Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
File: ICNzDgbEv7_6ypBeUxJldCwXirQ.mft (raw, json)
Hash identifier: n1rChrS8TP9SzjR9jKU0xbKnBVDsba2qfKsqvziPvdY=
Subject key identifier: 1B:EE:65:E7:DC:90:2A:5A:BE:D8:56:EC:F5:56:EF:C2:E8:AB:40:8C
Authority key identifier: 20:23:73:0E:06:C4:BF:BF:FA:CA:90:5E:53:12:65:74:2C:17:8A:B4
Certificate issuer: /CN=2023730e06c4bfbffaca905e531265742c178ab4
Certificate serial: 0197B88ED4E26FE0DB14802CFE94A25F9F43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
Manifest number: 0F8A
Signing time: Sat 28 Jun 2025 22:00:57 +0000
Manifest this update: Sat 28 Jun 2025 22:00:57 +0000
Manifest next update: Sun 29 Jun 2025 22:00:57 +0000
Files and hashes: 1: ICNzDgbEv7_6ypBeUxJldCwXirQ.crl (hash: pXRyBPk5YE3c5CsYrTd5S5Za4Jvo8bv5ixj95lRYKu0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8e:d4:e2:6f:e0:db:14:80:2c:fe:94:a2:5f:9f:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2023730e06c4bfbffaca905e531265742c178ab4
Validity
Not Before: Jun 28 22:00:57 2025 GMT
Not After : Jun 29 22:00:57 2025 GMT
Subject: CN=1bee65e7dc902a5abed856ecf556efc2e8ab408c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f8:b7:9c:b3:30:c9:f9:34:1e:29:ee:39:39:
84:36:9a:2d:c0:59:b4:33:12:2a:b9:48:70:e2:3f:
31:4a:41:ba:f9:5f:25:d3:f2:7c:db:c7:e6:a7:16:
ee:32:82:88:ff:2a:53:f2:b6:fa:78:96:60:dc:72:
45:aa:e8:1b:3c:59:e7:fe:34:c3:28:54:ff:94:9d:
23:e7:83:20:b5:4e:e3:52:c3:8e:81:30:b6:9b:7e:
fb:23:a7:1a:ed:f0:3d:c1:b3:76:7a:9a:20:25:bc:
30:bd:ac:f9:1c:30:0f:7d:50:72:58:bc:0a:54:7a:
cb:93:c1:94:7d:6e:7b:82:0f:a8:fd:92:c5:4c:a6:
ec:4d:71:c5:44:bb:d2:9a:20:46:cf:b9:a5:59:32:
c0:a6:d1:10:23:58:5e:d9:5e:61:18:cb:ce:9f:68:
6f:6c:4f:ed:1f:47:70:bd:99:7b:1a:86:f3:bb:26:
77:13:79:3d:87:4a:a0:05:25:6a:2a:76:6e:f7:ff:
d4:5d:bd:a5:03:07:72:69:30:78:65:93:9b:f3:b8:
a8:57:36:de:5b:44:c8:fa:73:01:6d:be:1a:e3:b6:
0e:26:89:fa:43:d6:e8:b6:55:ff:0c:4e:d2:52:04:
8a:4c:25:fa:4f:23:3f:81:c2:98:83:d7:e3:d7:d7:
9e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:EE:65:E7:DC:90:2A:5A:BE:D8:56:EC:F5:56:EF:C2:E8:AB:40:8C
X509v3 Authority Key Identifier:
keyid:20:23:73:0E:06:C4:BF:BF:FA:CA:90:5E:53:12:65:74:2C:17:8A:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:9c:fe:95:2c:8b:12:32:a1:f3:ef:d0:5d:48:11:d5:87:2d:
ae:69:c9:f4:eb:31:9c:52:9d:ed:c1:3b:d4:52:0a:29:92:47:
18:94:f0:06:85:5f:77:37:63:3f:f9:25:83:25:4f:65:91:c0:
66:56:24:fd:79:5f:8d:c2:8f:2b:2c:3e:59:0e:0e:b0:33:86:
0a:87:9e:57:30:0a:ad:c8:7b:a4:50:df:d8:b2:d4:4e:fa:84:
4d:d3:52:dd:42:55:f1:80:ca:25:a0:5d:71:dc:88:98:a5:96:
db:07:36:7a:5a:fa:b3:f2:cb:05:b7:a5:fa:db:03:2a:0b:7f:
63:9a:44:00:13:57:11:3f:95:da:ee:44:2d:c1:dd:e6:d9:6d:
11:33:85:2b:a0:7a:8d:cb:d1:08:ad:a0:16:67:3a:e7:14:95:
87:fb:b3:fa:1e:4e:88:39:c6:48:6c:7a:57:eb:b5:dd:11:2e:
39:8c:e1:95:1c:ec:5d:f9:59:55:58:d9:9e:db:b1:ec:5f:77:
15:8d:34:ec:9f:16:c0:c6:ea:81:dd:22:25:9c:b2:eb:93:7c:
4c:42:31:98:1c:8d:b1:4e:f5:31:7a:4b:2d:4c:59:4c:cb:79:
8b:72:24:37:32:67:1a:0c:bd:aa:c3:53:0d:4a:8b:93:60:df:
e8:06:dd:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4jtTib+DbFIAs/pSiX59DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwMjM3MzBlMDZjNGJmYmZmYWNhOTA1ZTUzMTI2NTc0MmMx
NzhhYjQwHhcNMjUwNjI4MjIwMDU3WhcNMjUwNjI5MjIwMDU3WjAzMTEwLwYDVQQD
EygxYmVlNjVlN2RjOTAyYTVhYmVkODU2ZWNmNTU2ZWZjMmU4YWI0MDhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6/i3nLMwyfk0HinuOTmENpotwFm0
MxIquUhw4j8xSkG6+V8l0/J828fmpxbuMoKI/ypT8rb6eJZg3HJFqugbPFnn/jTD
KFT/lJ0j54MgtU7jUsOOgTC2m377I6ca7fA9wbN2epogJbwwvaz5HDAPfVByWLwK
VHrLk8GUfW57gg+o/ZLFTKbsTXHFRLvSmiBGz7mlWTLAptEQI1he2V5hGMvOn2hv
bE/tH0dwvZl7GobzuyZ3E3k9h0qgBSVqKnZu9//UXb2lAwdyaTB4ZZOb87ioVzbe
W0TI+nMBbb4a47YOJon6Q9botlX/DE7SUgSKTCX6TyM/gcKYg9fj19eePQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBvuZefckCpavthW7PVW78Loq0CMMB8GA1UdIwQY
MBaAFCAjcw4GxL+/+sqQXlMSZXQsF4q0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUNOekRnYkV2N182eXBCZVV4SmxkQ3dYaXJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny80NWQ3YzEtYzRmMC00ODM1LWI0NjYt
YjAzMzViYTNlMGMyLzEvSUNOekRnYkV2N182eXBCZVV4SmxkQ3dYaXJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny80NWQ3YzEtYzRmMC00ODM1LWI0NjYtYjAzMzViYTNlMGMy
LzEvSUNOekRnYkV2N182eXBCZVV4SmxkQ3dYaXJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABJz+lSyL
EjKh8+/QXUgR1YctrmnJ9OsxnFKd7cE71FIKKZJHGJTwBoVfdzdjP/klgyVPZZHA
ZlYk/XlfjcKPKyw+WQ4OsDOGCoeeVzAKrch7pFDf2LLUTvqETdNS3UJV8YDKJaBd
cdyImKWW2wc2elr6s/LLBbel+tsDKgt/Y5pEABNXET+V2u5ELcHd5tltETOFK6B6
jcvRCK2gFmc65xSVh/uz+h5OiDnGSGx6V+u13REuOYzhlRzsXflZVVjZntux7F93
FY007J8WwMbqgd0iJZyy65N8TEIxmByNsU71MXpLLUxZTMt5i3IkNzJnGgy9qsNT
DUqLk2Df6Abd0w==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:41 2025 by rpki-client