Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft
File: soehvthfaZtS-gaqGeUc8liPFLk.mft (raw, json)
Hash identifier: mg/VTIclUBv983DdjzYVVFZC5RUUQlNbQukr8j5o6Cw=
Subject key identifier: 63:B4:9A:07:8D:98:88:9E:1A:DB:4B:4B:AF:6E:51:71:46:5F:C2:85
Authority key identifier: B2:87:A1:BE:D8:5F:69:9B:52:FA:06:AA:19:E5:1C:F2:58:8F:14:B9
Certificate issuer: /CN=b287a1bed85f699b52fa06aa19e51cf2588f14b9
Certificate serial: 0197B6A1CE2733C4D7A6778319713A87817F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soehvthfaZtS-gaqGeUc8liPFLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft
Manifest number: 1057
Signing time: Sat 28 Jun 2025 13:02:26 +0000
Manifest this update: Sat 28 Jun 2025 13:02:26 +0000
Manifest next update: Sun 29 Jun 2025 13:02:26 +0000
Files and hashes: 1: soehvthfaZtS-gaqGeUc8liPFLk.crl (hash: +My/iSYgifV387sGGyvB/J8VO6AITvpohj7zcn0ZMU0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft
rsync://rpki.ripe.net/repository/DEFAULT/soehvthfaZtS-gaqGeUc8liPFLk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:ce:27:33:c4:d7:a6:77:83:19:71:3a:87:81:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b287a1bed85f699b52fa06aa19e51cf2588f14b9
Validity
Not Before: Jun 28 13:02:26 2025 GMT
Not After : Jun 29 13:02:26 2025 GMT
Subject: CN=63b49a078d98889e1adb4b4baf6e5171465fc285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:67:56:ea:90:26:59:86:2e:ea:3c:a2:25:52:
92:5c:51:01:68:d6:1a:12:2a:dd:49:5d:69:16:53:
b9:b9:5c:04:bb:e5:bf:6f:32:e2:c9:bf:6d:d5:f0:
b3:b0:07:fa:fb:c1:3a:91:eb:d5:c6:dc:98:e8:65:
0c:ca:26:96:d1:08:2a:53:2b:af:14:fb:fc:af:e8:
4e:16:92:43:fb:4b:95:c6:8f:3c:74:94:78:da:aa:
5b:e5:97:b5:22:99:b4:09:23:b5:ef:64:c1:a1:66:
8a:8e:4a:b1:4a:86:8b:b8:90:26:a5:30:37:c5:18:
d4:f9:f3:35:1e:85:24:03:b7:38:8d:d7:5a:a6:f1:
95:62:2a:ea:40:91:a3:7d:59:52:58:6b:4c:5a:5c:
c5:65:00:cc:ae:c9:d5:4e:c4:51:77:28:cb:c3:64:
f8:9b:b6:46:d6:b7:e7:d9:69:d3:5d:95:77:c7:5b:
c9:5b:d6:16:b9:21:22:bf:9c:90:67:42:81:63:47:
6c:b0:d8:15:a7:27:a7:6e:9d:bb:27:5f:6a:4f:48:
32:3e:53:0c:1e:5d:69:d2:1f:53:7e:cc:f4:eb:37:
a1:e8:d1:bf:93:bb:67:73:29:1f:3a:51:cc:5f:ed:
f1:6b:f2:fd:01:37:4d:09:ee:75:12:52:2f:f6:bf:
1c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B4:9A:07:8D:98:88:9E:1A:DB:4B:4B:AF:6E:51:71:46:5F:C2:85
X509v3 Authority Key Identifier:
keyid:B2:87:A1:BE:D8:5F:69:9B:52:FA:06:AA:19:E5:1C:F2:58:8F:14:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soehvthfaZtS-gaqGeUc8liPFLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:d9:de:ef:fc:c0:c5:f8:a3:19:af:2b:6a:b5:c6:25:1a:7c:
45:6f:64:2a:34:a5:b9:cd:ba:60:a4:b5:f0:67:0e:48:42:12:
19:69:c3:de:cf:86:db:1d:02:0f:8d:f0:6a:32:0c:14:ce:dc:
c8:55:bb:3f:a0:a3:8f:d4:f8:a5:83:c7:4e:14:de:5e:6b:44:
5d:c9:c7:2a:00:3a:83:96:f9:63:d5:81:50:d4:80:91:bb:85:
48:26:1c:b9:55:7f:d8:85:d5:73:5c:1f:47:95:5f:10:1f:ea:
1a:b7:1c:00:4b:03:1c:24:2e:63:02:d8:05:a5:28:d2:ad:11:
7f:8e:87:aa:74:ce:de:b8:8f:87:0c:e0:83:24:c9:c3:22:e6:
52:09:fe:ec:f6:67:26:fc:d9:f7:8f:38:f3:f1:9a:fe:cc:dd:
c3:be:e6:1b:c9:d3:b9:4b:09:45:0f:19:da:f9:37:be:e0:13:
f2:63:78:9f:93:be:22:de:5b:e8:91:c3:8b:57:8f:53:f2:05:
21:47:7f:3e:e6:53:df:b1:5c:98:29:5b:92:16:db:96:01:f7:
b2:d7:a1:be:21:88:01:4c:ab:53:0c:7c:ca:32:4f:d0:70:29:
14:88:79:65:1b:aa:2a:f7:ce:24:80:b1:69:08:30:7e:9c:83:
87:b9:c5:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oc4nM8TXpneDGXE6h4F/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyODdhMWJlZDg1ZjY5OWI1MmZhMDZhYTE5ZTUxY2YyNTg4
ZjE0YjkwHhcNMjUwNjI4MTMwMjI2WhcNMjUwNjI5MTMwMjI2WjAzMTEwLwYDVQQD
Eyg2M2I0OWEwNzhkOTg4ODllMWFkYjRiNGJhZjZlNTE3MTQ2NWZjMjg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhWdW6pAmWYYu6jyiJVKSXFEBaNYa
EirdSV1pFlO5uVwEu+W/bzLiyb9t1fCzsAf6+8E6kevVxtyY6GUMyiaW0QgqUyuv
FPv8r+hOFpJD+0uVxo88dJR42qpb5Ze1Ipm0CSO172TBoWaKjkqxSoaLuJAmpTA3
xRjU+fM1HoUkA7c4jddapvGVYirqQJGjfVlSWGtMWlzFZQDMrsnVTsRRdyjLw2T4
m7ZG1rfn2WnTXZV3x1vJW9YWuSEiv5yQZ0KBY0dssNgVpyenbp27J19qT0gyPlMM
Hl1p0h9Tfsz06zeh6NG/k7tncykfOlHMX+3xa/L9ATdNCe51ElIv9r8cwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGO0mgeNmIieGttLS69uUXFGX8KFMB8GA1UdIwQY
MBaAFLKHob7YX2mbUvoGqhnlHPJYjxS5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc29laHZ0aGZhWnRTLWdhcUdlVWM4bGlQRkxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wYTI3N2UtMDY1Ni00Y2ZlLWE4YTgt
MDJlM2Q5ZTAyZWVjLzEvc29laHZ0aGZhWnRTLWdhcUdlVWM4bGlQRkxrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8wYTI3N2UtMDY1Ni00Y2ZlLWE4YTgtMDJlM2Q5ZTAyZWVj
LzEvc29laHZ0aGZhWnRTLWdhcUdlVWM4bGlQRkxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP9ne7/zA
xfijGa8rarXGJRp8RW9kKjSluc26YKS18GcOSEISGWnD3s+G2x0CD43wajIMFM7c
yFW7P6Cjj9T4pYPHThTeXmtEXcnHKgA6g5b5Y9WBUNSAkbuFSCYcuVV/2IXVc1wf
R5VfEB/qGrccAEsDHCQuYwLYBaUo0q0Rf46HqnTO3riPhwzggyTJwyLmUgn+7PZn
JvzZ94848/Ga/szdw77mG8nTuUsJRQ8Z2vk3vuAT8mN4n5O+It5b6JHDi1ePU/IF
IUd/PuZT37FcmClbkhbblgH3stehviGIAUyrUwx8yjJP0HApFIh5ZRuqKvfOJICx
aQgwfpyDh7nFag==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:35:39 2025 by rpki-client