Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
File: pol1o9gy4UUny7or4QujwebGOFY.mft (raw, json)
Hash identifier: 6BWZTQcSJhT2XnHqIiV89kGdB4k12dN/vN/j2GUcUjQ=
Subject key identifier: FD:13:C9:8D:31:BF:8E:5E:AF:52:F2:1F:74:50:52:D2:79:89:C1:8C
Authority key identifier: A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
Certificate issuer: /CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Certificate serial: 0198D474086CC96E53434D6DE2222FE55042
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
Manifest number: 061D
Signing time: Sat 23 Aug 2025 01:03:50 +0000
Manifest this update: Sat 23 Aug 2025 01:03:50 +0000
Manifest next update: Sun 24 Aug 2025 01:03:50 +0000
Files and hashes: 1: pol1o9gy4UUny7or4QujwebGOFY.crl (hash: rDyS+cTXqK+qIcej45bryFuoSLa79QYGjXg+ZQh3i70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:08:6c:c9:6e:53:43:4d:6d:e2:22:2f:e5:50:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Validity
Not Before: Aug 23 01:03:50 2025 GMT
Not After : Aug 24 01:03:50 2025 GMT
Subject: CN=fd13c98d31bf8e5eaf52f21f745052d27989c18c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:94:5d:4c:8e:c0:61:18:70:2d:e3:ef:74:2e:
5a:e3:81:0e:ab:17:78:42:b4:be:17:2e:88:c4:1e:
4d:6e:3a:77:8c:34:7e:aa:66:b9:78:2f:50:34:37:
e8:1d:d5:78:0b:4e:03:63:0e:91:34:e7:2f:66:3c:
44:47:48:a9:54:d3:13:7d:0a:84:2f:41:26:22:d4:
0c:c3:bf:9f:68:31:4f:33:b3:7f:f6:d5:25:86:bc:
27:8e:16:04:21:74:8d:b7:7d:7b:fc:ab:82:5a:a7:
01:9f:04:34:39:e9:e5:7e:55:ae:b0:c9:9c:df:85:
56:92:e6:26:a9:e1:64:f2:74:80:3c:63:34:ad:3f:
ba:5c:4d:b8:16:a2:a1:5d:df:31:f0:b5:9d:8e:6e:
1e:75:b0:a1:2e:07:1b:aa:f6:9b:42:26:d4:2f:26:
32:af:e8:f4:9b:8e:c0:f8:17:12:25:db:76:4a:f3:
d9:ce:27:45:f4:3d:60:a2:da:18:96:a6:68:d1:9f:
ad:b7:dc:74:a8:78:5b:e3:9d:b4:da:b2:0e:12:c4:
22:bf:91:41:51:6b:64:66:48:1f:99:46:1b:ef:7e:
03:e1:f0:0f:8c:46:de:3e:f3:8b:0d:b9:be:69:b6:
ea:d8:b7:18:d7:c6:ea:31:fc:c3:27:6d:3d:da:a0:
c6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:13:C9:8D:31:BF:8E:5E:AF:52:F2:1F:74:50:52:D2:79:89:C1:8C
X509v3 Authority Key Identifier:
keyid:A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:d4:7f:61:63:a1:5a:e5:5a:2c:70:ac:3d:99:30:a4:eb:4f:
ed:0b:7e:29:a6:8f:4a:d0:28:3c:db:de:23:84:c4:49:97:de:
5e:21:2b:4b:2c:d1:b9:bf:14:bc:7e:4d:82:c9:cb:06:0d:8a:
f4:a3:6a:87:aa:b2:d2:80:94:16:23:b8:3a:c6:cc:b4:b1:5e:
aa:26:6f:78:f3:0b:45:68:db:2b:0c:d7:4f:4b:16:b1:aa:46:
10:fb:14:37:5c:bc:51:0f:fb:8b:50:81:cf:ee:15:40:f2:df:
fd:19:e3:73:e1:e6:54:ba:c8:3b:44:8a:50:ec:71:6a:7c:ce:
0c:d8:e1:fb:43:a7:4b:86:09:fc:fa:ee:58:83:95:e0:bf:16:
72:4d:89:44:18:59:90:87:06:e2:b7:a7:62:0b:3f:8b:ce:f5:
bc:13:59:be:39:aa:2d:0d:50:85:cf:9c:a9:c6:67:8d:37:9f:
c7:77:37:b2:3b:50:16:4f:09:c6:4e:89:9d:da:56:01:c4:65:
c8:08:07:56:63:19:77:95:f7:46:02:45:a2:22:4d:2c:40:e8:
60:65:2b:64:c0:fa:37:a0:cd:ad:e0:f3:5b:27:a1:04:2b:85:
4a:bc:11:42:2b:30:a7:99:11:9d:71:ff:39:40:07:d0:21:b1:
ed:c2:33:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUdAhsyW5TQ01t4iIv5VBCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2ODk3NWEzZDgzMmUxNDUyN2NiYmEyYmUxMGJhM2MxZTZj
NjM4NTYwHhcNMjUwODIzMDEwMzUwWhcNMjUwODI0MDEwMzUwWjAzMTEwLwYDVQQD
EyhmZDEzYzk4ZDMxYmY4ZTVlYWY1MmYyMWY3NDUwNTJkMjc5ODljMThjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpRdTI7AYRhwLePvdC5a44EOqxd4
QrS+Fy6IxB5Nbjp3jDR+qma5eC9QNDfoHdV4C04DYw6RNOcvZjxER0ipVNMTfQqE
L0EmItQMw7+faDFPM7N/9tUlhrwnjhYEIXSNt317/KuCWqcBnwQ0OenlflWusMmc
34VWkuYmqeFk8nSAPGM0rT+6XE24FqKhXd8x8LWdjm4edbChLgcbqvabQibULyYy
r+j0m47A+BcSJdt2SvPZzidF9D1gotoYlqZo0Z+tt9x0qHhb45202rIOEsQiv5FB
UWtkZkgfmUYb734D4fAPjEbePvOLDbm+abbq2LcY18bqMfzDJ2092qDGwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP0TyY0xv45er1LyH3RQUtJ5icGMMB8GA1UdIwQY
MBaAFKaJdaPYMuFFJ8u6K+ELo8HmxjhWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wYjNjYzEtMzE4ZS00OTdmLWEyYjUt
MTMxNmFkODA1ZTY0LzEvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi8wYjNjYzEtMzE4ZS00OTdmLWEyYjUtMTMxNmFkODA1ZTY0
LzEvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAftR/YWOh
WuVaLHCsPZkwpOtP7Qt+KaaPStAoPNveI4TESZfeXiErSyzRub8UvH5NgsnLBg2K
9KNqh6qy0oCUFiO4OsbMtLFeqiZvePMLRWjbKwzXT0sWsapGEPsUN1y8UQ/7i1CB
z+4VQPLf/Rnjc+HmVLrIO0SKUOxxanzODNjh+0OnS4YJ/PruWIOV4L8Wck2JRBhZ
kIcG4renYgs/i871vBNZvjmqLQ1Qhc+cqcZnjTefx3c3sjtQFk8Jxk6JndpWAcRl
yAgHVmMZd5X3RgJFoiJNLEDoYGUrZMD6N6DNreDzWyehBCuFSrwRQiswp5kRnXH/
OUAH0CGx7cIzaQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:21:28 2025 by rpki-client