Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
File: IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft (raw, json)
Hash identifier: q4veKHOYcP5BUbGZcD5l2WSDxOIFaVY8la3krr11vDI=
Subject key identifier: 4C:EF:4D:E4:46:82:C4:E4:07:55:7B:AA:45:1B:A0:31:A7:1C:ED:CC
Authority key identifier: 22:FB:EF:69:5F:A9:5D:0C:95:90:9E:51:AA:1F:AB:94:FC:40:26:7D
Certificate issuer: /CN=22fbef695fa95d0c95909e51aa1fab94fc40267d
Certificate serial: 0197B77C1181CAF2187F317EE18F399508EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
Manifest number: 0B86
Signing time: Sat 28 Jun 2025 17:00:50 +0000
Manifest this update: Sat 28 Jun 2025 17:00:50 +0000
Manifest next update: Sun 29 Jun 2025 17:00:50 +0000
Files and hashes: 1: IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl (hash: 9FQcN/h4MUz0ZGgLvOneV2xAcQ3k2T+/O8ri28UPAXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 17:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:11:81:ca:f2:18:7f:31:7e:e1:8f:39:95:08:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fbef695fa95d0c95909e51aa1fab94fc40267d
Validity
Not Before: Jun 28 17:00:50 2025 GMT
Not After : Jun 29 17:00:50 2025 GMT
Subject: CN=4cef4de44682c4e407557baa451ba031a71cedcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:88:00:f6:da:b7:21:37:c1:91:a2:4d:32:ba:
5a:5d:17:09:98:70:a7:29:6a:5c:4c:e5:07:eb:a8:
a8:5b:87:08:90:c4:cc:c9:d8:8e:0a:a5:86:fc:04:
ac:8e:ea:cd:af:97:19:fd:0b:dd:62:d8:38:76:be:
e0:bc:28:75:84:1b:27:f4:51:43:f7:82:e3:72:4b:
0e:5a:b6:77:82:d9:42:03:b9:90:94:75:e2:3f:b5:
f6:60:4b:4c:52:6e:cc:6a:97:e7:3c:32:dd:fb:78:
0e:0c:e5:e1:ca:a9:a7:e0:01:e9:a0:79:17:d1:95:
fa:d1:e3:ab:81:cb:c2:54:aa:2d:8c:8a:a1:66:5f:
cb:4f:f3:21:35:bc:81:10:db:0e:a7:97:eb:d5:dd:
75:c4:f3:b3:70:3c:de:2d:0e:7e:e1:4d:91:fe:dd:
31:dd:08:ef:a3:9b:68:e7:82:f7:dc:d2:23:7c:65:
c5:ae:19:a0:08:2b:f2:48:97:e9:58:46:6c:aa:1a:
0b:7c:9e:29:26:fc:5b:53:31:70:0c:fd:c4:10:78:
dc:d5:d8:2e:73:79:9a:28:ad:e3:70:94:dd:83:ab:
b2:cf:33:e0:64:f1:74:91:45:e3:aa:f2:aa:bf:9d:
32:2a:64:12:b4:24:aa:23:86:84:ef:fb:34:4c:b7:
74:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:EF:4D:E4:46:82:C4:E4:07:55:7B:AA:45:1B:A0:31:A7:1C:ED:CC
X509v3 Authority Key Identifier:
keyid:22:FB:EF:69:5F:A9:5D:0C:95:90:9E:51:AA:1F:AB:94:FC:40:26:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:e5:2c:26:fd:35:27:11:53:34:a1:9a:3d:50:ed:59:86:ba:
00:bb:0e:53:86:6f:ae:92:3d:ee:55:0d:f5:f5:92:d9:ef:be:
2e:f6:a1:3c:de:d2:9a:6a:ae:2e:b6:40:c2:63:88:e3:75:14:
e0:80:29:74:6d:4f:fc:34:6f:bd:d6:21:78:5e:ad:37:e7:7c:
75:de:9c:ba:fa:fa:8d:4d:f0:6a:d8:d7:c7:61:86:b8:25:32:
66:2b:34:be:de:79:09:c7:a7:08:76:7b:57:71:78:66:3d:54:
a2:f1:01:c7:d4:c8:19:e3:1e:55:a2:be:27:89:5e:b7:ff:f0:
28:8a:ef:2b:0c:13:8f:28:57:3e:71:62:1c:dd:bf:27:f8:e1:
ab:b1:9f:17:d1:18:8f:74:a5:64:50:dc:86:ae:63:d6:53:d6:
d7:43:a5:d1:7d:73:b8:96:a6:35:f2:13:a1:6d:18:57:f3:89:
b9:ed:99:29:e8:68:19:9c:36:b9:cf:0f:d3:4b:af:15:af:06:
a9:30:3c:35:1b:39:91:46:92:c1:d4:2f:1a:e9:77:cb:7a:3a:
38:e4:46:93:91:e1:5a:77:e3:84:36:16:6d:f2:dd:1a:fd:5e:
1b:09:9a:e3:94:95:c8:b6:1d:df:b5:32:45:d7:54:f6:a5:a7:
ce:aa:69:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fBGByvIYfzF+4Y85lQjvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyZmJlZjY5NWZhOTVkMGM5NTkwOWU1MWFhMWZhYjk0ZmM0
MDI2N2QwHhcNMjUwNjI4MTcwMDUwWhcNMjUwNjI5MTcwMDUwWjAzMTEwLwYDVQQD
Eyg0Y2VmNGRlNDQ2ODJjNGU0MDc1NTdiYWE0NTFiYTAzMWE3MWNlZGNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYgA9tq3ITfBkaJNMrpaXRcJmHCn
KWpcTOUH66ioW4cIkMTMydiOCqWG/ASsjurNr5cZ/QvdYtg4dr7gvCh1hBsn9FFD
94LjcksOWrZ3gtlCA7mQlHXiP7X2YEtMUm7MapfnPDLd+3gODOXhyqmn4AHpoHkX
0ZX60eOrgcvCVKotjIqhZl/LT/MhNbyBENsOp5fr1d11xPOzcDzeLQ5+4U2R/t0x
3Qjvo5to54L33NIjfGXFrhmgCCvySJfpWEZsqhoLfJ4pJvxbUzFwDP3EEHjc1dgu
c3maKK3jcJTdg6uyzzPgZPF0kUXjqvKqv50yKmQStCSqI4aE7/s0TLd0BwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEzvTeRGgsTkB1V7qkUboDGnHO3MMB8GA1UdIwQY
MBaAFCL772lfqV0MlZCeUaofq5T8QCZ9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXZ2dmFWLXBYUXlWa0o1UnFoLXJsUHhBSm4wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi84N2FhMjAtMjIyYy00YWNiLWIyOTEt
ZjYyOTUwOGMwNzJkLzEvSXZ2dmFWLXBYUXlWa0o1UnFoLXJsUHhBSm4wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi84N2FhMjAtMjIyYy00YWNiLWIyOTEtZjYyOTUwOGMwNzJk
LzEvSXZ2dmFWLXBYUXlWa0o1UnFoLXJsUHhBSm4wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQOUsJv01
JxFTNKGaPVDtWYa6ALsOU4ZvrpI97lUN9fWS2e++LvahPN7SmmquLrZAwmOI43UU
4IApdG1P/DRvvdYheF6tN+d8dd6cuvr6jU3watjXx2GGuCUyZis0vt55CcenCHZ7
V3F4Zj1UovEBx9TIGeMeVaK+J4let//wKIrvKwwTjyhXPnFiHN2/J/jhq7GfF9EY
j3SlZFDchq5j1lPW10Ol0X1zuJamNfIToW0YV/OJue2ZKehoGZw2uc8P00uvFa8G
qTA8NRs5kUaSwdQvGul3y3o6OORGk5HhWnfjhDYWbfLdGv1eGwma45SVyLYd37Uy
RddU9qWnzqppjg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 01:47:15 2025 by rpki-client