Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/1edf10-d3df-40f5-b4a3-a731e9e1e533/1/9h0r7udUOkGpCKGgHs_AqHJqOuI.mft
File: 9h0r7udUOkGpCKGgHs_AqHJqOuI.mft (raw, json)
Hash identifier: Ew/2xc/gCeYkwLzZIyyNx47lL3vH+i2SHa7/VvL8t2Q=
Subject key identifier: DC:8C:C5:CD:87:36:9B:1E:48:54:3A:87:E7:05:C8:5C:E2:97:5A:59
Authority key identifier: F6:1D:2B:EE:E7:54:3A:41:A9:08:A1:A0:1E:CF:C0:A8:72:6A:3A:E2
Certificate issuer: /CN=f61d2beee7543a41a908a1a01ecfc0a8726a3ae2
Certificate serial: 0197B7EAA33C40D1A930DB8F57B30CCB8DC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9h0r7udUOkGpCKGgHs_AqHJqOuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/1edf10-d3df-40f5-b4a3-a731e9e1e533/1/9h0r7udUOkGpCKGgHs_AqHJqOuI.mft
Manifest number: 0A57
Signing time: Sat 28 Jun 2025 19:01:36 +0000
Manifest this update: Sat 28 Jun 2025 19:01:36 +0000
Manifest next update: Sun 29 Jun 2025 19:01:36 +0000
Files and hashes: 1: 9h0r7udUOkGpCKGgHs_AqHJqOuI.crl (hash: LulZzN4o6EkUmlPBQUrypXu6H/FFi4yP3FWSM2MB5tU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/1edf10-d3df-40f5-b4a3-a731e9e1e533/1/9h0r7udUOkGpCKGgHs_AqHJqOuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/1edf10-d3df-40f5-b4a3-a731e9e1e533/1/9h0r7udUOkGpCKGgHs_AqHJqOuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/9h0r7udUOkGpCKGgHs_AqHJqOuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:a3:3c:40:d1:a9:30:db:8f:57:b3:0c:cb:8d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f61d2beee7543a41a908a1a01ecfc0a8726a3ae2
Validity
Not Before: Jun 28 19:01:36 2025 GMT
Not After : Jun 29 19:01:36 2025 GMT
Subject: CN=dc8cc5cd87369b1e48543a87e705c85ce2975a59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ed:ce:a0:08:a2:34:24:9c:9e:31:17:32:a9:
cd:78:a8:8a:25:e0:69:bf:72:e1:f0:f8:0a:89:89:
9c:4b:c3:55:0b:ba:6c:d6:ea:f1:95:36:f1:31:56:
9f:50:79:3b:2f:62:77:9f:a3:7a:9a:50:45:4f:7e:
f9:d6:3a:9c:34:c6:22:f5:4b:fb:80:95:d2:99:4e:
11:2b:19:4d:d9:c9:cd:31:a5:30:96:7e:cd:12:44:
71:92:23:f3:bd:09:26:92:92:53:25:ae:9e:43:26:
ec:22:0e:4a:5f:c2:67:18:02:be:3a:fa:77:6e:da:
af:05:53:6d:0e:de:5a:a4:1c:ec:cd:10:16:60:75:
0f:6a:cd:5e:94:e3:19:aa:27:6b:81:b4:4f:c2:20:
e3:9e:29:a2:b6:fb:9e:14:5c:f2:50:68:01:ad:45:
f4:fe:5c:4b:33:54:c5:2d:5f:5c:a4:e1:20:a6:a4:
88:eb:3c:bf:70:37:23:a0:d5:f9:f5:c0:0c:8c:5c:
f8:75:6a:2a:75:b7:27:b5:83:4a:af:89:e9:32:e0:
b4:a6:ef:75:4b:54:c9:ad:91:f4:38:98:72:b7:36:
ba:fc:05:79:df:79:9d:ca:d0:8c:29:37:74:77:a8:
5c:d4:f5:2d:a1:25:9f:ac:22:17:35:7f:06:c5:c4:
36:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:8C:C5:CD:87:36:9B:1E:48:54:3A:87:E7:05:C8:5C:E2:97:5A:59
X509v3 Authority Key Identifier:
keyid:F6:1D:2B:EE:E7:54:3A:41:A9:08:A1:A0:1E:CF:C0:A8:72:6A:3A:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9h0r7udUOkGpCKGgHs_AqHJqOuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/1edf10-d3df-40f5-b4a3-a731e9e1e533/1/9h0r7udUOkGpCKGgHs_AqHJqOuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/1edf10-d3df-40f5-b4a3-a731e9e1e533/1/9h0r7udUOkGpCKGgHs_AqHJqOuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:a3:b1:36:d8:95:f7:eb:5f:65:42:f3:0c:10:49:ef:0f:58:
fe:e2:91:43:38:ea:02:fe:df:11:3e:b7:7b:5c:46:5c:a9:0f:
ae:c4:9a:0e:18:d7:e4:b0:b0:ea:6f:57:d3:f3:77:7b:0e:22:
27:07:1b:84:14:21:9f:cb:7e:3a:4d:e9:8b:c7:0b:b9:d9:37:
18:d6:0b:96:9a:70:56:75:11:f9:12:59:80:96:00:37:a6:c4:
03:3e:91:ed:ca:42:c8:9c:f2:b1:3d:0f:fa:b3:b8:8a:85:8b:
74:74:51:b9:fc:a1:14:a3:16:97:8f:25:ca:9b:4c:34:35:a9:
e6:23:0f:5b:c4:a9:45:56:e4:f8:9b:49:37:4b:17:45:ac:e5:
b8:e2:c8:07:4a:c5:6e:f2:27:92:f0:7c:13:34:35:d1:e5:df:
6e:9f:02:35:58:47:51:07:ac:7c:7b:2e:fb:58:5d:0f:e0:e3:
6f:ad:5f:b8:8d:30:b7:f0:88:2d:82:42:9a:97:b2:76:7a:97:
63:3e:c3:6e:19:21:c8:fe:fe:b5:8d:82:f3:32:a1:a4:43:4c:
b7:8d:3f:8f:0d:80:9c:e2:c2:2e:ab:cc:a9:15:53:4c:e7:78:
1b:43:b0:a3:3c:60:ee:f0:87:fd:94:18:71:0e:83:08:75:3c:
7c:f3:61:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36qM8QNGpMNuPV7MMy43GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2MWQyYmVlZTc1NDNhNDFhOTA4YTFhMDFlY2ZjMGE4NzI2
YTNhZTIwHhcNMjUwNjI4MTkwMTM2WhcNMjUwNjI5MTkwMTM2WjAzMTEwLwYDVQQD
EyhkYzhjYzVjZDg3MzY5YjFlNDg1NDNhODdlNzA1Yzg1Y2UyOTc1YTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5e3OoAiiNCScnjEXMqnNeKiKJeBp
v3Lh8PgKiYmcS8NVC7ps1urxlTbxMVafUHk7L2J3n6N6mlBFT3751jqcNMYi9Uv7
gJXSmU4RKxlN2cnNMaUwln7NEkRxkiPzvQkmkpJTJa6eQybsIg5KX8JnGAK+Ovp3
btqvBVNtDt5apBzszRAWYHUPas1elOMZqidrgbRPwiDjnimitvueFFzyUGgBrUX0
/lxLM1TFLV9cpOEgpqSI6zy/cDcjoNX59cAMjFz4dWoqdbcntYNKr4npMuC0pu91
S1TJrZH0OJhytza6/AV533mdytCMKTd0d6hc1PUtoSWfrCIXNX8GxcQ2LwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNyMxc2HNpseSFQ6h+cFyFzil1pZMB8GA1UdIwQY
MBaAFPYdK+7nVDpBqQihoB7PwKhyajriMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWgwcjd1ZFVPa0dwQ0tHZ0hzX0FxSEpxT3VJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8xZWRmMTAtZDNkZi00MGY1LWI0YTMt
YTczMWU5ZTFlNTMzLzEvOWgwcjd1ZFVPa0dwQ0tHZ0hzX0FxSEpxT3VJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8xZWRmMTAtZDNkZi00MGY1LWI0YTMtYTczMWU5ZTFlNTMz
LzEvOWgwcjd1ZFVPa0dwQ0tHZ0hzX0FxSEpxT3VJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhaOxNtiV
9+tfZULzDBBJ7w9Y/uKRQzjqAv7fET63e1xGXKkPrsSaDhjX5LCw6m9X0/N3ew4i
JwcbhBQhn8t+Ok3pi8cLudk3GNYLlppwVnUR+RJZgJYAN6bEAz6R7cpCyJzysT0P
+rO4ioWLdHRRufyhFKMWl48lyptMNDWp5iMPW8SpRVbk+JtJN0sXRazluOLIB0rF
bvInkvB8EzQ10eXfbp8CNVhHUQesfHsu+1hdD+Djb61fuI0wt/CILYJCmpeydnqX
Yz7DbhkhyP7+tY2C8zKhpENMt40/jw2AnOLCLqvMqRVTTOd4G0Owozxg7vCH/ZQY
cQ6DCHU8fPNhqA==
-----END CERTIFICATE-----
Generated at Sun Jun 29 04:31:50 2025 by rpki-client