2LjA1fHUK6
amXYo3HeHTnuOP+z6CommNDMD+8RTCQIFDbqH+hPFO3xO4/cgZIMexs8KVqG636b
aFTtFKBSIDSFXWovUHgerLf+t9fTP/Tayha5vNkg/2eJrRDQyj9PCmla9SZXFC0P
PqbzFblRxYHfwnitYmXwgGOPQS99O3SpvmHWhl3jExJ1M2L3SWO0fIuVkowRbcmS
llq+hCsBal6NjFNleM8uScaKCxl7brceEor19ivKrYqjv8Jdih2VJ1ZpJp3p8F3Y
j8grI2zG447TJQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:24:22 2025 by rpki-client