Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
File: a_CO0PpuGTufOlC_cmtB0MMpspc.mft (raw, json)
Hash identifier: caF7odpcRKIZhZWC2KeVf1kwLihg4dqYKNKOjgOAEJ0=
Subject key identifier: 69:5A:25:55:9F:C9:1A:A9:0A:84:B2:A8:EC:B4:98:F0:89:5C:49:5C
Authority key identifier: 6B:F0:8E:D0:FA:6E:19:3B:9F:3A:50:BF:72:6B:41:D0:C3:29:B2:97
Certificate issuer: /CN=6bf08ed0fa6e193b9f3a50bf726b41d0c329b297
Certificate serial: 0197B632EE3DBA43A97EB484C7F628F0BD32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
Manifest number: 01A4
Signing time: Sat 28 Jun 2025 11:01:20 +0000
Manifest this update: Sat 28 Jun 2025 11:01:20 +0000
Manifest next update: Sun 29 Jun 2025 11:01:20 +0000
Files and hashes: 1: a_CO0PpuGTufOlC_cmtB0MMpspc.crl (hash: +9AsCa1vH5q0h7xpEsh4o141IEDh5nRXlz4LH6Ym2Ps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:ee:3d:ba:43:a9:7e:b4:84:c7:f6:28:f0:bd:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bf08ed0fa6e193b9f3a50bf726b41d0c329b297
Validity
Not Before: Jun 28 11:01:20 2025 GMT
Not After : Jun 29 11:01:20 2025 GMT
Subject: CN=695a25559fc91aa90a84b2a8ecb498f0895c495c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:bd:39:85:6e:ec:38:4e:17:b1:ff:8c:09:c7:
cd:a9:24:37:fd:b1:6a:29:e1:65:81:1b:87:cc:8a:
5d:06:9f:8f:e0:1d:1e:22:90:ae:c2:65:fe:66:2f:
8c:64:4d:3d:24:ab:ce:8f:95:50:58:32:d8:c2:a9:
61:88:a6:3e:06:39:cc:f8:6f:93:2f:1b:b6:06:ad:
24:f1:26:80:c9:73:d1:3c:c4:78:fa:be:f8:90:62:
b8:1a:b2:0f:85:ea:d8:08:65:a3:2d:b8:1b:24:0f:
7b:02:40:fc:f3:ea:1a:da:43:bd:f0:12:3b:ac:b3:
ac:e8:b6:47:75:a3:8a:8c:71:06:1f:d8:b9:ae:04:
d1:c0:7d:28:39:33:41:66:9c:a6:70:ff:f6:e1:c5:
d3:54:3a:8c:4d:82:1e:ea:5e:c1:73:cb:44:17:5f:
7d:91:e3:98:b1:04:1f:2c:ee:2e:12:af:50:ba:97:
41:eb:9c:36:31:16:18:a0:e3:89:b1:b7:08:59:7e:
2f:ad:8d:a0:60:c5:c1:36:a5:fe:fe:2f:26:9c:35:
ab:84:25:b5:d5:b6:c2:f9:47:62:8d:38:ab:24:0c:
c7:c7:c3:03:e6:05:8d:6b:d7:23:61:e8:7c:b0:e2:
60:bf:25:b5:bb:f5:1c:01:dc:99:10:ba:4c:af:82:
85:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:5A:25:55:9F:C9:1A:A9:0A:84:B2:A8:EC:B4:98:F0:89:5C:49:5C
X509v3 Authority Key Identifier:
keyid:6B:F0:8E:D0:FA:6E:19:3B:9F:3A:50:BF:72:6B:41:D0:C3:29:B2:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:6b:8e:2d:7c:32:b5:5f:7d:ef:b5:3e:03:bf:0e:22:74:5d:
fb:41:f0:43:bb:f1:19:ba:62:2e:10:03:3c:c3:c5:7a:9e:40:
6d:93:e0:e6:fa:c1:76:7d:db:5f:b1:5c:b2:30:f8:e8:f4:b8:
75:d9:46:1d:2a:75:3c:45:5b:60:e1:4f:7f:1b:e6:73:75:bd:
15:4b:da:3c:31:7f:52:bd:52:f8:ed:f7:32:31:ef:23:34:0f:
02:07:0c:6d:9a:39:09:ea:bb:3c:7a:ca:d0:77:eb:69:78:a0:
b7:19:70:d9:c3:a1:00:63:3f:be:d5:0f:d6:9b:e4:99:e5:5c:
ff:34:16:96:bd:f2:0a:12:70:1e:e1:cc:61:4a:09:66:2a:ed:
da:53:a0:2b:da:8b:2d:11:d2:28:77:79:e0:43:ac:67:ca:e8:
5a:26:e1:9e:a8:e8:ce:6f:1c:48:6c:a0:5c:94:ca:20:74:0d:
0b:7c:fb:1c:03:99:be:4c:2c:7b:f9:0f:95:18:8f:5d:ae:03:
a7:fb:d3:a4:69:a4:7a:65:30:53:42:7a:d5:66:89:c4:30:19:
76:86:0d:3d:26:e7:02:e8:82:ac:e5:68:0b:63:18:92:b0:20:
b9:94:0f:30:91:8f:59:29:c8:83:8e:a8:eb:94:d0:59:6c:63:
7d:54:42:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2Mu49ukOpfrSEx/Yo8L0yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiZjA4ZWQwZmE2ZTE5M2I5ZjNhNTBiZjcyNmI0MWQwYzMy
OWIyOTcwHhcNMjUwNjI4MTEwMTIwWhcNMjUwNjI5MTEwMTIwWjAzMTEwLwYDVQQD
Eyg2OTVhMjU1NTlmYzkxYWE5MGE4NGIyYThlY2I0OThmMDg5NWM0OTVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5r05hW7sOE4Xsf+MCcfNqSQ3/bFq
KeFlgRuHzIpdBp+P4B0eIpCuwmX+Zi+MZE09JKvOj5VQWDLYwqlhiKY+BjnM+G+T
Lxu2Bq0k8SaAyXPRPMR4+r74kGK4GrIPherYCGWjLbgbJA97AkD88+oa2kO98BI7
rLOs6LZHdaOKjHEGH9i5rgTRwH0oOTNBZpymcP/24cXTVDqMTYIe6l7Bc8tEF199
keOYsQQfLO4uEq9QupdB65w2MRYYoOOJsbcIWX4vrY2gYMXBNqX+/i8mnDWrhCW1
1bbC+UdijTirJAzHx8MD5gWNa9cjYeh8sOJgvyW1u/UcAdyZELpMr4KFIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGlaJVWfyRqpCoSyqOy0mPCJXElcMB8GA1UdIwQY
MBaAFGvwjtD6bhk7nzpQv3JrQdDDKbKXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYV9DTzBQcHVHVHVmT2xDX2NtdEIwTU1wc3BjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC82N2E2M2EtMWEwMy00ODIyLWFjOWUt
M2Q0MjA1ZjVlMmQzLzEvYV9DTzBQcHVHVHVmT2xDX2NtdEIwTU1wc3BjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC82N2E2M2EtMWEwMy00ODIyLWFjOWUtM2Q0MjA1ZjVlMmQz
LzEvYV9DTzBQcHVHVHVmT2xDX2NtdEIwTU1wc3BjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJGuOLXwy
tV9977U+A78OInRd+0HwQ7vxGbpiLhADPMPFep5AbZPg5vrBdn3bX7FcsjD46PS4
ddlGHSp1PEVbYOFPfxvmc3W9FUvaPDF/Ur1S+O33MjHvIzQPAgcMbZo5Ceq7PHrK
0HfraXigtxlw2cOhAGM/vtUP1pvkmeVc/zQWlr3yChJwHuHMYUoJZirt2lOgK9qL
LRHSKHd54EOsZ8roWibhnqjozm8cSGygXJTKIHQNC3z7HAOZvkwse/kPlRiPXa4D
p/vTpGmkemUwU0J61WaJxDAZdoYNPSbnAuiCrOVoC2MYkrAguZQPMJGPWSnIg46o
65TQWWxjfVRC/w==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:53:42 2025 by rpki-client