Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
File: s1IytLD6jIPU_4wSROhk67yt1os.mft (raw, json)
Hash identifier: JWtgqdxcE4zeiJghySBSSkJf11FN7LLJ+7JBFEFOWPE=
Subject key identifier: 7D:42:25:40:3B:2F:7E:08:98:FA:0C:3E:65:17:35:10:B8:D9:76:2E
Authority key identifier: B3:52:32:B4:B0:FA:8C:83:D4:FF:8C:12:44:E8:64:EB:BC:AD:D6:8B
Certificate issuer: /CN=b35232b4b0fa8c83d4ff8c1244e864ebbcadd68b
Certificate serial: 0197B6A05D18A171DCC744498DB486F522BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
Manifest number: 102C
Signing time: Sat 28 Jun 2025 13:00:52 +0000
Manifest this update: Sat 28 Jun 2025 13:00:52 +0000
Manifest next update: Sun 29 Jun 2025 13:00:52 +0000
Files and hashes: 1: s1IytLD6jIPU_4wSROhk67yt1os.crl (hash: g022NpeXVNvGwZX++sBeh08g6MBzqntIaJ/Q7p5Czzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:5d:18:a1:71:dc:c7:44:49:8d:b4:86:f5:22:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b35232b4b0fa8c83d4ff8c1244e864ebbcadd68b
Validity
Not Before: Jun 28 13:00:52 2025 GMT
Not After : Jun 29 13:00:52 2025 GMT
Subject: CN=7d4225403b2f7e0898fa0c3e65173510b8d9762e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:29:07:be:20:35:7b:92:d8:6d:6a:33:54:0a:
0a:90:4f:40:25:59:a2:96:5d:a0:b2:72:f1:cb:a2:
fe:87:08:f7:fe:e7:21:f6:9d:5a:f0:b9:94:47:74:
38:62:fb:be:c3:38:a1:b4:24:69:94:ec:7f:0a:64:
e3:93:49:a9:2d:70:92:ad:fe:21:a6:66:98:88:2a:
9b:34:85:59:ce:c7:82:cf:85:d1:61:22:e1:36:37:
eb:39:01:02:c8:58:9f:4c:38:0c:ab:b1:f3:2b:0f:
af:6a:a9:9e:96:49:fe:71:b7:e3:c6:81:d0:52:c4:
54:87:81:fc:7f:60:ac:ab:0f:b6:8e:07:48:72:86:
33:e2:0b:c6:ec:b8:9f:da:8e:ac:0c:00:28:4a:d5:
e5:cb:05:59:b6:7a:4c:3c:2a:0e:58:bb:37:e0:e5:
a7:19:4b:7d:b9:e8:ea:16:1d:1a:93:fa:73:ee:ac:
f4:88:49:84:ff:6e:fa:52:59:bb:1c:7e:64:71:4b:
89:f6:09:aa:4b:cc:49:9f:77:fc:ae:13:a8:ea:ba:
0f:6b:b8:84:52:3d:c6:c7:52:cc:f6:9e:d1:7d:03:
44:81:e6:e2:db:13:54:0c:5c:bc:2e:00:47:3e:75:
2f:b7:81:4a:e5:a3:d5:ab:66:0e:2a:b4:05:9e:a0:
f4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:42:25:40:3B:2F:7E:08:98:FA:0C:3E:65:17:35:10:B8:D9:76:2E
X509v3 Authority Key Identifier:
keyid:B3:52:32:B4:B0:FA:8C:83:D4:FF:8C:12:44:E8:64:EB:BC:AD:D6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:ad:57:a7:b7:96:11:54:6a:1d:19:0d:c3:fe:66:da:5d:12:
37:c4:95:5f:3d:f8:2d:01:7e:e5:ba:6e:78:92:a8:39:aa:3c:
06:4e:ee:d0:4b:50:ad:6e:a5:e6:28:c0:d8:32:ca:ce:48:dd:
82:8f:b6:31:3e:ee:d3:33:cd:bb:41:83:c7:0c:b1:e8:9d:c8:
29:38:75:ca:41:d0:79:c9:18:07:46:58:77:73:3d:1c:de:72:
c7:b6:0e:1f:39:47:5d:1b:22:1a:81:2d:0c:23:e7:70:0c:d5:
00:41:1c:e7:3d:6a:fb:e3:0e:0d:a8:68:87:c6:07:e6:eb:b6:
3e:99:59:4d:6a:41:d1:64:80:e8:95:a6:2c:7c:65:85:3b:ae:
62:d6:0d:45:3d:42:4c:1b:17:dc:58:b7:ea:71:84:63:9a:71:
5f:a4:05:e3:06:48:89:d7:62:76:3d:1d:6a:52:ce:a2:a8:b9:
f8:a6:2b:36:48:57:f7:0d:1a:29:3f:0e:eb:07:dc:99:0f:68:
1e:a8:22:5c:21:06:b1:fc:77:82:bc:92:f2:53:86:27:08:f8:
ea:52:cb:3b:88:5b:60:a6:dd:41:c6:d6:af:a9:28:8b:68:bf:
7b:ae:0e:d3:a3:b8:d8:e3:95:c2:26:c5:d9:0d:31:41:9a:57:
af:55:8b:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oF0YoXHcx0RJjbSG9SK8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzNTIzMmI0YjBmYThjODNkNGZmOGMxMjQ0ZTg2NGViYmNh
ZGQ2OGIwHhcNMjUwNjI4MTMwMDUyWhcNMjUwNjI5MTMwMDUyWjAzMTEwLwYDVQQD
Eyg3ZDQyMjU0MDNiMmY3ZTA4OThmYTBjM2U2NTE3MzUxMGI4ZDk3NjJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCkHviA1e5LYbWozVAoKkE9AJVmi
ll2gsnLxy6L+hwj3/uch9p1a8LmUR3Q4Yvu+wzihtCRplOx/CmTjk0mpLXCSrf4h
pmaYiCqbNIVZzseCz4XRYSLhNjfrOQECyFifTDgMq7HzKw+vaqmelkn+cbfjxoHQ
UsRUh4H8f2Csqw+2jgdIcoYz4gvG7Lif2o6sDAAoStXlywVZtnpMPCoOWLs34OWn
GUt9uejqFh0ak/pz7qz0iEmE/276Ulm7HH5kcUuJ9gmqS8xJn3f8rhOo6roPa7iE
Uj3Gx1LM9p7RfQNEgebi2xNUDFy8LgBHPnUvt4FK5aPVq2YOKrQFnqD0/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH1CJUA7L34ImPoMPmUXNRC42XYuMB8GA1UdIwQY
MBaAFLNSMrSw+oyD1P+MEkToZOu8rdaLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczFJeXRMRDZqSVBVXzR3U1JPaGs2N3l0MW9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9iZDlmZDgtYTM0Ni00NTllLTgzOGEt
YjkxMjJlNTIxMDU4LzEvczFJeXRMRDZqSVBVXzR3U1JPaGs2N3l0MW9zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy9iZDlmZDgtYTM0Ni00NTllLTgzOGEtYjkxMjJlNTIxMDU4
LzEvczFJeXRMRDZqSVBVXzR3U1JPaGs2N3l0MW9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr61Xp7eW
EVRqHRkNw/5m2l0SN8SVXz34LQF+5bpueJKoOao8Bk7u0EtQrW6l5ijA2DLKzkjd
go+2MT7u0zPNu0GDxwyx6J3IKTh1ykHQeckYB0ZYd3M9HN5yx7YOHzlHXRsiGoEt
DCPncAzVAEEc5z1q++MODahoh8YH5uu2PplZTWpB0WSA6JWmLHxlhTuuYtYNRT1C
TBsX3Fi36nGEY5pxX6QF4wZIiddidj0dalLOoqi5+KYrNkhX9w0aKT8O6wfcmQ9o
HqgiXCEGsfx3gryS8lOGJwj46lLLO4hbYKbdQcbWr6koi2i/e64O06O42OOVwibF
2Q0xQZpXr1WLQw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:34:42 2025 by rpki-client