Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
File: cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft (raw, json)
Hash identifier: /i1L1Xfy6vwGa0RDtXwIXCLw3ALC+IJAQOvDPpNP8co=
Subject key identifier: 5A:DB:23:DF:43:3F:65:2A:62:34:5B:15:1F:1C:10:B2:79:87:C8:1B
Authority key identifier: 70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
Certificate issuer: /CN=70cee62b79472dcae51ead4d8ea06923870f5197
Certificate serial: 0197B70EEF72D04EA527668100131DFAA4B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
Manifest number: 15B1
Signing time: Sat 28 Jun 2025 15:01:38 +0000
Manifest this update: Sat 28 Jun 2025 15:01:38 +0000
Manifest next update: Sun 29 Jun 2025 15:01:38 +0000
Files and hashes: 1: cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl (hash: CWW99+MBV23i5K03ZfhfG3kB2/3PsdVNkmxJY8Yy5E4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:ef:72:d0:4e:a5:27:66:81:00:13:1d:fa:a4:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cee62b79472dcae51ead4d8ea06923870f5197
Validity
Not Before: Jun 28 15:01:38 2025 GMT
Not After : Jun 29 15:01:38 2025 GMT
Subject: CN=5adb23df433f652a62345b151f1c10b27987c81b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:87:e8:35:2e:3e:dd:21:d5:ba:a3:66:0e:03:
cc:e6:b0:0a:e0:16:af:30:56:be:9f:7d:41:23:3b:
f0:b7:a1:97:ea:bd:13:da:b7:37:5c:26:24:f9:b6:
ea:bf:76:20:4c:7a:fd:77:b8:ae:77:b9:f2:d2:54:
f2:21:91:38:73:df:d4:7e:a7:44:30:df:40:6e:f4:
1a:c8:fe:ac:a5:02:7f:95:9c:20:cc:5f:af:b5:c0:
c1:6c:e8:7e:a4:71:00:25:46:c9:49:88:1c:28:d8:
ea:a6:8e:d1:26:82:6f:54:c2:2e:d3:53:73:35:5f:
ad:76:fd:c9:5b:52:9b:ba:15:61:7a:9a:15:0a:44:
bf:1e:e1:53:48:4b:08:da:cd:7f:d1:1d:20:3f:6b:
06:9a:33:00:0c:6b:19:1f:32:64:f3:d7:06:0d:8b:
d6:e7:5d:45:ca:a0:4c:72:0e:3a:c6:16:52:0f:8b:
51:f0:39:22:14:1b:da:1d:82:11:46:07:45:88:97:
b2:57:7a:91:df:df:53:6c:82:e9:60:c6:b8:ef:3f:
50:f3:c7:b9:a5:bd:e0:09:35:24:8b:19:84:51:24:
10:df:a7:d0:fe:b9:7e:6a:95:dc:ba:2b:17:68:0d:
ec:3b:94:eb:8b:f6:6d:9a:4f:dd:e0:b7:a4:95:8a:
22:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:DB:23:DF:43:3F:65:2A:62:34:5B:15:1F:1C:10:B2:79:87:C8:1B
X509v3 Authority Key Identifier:
keyid:70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:89:6b:41:59:12:af:df:58:cb:a2:b3:52:c3:e4:b3:21:32:
b5:84:3c:f7:e6:4c:65:8b:e8:f5:1e:06:be:f8:2e:9b:3a:c4:
81:c1:12:2f:9a:a8:87:d4:67:99:03:0c:b5:a2:d0:d0:93:10:
99:cd:59:d6:bd:52:b1:1c:ef:21:64:b2:fa:ef:7d:67:3b:1a:
d8:26:2c:c2:14:7f:28:a7:03:83:83:33:98:08:5c:6e:2a:fd:
c7:07:00:c8:85:1c:14:7f:e0:61:e9:25:d3:21:d5:4e:1c:83:
cf:4f:3e:85:dc:02:4e:b2:f3:e5:b6:29:ca:8b:d6:d6:a9:34:
b6:9b:7e:b1:e9:7c:46:3e:bf:8c:10:54:74:04:15:16:7d:f0:
a1:43:fe:e5:95:73:33:bd:05:96:0d:83:1c:6e:65:64:90:3f:
e3:08:e8:7c:a8:ac:dd:c8:62:d8:08:ab:17:5e:fc:92:68:9a:
19:61:33:c8:4d:7c:a0:dd:0c:b2:47:2b:62:60:4e:d1:b8:7b:
fc:6d:06:6c:5b:bc:5c:d9:b1:fe:32:6b:93:79:cd:d9:1c:85:
24:bb:a3:67:fb:29:10:a3:89:cc:5d:a6:de:32:3b:d4:9f:ed:
f7:47:47:c2:05:e1:64:36:cd:82:4e:51:46:f6:83:7a:07:68:
16:2a:5b:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3Du9y0E6lJ2aBABMd+qSzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwY2VlNjJiNzk0NzJkY2FlNTFlYWQ0ZDhlYTA2OTIzODcw
ZjUxOTcwHhcNMjUwNjI4MTUwMTM4WhcNMjUwNjI5MTUwMTM4WjAzMTEwLwYDVQQD
Eyg1YWRiMjNkZjQzM2Y2NTJhNjIzNDViMTUxZjFjMTBiMjc5ODdjODFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwYfoNS4+3SHVuqNmDgPM5rAK4Bav
MFa+n31BIzvwt6GX6r0T2rc3XCYk+bbqv3YgTHr9d7iud7ny0lTyIZE4c9/UfqdE
MN9AbvQayP6spQJ/lZwgzF+vtcDBbOh+pHEAJUbJSYgcKNjqpo7RJoJvVMIu01Nz
NV+tdv3JW1KbuhVhepoVCkS/HuFTSEsI2s1/0R0gP2sGmjMADGsZHzJk89cGDYvW
511FyqBMcg46xhZSD4tR8DkiFBvaHYIRRgdFiJeyV3qR399TbILpYMa47z9Q88e5
pb3gCTUkixmEUSQQ36fQ/rl+apXcuisXaA3sO5Tri/Ztmk/d4LeklYoiHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFrbI99DP2UqYjRbFR8cELJ5h8gbMB8GA1UdIwQY
MBaAFHDO5it5Ry3K5R6tTY6gaSOHD1GXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTkt
ZDBlMjRmMDE3MDg4LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTktZDBlMjRmMDE3MDg4
LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARIlrQVkS
r99Yy6KzUsPksyEytYQ89+ZMZYvo9R4GvvgumzrEgcESL5qoh9RnmQMMtaLQ0JMQ
mc1Z1r1SsRzvIWSy+u99Zzsa2CYswhR/KKcDg4MzmAhcbir9xwcAyIUcFH/gYekl
0yHVThyDz08+hdwCTrLz5bYpyovW1qk0tpt+sel8Rj6/jBBUdAQVFn3woUP+5ZVz
M70Flg2DHG5lZJA/4wjofKis3chi2AirF178kmiaGWEzyE18oN0MskcrYmBO0bh7
/G0GbFu8XNmx/jJrk3nN2RyFJLujZ/spEKOJzF2m3jI71J/t90dHwgXhZDbNgk5R
RvaDegdoFipbBA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:39:50 2025 by rpki-client