Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft
File: 6YMf0OexWxfgoKfcz8q7Bj18R8o.mft (raw, json)
Hash identifier: r7olbhvXXsovD2MFQUpQoFJTe4N1K+757CPgPB5x0Bw=
Subject key identifier: 14:B6:6B:88:F8:AD:9D:1A:05:8C:5D:CD:53:6C:4B:A0:A5:67:B6:27
Authority key identifier: E9:83:1F:D0:E7:B1:5B:17:E0:A0:A7:DC:CF:CA:BB:06:3D:7C:47:CA
Certificate issuer: /CN=e9831fd0e7b15b17e0a0a7dccfcabb063d7c47ca
Certificate serial: 0198D6610B20DB4DB635A03B10FE6CA40191
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft
Manifest number: 042B
Signing time: Sat 23 Aug 2025 10:02:20 +0000
Manifest this update: Sat 23 Aug 2025 10:02:20 +0000
Manifest next update: Sun 24 Aug 2025 10:02:20 +0000
Files and hashes: 1: 6YMf0OexWxfgoKfcz8q7Bj18R8o.crl (hash: ENiQfWCysgS1UqCp8+ag9qaEzhqQlBA/uYmMIKOt2rg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:0b:20:db:4d:b6:35:a0:3b:10:fe:6c:a4:01:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9831fd0e7b15b17e0a0a7dccfcabb063d7c47ca
Validity
Not Before: Aug 23 10:02:20 2025 GMT
Not After : Aug 24 10:02:20 2025 GMT
Subject: CN=14b66b88f8ad9d1a058c5dcd536c4ba0a567b627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e0:16:75:48:8f:56:3d:77:4f:71:8e:81:70:
83:f5:83:ae:05:19:e5:8b:58:4e:b5:be:8f:11:72:
ac:ea:a5:d8:50:c4:9f:b0:b4:0a:f3:58:85:9f:b1:
74:34:4b:17:18:13:30:5d:08:28:7f:dd:31:60:28:
02:d8:bc:50:01:65:53:da:9f:a5:4f:8f:75:4e:5c:
20:5b:a9:45:88:d7:e7:ab:c7:25:f0:7c:b7:29:cb:
0b:6e:4f:06:33:84:90:90:8c:88:43:3f:c6:7a:90:
27:58:16:4d:ed:26:20:01:9f:c8:49:73:fd:97:67:
f4:14:d8:db:7e:54:1d:a1:92:f8:fb:98:a4:e7:0f:
f4:9a:c7:6d:2d:5b:7e:9e:e4:73:b9:45:e7:2f:27:
8e:79:89:e7:05:ee:46:50:dd:e9:77:18:73:75:4d:
4d:59:94:11:78:b5:fa:59:06:a0:2e:dc:ab:da:00:
c1:7d:2c:98:c9:ab:63:ab:12:de:30:ef:12:86:c6:
41:67:26:62:a8:93:df:2f:db:53:89:76:e7:1d:b5:
dc:7e:a0:3c:54:58:15:34:09:52:a2:65:71:32:d4:
f1:9e:bf:aa:a4:1c:aa:d2:f1:eb:50:f0:7a:01:a6:
c6:ee:68:d8:86:29:da:3a:bf:0e:3d:aa:9b:1c:f9:
9d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:B6:6B:88:F8:AD:9D:1A:05:8C:5D:CD:53:6C:4B:A0:A5:67:B6:27
X509v3 Authority Key Identifier:
keyid:E9:83:1F:D0:E7:B1:5B:17:E0:A0:A7:DC:CF:CA:BB:06:3D:7C:47:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:79:13:a9:79:2d:09:c1:81:ad:14:53:28:0c:c9:8b:48:a4:
c0:f0:11:92:5e:4f:c9:57:b2:55:c7:fb:46:d8:ed:e9:78:c7:
95:b9:b7:d5:3f:bc:67:41:26:8c:9c:5d:2f:37:31:ca:08:bf:
68:0a:1a:29:02:9d:5a:20:27:6e:21:ac:93:ee:43:6f:13:14:
a9:59:1e:a8:0a:d2:f9:a5:fb:db:c8:94:6c:0f:59:89:01:65:
09:9f:6a:8e:07:14:81:fe:40:17:a5:05:07:47:26:2b:67:43:
10:c4:a2:82:26:9a:bc:0d:51:37:36:88:77:66:47:ca:0a:75:
58:1a:37:42:19:42:33:b2:d9:1f:7f:69:a4:98:58:3f:5c:6f:
6d:65:5c:c0:cf:d4:f7:52:ea:65:c2:0e:70:4c:ad:4e:17:fb:
77:6e:c7:1b:99:32:34:e9:87:71:6d:4a:ab:dd:99:11:da:83:
c3:c6:9e:81:73:59:bb:ec:8f:e4:7d:a7:52:a7:d3:e1:5b:70:
fd:98:3e:20:9e:d5:fe:1b:b7:b7:e4:ef:d3:fe:4f:c8:fa:56:
56:f1:f3:7c:39:54:a5:44:5d:f5:15:c7:43:22:26:19:3d:f5:
1c:2d:72:c5:fa:df:7a:d7:7a:4c:23:c5:a9:f4:5c:9c:ca:10:
d2:df:8f:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYQsg2022NaA7EP5spAGRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5ODMxZmQwZTdiMTViMTdlMGEwYTdkY2NmY2FiYjA2M2Q3
YzQ3Y2EwHhcNMjUwODIzMTAwMjIwWhcNMjUwODI0MTAwMjIwWjAzMTEwLwYDVQQD
EygxNGI2NmI4OGY4YWQ5ZDFhMDU4YzVkY2Q1MzZjNGJhMGE1NjdiNjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4+AWdUiPVj13T3GOgXCD9YOuBRnl
i1hOtb6PEXKs6qXYUMSfsLQK81iFn7F0NEsXGBMwXQgof90xYCgC2LxQAWVT2p+l
T491TlwgW6lFiNfnq8cl8Hy3KcsLbk8GM4SQkIyIQz/GepAnWBZN7SYgAZ/ISXP9
l2f0FNjbflQdoZL4+5ik5w/0msdtLVt+nuRzuUXnLyeOeYnnBe5GUN3pdxhzdU1N
WZQReLX6WQagLtyr2gDBfSyYyatjqxLeMO8ShsZBZyZiqJPfL9tTiXbnHbXcfqA8
VFgVNAlSomVxMtTxnr+qpByq0vHrUPB6AabG7mjYhinaOr8OPaqbHPmdYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBS2a4j4rZ0aBYxdzVNsS6ClZ7YnMB8GA1UdIwQY
MBaAFOmDH9DnsVsX4KCn3M/KuwY9fEfKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNllNZjBPZXhXeGZnb0tmY3o4cTdCajE4UjhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi85NGZkOGEtM2I2NS00YWY3LTg4NWQt
MDE0N2UxM2E5OTNlLzEvNllNZjBPZXhXeGZnb0tmY3o4cTdCajE4UjhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi85NGZkOGEtM2I2NS00YWY3LTg4NWQtMDE0N2UxM2E5OTNl
LzEvNllNZjBPZXhXeGZnb0tmY3o4cTdCajE4UjhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALXkTqXkt
CcGBrRRTKAzJi0ikwPARkl5PyVeyVcf7Rtjt6XjHlbm31T+8Z0EmjJxdLzcxygi/
aAoaKQKdWiAnbiGsk+5DbxMUqVkeqArS+aX728iUbA9ZiQFlCZ9qjgcUgf5AF6UF
B0cmK2dDEMSigiaavA1RNzaId2ZHygp1WBo3QhlCM7LZH39ppJhYP1xvbWVcwM/U
91LqZcIOcEytThf7d27HG5kyNOmHcW1Kq92ZEdqDw8aegXNZu+yP5H2nUqfT4Vtw
/Zg+IJ7V/hu3t+Tv0/5PyPpWVvHzfDlUpURd9RXHQyImGT31HC1yxfrfetd6TCPF
qfRcnMoQ0t+PnQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:26:52 2025 by rpki-client