Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
File: sCnHJ8biLu2PvNHot2k5V40Nygo.mft (raw, json)
Hash identifier: Od2Mtw+dARNpzy0CBM7U4HpGk9omv+M8ICkYGHUxte0=
Subject key identifier: 5D:AB:FE:DF:AC:57:F8:2A:13:34:02:47:8E:DB:85:EB:02:C2:71:9C
Authority key identifier: B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
Certificate issuer: /CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Certificate serial: 0197B6A24ABCBD3BD35CF52C15AFD227F0D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
Manifest number: 15B0
Signing time: Sat 28 Jun 2025 13:02:58 +0000
Manifest this update: Sat 28 Jun 2025 13:02:58 +0000
Manifest next update: Sun 29 Jun 2025 13:02:58 +0000
Files and hashes: 1: sCnHJ8biLu2PvNHot2k5V40Nygo.crl (hash: mUUCnuPy2N03jmd9L4ATjtZjvKyDbvVHuydDaWQrr7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:4a:bc:bd:3b:d3:5c:f5:2c:15:af:d2:27:f0:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Validity
Not Before: Jun 28 13:02:58 2025 GMT
Not After : Jun 29 13:02:58 2025 GMT
Subject: CN=5dabfedfac57f82a133402478edb85eb02c2719c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e1:2f:b0:c7:5d:08:91:c9:f1:04:d6:c5:56:
b5:7c:fd:c9:10:ac:3a:1c:29:20:13:40:ef:fd:f2:
01:9e:04:1b:42:d7:9f:b9:99:25:9d:1e:1d:5e:4f:
f8:23:e3:13:43:e6:c9:3b:25:7d:9e:e8:6a:ec:35:
9a:7f:29:96:fc:af:da:e5:6c:19:7a:57:23:d6:79:
29:e0:8a:8f:34:c8:cf:00:84:45:ae:5e:a3:33:16:
2d:fd:2e:91:1e:ab:8c:45:9c:84:19:67:de:cb:fe:
21:25:7e:cd:9b:e8:74:31:b7:00:7d:15:b8:27:56:
9a:bc:f7:69:59:05:d0:a1:d1:95:4f:87:42:84:c3:
9f:0c:7d:aa:4a:1d:6a:75:eb:f1:7e:1e:4a:50:97:
38:72:c0:72:1e:c4:47:3f:25:89:b4:c9:c1:f1:e1:
e9:9c:71:8f:2f:c8:48:31:64:86:03:90:9c:9d:67:
91:bc:e4:96:94:1a:0a:bb:71:49:2d:3f:14:26:47:
9f:02:83:52:16:d9:59:6e:9a:ed:9b:34:f9:0b:f8:
7a:f4:0e:f1:7a:26:00:47:bd:e3:3c:d8:7e:c0:ff:
aa:95:18:b4:73:67:f4:74:fb:98:95:66:90:df:d7:
e4:bd:96:ea:9b:fd:5f:00:fd:d0:10:bd:52:62:e8:
3f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:AB:FE:DF:AC:57:F8:2A:13:34:02:47:8E:DB:85:EB:02:C2:71:9C
X509v3 Authority Key Identifier:
keyid:B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:ac:66:07:7f:37:2e:41:48:b4:3f:4c:ae:f7:c9:be:14:bb:
0e:ed:e3:11:de:56:a1:21:0b:71:f2:40:d6:99:ec:0f:19:be:
f5:cb:e7:d9:60:f9:c3:b7:64:34:a2:28:6d:7c:a7:45:04:51:
9b:c3:d0:74:78:4a:d8:ab:b7:c6:07:49:71:fe:d0:c0:7a:8a:
e8:fc:0f:7c:1e:f9:79:92:99:86:78:eb:5e:03:54:f2:a7:b1:
5b:c0:8f:e3:3f:93:5c:a9:54:bb:26:2a:f0:c8:94:a3:b3:b2:
a5:2e:df:82:c2:47:9a:21:3b:21:b9:e6:e6:aa:21:36:53:a2:
d5:08:10:85:d7:01:7d:a1:b0:7a:84:f4:07:10:36:d0:7b:0c:
58:70:0f:bf:9c:ff:75:3f:aa:52:fa:23:49:7e:ac:6e:55:0d:
a1:fc:63:4e:82:c8:65:88:0b:8b:93:95:0a:14:7d:4a:df:48:
3b:8d:41:d3:9a:f6:91:86:3b:a8:aa:34:42:db:4b:e1:11:98:
3d:3b:2f:fb:ef:ed:f5:bf:be:e8:fa:ee:d0:3f:f2:79:71:73:
ff:44:54:3c:5b:46:14:e7:0d:a8:b0:14:91:6b:e0:b1:6c:ef:
2a:96:86:1a:e9:7b:51:82:b1:5a:1e:3a:46:ce:37:82:28:bb:
4c:f7:a5:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2okq8vTvTXPUsFa/SJ/DRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwMjljNzI3YzZlMjJlZWQ4ZmJjZDFlOGI3NjkzOTU3OGQw
ZGNhMGEwHhcNMjUwNjI4MTMwMjU4WhcNMjUwNjI5MTMwMjU4WjAzMTEwLwYDVQQD
Eyg1ZGFiZmVkZmFjNTdmODJhMTMzNDAyNDc4ZWRiODVlYjAyYzI3MTljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl+EvsMddCJHJ8QTWxVa1fP3JEKw6
HCkgE0Dv/fIBngQbQtefuZklnR4dXk/4I+MTQ+bJOyV9nuhq7DWafymW/K/a5WwZ
elcj1nkp4IqPNMjPAIRFrl6jMxYt/S6RHquMRZyEGWfey/4hJX7Nm+h0MbcAfRW4
J1aavPdpWQXQodGVT4dChMOfDH2qSh1qdevxfh5KUJc4csByHsRHPyWJtMnB8eHp
nHGPL8hIMWSGA5CcnWeRvOSWlBoKu3FJLT8UJkefAoNSFtlZbprtmzT5C/h69A7x
eiYAR73jPNh+wP+qlRi0c2f0dPuYlWaQ39fkvZbqm/1fAP3QEL1SYug/yQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF2r/t+sV/gqEzQCR47bhesCwnGcMB8GA1UdIwQY
MBaAFLApxyfG4i7tj7zR6LdpOVeNDcoKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC80NjE1YTEtOTA1Mi00MGM2LWExOGQt
YTBkNzk5MjRkYjZjLzEvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC80NjE1YTEtOTA1Mi00MGM2LWExOGQtYTBkNzk5MjRkYjZj
LzEvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX6xmB383
LkFItD9MrvfJvhS7Du3jEd5WoSELcfJA1pnsDxm+9cvn2WD5w7dkNKIobXynRQRR
m8PQdHhK2Ku3xgdJcf7QwHqK6PwPfB75eZKZhnjrXgNU8qexW8CP4z+TXKlUuyYq
8MiUo7OypS7fgsJHmiE7Ibnm5qohNlOi1QgQhdcBfaGweoT0BxA20HsMWHAPv5z/
dT+qUvojSX6sblUNofxjToLIZYgLi5OVChR9St9IO41B05r2kYY7qKo0QttL4RGY
PTsv++/t9b++6Pru0D/yeXFz/0RUPFtGFOcNqLAUkWvgsWzvKpaGGul7UYKxWh46
Rs43gii7TPellA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:58:15 2025 by rpki-client