Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.mft
File: 4CzXYQ92Hg7SUq57ufMPHisXtec.mft (raw, json)
Hash identifier: n2NnPvMz40y9OIKJ3xDbdveL7iPJTpLVSu6DCOzD4+E=
Subject key identifier: F2:5F:9C:C4:B7:EF:EC:97:6C:C1:D4:32:00:23:26:D5:B2:D3:D6:EB
Authority key identifier: E0:2C:D7:61:0F:76:1E:0E:D2:52:AE:7B:B9:F3:0F:1E:2B:17:B5:E7
Certificate issuer: /CN=e02cd7610f761e0ed252ae7bb9f30f1e2b17b5e7
Certificate serial: 0197B70EC50D31BA77B56E7C35C8C6C7F683
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4CzXYQ92Hg7SUq57ufMPHisXtec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.mft
Manifest number: 1246
Signing time: Sat 28 Jun 2025 15:01:27 +0000
Manifest this update: Sat 28 Jun 2025 15:01:27 +0000
Manifest next update: Sun 29 Jun 2025 15:01:27 +0000
Files and hashes: 1: 4CzXYQ92Hg7SUq57ufMPHisXtec.crl (hash: yHmXUdoU5tYuXvOVhxrEr+lToosj6UcrIwi6uS7wP2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.mft
rsync://rpki.ripe.net/repository/DEFAULT/4CzXYQ92Hg7SUq57ufMPHisXtec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:c5:0d:31:ba:77:b5:6e:7c:35:c8:c6:c7:f6:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e02cd7610f761e0ed252ae7bb9f30f1e2b17b5e7
Validity
Not Before: Jun 28 15:01:27 2025 GMT
Not After : Jun 29 15:01:27 2025 GMT
Subject: CN=f25f9cc4b7efec976cc1d432002326d5b2d3d6eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c7:f9:0b:93:93:b3:28:4f:29:a5:e0:f9:be:
ae:d3:90:63:c6:fc:14:87:b1:c5:11:56:f2:20:36:
18:a0:83:69:ad:98:09:42:59:90:3f:b5:d1:4c:3e:
a6:26:e9:a0:bc:2d:44:da:51:0a:b0:36:50:4c:e1:
92:ff:29:45:fd:e8:aa:81:8c:52:b5:48:5a:7d:de:
77:8b:f4:cc:28:55:02:4b:c8:ee:9a:1b:5f:41:de:
10:4b:d9:eb:ed:9c:18:74:64:92:4d:cf:c6:5f:a0:
b4:54:58:60:2a:14:2b:17:b4:72:61:bf:02:1b:24:
7c:72:45:e2:e5:a1:fc:4b:18:3e:be:22:5e:ac:57:
d0:02:0b:1a:a8:9b:db:e0:23:42:e4:fa:29:d8:76:
3b:10:36:9f:73:8c:a5:a5:5d:bc:51:fb:ad:d8:dd:
07:ac:87:c9:64:54:2f:44:39:d9:64:43:f1:c8:81:
50:d8:93:74:e7:e5:d4:8a:77:8e:21:71:1d:60:75:
19:2b:5e:b5:12:4a:3e:7a:c7:22:c0:0b:59:de:4f:
36:d3:28:43:bc:83:73:19:57:fd:d5:35:7a:d1:32:
7b:91:41:fe:58:42:e8:b9:78:23:0e:0d:c3:9e:d6:
b3:90:f5:a9:36:46:41:17:aa:5e:dc:d3:d9:9c:5b:
01:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:5F:9C:C4:B7:EF:EC:97:6C:C1:D4:32:00:23:26:D5:B2:D3:D6:EB
X509v3 Authority Key Identifier:
keyid:E0:2C:D7:61:0F:76:1E:0E:D2:52:AE:7B:B9:F3:0F:1E:2B:17:B5:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4CzXYQ92Hg7SUq57ufMPHisXtec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:46:53:71:5c:ab:ba:52:6f:0d:bf:64:2d:7e:11:1b:8d:ef:
1b:14:19:53:56:0d:a4:ff:ae:ea:12:2b:5e:b2:6f:c4:31:78:
9b:2a:2c:dc:4f:6d:bf:af:11:3e:55:f0:c6:ca:ae:6c:9e:7d:
7b:4b:7d:2b:84:77:32:88:05:0b:42:70:1a:07:13:ba:a6:92:
e4:0d:d9:6a:a9:dd:d0:4f:fe:94:36:bf:c5:b2:c0:bd:36:bc:
2a:7d:a5:0a:33:d4:c4:4a:64:17:e0:5b:90:60:92:a8:92:56:
13:9b:6d:7e:6e:73:0a:26:05:ae:fc:9d:7d:eb:5d:f3:60:46:
8f:75:40:71:e8:cd:2b:02:42:93:c8:7d:d3:ba:77:be:cf:3e:
73:8d:5e:2b:0c:6d:16:13:51:e8:14:ec:45:10:72:f1:63:b9:
27:87:4a:fc:8a:27:87:44:f1:b5:17:d2:1d:db:57:fe:22:91:
a4:8f:40:74:e7:3f:0a:ef:ac:b8:3f:d5:9c:92:9a:6e:04:e6:
07:e0:68:55:39:ea:4a:03:2f:dc:6c:ef:74:3a:44:c1:74:b7:
ae:0c:3b:ad:9c:9a:9d:cf:a1:62:24:64:bf:08:04:7d:c8:e7:
53:14:99:3d:79:86:a5:e9:47:14:f3:35:64:8e:a8:85:87:7b:
7a:57:5c:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DsUNMbp3tW58NcjGx/aDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwMmNkNzYxMGY3NjFlMGVkMjUyYWU3YmI5ZjMwZjFlMmIx
N2I1ZTcwHhcNMjUwNjI4MTUwMTI3WhcNMjUwNjI5MTUwMTI3WjAzMTEwLwYDVQQD
EyhmMjVmOWNjNGI3ZWZlYzk3NmNjMWQ0MzIwMDIzMjZkNWIyZDNkNmViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcf5C5OTsyhPKaXg+b6u05BjxvwU
h7HFEVbyIDYYoINprZgJQlmQP7XRTD6mJumgvC1E2lEKsDZQTOGS/ylF/eiqgYxS
tUhafd53i/TMKFUCS8jumhtfQd4QS9nr7ZwYdGSSTc/GX6C0VFhgKhQrF7RyYb8C
GyR8ckXi5aH8Sxg+viJerFfQAgsaqJvb4CNC5Pop2HY7EDafc4ylpV28Ufut2N0H
rIfJZFQvRDnZZEPxyIFQ2JN05+XUineOIXEdYHUZK161Eko+esciwAtZ3k820yhD
vINzGVf91TV60TJ7kUH+WELouXgjDg3DntazkPWpNkZBF6pe3NPZnFsBWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPJfnMS37+yXbMHUMgAjJtWy09brMB8GA1UdIwQY
MBaAFOAs12EPdh4O0lKue7nzDx4rF7XnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEN6WFlROTJIZzdTVXE1N3VmTVBIaXNYdGVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9iZGJlZTktNWVlZS00NTYxLWE1MjMt
OTQzNTE1OWM5M2ViLzEvNEN6WFlROTJIZzdTVXE1N3VmTVBIaXNYdGVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9iZGJlZTktNWVlZS00NTYxLWE1MjMtOTQzNTE1OWM5M2Vi
LzEvNEN6WFlROTJIZzdTVXE1N3VmTVBIaXNYdGVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYkZTcVyr
ulJvDb9kLX4RG43vGxQZU1YNpP+u6hIrXrJvxDF4myos3E9tv68RPlXwxsqubJ59
e0t9K4R3MogFC0JwGgcTuqaS5A3Zaqnd0E/+lDa/xbLAvTa8Kn2lCjPUxEpkF+Bb
kGCSqJJWE5ttfm5zCiYFrvydfetd82BGj3VAcejNKwJCk8h907p3vs8+c41eKwxt
FhNR6BTsRRBy8WO5J4dK/Ionh0TxtRfSHdtX/iKRpI9AdOc/Cu+suD/VnJKabgTm
B+BoVTnqSgMv3GzvdDpEwXS3rgw7rZyanc+hYiRkvwgEfcjnUxSZPXmGpelHFPM1
ZI6ohYd7eldcrg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:55 2025 by rpki-client