Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
File: TvMzZvDPXk-oBO730eKSlO6lFIw.mft (raw, json)
Hash identifier: yFpi3W7jhLfYaS0ITBLngqdidhF7uOus9n0GrsmYgs4=
Subject key identifier: 89:12:6B:54:B5:A3:58:BB:A7:10:0F:5A:DA:73:6E:53:99:DC:3E:47
Authority key identifier: 4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
Certificate issuer: /CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Certificate serial: 0197B6326E2E8F7F175739C9944808ACD5A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
Manifest number: 024E
Signing time: Sat 28 Jun 2025 11:00:47 +0000
Manifest this update: Sat 28 Jun 2025 11:00:47 +0000
Manifest next update: Sun 29 Jun 2025 11:00:47 +0000
Files and hashes: 1: TvMzZvDPXk-oBO730eKSlO6lFIw.crl (hash: hlBdNQls6hewNVIpH4115w/uYMzEgh3C9Mti9h0E9sc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:6e:2e:8f:7f:17:57:39:c9:94:48:08:ac:d5:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Validity
Not Before: Jun 28 11:00:47 2025 GMT
Not After : Jun 29 11:00:47 2025 GMT
Subject: CN=89126b54b5a358bba7100f5ada736e5399dc3e47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f9:29:73:2b:a5:72:90:33:fa:0b:95:33:97:
ba:1b:82:ef:29:59:e8:27:6f:14:8d:3f:12:d7:15:
53:7d:fb:fe:aa:86:eb:1c:9d:83:8a:ec:41:00:c8:
1d:54:00:7c:1a:e3:03:19:9f:70:8f:d4:86:80:d0:
d7:e4:8d:18:f6:68:3d:f3:fd:5b:92:49:f7:82:fd:
b4:55:fa:69:e1:ab:fd:59:5e:93:df:e5:73:fb:8e:
cf:f8:04:22:8b:61:e5:0e:6d:ca:6d:9a:6a:c9:38:
fe:5f:d5:ca:29:4f:f9:83:52:77:57:50:99:7d:aa:
91:b3:45:8d:4a:d0:e9:ee:87:c3:e2:10:24:06:08:
01:34:7e:50:01:3e:49:2a:54:b2:ea:d2:9b:b0:89:
fa:bb:cb:e5:da:92:38:f8:6c:d8:17:6c:e6:83:92:
96:ba:31:64:b9:4c:02:75:10:ed:ab:8d:db:30:d0:
28:85:4b:24:ee:cc:68:55:12:44:83:2c:cb:34:ef:
eb:45:91:e7:37:85:89:04:4a:ce:63:d5:6e:90:09:
76:00:05:90:96:95:7e:9a:3d:5b:2a:21:ca:cc:e2:
21:f4:ad:25:fb:76:e6:f1:ad:db:e7:3d:26:35:7a:
28:c8:ce:3d:30:fe:ea:ff:71:76:1b:51:6a:ca:5f:
b1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:12:6B:54:B5:A3:58:BB:A7:10:0F:5A:DA:73:6E:53:99:DC:3E:47
X509v3 Authority Key Identifier:
keyid:4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:01:93:49:05:74:a6:5b:fd:3f:f2:1f:4e:39:9d:0a:72:ab:
83:f0:a5:98:1e:72:fe:7a:54:a4:69:95:21:95:b1:c5:da:01:
05:12:af:5b:e7:00:55:54:d4:e5:fb:2a:52:68:37:39:f3:dd:
59:c4:02:91:70:e3:f0:ad:b7:70:08:41:54:99:51:0f:06:ca:
13:dd:7e:7a:99:ff:a6:62:93:7e:ff:c5:c6:04:f9:55:0c:06:
70:17:6f:87:1d:53:b3:a4:d4:ea:a9:09:64:3b:3b:f6:b9:79:
3b:f4:7f:3a:37:50:16:cf:e9:22:69:12:94:f0:99:4a:4a:b4:
86:a7:65:7f:ae:8f:0b:41:61:cf:af:b2:a4:de:bb:f8:49:bb:
da:17:97:ec:2e:93:5f:d9:39:1c:26:43:07:fe:8a:29:f9:8c:
9d:35:e8:d6:2f:c0:79:0f:ce:42:dc:92:49:60:dd:53:4e:62:
52:f9:ea:c7:ca:3c:a8:19:e3:68:37:3f:96:d6:79:e9:66:08:
c0:f8:e8:ab:61:df:fb:41:eb:97:c8:b7:9d:18:83:48:2b:93:
fb:c7:e2:84:08:7c:38:c1:b7:a4:76:85:1c:db:b6:7e:ee:8c:
1e:25:23:21:b5:7e:1a:0d:b3:dc:11:ef:e2:5d:0e:9f:c5:f2:
e6:d5:0f:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2Mm4uj38XVznJlEgIrNWnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlZjMzMzY2ZjBjZjVlNGZhODA0ZWVmN2QxZTI5Mjk0ZWVh
NTE0OGMwHhcNMjUwNjI4MTEwMDQ3WhcNMjUwNjI5MTEwMDQ3WjAzMTEwLwYDVQQD
Eyg4OTEyNmI1NGI1YTM1OGJiYTcxMDBmNWFkYTczNmU1Mzk5ZGMzZTQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjPkpcyulcpAz+guVM5e6G4LvKVno
J28UjT8S1xVTffv+qobrHJ2DiuxBAMgdVAB8GuMDGZ9wj9SGgNDX5I0Y9mg98/1b
kkn3gv20Vfpp4av9WV6T3+Vz+47P+AQii2HlDm3KbZpqyTj+X9XKKU/5g1J3V1CZ
faqRs0WNStDp7ofD4hAkBggBNH5QAT5JKlSy6tKbsIn6u8vl2pI4+GzYF2zmg5KW
ujFkuUwCdRDtq43bMNAohUsk7sxoVRJEgyzLNO/rRZHnN4WJBErOY9VukAl2AAWQ
lpV+mj1bKiHKzOIh9K0l+3bm8a3b5z0mNXooyM49MP7q/3F2G1Fqyl+x8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIkSa1S1o1i7pxAPWtpzblOZ3D5HMB8GA1UdIwQY
MBaAFE7zM2bwz15PqATu99HikpTupRSMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8zODQ0OWMtYWFkOC00MDVhLWI3Zjct
NmQ5ZjM4NGQyYmMzLzEvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8zODQ0OWMtYWFkOC00MDVhLWI3ZjctNmQ5ZjM4NGQyYmMz
LzEvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFgGTSQV0
plv9P/IfTjmdCnKrg/ClmB5y/npUpGmVIZWxxdoBBRKvW+cAVVTU5fsqUmg3OfPd
WcQCkXDj8K23cAhBVJlRDwbKE91+epn/pmKTfv/FxgT5VQwGcBdvhx1Ts6TU6qkJ
ZDs79rl5O/R/OjdQFs/pImkSlPCZSkq0hqdlf66PC0Fhz6+ypN67+Em72heX7C6T
X9k5HCZDB/6KKfmMnTXo1i/AeQ/OQtySSWDdU05iUvnqx8o8qBnjaDc/ltZ56WYI
wPjoq2Hf+0Hrl8i3nRiDSCuT+8fihAh8OMG3pHaFHNu2fu6MHiUjIbV+Gg2z3BHv
4l0On8Xy5tUPIQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 18:54:07 2025 by rpki-client