Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.mft
File: 6oRgBs-LnjiPMUUTWAklAs7METY.mft (raw, json)
Hash identifier: vOJNK9MlcIRzjxdS15ULY3HhTaNK0pZOqoRjsXnyRw8=
Subject key identifier: 59:8D:AA:EE:F8:9B:4A:5D:8B:B9:51:8D:BB:4C:1C:BD:61:8A:94:56
Authority key identifier: EA:84:60:06:CF:8B:9E:38:8F:31:45:13:58:09:25:02:CE:CC:11:36
Certificate issuer: /CN=ea846006cf8b9e388f31451358092502cecc1136
Certificate serial: 0197469EDAA8507E8DF3C963CECA6BAB0D70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6oRgBs-LnjiPMUUTWAklAs7METY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.mft
Manifest number: 0D7C
Signing time: Fri 06 Jun 2025 19:01:44 +0000
Manifest this update: Fri 06 Jun 2025 19:01:44 +0000
Manifest next update: Sat 07 Jun 2025 19:01:44 +0000
Files and hashes: 1: 6oRgBs-LnjiPMUUTWAklAs7METY.crl (hash: 9YT8M6DZzzi9VgzzZyBU9MVFMSXHDu+vvGNGq40wld8=)
2: 9Lqmfy6wHLKrfYhwIDvavnUW2-M.roa (hash: v2hMl83B6SUP+9qQxIL6U+Cg0HPHQSBVbZwnm/g0JP0=)
3: IHG_JfseFk6ouOXxwoxnwmRi5Fs.roa (hash: /e922m+dZdP+lI3mcnmLh9IILnO7tmjuyQG47QZPE3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.mft
rsync://rpki.ripe.net/repository/DEFAULT/6oRgBs-LnjiPMUUTWAklAs7METY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 19:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:da:a8:50:7e:8d:f3:c9:63:ce:ca:6b:ab:0d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea846006cf8b9e388f31451358092502cecc1136
Validity
Not Before: Jun 6 19:01:44 2025 GMT
Not After : Jun 7 19:01:44 2025 GMT
Subject: CN=598daaeef89b4a5d8bb9518dbb4c1cbd618a9456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1d:4d:1a:cc:25:4a:77:75:b8:77:e9:d3:65:
ec:26:74:e4:e9:09:33:c9:46:c1:46:dc:dc:33:76:
85:3e:b2:93:52:eb:a3:8f:98:4a:a7:57:30:c1:db:
36:6d:81:27:6a:ad:df:44:53:46:5e:39:9f:cd:1a:
18:1e:a1:84:eb:f0:a3:f0:9e:00:f2:5d:b0:d3:4d:
20:52:00:fd:a2:64:6f:1b:21:51:d5:2f:a2:6a:68:
a4:97:6c:ed:be:3b:44:28:a6:3c:30:99:be:22:b3:
65:d8:a3:f1:d5:16:f6:ce:af:a1:bb:c5:1a:fb:01:
b2:de:41:71:52:6a:f4:ad:dd:bd:a5:18:4a:01:42:
2b:07:85:fc:88:eb:04:1a:3b:02:04:c1:a9:7f:df:
a9:ea:f0:82:7a:8d:47:d9:76:03:76:33:2c:d1:01:
24:9c:e2:07:0c:8e:4d:cf:06:02:c5:73:4f:d5:b0:
1b:b3:b9:95:ca:b7:47:c6:51:58:fa:97:bc:0b:37:
3f:78:87:e1:53:2a:06:61:c4:3b:9f:ce:6e:c5:35:
1a:c9:c7:4c:7c:1b:81:14:b0:c2:c6:45:f3:6c:66:
1d:f0:c6:51:9c:94:a8:36:12:01:d6:02:2f:d6:b6:
40:32:82:1c:52:48:74:5f:a9:b0:51:00:91:77:27:
0f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8D:AA:EE:F8:9B:4A:5D:8B:B9:51:8D:BB:4C:1C:BD:61:8A:94:56
X509v3 Authority Key Identifier:
keyid:EA:84:60:06:CF:8B:9E:38:8F:31:45:13:58:09:25:02:CE:CC:11:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6oRgBs-LnjiPMUUTWAklAs7METY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:0a:0e:a1:2f:22:c9:f8:8c:0a:3f:6c:86:cc:66:af:33:87:
39:cb:e8:d7:06:50:af:9c:0b:00:a0:a8:22:b4:e4:03:05:ac:
ad:cf:58:43:b7:ab:46:e6:04:0c:5d:a0:da:31:10:3b:cd:43:
b0:45:e5:9b:6a:a4:e6:bb:89:7d:54:fd:aa:f0:3e:72:ab:1c:
2f:45:ba:3c:bf:b1:57:bc:7b:60:b6:ad:d9:c9:3c:75:74:c4:
e6:40:c6:50:7f:44:75:e3:e4:16:37:16:db:9c:e7:bb:20:75:
d6:f6:2d:4a:d2:71:4e:7c:08:3d:8d:18:d1:c4:9b:7a:54:d3:
65:3f:b5:b4:5a:cb:8b:bc:4c:ae:d3:90:53:b9:f4:33:56:31:
55:40:bb:ff:57:87:0f:f7:6b:20:09:6a:7f:35:e0:cd:4e:76:
28:ea:f1:3c:c0:6a:e4:0a:01:1c:56:cb:0b:b1:b8:64:b7:52:
66:c0:46:a5:79:f1:bf:7f:ea:80:e4:f1:17:1b:a5:9d:df:85:
aa:cb:47:ee:26:dc:61:07:fc:1b:88:20:63:49:ce:f6:86:6c:
de:f5:b8:97:32:b1:b7:7f:19:32:c0:37:f6:c7:67:36:9a:7b:
8d:a7:6a:f6:39:48:e1:14:e8:bb:4e:31:fb:2d:3a:2f:9b:00:
a0:72:95:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGntqoUH6N88ljzsprqw1wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhODQ2MDA2Y2Y4YjllMzg4ZjMxNDUxMzU4MDkyNTAyY2Vj
YzExMzYwHhcNMjUwNjA2MTkwMTQ0WhcNMjUwNjA3MTkwMTQ0WjAzMTEwLwYDVQQD
Eyg1OThkYWFlZWY4OWI0YTVkOGJiOTUxOGRiYjRjMWNiZDYxOGE5NDU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxR1NGswlSnd1uHfp02XsJnTk6Qkz
yUbBRtzcM3aFPrKTUuujj5hKp1cwwds2bYEnaq3fRFNGXjmfzRoYHqGE6/Cj8J4A
8l2w000gUgD9omRvGyFR1S+iamikl2ztvjtEKKY8MJm+IrNl2KPx1Rb2zq+hu8Ua
+wGy3kFxUmr0rd29pRhKAUIrB4X8iOsEGjsCBMGpf9+p6vCCeo1H2XYDdjMs0QEk
nOIHDI5NzwYCxXNP1bAbs7mVyrdHxlFY+pe8Czc/eIfhUyoGYcQ7n85uxTUaycdM
fBuBFLDCxkXzbGYd8MZRnJSoNhIB1gIv1rZAMoIcUkh0X6mwUQCRdycPxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFmNqu74m0pdi7lRjbtMHL1hipRWMB8GA1UdIwQY
MBaAFOqEYAbPi544jzFFE1gJJQLOzBE2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNm9SZ0JzLUxuamlQTVVVVFdBa2xBczdNRVRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8yMWNkNzctMWVjYS00NmI5LTlhYmEt
Zjc0Y2NjYzRlMGExLzEvNm9SZ0JzLUxuamlQTVVVVFdBa2xBczdNRVRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi8yMWNkNzctMWVjYS00NmI5LTlhYmEtZjc0Y2NjYzRlMGEx
LzEvNm9SZ0JzLUxuamlQTVVVVFdBa2xBczdNRVRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyQoOoS8i
yfiMCj9shsxmrzOHOcvo1wZQr5wLAKCoIrTkAwWsrc9YQ7erRuYEDF2g2jEQO81D
sEXlm2qk5ruJfVT9qvA+cqscL0W6PL+xV7x7YLat2ck8dXTE5kDGUH9EdePkFjcW
25znuyB11vYtStJxTnwIPY0Y0cSbelTTZT+1tFrLi7xMrtOQU7n0M1YxVUC7/1eH
D/drIAlqfzXgzU52KOrxPMBq5AoBHFbLC7G4ZLdSZsBGpXnxv3/qgOTxFxulnd+F
qstH7ibcYQf8G4ggY0nO9oZs3vW4lzKxt38ZMsA39sdnNpp7jadq9jlI4RTou04x
+y06L5sAoHKVWQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 05:12:12 2025 by rpki-client