Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
File: cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft (raw, json)
Hash identifier: iCIMtph7xBraL9D3xiMqjYnWWoKnuiwBgzBmv+wjtIU=
Subject key identifier: EC:02:B1:22:25:AF:78:46:4B:89:B6:82:1D:1C:2B:53:5E:0D:ED:B5
Authority key identifier: 70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
Certificate issuer: /CN=70cee62b79472dcae51ead4d8ea06923870f5197
Certificate serial: 0198D4E073BDD54BBD78CA79F86D87337BC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
Manifest number: 1645
Signing time: Sat 23 Aug 2025 03:02:15 +0000
Manifest this update: Sat 23 Aug 2025 03:02:15 +0000
Manifest next update: Sun 24 Aug 2025 03:02:15 +0000
Files and hashes: 1: cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl (hash: CCWPmidUSQgJmnL/SqPeN/fdthZz88rDEfree5EToJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:73:bd:d5:4b:bd:78:ca:79:f8:6d:87:33:7b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cee62b79472dcae51ead4d8ea06923870f5197
Validity
Not Before: Aug 23 03:02:15 2025 GMT
Not After : Aug 24 03:02:15 2025 GMT
Subject: CN=ec02b12225af78464b89b6821d1c2b535e0dedb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:73:87:42:02:1a:ac:63:fa:d7:0c:ca:a5:5f:
af:3f:44:eb:50:76:25:d2:a7:f5:22:ee:ac:2b:b8:
46:73:cb:30:8d:fb:cc:1c:cf:a4:b4:18:17:ba:0a:
03:ff:54:f6:34:62:1c:b8:06:09:b8:b4:9c:bc:4b:
e6:0e:64:fc:5a:78:8a:01:35:fe:81:0b:95:54:7f:
43:98:78:7c:9f:6f:8f:6c:42:10:34:6a:e7:01:36:
e9:8a:1c:58:de:e1:24:a8:3d:35:97:27:c9:d9:82:
c6:40:b8:05:3b:c2:1f:d7:16:f1:5c:86:46:c2:34:
14:1a:3a:1d:e3:c4:6b:ca:97:8f:8d:d7:48:f4:ec:
86:8e:34:c0:d2:b2:e3:03:51:45:2f:38:40:96:87:
cd:8c:53:10:e7:3d:9f:cc:ee:f8:5c:88:fd:03:03:
e3:61:d8:a3:59:9f:26:f1:0b:74:30:4a:bd:f8:45:
26:70:d9:39:28:49:9c:1e:59:9e:d7:90:a5:09:69:
d0:fe:e5:d0:35:c9:a5:16:49:fd:e5:c9:65:19:ca:
8b:92:b2:4e:7a:a7:f5:c2:c0:94:33:32:fc:7c:d6:
5b:51:f2:ec:dd:02:1f:69:63:3b:b7:5a:84:d3:5a:
d4:6b:25:ba:53:bc:dd:11:d8:55:5f:0b:dd:eb:14:
bd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:02:B1:22:25:AF:78:46:4B:89:B6:82:1D:1C:2B:53:5E:0D:ED:B5
X509v3 Authority Key Identifier:
keyid:70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:55:d8:53:48:22:c2:db:1f:c0:5c:c3:5d:68:f4:db:0f:29:
dd:4a:b8:65:11:d8:80:77:c8:4d:a7:aa:c7:0c:9e:48:bd:d3:
f5:17:8f:45:91:1b:b6:99:16:58:67:16:40:a7:32:c9:be:a3:
5c:33:3e:cf:3d:19:f2:ee:54:2e:4d:d4:20:97:c0:6b:64:65:
7f:c7:c6:cb:85:c0:24:f2:57:ca:80:58:e0:50:7d:13:b2:f1:
06:de:ac:c4:cd:31:0f:ba:e1:b4:97:1d:c9:54:95:a3:e7:e9:
93:21:0e:90:f1:30:37:10:0b:2b:41:f5:05:8c:e9:43:19:3a:
aa:c7:76:96:33:bb:8b:82:9e:7d:aa:9e:b2:02:eb:3a:b7:26:
5d:3c:0a:51:b9:c9:85:a7:69:20:43:1a:8c:0a:e6:a7:48:62:
15:e7:12:50:40:6c:14:7c:17:13:32:02:db:57:20:02:8f:4e:
fb:2c:a2:94:65:3a:33:69:50:e4:fe:6f:80:f2:9d:20:2a:a6:
dd:1a:bd:f6:96:d5:08:f8:e5:e4:d4:83:8e:3c:fb:b4:27:7b:
a2:c0:f0:c7:42:7e:a3:b7:62:e2:6f:b8:86:01:40:5a:05:b6:
96:56:9c:d2:80:26:f2:ca:9f:3e:50:84:3c:da:99:6d:49:df:
a5:88:c9:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4HO91Uu9eMp5+G2HM3vFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwY2VlNjJiNzk0NzJkY2FlNTFlYWQ0ZDhlYTA2OTIzODcw
ZjUxOTcwHhcNMjUwODIzMDMwMjE1WhcNMjUwODI0MDMwMjE1WjAzMTEwLwYDVQQD
EyhlYzAyYjEyMjI1YWY3ODQ2NGI4OWI2ODIxZDFjMmI1MzVlMGRlZGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXOHQgIarGP61wzKpV+vP0TrUHYl
0qf1Iu6sK7hGc8swjfvMHM+ktBgXugoD/1T2NGIcuAYJuLScvEvmDmT8WniKATX+
gQuVVH9DmHh8n2+PbEIQNGrnATbpihxY3uEkqD01lyfJ2YLGQLgFO8If1xbxXIZG
wjQUGjod48RrypePjddI9OyGjjTA0rLjA1FFLzhAlofNjFMQ5z2fzO74XIj9AwPj
YdijWZ8m8Qt0MEq9+EUmcNk5KEmcHlme15ClCWnQ/uXQNcmlFkn95cllGcqLkrJO
eqf1wsCUMzL8fNZbUfLs3QIfaWM7t1qE01rUayW6U7zdEdhVXwvd6xS9UQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOwCsSIlr3hGS4m2gh0cK1NeDe21MB8GA1UdIwQY
MBaAFHDO5it5Ry3K5R6tTY6gaSOHD1GXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTkt
ZDBlMjRmMDE3MDg4LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTktZDBlMjRmMDE3MDg4
LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu1XYU0gi
wtsfwFzDXWj02w8p3Uq4ZRHYgHfITaeqxwyeSL3T9RePRZEbtpkWWGcWQKcyyb6j
XDM+zz0Z8u5ULk3UIJfAa2Rlf8fGy4XAJPJXyoBY4FB9E7LxBt6sxM0xD7rhtJcd
yVSVo+fpkyEOkPEwNxALK0H1BYzpQxk6qsd2ljO7i4KefaqesgLrOrcmXTwKUbnJ
hadpIEMajArmp0hiFecSUEBsFHwXEzIC21cgAo9O+yyilGU6M2lQ5P5vgPKdICqm
3Rq99pbVCPjl5NSDjjz7tCd7osDwx0J+o7di4m+4hgFAWgW2llac0oAm8sqfPlCE
PNqZbUnfpYjJ6A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:20:51 2025 by rpki-client