Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
File: ThXfaIw66uP2he1Es5bCGYOVhh0.mft (raw, json)
Hash identifier: E91LkQaOnM62OeM63dmPDqsDJuuFdK1eqbnW/KZHbP0=
Subject key identifier: 64:22:B4:9C:49:C2:F0:B4:05:B7:E5:E4:C2:9F:74:2E:58:6C:86:59
Authority key identifier: 4E:15:DF:68:8C:3A:EA:E3:F6:85:ED:44:B3:96:C2:19:83:95:86:1D
Certificate issuer: /CN=4e15df688c3aeae3f685ed44b396c2198395861d
Certificate serial: 019851FAF2B0BB019ED4A83B45C6272F7453
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
Manifest number: 0BAF
Signing time: Mon 28 Jul 2025 17:00:57 +0000
Manifest this update: Mon 28 Jul 2025 17:00:57 +0000
Manifest next update: Tue 29 Jul 2025 17:00:57 +0000
Files and hashes: 1: B5ArzT5S5sMxKfyjCyP1n1jxI-I.roa (hash: GYazD0XUED0Lzoqp0JRsmv1Wdv3MWiNL0orAYJkGs0s=)
2: GTFBgv2tNjcuxAQIe01brH4jwTk.roa (hash: Mc8ui7CXRHASlbfIuKweFLL2cR+DG52g7wgx3xsTD/U=)
3: MVWQHZ7poQZSNaxcXHSkE1cM3ac.roa (hash: tbC0zEQlc9n1vwOMWAcwfJO+Pz8J+NOLSdpR6f+1vt4=)
4: SeVKeWDlifWewWLGV-ux3X3eP-U.roa (hash: iAr3BiSouxw0/1U0gfsb+0eTpsmeqPEqcNVOd7duq/I=)
5: ThXfaIw66uP2he1Es5bCGYOVhh0.crl (hash: I8s5NF2TRGHqxMSatzc3DdJDcUDXcvm0jh2lazlgLhU=)
6: o0qUAT_TgmtKEJ1FtjKHFmcq_g8.roa (hash: jAvBf+l4Sh8bF638zbQb1GW8ZMXk7btIZOLQzFqdpZg=)
7: r34i9MogSBxeDWHyGIhH_hkNvH0.roa (hash: /LsOtQwuG5S1pPv/GDxv95WqbubjE7D9iX5jL74tvxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 17:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:51:fa:f2:b0:bb:01:9e:d4:a8:3b:45:c6:27:2f:74:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e15df688c3aeae3f685ed44b396c2198395861d
Validity
Not Before: Jul 28 17:00:57 2025 GMT
Not After : Jul 29 17:00:57 2025 GMT
Subject: CN=6422b49c49c2f0b405b7e5e4c29f742e586c8659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e6:94:0f:44:9f:a0:b9:fa:06:6c:dd:6c:41:
4e:02:35:5a:16:f1:1b:82:73:d2:28:86:45:d6:70:
5f:57:93:fd:e0:dd:ad:9d:da:8d:91:71:31:31:76:
82:c2:bd:82:13:bb:55:0e:39:dd:c9:e5:60:a8:99:
23:29:22:d8:ba:3d:26:40:f0:f1:0a:8c:c7:ad:1b:
f2:a0:cd:40:29:e8:58:d7:67:b4:11:8d:c7:26:38:
60:58:2c:51:67:d5:86:24:6d:3f:7c:02:17:30:5f:
5b:6a:e4:b9:7b:46:4f:49:e8:75:cf:0a:87:b4:d5:
46:a3:fb:cb:40:8a:44:c6:e0:e0:d6:c6:a2:a2:24:
50:94:d3:aa:6f:55:47:3e:71:2e:32:2c:6e:35:e7:
01:2c:1f:12:b1:6d:85:50:dc:6e:ff:9f:19:04:13:
e1:22:6c:3a:b3:5b:eb:82:b2:48:da:c5:54:3f:0a:
d0:0f:dd:d7:91:03:5c:d6:2a:26:d2:6f:bd:14:64:
9d:b5:c6:c3:81:bb:3d:9c:28:1b:64:5b:6b:65:3e:
ad:ea:70:66:1a:90:88:9c:fe:77:5f:4b:35:ec:bb:
46:b2:d9:80:51:29:db:e8:06:54:6a:c6:8b:23:1c:
b6:c8:c2:dc:46:1e:ec:44:cf:89:48:45:89:59:ee:
78:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:22:B4:9C:49:C2:F0:B4:05:B7:E5:E4:C2:9F:74:2E:58:6C:86:59
X509v3 Authority Key Identifier:
keyid:4E:15:DF:68:8C:3A:EA:E3:F6:85:ED:44:B3:96:C2:19:83:95:86:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:a2:41:7d:72:eb:75:de:3e:5a:b9:30:b3:51:2c:6b:f2:ba:
10:17:26:ad:18:63:4e:d5:fd:f6:72:38:41:d0:8d:2d:ea:37:
b7:cd:73:44:33:1e:22:d0:1d:36:a6:cb:f9:89:bb:77:84:1b:
d4:b6:19:59:80:01:54:80:7d:5d:74:de:54:f9:22:26:f7:0a:
81:d5:e6:7a:b0:fc:2f:d4:50:7b:b0:07:09:b2:af:3f:76:a0:
e2:08:59:00:b3:95:97:e6:47:40:b0:de:b1:fd:6d:b7:fd:fc:
94:21:61:ea:37:c7:87:a7:57:11:f6:f6:38:f7:7e:f7:2e:85:
4b:26:26:98:1a:9f:76:1f:3f:1e:45:5a:7b:56:6a:67:c7:2a:
2c:f3:42:ca:08:0c:53:fb:72:bd:79:05:08:cc:da:5e:8e:26:
15:aa:d4:0b:f6:a5:13:29:be:c4:e5:95:2c:ac:11:d1:f5:d6:
4b:b7:7a:41:49:52:9a:b8:7c:29:f6:fa:42:d8:4d:8b:cb:b1:
16:3e:14:ae:10:5b:c0:e4:98:0d:2f:ec:51:db:e9:23:24:ca:
fc:6e:17:c0:d8:8b:69:e3:d5:a2:22:ad:07:d3:ba:d8:5e:61:
b0:09:de:7f:15:aa:72:8e:15:a7:99:f6:b7:f1:16:5e:ef:26:
4d:1f:a3:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhR+vKwuwGe1Kg7RcYnL3RTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlMTVkZjY4OGMzYWVhZTNmNjg1ZWQ0NGIzOTZjMjE5ODM5
NTg2MWQwHhcNMjUwNzI4MTcwMDU3WhcNMjUwNzI5MTcwMDU3WjAzMTEwLwYDVQQD
Eyg2NDIyYjQ5YzQ5YzJmMGI0MDViN2U1ZTRjMjlmNzQyZTU4NmM4NjU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOaUD0SfoLn6BmzdbEFOAjVaFvEb
gnPSKIZF1nBfV5P94N2tndqNkXExMXaCwr2CE7tVDjndyeVgqJkjKSLYuj0mQPDx
CozHrRvyoM1AKehY12e0EY3HJjhgWCxRZ9WGJG0/fAIXMF9bauS5e0ZPSeh1zwqH
tNVGo/vLQIpExuDg1saioiRQlNOqb1VHPnEuMixuNecBLB8SsW2FUNxu/58ZBBPh
Imw6s1vrgrJI2sVUPwrQD93XkQNc1iom0m+9FGSdtcbDgbs9nCgbZFtrZT6t6nBm
GpCInP53X0s17LtGstmAUSnb6AZUasaLIxy2yMLcRh7sRM+JSEWJWe54dQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGQitJxJwvC0Bbfl5MKfdC5YbIZZMB8GA1UdIwQY
MBaAFE4V32iMOurj9oXtRLOWwhmDlYYdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGhYZmFJdzY2dVAyaGUxRXM1YkNHWU9WaGgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8wYmY3YWItNWFhYi00MzM3LWEwMmEt
OGE2ZTU1NDE5NmJiLzEvVGhYZmFJdzY2dVAyaGUxRXM1YkNHWU9WaGgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8wYmY3YWItNWFhYi00MzM3LWEwMmEtOGE2ZTU1NDE5NmJi
LzEvVGhYZmFJdzY2dVAyaGUxRXM1YkNHWU9WaGgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMaJBfXLr
dd4+Wrkws1Esa/K6EBcmrRhjTtX99nI4QdCNLeo3t81zRDMeItAdNqbL+Ym7d4Qb
1LYZWYABVIB9XXTeVPkiJvcKgdXmerD8L9RQe7AHCbKvP3ag4ghZALOVl+ZHQLDe
sf1tt/38lCFh6jfHh6dXEfb2OPd+9y6FSyYmmBqfdh8/HkVae1ZqZ8cqLPNCyggM
U/tyvXkFCMzaXo4mFarUC/alEym+xOWVLKwR0fXWS7d6QUlSmrh8Kfb6QthNi8ux
Fj4UrhBbwOSYDS/sUdvpIyTK/G4XwNiLaePVoiKtB9O62F5hsAnefxWqco4Vp5n2
t/EWXu8mTR+jcQ==
-----END CERTIFICATE-----
Generated at Tue Jul 29 01:57:08 2025 by rpki-client