Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft
File: bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft (raw, json)
Hash identifier: 0h9ejseO43YwbM/95ZoXmFR0KN7v3MBaAI0YzFWuXm8=
Subject key identifier: 04:D6:F4:38:A3:0A:2D:19:2B:D9:F7:77:66:CF:16:6C:BC:EE:AE:84
Authority key identifier: 6D:F5:67:EC:F8:65:48:06:00:98:F5:AD:67:A1:B2:BF:FF:1B:4B:51
Certificate issuer: /CN=6df567ecf86548060098f5ad67a1b2bfff1b4b51
Certificate serial: 0197BB58B6A65BBE5BEA0C99A908F7398672
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft
Manifest number: 0821
Signing time: Sun 29 Jun 2025 11:00:42 +0000
Manifest this update: Sun 29 Jun 2025 11:00:42 +0000
Manifest next update: Mon 30 Jun 2025 11:00:42 +0000
Files and hashes: 1: bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.crl (hash: flLeOCVE9R88Yn5qE4gBts+FasW4lZ5dwR2YJXLXF6I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bb:58:b6:a6:5b:be:5b:ea:0c:99:a9:08:f7:39:86:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df567ecf86548060098f5ad67a1b2bfff1b4b51
Validity
Not Before: Jun 29 11:00:42 2025 GMT
Not After : Jun 30 11:00:42 2025 GMT
Subject: CN=04d6f438a30a2d192bd9f77766cf166cbceeae84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b9:70:17:9f:af:a4:5a:10:c1:f5:a6:87:11:
bd:10:75:82:8b:2e:5d:7b:d6:f8:31:7f:9e:6c:c7:
e2:9a:95:59:3f:72:29:e1:28:73:88:c4:3a:31:40:
f8:2b:c4:2f:4b:26:e9:7f:96:15:c2:16:42:74:d4:
27:ce:49:a3:67:2f:af:3e:53:5a:ff:54:bf:1a:5f:
77:1d:ec:d4:eb:da:bb:73:da:50:8f:36:6b:5a:fd:
38:d2:c1:4c:ab:18:f9:f1:a1:a9:5a:97:18:a7:8a:
21:2c:41:6a:cc:ab:21:26:ad:0f:e0:1f:20:1e:c3:
e1:7d:5a:2d:54:41:b6:62:1d:7a:03:c7:f2:bf:b5:
28:82:a5:1c:76:e4:ef:33:cc:28:dd:2f:11:7c:d3:
a8:38:8d:92:ae:d7:c0:f9:26:38:9c:fa:34:0b:4a:
d0:5e:16:b5:62:53:32:0c:07:9b:b5:2a:91:93:cb:
67:fb:70:dd:2d:27:e6:66:1f:93:e1:07:ba:02:f7:
20:90:59:50:a4:30:76:eb:eb:0d:44:3e:47:89:42:
34:68:3e:48:22:25:60:c3:c0:d2:00:f2:92:93:1b:
c1:2c:66:2a:bf:dd:61:13:a4:06:98:96:fb:1f:d2:
37:bf:02:95:d6:e6:77:12:f9:4a:7e:c0:22:90:aa:
80:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D6:F4:38:A3:0A:2D:19:2B:D9:F7:77:66:CF:16:6C:BC:EE:AE:84
X509v3 Authority Key Identifier:
keyid:6D:F5:67:EC:F8:65:48:06:00:98:F5:AD:67:A1:B2:BF:FF:1B:4B:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:1e:cf:e4:b4:c8:f0:52:8d:71:49:56:f7:f8:50:34:e2:f7:
fe:b6:1c:64:71:9d:82:ae:bf:94:8b:14:76:6f:55:8d:24:90:
86:0a:f3:c6:43:33:fb:85:e2:a9:84:3a:a1:04:3d:ba:13:68:
a7:73:55:19:7f:83:19:05:07:ac:a5:58:f0:02:a3:31:c8:a8:
43:e3:b0:96:f0:e5:13:a6:a3:63:85:b1:ae:1e:02:90:15:13:
84:34:24:c3:aa:18:57:5c:52:68:52:ff:6d:a6:be:62:e7:00:
2c:27:5b:85:04:05:50:2e:2f:11:78:ba:3b:d8:fd:ca:ad:0f:
3e:3a:02:d1:e1:39:90:52:b1:7f:03:e9:ea:24:5a:be:33:f6:
8c:7f:41:cc:6e:bb:55:33:fe:e7:f8:0c:97:13:01:54:00:ff:
cc:64:94:e8:2e:ee:79:0b:48:65:00:5f:a8:4f:a3:a6:56:1b:
45:84:73:c5:0d:35:e4:2d:42:ee:d2:df:65:9e:c8:b3:13:ac:
af:25:b9:4d:6e:fc:04:15:f7:1e:c1:7e:af:08:40:81:9c:78:
b1:c2:da:ed:40:ba:ef:40:22:1e:70:79:c5:72:4f:8d:0d:86:
6b:5a:89:cf:23:10:73:2e:83:f0:49:9e:ee:74:af:2b:c8:ee:
c3:ae:62:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe7WLamW75b6gyZqQj3OYZyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZjU2N2VjZjg2NTQ4MDYwMDk4ZjVhZDY3YTFiMmJmZmYx
YjRiNTEwHhcNMjUwNjI5MTEwMDQyWhcNMjUwNjMwMTEwMDQyWjAzMTEwLwYDVQQD
EygwNGQ2ZjQzOGEzMGEyZDE5MmJkOWY3Nzc2NmNmMTY2Y2JjZWVhZTg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrlwF5+vpFoQwfWmhxG9EHWCiy5d
e9b4MX+ebMfimpVZP3Ip4ShziMQ6MUD4K8QvSybpf5YVwhZCdNQnzkmjZy+vPlNa
/1S/Gl93HezU69q7c9pQjzZrWv040sFMqxj58aGpWpcYp4ohLEFqzKshJq0P4B8g
HsPhfVotVEG2Yh16A8fyv7UogqUcduTvM8wo3S8RfNOoOI2SrtfA+SY4nPo0C0rQ
Xha1YlMyDAebtSqRk8tn+3DdLSfmZh+T4Qe6AvcgkFlQpDB26+sNRD5HiUI0aD5I
IiVgw8DSAPKSkxvBLGYqv91hE6QGmJb7H9I3vwKV1uZ3EvlKfsAikKqAMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFATW9DijCi0ZK9n3d2bPFmy87q6EMB8GA1UdIwQY
MBaAFG31Z+z4ZUgGAJj1rWehsr//G0tRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmZWbjdQaGxTQVlBbVBXdFo2R3l2XzhiUzFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS83NjFiNGMtODkxNS00MzE5LTkxM2Ut
MGNhOGZlYmE5NTg1LzEvYmZWbjdQaGxTQVlBbVBXdFo2R3l2XzhiUzFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS83NjFiNGMtODkxNS00MzE5LTkxM2UtMGNhOGZlYmE5NTg1
LzEvYmZWbjdQaGxTQVlBbVBXdFo2R3l2XzhiUzFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMh7P5LTI
8FKNcUlW9/hQNOL3/rYcZHGdgq6/lIsUdm9VjSSQhgrzxkMz+4XiqYQ6oQQ9uhNo
p3NVGX+DGQUHrKVY8AKjMcioQ+OwlvDlE6ajY4Wxrh4CkBUThDQkw6oYV1xSaFL/
baa+YucALCdbhQQFUC4vEXi6O9j9yq0PPjoC0eE5kFKxfwPp6iRavjP2jH9BzG67
VTP+5/gMlxMBVAD/zGSU6C7ueQtIZQBfqE+jplYbRYRzxQ015C1C7tLfZZ7IsxOs
ryW5TW78BBX3HsF+rwhAgZx4scLa7UC670AiHnB5xXJPjQ2Ga1qJzyMQcy6D8Eme
7nSvK8juw65inA==
-----END CERTIFICATE-----
Generated at Sun Jun 29 21:04:12 2025 by rpki-client