Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/aec877-59d5-42f9-967e-2732151b8e86/1/MH3iES3L0Gv7x-h_O_8jcinS0XM.mft
File: MH3iES3L0Gv7x-h_O_8jcinS0XM.mft (raw, json)
Hash identifier: jNYaLt1EshaUm5WNl+pe8Qp+L8YMXh6wTUBsdGarLs4=
Subject key identifier: 7F:DD:46:A5:91:F5:D8:67:B8:36:46:98:D6:D5:DC:5D:BE:35:2B:FD
Authority key identifier: 30:7D:E2:11:2D:CB:D0:6B:FB:C7:E8:7F:3B:FF:23:72:29:D2:D1:73
Certificate issuer: /CN=307de2112dcbd06bfbc7e87f3bff237229d2d173
Certificate serial: 0197B5C5149B8ABAF0A7F045905B63649BF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH3iES3L0Gv7x-h_O_8jcinS0XM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/aec877-59d5-42f9-967e-2732151b8e86/1/MH3iES3L0Gv7x-h_O_8jcinS0XM.mft
Manifest number: E8
Signing time: Sat 28 Jun 2025 09:01:21 +0000
Manifest this update: Sat 28 Jun 2025 09:01:21 +0000
Manifest next update: Sun 29 Jun 2025 09:01:21 +0000
Files and hashes: 1: MH3iES3L0Gv7x-h_O_8jcinS0XM.crl (hash: CXX9bLUvpbnGHyIH2GFg8RejH0AjTZYRQpnqDB5S99s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/aec877-59d5-42f9-967e-2732151b8e86/1/MH3iES3L0Gv7x-h_O_8jcinS0XM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/aec877-59d5-42f9-967e-2732151b8e86/1/MH3iES3L0Gv7x-h_O_8jcinS0XM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MH3iES3L0Gv7x-h_O_8jcinS0XM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c5:14:9b:8a:ba:f0:a7:f0:45:90:5b:63:64:9b:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307de2112dcbd06bfbc7e87f3bff237229d2d173
Validity
Not Before: Jun 28 09:01:21 2025 GMT
Not After : Jun 29 09:01:21 2025 GMT
Subject: CN=7fdd46a591f5d867b8364698d6d5dc5dbe352bfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f6:31:5d:d0:cc:ce:61:a7:37:11:93:a9:e5:
2e:77:ff:e5:ce:66:a0:86:eb:e7:1a:2b:ba:9b:30:
af:ef:57:15:06:ab:bc:be:87:84:d3:c1:c1:34:6b:
4a:9a:7c:4d:c6:dd:de:6a:8f:cb:67:73:95:3e:4c:
06:68:d6:18:43:80:8e:e6:c9:54:4e:a8:86:f2:ea:
0b:f8:78:38:0f:b1:46:3f:e5:4e:ee:91:57:42:e0:
de:c3:18:8f:b3:8f:22:4c:77:53:aa:bb:68:8b:42:
b5:d9:c1:19:f5:d7:32:58:03:83:a4:5b:31:79:8f:
8e:c4:24:fa:29:41:4b:2b:e2:5e:6f:47:13:f6:75:
82:75:45:db:93:36:83:14:3c:c3:11:92:3e:29:6b:
9f:cf:2e:4e:f3:cc:1a:b8:5b:a4:86:f5:a4:9a:81:
3c:e0:58:a9:02:e6:2d:ae:61:98:16:fc:6c:19:79:
65:08:4c:36:bd:11:b5:c6:09:91:05:22:bf:55:a5:
5b:2b:01:84:c7:67:b4:f2:3b:8e:94:bb:3e:e6:9d:
b7:c4:13:df:33:e9:2c:82:fd:ff:f0:8c:fa:9f:b2:
2f:66:39:5c:16:ca:48:03:22:62:42:6f:26:c0:6c:
49:6d:b9:7a:28:84:a7:84:26:94:38:0e:17:14:8b:
bc:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:DD:46:A5:91:F5:D8:67:B8:36:46:98:D6:D5:DC:5D:BE:35:2B:FD
X509v3 Authority Key Identifier:
keyid:30:7D:E2:11:2D:CB:D0:6B:FB:C7:E8:7F:3B:FF:23:72:29:D2:D1:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH3iES3L0Gv7x-h_O_8jcinS0XM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/aec877-59d5-42f9-967e-2732151b8e86/1/MH3iES3L0Gv7x-h_O_8jcinS0XM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/aec877-59d5-42f9-967e-2732151b8e86/1/MH3iES3L0Gv7x-h_O_8jcinS0XM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:c4:3e:d4:bc:41:60:88:a0:6c:53:0b:56:ca:d9:13:19:c0:
01:e8:d7:8f:58:c5:2c:c4:1c:4b:4f:d2:59:9c:37:4d:b5:48:
02:51:39:a1:52:7c:fe:85:11:3a:42:2a:29:3f:10:0f:66:56:
f4:ec:ba:3b:28:e4:75:9d:d3:c4:50:b7:7a:e3:d1:e7:16:49:
34:27:df:e2:1d:14:25:6a:44:ba:05:af:57:83:0f:59:7b:ef:
7a:52:f8:a5:25:20:85:e0:7f:78:38:bf:e8:54:f3:82:2d:3f:
73:4f:00:55:19:12:c4:00:ca:5b:08:4a:83:85:a8:dd:4c:30:
8f:e9:4e:77:66:79:b9:43:c0:32:57:77:9c:d6:f7:6f:d4:25:
1a:a0:27:97:ff:58:47:78:35:51:7a:56:65:6d:71:6a:06:63:
36:c6:a1:1a:27:f5:86:93:d7:e5:32:91:87:e4:a9:b4:36:7d:
af:75:7b:2c:dd:70:c3:5e:47:1d:ed:91:75:e5:83:75:8e:a6:
48:fd:f5:35:d3:6d:2f:85:3d:2c:c1:97:20:f2:96:1c:f5:be:
d2:9c:1e:20:7a:7e:85:24:7f:4a:d9:cc:7a:b6:90:64:a7:a6:
fa:19:cb:f1:87:6a:c9:63:76:87:4c:b6:be:46:5c:94:89:4e:
de:cb:d2:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe1xRSbirrwp/BFkFtjZJvzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2RlMjExMmRjYmQwNmJmYmM3ZTg3ZjNiZmYyMzcyMjlk
MmQxNzMwHhcNMjUwNjI4MDkwMTIxWhcNMjUwNjI5MDkwMTIxWjAzMTEwLwYDVQQD
Eyg3ZmRkNDZhNTkxZjVkODY3YjgzNjQ2OThkNmQ1ZGM1ZGJlMzUyYmZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/YxXdDMzmGnNxGTqeUud//lzmag
huvnGiu6mzCv71cVBqu8voeE08HBNGtKmnxNxt3eao/LZ3OVPkwGaNYYQ4CO5slU
TqiG8uoL+Hg4D7FGP+VO7pFXQuDewxiPs48iTHdTqrtoi0K12cEZ9dcyWAODpFsx
eY+OxCT6KUFLK+Jeb0cT9nWCdUXbkzaDFDzDEZI+KWufzy5O88wauFukhvWkmoE8
4FipAuYtrmGYFvxsGXllCEw2vRG1xgmRBSK/VaVbKwGEx2e08juOlLs+5p23xBPf
M+ksgv3/8Iz6n7IvZjlcFspIAyJiQm8mwGxJbbl6KISnhCaUOA4XFIu89wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH/dRqWR9dhnuDZGmNbV3F2+NSv9MB8GA1UdIwQY
MBaAFDB94hEty9Br+8fofzv/I3Ip0tFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUgzaUVTM0wwR3Y3eC1oX09fOGpjaW5TMFhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9hZWM4NzctNTlkNS00MmY5LTk2N2Ut
MjczMjE1MWI4ZTg2LzEvTUgzaUVTM0wwR3Y3eC1oX09fOGpjaW5TMFhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy9hZWM4NzctNTlkNS00MmY5LTk2N2UtMjczMjE1MWI4ZTg2
LzEvTUgzaUVTM0wwR3Y3eC1oX09fOGpjaW5TMFhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATcQ+1LxB
YIigbFMLVsrZExnAAejXj1jFLMQcS0/SWZw3TbVIAlE5oVJ8/oUROkIqKT8QD2ZW
9Oy6OyjkdZ3TxFC3euPR5xZJNCff4h0UJWpEugWvV4MPWXvvelL4pSUgheB/eDi/
6FTzgi0/c08AVRkSxADKWwhKg4Wo3Uwwj+lOd2Z5uUPAMld3nNb3b9QlGqAnl/9Y
R3g1UXpWZW1xagZjNsahGif1hpPX5TKRh+SptDZ9r3V7LN1ww15HHe2RdeWDdY6m
SP31NdNtL4U9LMGXIPKWHPW+0pweIHp+hSR/StnMeraQZKem+hnL8YdqyWN2h0y2
vkZclIlO3svS8Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:50:42 2025 by rpki-client