Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json)
Hash identifier: NGbrUYWIWrgfuJI4To8MWEO8jU3jOxtGQTjCM4HqZrQ=
Subject key identifier: C3:A6:F0:AC:69:94:D3:73:48:00:F8:5D:AD:A9:B3:2C:EE:C9:C5:7D
Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Certificate serial: 019746D4805F861939173D238CC19928460F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
Manifest number: 0F66
Signing time: Fri 06 Jun 2025 20:00:20 +0000
Manifest this update: Fri 06 Jun 2025 20:00:20 +0000
Manifest next update: Sat 07 Jun 2025 20:00:20 +0000
Files and hashes: 1: MBnjR0q6eR7PujQYuvXc6EY3kbo.roa (hash: HNqzyjDd+TtlMN5tniTDAwjj1tssNX0++6C4Wyg438o=)
2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: g2mbH7dmDU9CiPEkA2suynIRFsdZi6zCGbKf+wAnSw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:80:5f:86:19:39:17:3d:23:8c:c1:99:28:46:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Validity
Not Before: Jun 6 20:00:20 2025 GMT
Not After : Jun 7 20:00:20 2025 GMT
Subject: CN=c3a6f0ac6994d3734800f85dada9b32ceec9c57d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:92:46:c7:34:5d:22:09:8b:a4:1e:91:7d:52:
2c:15:fc:f8:85:f5:db:7b:2d:6e:b2:e0:bb:77:cc:
d2:a9:d0:45:6c:25:8c:90:fa:11:6e:37:49:d2:0f:
ce:19:2b:db:86:1a:00:6c:62:a4:a9:43:2f:a3:e3:
8d:b4:17:57:da:b1:6f:d5:21:90:3c:eb:ec:7f:ff:
e2:94:8f:3f:e6:91:d9:a5:7b:a8:77:ac:cc:e8:0e:
fb:1b:66:e6:f9:80:c5:4d:9f:13:85:7d:94:6e:02:
01:48:a0:59:f7:1a:f5:13:72:7e:73:ff:ec:47:87:
9f:9e:c9:9f:66:32:35:5e:d4:a6:66:eb:3a:e0:19:
35:c2:7a:05:9d:d7:7b:ad:0d:c0:d2:69:94:8f:7b:
a3:17:2b:48:ac:b0:f2:25:66:2e:1b:94:b5:6c:35:
36:d6:15:4f:6e:05:8e:6c:1e:f4:21:52:90:ed:0e:
be:d9:89:e8:4b:92:fa:1a:cb:58:4e:ff:0d:6f:b1:
10:a9:24:7d:e5:74:a3:7d:32:c1:bd:88:19:9b:72:
59:e0:99:a0:f6:cb:61:8e:65:84:b2:0b:98:8d:20:
a0:fa:55:6e:f2:2e:ee:ff:29:84:fd:17:ce:30:b7:
ac:df:37:e1:20:a0:4a:ec:a0:78:28:14:67:1f:9a:
fa:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:A6:F0:AC:69:94:D3:73:48:00:F8:5D:AD:A9:B3:2C:EE:C9:C5:7D
X509v3 Authority Key Identifier:
keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:39:9f:49:32:d0:69:0c:16:ba:60:a1:af:46:7c:44:2c:5c:
ea:27:db:1b:c6:2e:13:96:51:c5:6f:f5:c9:d3:c9:66:6e:a4:
4b:b0:d8:8d:87:c1:ba:21:fd:d5:4c:8a:4b:21:c5:f2:fe:77:
b4:cb:00:c3:61:ea:c2:87:5c:90:c0:4b:a6:87:aa:e4:45:67:
97:50:7a:ea:9e:5e:ed:d9:f7:67:ec:c9:b7:d1:14:b4:5e:fe:
85:ab:73:b6:d5:97:5c:a3:76:c4:d6:12:67:3e:4d:ab:2b:40:
02:2a:f3:6d:4f:bb:2a:e4:b0:d4:21:da:43:15:e7:f8:3a:49:
4a:84:73:b7:8f:25:58:7e:62:43:50:64:92:f4:5b:b2:94:9e:
e0:e7:6b:09:f9:eb:b0:6f:85:e2:4b:15:93:b7:e9:5f:2f:8f:
51:f1:ab:2e:37:c8:82:19:87:52:f2:c1:5f:cf:ed:cf:cc:c2:
c6:4a:47:08:6e:5f:6d:46:95:c0:8b:09:2a:d6:2e:56:59:19:
d4:d3:6f:03:e6:b4:00:7a:a4:13:32:9e:05:1a:a9:8f:13:26:
f4:ac:27:2b:2c:99:95:ab:65:99:5b:35:99:b8:19:66:bd:69:
93:2b:eb:46:97:51:99:f1:19:42:6c:8c:7f:9f:70:7e:f5:06:
07:8f:17:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdG1IBfhhk5Fz0jjMGZKEYPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0MzRlZGJlMWI0MTAxYjI4YWJlMjMyZjJiY2YyYTAxNDg5
NzgyNWEwHhcNMjUwNjA2MjAwMDIwWhcNMjUwNjA3MjAwMDIwWjAzMTEwLwYDVQQD
EyhjM2E2ZjBhYzY5OTRkMzczNDgwMGY4NWRhZGE5YjMyY2VlYzljNTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5JGxzRdIgmLpB6RfVIsFfz4hfXb
ey1usuC7d8zSqdBFbCWMkPoRbjdJ0g/OGSvbhhoAbGKkqUMvo+ONtBdX2rFv1SGQ
POvsf//ilI8/5pHZpXuod6zM6A77G2bm+YDFTZ8ThX2UbgIBSKBZ9xr1E3J+c//s
R4efnsmfZjI1XtSmZus64Bk1wnoFndd7rQ3A0mmUj3ujFytIrLDyJWYuG5S1bDU2
1hVPbgWObB70IVKQ7Q6+2YnoS5L6GstYTv8Nb7EQqSR95XSjfTLBvYgZm3JZ4Jmg
9sthjmWEsguYjSCg+lVu8i7u/ymE/RfOMLes3zfhIKBK7KB4KBRnH5r6/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMOm8KxplNNzSAD4Xa2psyzuycV9MB8GA1UdIwQY
MBaAFEQ07b4bQQGyir4jLyvPKgFIl4JaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC82MzlmNjQtMWRmMS00NmQ1LWFkZDkt
MTBjYWY1NDk4NmZmLzEvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC82MzlmNjQtMWRmMS00NmQ1LWFkZDktMTBjYWY1NDk4NmZm
LzEvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkTmfSTLQ
aQwWumChr0Z8RCxc6ifbG8YuE5ZRxW/1ydPJZm6kS7DYjYfBuiH91UyKSyHF8v53
tMsAw2HqwodckMBLpoeq5EVnl1B66p5e7dn3Z+zJt9EUtF7+hatzttWXXKN2xNYS
Zz5NqytAAirzbU+7KuSw1CHaQxXn+DpJSoRzt48lWH5iQ1BkkvRbspSe4OdrCfnr
sG+F4ksVk7fpXy+PUfGrLjfIghmHUvLBX8/tz8zCxkpHCG5fbUaVwIsJKtYuVlkZ
1NNvA+a0AHqkEzKeBRqpjxMm9KwnKyyZlatlmVs1mbgZZr1pkyvrRpdRmfEZQmyM
f59wfvUGB48XgQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:13:04 2025 by rpki-client