Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
File: pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft (raw, json)
Hash identifier: 8BmUeUQI6034QlxSNs/Loc5x0vBPsop1VC6IV4fniVk=
Subject key identifier: 4F:A6:35:E5:E6:8E:9A:52:62:5C:46:29:72:40:3A:EA:2A:27:47:AF
Authority key identifier: A6:AD:5E:70:01:3F:4D:F8:45:5F:A0:6C:93:E6:00:12:C2:99:73:D5
Certificate issuer: /CN=a6ad5e70013f4df8455fa06c93e60012c29973d5
Certificate serial: 0197BA7CFF7DB75AD12FB551E9875E18613C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
Manifest number: 15B3
Signing time: Sun 29 Jun 2025 07:00:43 +0000
Manifest this update: Sun 29 Jun 2025 07:00:43 +0000
Manifest next update: Mon 30 Jun 2025 07:00:43 +0000
Files and hashes: 1: pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl (hash: Ab2VN593MQ20bSrrkLIBEk/n5+mjHTSayvnpu2tP/I0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7c:ff:7d:b7:5a:d1:2f:b5:51:e9:87:5e:18:61:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6ad5e70013f4df8455fa06c93e60012c29973d5
Validity
Not Before: Jun 29 07:00:43 2025 GMT
Not After : Jun 30 07:00:43 2025 GMT
Subject: CN=4fa635e5e68e9a52625c462972403aea2a2747af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5e:ac:06:bc:6b:02:99:99:53:ab:87:f8:13:
fb:7f:ca:1b:81:41:16:29:67:4d:ee:b7:f4:29:ca:
af:63:15:d2:ed:31:3e:29:de:09:c9:30:c7:8d:88:
21:7c:ad:32:48:2a:18:2d:70:0f:32:48:0f:63:cd:
42:3b:3b:5e:53:b3:47:9f:3e:98:b0:e2:6d:54:db:
86:c2:38:c7:fe:aa:81:3b:f1:30:79:d9:87:75:87:
21:c9:62:92:a2:05:f4:cc:fe:fd:b7:7f:3d:8f:81:
8f:87:31:67:c3:0d:ed:d8:18:f2:0f:c5:45:00:92:
8e:77:65:5a:69:1b:e4:98:d7:25:02:3e:8a:dc:3a:
1e:f1:cf:89:fa:9a:0a:b0:cd:f8:26:b4:bb:44:3a:
02:dd:70:03:ab:19:4b:ee:14:49:5f:45:c6:2c:b5:
1c:8c:c4:ee:cc:ac:28:b6:1a:bc:cb:28:20:ac:06:
fb:e2:9f:9b:be:c4:f9:a7:36:34:c2:ea:cd:46:82:
67:2a:98:e2:c0:90:9a:d7:68:79:5d:e1:da:29:ef:
f3:9a:0c:84:0c:2e:af:ad:56:88:11:02:07:01:aa:
66:86:37:0c:01:9b:e9:5f:1d:11:a8:11:57:ad:fc:
89:ad:33:77:36:18:fd:3f:0d:42:d5:db:01:39:c5:
4c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:A6:35:E5:E6:8E:9A:52:62:5C:46:29:72:40:3A:EA:2A:27:47:AF
X509v3 Authority Key Identifier:
keyid:A6:AD:5E:70:01:3F:4D:F8:45:5F:A0:6C:93:E6:00:12:C2:99:73:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:91:43:3a:1c:76:1b:ec:18:5d:b8:4b:80:ba:fe:1e:5c:9e:
e9:75:c6:7a:1d:a3:0c:ca:0f:3e:d4:2a:b5:84:bc:1d:ea:40:
0b:e8:4e:2d:86:48:cb:b0:69:b0:02:2a:a5:40:d1:00:58:8a:
b0:25:bf:32:2f:49:1b:69:a3:03:da:ef:bc:47:b8:9b:46:54:
23:f3:17:61:82:d0:f2:1b:1b:75:db:0c:e1:22:5c:02:76:3c:
b8:73:bc:35:bc:05:ba:1c:bc:c1:e0:0b:f6:25:5e:28:e4:7c:
fe:5e:50:a4:fb:2f:7e:ad:d1:af:03:94:b8:37:79:58:12:6d:
31:73:c3:58:a4:6d:5d:7e:cd:51:56:08:31:86:0b:d8:42:4e:
3b:c8:39:56:67:3c:fd:04:53:fd:51:e6:f2:c5:ab:61:f2:70:
11:39:e2:5c:6d:d3:6b:8a:73:b7:8f:5e:ea:b6:63:38:e6:ad:
a1:9f:89:f4:ea:c1:fa:86:9d:69:72:d2:c3:c9:b3:ae:ee:2a:
7d:4c:8c:1b:49:f0:dc:9c:99:55:2c:42:b5:df:53:bd:c6:71:
20:84:6a:c2:f1:86:3e:5c:a9:eb:d8:ec:b9:eb:81:71:0b:a2:
4a:23:b4:6c:27:58:31:67:06:ca:47:4a:02:01:3d:90:cc:35:
93:03:8c:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6fP99t1rRL7VR6YdeGGE8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2YWQ1ZTcwMDEzZjRkZjg0NTVmYTA2YzkzZTYwMDEyYzI5
OTczZDUwHhcNMjUwNjI5MDcwMDQzWhcNMjUwNjMwMDcwMDQzWjAzMTEwLwYDVQQD
Eyg0ZmE2MzVlNWU2OGU5YTUyNjI1YzQ2Mjk3MjQwM2FlYTJhMjc0N2FmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyV6sBrxrApmZU6uH+BP7f8obgUEW
KWdN7rf0KcqvYxXS7TE+Kd4JyTDHjYghfK0ySCoYLXAPMkgPY81COzteU7NHnz6Y
sOJtVNuGwjjH/qqBO/EwedmHdYchyWKSogX0zP79t389j4GPhzFnww3t2BjyD8VF
AJKOd2VaaRvkmNclAj6K3Doe8c+J+poKsM34JrS7RDoC3XADqxlL7hRJX0XGLLUc
jMTuzKwothq8yyggrAb74p+bvsT5pzY0wurNRoJnKpjiwJCa12h5XeHaKe/zmgyE
DC6vrVaIEQIHAapmhjcMAZvpXx0RqBFXrfyJrTN3Nhj9Pw1C1dsBOcVMUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE+mNeXmjppSYlxGKXJAOuoqJ0evMB8GA1UdIwQY
MBaAFKatXnABP034RV+gbJPmABLCmXPVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHExZWNBRV9UZmhGWDZCc2stWUFFc0taYzlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi81NDZiOWItZGYwZi00OTcwLWE2OGUt
MzY4NzAzMzcwNzdlLzEvcHExZWNBRV9UZmhGWDZCc2stWUFFc0taYzlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi81NDZiOWItZGYwZi00OTcwLWE2OGUtMzY4NzAzMzcwNzdl
LzEvcHExZWNBRV9UZmhGWDZCc2stWUFFc0taYzlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR5FDOhx2
G+wYXbhLgLr+Hlye6XXGeh2jDMoPPtQqtYS8HepAC+hOLYZIy7BpsAIqpUDRAFiK
sCW/Mi9JG2mjA9rvvEe4m0ZUI/MXYYLQ8hsbddsM4SJcAnY8uHO8NbwFuhy8weAL
9iVeKOR8/l5QpPsvfq3RrwOUuDd5WBJtMXPDWKRtXX7NUVYIMYYL2EJOO8g5Vmc8
/QRT/VHm8sWrYfJwETniXG3Ta4pzt49e6rZjOOatoZ+J9OrB+oadaXLSw8mzru4q
fUyMG0nw3JyZVSxCtd9TvcZxIIRqwvGGPlyp69jsueuBcQuiSiO0bCdYMWcGykdK
AgE9kMw1kwOMYg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 09:26:37 2025 by rpki-client