Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/6ae8b3-a390-4b51-b7f1-f2f1ca287141/1/7_vi0INCz7z3p9dOiOvQMeEgItk.mft
File: 7_vi0INCz7z3p9dOiOvQMeEgItk.mft (raw, json)
Hash identifier: s7Aj1r/ihnwJV1eX+5aS6uqDvtkuJWFn6lR+TbWfAuc=
Subject key identifier: D5:86:8E:19:B7:0B:5E:79:E1:37:CB:2C:5E:E5:00:3F:F6:8B:B7:46
Authority key identifier: EF:FB:E2:D0:83:42:CF:BC:F7:A7:D7:4E:88:EB:D0:31:E1:20:22:D9
Certificate issuer: /CN=effbe2d08342cfbcf7a7d74e88ebd031e12022d9
Certificate serial: 0197B74542B56CEAD011A6F0D856C736E725
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7_vi0INCz7z3p9dOiOvQMeEgItk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/6ae8b3-a390-4b51-b7f1-f2f1ca287141/1/7_vi0INCz7z3p9dOiOvQMeEgItk.mft
Manifest number: 03AA
Signing time: Sat 28 Jun 2025 16:00:58 +0000
Manifest this update: Sat 28 Jun 2025 16:00:58 +0000
Manifest next update: Sun 29 Jun 2025 16:00:58 +0000
Files and hashes: 1: 7_vi0INCz7z3p9dOiOvQMeEgItk.crl (hash: Eg2pEeHQS+0/OKbQUV8+WmzSBmzO9Zeim0HsQKrUANg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/6ae8b3-a390-4b51-b7f1-f2f1ca287141/1/7_vi0INCz7z3p9dOiOvQMeEgItk.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/6ae8b3-a390-4b51-b7f1-f2f1ca287141/1/7_vi0INCz7z3p9dOiOvQMeEgItk.mft
rsync://rpki.ripe.net/repository/DEFAULT/7_vi0INCz7z3p9dOiOvQMeEgItk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:42:b5:6c:ea:d0:11:a6:f0:d8:56:c7:36:e7:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=effbe2d08342cfbcf7a7d74e88ebd031e12022d9
Validity
Not Before: Jun 28 16:00:58 2025 GMT
Not After : Jun 29 16:00:58 2025 GMT
Subject: CN=d5868e19b70b5e79e137cb2c5ee5003ff68bb746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fe:2a:bd:5e:1b:fe:98:6b:44:f2:65:6c:2b:
62:09:fa:7a:bd:67:c9:d7:a3:72:ec:4b:23:d1:fd:
aa:f0:15:52:b1:a3:5e:67:94:dc:80:01:59:34:0f:
eb:9d:c9:09:a0:ae:a5:6d:b8:9e:82:ad:29:46:42:
ce:b6:0b:ce:e8:ff:9f:99:ae:37:f3:9b:df:62:ef:
b7:40:42:61:f3:aa:d7:cc:dd:41:60:79:4c:7a:70:
eb:22:14:04:e0:ed:92:a9:d8:20:a2:0e:27:d3:e5:
4a:ae:7e:0a:ad:c6:c6:55:36:4d:8d:1b:3d:a2:93:
62:36:07:0a:3d:56:b7:65:a8:2e:0a:7f:c0:91:80:
8c:32:3a:d0:55:e8:07:81:02:12:f7:4a:ff:64:10:
d6:3e:a3:3b:b8:56:03:2c:05:6f:35:d6:01:db:01:
6a:3d:23:bb:14:e9:ce:22:22:a1:88:12:a4:dc:e8:
bb:5c:19:63:c4:1d:a7:58:46:b4:9a:46:0f:e3:c7:
f0:c0:52:00:a1:1d:78:3e:f8:27:ed:66:62:d4:10:
00:8e:9b:98:42:d3:33:32:af:3c:c1:35:9e:6f:60:
d9:59:45:56:43:50:b3:79:e0:54:db:c9:49:b1:4c:
64:40:24:92:2d:b6:59:b0:41:ed:33:b8:60:b3:84:
ee:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:86:8E:19:B7:0B:5E:79:E1:37:CB:2C:5E:E5:00:3F:F6:8B:B7:46
X509v3 Authority Key Identifier:
keyid:EF:FB:E2:D0:83:42:CF:BC:F7:A7:D7:4E:88:EB:D0:31:E1:20:22:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7_vi0INCz7z3p9dOiOvQMeEgItk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6ae8b3-a390-4b51-b7f1-f2f1ca287141/1/7_vi0INCz7z3p9dOiOvQMeEgItk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6ae8b3-a390-4b51-b7f1-f2f1ca287141/1/7_vi0INCz7z3p9dOiOvQMeEgItk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:32:2a:c9:56:9e:d7:d3:0c:0c:0a:13:54:bc:1b:bb:7d:dd:
33:17:aa:e6:14:2f:49:d0:c4:93:c4:a8:67:59:c0:3c:fc:35:
ac:64:56:95:2d:75:7f:23:af:17:4c:c6:92:eb:b0:2d:ec:17:
b9:03:82:bc:ad:3c:7b:83:44:f9:74:36:99:5d:01:1d:41:e1:
e8:f1:6e:43:28:42:c5:67:e6:5f:fd:3d:84:cc:db:93:d6:9a:
35:65:71:33:74:d3:97:0d:57:59:45:43:90:91:92:e9:57:4b:
81:ee:4d:d1:e8:e4:bf:12:0f:a8:fb:ba:40:18:c7:0a:63:a6:
bf:22:2b:7f:1f:3e:09:eb:27:1d:c3:fc:67:3f:0c:77:aa:6a:
35:71:66:fa:8d:13:87:32:92:b6:a5:54:5d:1d:54:fc:6b:75:
5e:36:15:47:82:45:a6:77:b1:24:ac:b6:49:01:2f:0f:59:d2:
ec:b0:1c:93:b0:a6:e2:28:34:d9:43:70:e1:7e:7c:07:54:cd:
0d:37:b7:d4:3c:81:1b:9a:bf:e2:8c:7a:ef:ce:74:55:f4:d4:
90:75:55:90:c0:47:ad:78:a5:15:cc:1c:79:68:49:17:7e:7b:
ae:fa:f7:fa:e4:b2:46:39:e0:59:58:37:bc:76:e5:25:b7:90:
54:1c:2e:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RUK1bOrQEabw2FbHNuclMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmZmJlMmQwODM0MmNmYmNmN2E3ZDc0ZTg4ZWJkMDMxZTEy
MDIyZDkwHhcNMjUwNjI4MTYwMDU4WhcNMjUwNjI5MTYwMDU4WjAzMTEwLwYDVQQD
EyhkNTg2OGUxOWI3MGI1ZTc5ZTEzN2NiMmM1ZWU1MDAzZmY2OGJiNzQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/4qvV4b/phrRPJlbCtiCfp6vWfJ
16Ny7Esj0f2q8BVSsaNeZ5TcgAFZNA/rnckJoK6lbbiegq0pRkLOtgvO6P+fma43
85vfYu+3QEJh86rXzN1BYHlMenDrIhQE4O2Sqdggog4n0+VKrn4KrcbGVTZNjRs9
opNiNgcKPVa3ZaguCn/AkYCMMjrQVegHgQIS90r/ZBDWPqM7uFYDLAVvNdYB2wFq
PSO7FOnOIiKhiBKk3Oi7XBljxB2nWEa0mkYP48fwwFIAoR14Pvgn7WZi1BAAjpuY
QtMzMq88wTWeb2DZWUVWQ1CzeeBU28lJsUxkQCSSLbZZsEHtM7hgs4TuTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNWGjhm3C1554TfLLF7lAD/2i7dGMB8GA1UdIwQY
MBaAFO/74tCDQs+896fXTojr0DHhICLZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN192aTBJTkN6N3ozcDlkT2lPdlFNZUVnSXRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC82YWU4YjMtYTM5MC00YjUxLWI3ZjEt
ZjJmMWNhMjg3MTQxLzEvN192aTBJTkN6N3ozcDlkT2lPdlFNZUVnSXRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC82YWU4YjMtYTM5MC00YjUxLWI3ZjEtZjJmMWNhMjg3MTQx
LzEvN192aTBJTkN6N3ozcDlkT2lPdlFNZUVnSXRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbjIqyVae
19MMDAoTVLwbu33dMxeq5hQvSdDEk8SoZ1nAPPw1rGRWlS11fyOvF0zGkuuwLewX
uQOCvK08e4NE+XQ2mV0BHUHh6PFuQyhCxWfmX/09hMzbk9aaNWVxM3TTlw1XWUVD
kJGS6VdLge5N0ejkvxIPqPu6QBjHCmOmvyIrfx8+CesnHcP8Zz8Md6pqNXFm+o0T
hzKStqVUXR1U/Gt1XjYVR4JFpnexJKy2SQEvD1nS7LAck7Cm4ig02UNw4X58B1TN
DTe31DyBG5q/4ox67850VfTUkHVVkMBHrXilFcwceWhJF357rvr3+uSyRjngWVg3
vHblJbeQVBwupA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:06:35 2025 by rpki-client