Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
File: n34J7YuBilTMw-tCb2elWhOKuH0.mft (raw, json)
Hash identifier: zjYIZeUYuQxpnniBehLMOn6VT9vs3HLrdUyubUdYmH0=
Subject key identifier: 35:08:9B:C8:94:37:BC:BB:36:8C:87:E8:33:06:61:02:99:EB:1D:F6
Authority key identifier: 9F:7E:09:ED:8B:81:8A:54:CC:C3:EB:42:6F:67:A5:5A:13:8A:B8:7D
Certificate issuer: /CN=9f7e09ed8b818a54ccc3eb426f67a55a138ab87d
Certificate serial: 0197B88ECA3F1F4E5A7C9E132FDD445BF8BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
Manifest number: 09C2
Signing time: Sat 28 Jun 2025 22:00:54 +0000
Manifest this update: Sat 28 Jun 2025 22:00:54 +0000
Manifest next update: Sun 29 Jun 2025 22:00:54 +0000
Files and hashes: 1: n34J7YuBilTMw-tCb2elWhOKuH0.crl (hash: ZzsGP29qBg1rjSF0t23WGoOLwBrxG8K18OA2C5ZMADM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8e:ca:3f:1f:4e:5a:7c:9e:13:2f:dd:44:5b:f8:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f7e09ed8b818a54ccc3eb426f67a55a138ab87d
Validity
Not Before: Jun 28 22:00:54 2025 GMT
Not After : Jun 29 22:00:54 2025 GMT
Subject: CN=35089bc89437bcbb368c87e83306610299eb1df6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cd:56:1b:8a:5c:79:de:82:a8:4e:61:0f:e0:
18:20:0e:3c:8a:95:b7:c6:0e:b6:f7:b7:4a:76:36:
7b:47:80:c4:9d:84:e8:63:f3:d0:46:df:ee:e7:1e:
0e:fb:ff:a7:80:e0:ac:0e:cf:3e:13:0b:e1:0b:7b:
9b:83:b0:5e:e5:a2:25:b8:f1:58:49:39:db:7e:f2:
ef:d4:f2:50:e8:ca:a8:0b:60:c7:bf:48:d4:67:8d:
4c:7f:ca:5a:aa:a9:94:7f:14:44:3f:e5:c4:16:f6:
96:0f:71:49:a8:3f:78:0f:99:59:8d:03:b8:05:52:
6c:e2:08:bd:98:c3:d8:91:96:d8:21:74:2e:e0:2a:
10:25:bd:b4:39:16:b2:0b:b3:34:f7:58:96:bc:3b:
42:e1:53:f5:db:85:fc:b6:7e:51:11:36:84:02:85:
ed:8b:cf:e8:8a:27:10:9a:0e:ee:8f:e8:31:f6:e8:
d3:a2:53:c5:75:c2:33:f6:cf:be:b9:9f:38:ce:3b:
f7:4f:45:22:24:3b:3a:e2:49:47:61:8f:9c:98:a5:
cc:d2:73:77:ef:ea:48:30:2b:3c:16:67:ad:15:a4:
f5:4c:94:f3:9e:36:fa:1f:f4:4a:1c:02:21:25:57:
f1:a6:42:3c:5b:bc:13:a7:ba:3f:4d:14:10:0d:6e:
54:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:08:9B:C8:94:37:BC:BB:36:8C:87:E8:33:06:61:02:99:EB:1D:F6
X509v3 Authority Key Identifier:
keyid:9F:7E:09:ED:8B:81:8A:54:CC:C3:EB:42:6F:67:A5:5A:13:8A:B8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:78:6a:95:20:f7:d5:c6:81:2a:4f:1a:91:eb:34:1f:9f:d1:
c2:79:56:41:ba:f0:b5:af:f1:55:0a:dc:47:9f:de:06:92:71:
bf:1a:2f:bb:4a:17:c7:f0:77:40:29:fe:55:8a:79:45:6e:d1:
b4:29:9f:74:09:04:4a:4e:dd:b0:26:f8:8e:b7:d1:f3:9f:79:
fd:44:62:34:bd:b7:c0:07:49:a1:b2:11:1a:35:68:89:c6:e1:
7b:11:fc:b7:f9:d4:65:41:8b:ad:d0:34:b7:e6:4d:89:d9:5f:
ec:1e:63:78:7f:9c:ba:40:c4:d1:92:c6:2b:77:a9:7d:d7:e4:
bf:16:91:c9:cd:f6:6b:0e:fa:fa:12:31:e9:33:b1:02:9a:47:
24:59:5f:eb:fc:ee:8c:2c:e0:a3:b0:4f:c2:7b:05:16:55:6b:
b6:13:20:a8:35:c0:1f:15:7e:0c:ae:57:62:58:21:e2:b5:96:
44:fa:97:3b:12:27:df:ee:f5:af:60:7f:1b:6d:21:95:23:de:
31:bc:80:cf:a5:b1:82:23:61:16:e3:0c:fb:b1:41:ef:13:5d:
c4:ea:e3:ae:88:e0:8a:a9:0e:7d:0c:89:65:45:b5:6e:e4:3c:
a8:20:94:87:d9:2f:47:5b:1c:45:fe:43:bb:2e:68:8c:5b:2c:
1f:b5:25:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4jso/H05afJ4TL91EW/i+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmN2UwOWVkOGI4MThhNTRjY2MzZWI0MjZmNjdhNTVhMTM4
YWI4N2QwHhcNMjUwNjI4MjIwMDU0WhcNMjUwNjI5MjIwMDU0WjAzMTEwLwYDVQQD
EygzNTA4OWJjODk0MzdiY2JiMzY4Yzg3ZTgzMzA2NjEwMjk5ZWIxZGY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqs1WG4pced6CqE5hD+AYIA48ipW3
xg6297dKdjZ7R4DEnYToY/PQRt/u5x4O+/+ngOCsDs8+EwvhC3ubg7Be5aIluPFY
STnbfvLv1PJQ6MqoC2DHv0jUZ41Mf8paqqmUfxREP+XEFvaWD3FJqD94D5lZjQO4
BVJs4gi9mMPYkZbYIXQu4CoQJb20ORayC7M091iWvDtC4VP124X8tn5RETaEAoXt
i8/oiicQmg7uj+gx9ujTolPFdcIz9s++uZ84zjv3T0UiJDs64klHYY+cmKXM0nN3
7+pIMCs8FmetFaT1TJTznjb6H/RKHAIhJVfxpkI8W7wTp7o/TRQQDW5UnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDUIm8iUN7y7NoyH6DMGYQKZ6x32MB8GA1UdIwQY
MBaAFJ9+Ce2LgYpUzMPrQm9npVoTirh9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbjM0SjdZdUJpbFRNdy10Q2IyZWxXaE9LdUgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZjhjYzEtOTRjYy00ZjdlLTgxYTMt
ZjE5YWQyYmFkN2I5LzEvbjM0SjdZdUJpbFRNdy10Q2IyZWxXaE9LdUgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS83ZjhjYzEtOTRjYy00ZjdlLTgxYTMtZjE5YWQyYmFkN2I5
LzEvbjM0SjdZdUJpbFRNdy10Q2IyZWxXaE9LdUgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMnhqlSD3
1caBKk8akes0H5/RwnlWQbrwta/xVQrcR5/eBpJxvxovu0oXx/B3QCn+VYp5RW7R
tCmfdAkESk7dsCb4jrfR8595/URiNL23wAdJobIRGjVoicbhexH8t/nUZUGLrdA0
t+ZNidlf7B5jeH+cukDE0ZLGK3epfdfkvxaRyc32aw76+hIx6TOxAppHJFlf6/zu
jCzgo7BPwnsFFlVrthMgqDXAHxV+DK5XYlgh4rWWRPqXOxIn3+71r2B/G20hlSPe
MbyAz6WxgiNhFuMM+7FB7xNdxOrjrojgiqkOfQyJZUW1buQ8qCCUh9kvR1scRf5D
uy5ojFssH7Ul0A==
-----END CERTIFICATE-----
Generated at Sun Jun 29 04:25:41 2025 by rpki-client