Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
File: U8kSoEEbsBdFBwktDKNaka15kFw.mft (raw, json)
Hash identifier: cYk+BpFGRUqe5zYRmniGTEWy90r9Xx8mI9MLrPnc0I8=
Subject key identifier: C3:1C:28:38:BB:75:70:C0:74:F0:06:D0:DD:26:96:5D:58:64:27:7A
Authority key identifier: 53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
Certificate issuer: /CN=53c912a0411bb0174507092d0ca35a91ad79905c
Certificate serial: 01974D7C1D559BFA884BCF7CE8318F692244
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
Manifest number: 1585
Signing time: Sun 08 Jun 2025 03:01:08 +0000
Manifest this update: Sun 08 Jun 2025 03:01:08 +0000
Manifest next update: Mon 09 Jun 2025 03:01:08 +0000
Files and hashes: 1: 4bEGcfHd_w1hv-Zgrf8mtzNQOF8.roa (hash: Yz5lhUK8jG4fxty/HMD7XY7daqUIEiCINpgWbEB+eSk=)
2: U8kSoEEbsBdFBwktDKNaka15kFw.crl (hash: GM53s9kuvmbsGCtLVgi2ZfCQR3ubU33v5CN597hR0Zo=)
3: V2UHD8Ezb4do1e1amF_9bhIjwm0.roa (hash: y2BL9g++y9jPkFQqtQIhZUhynDTSuho7DqIRo/6vN6o=)
4: Xx5AoKMFPro34EMu91UFlynTj2s.roa (hash: NlxbkxLq2MDyD2nlPITsFETHKzu5cELRgwcKIcBnH7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7c:1d:55:9b:fa:88:4b:cf:7c:e8:31:8f:69:22:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c912a0411bb0174507092d0ca35a91ad79905c
Validity
Not Before: Jun 8 03:01:08 2025 GMT
Not After : Jun 9 03:01:08 2025 GMT
Subject: CN=c31c2838bb7570c074f006d0dd26965d5864277a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:46:29:e6:61:66:6d:51:27:49:7d:11:da:58:
3f:04:84:f5:13:71:6a:67:a9:48:a0:dc:ba:e2:66:
bd:24:03:00:2a:8c:da:42:10:0d:30:ab:cb:4f:02:
ba:3c:40:5c:1e:69:d1:5f:14:20:c5:16:22:65:8c:
15:f4:79:d9:37:b8:23:4d:5f:86:a0:26:97:5b:95:
12:57:2d:fb:b2:25:f6:95:50:b5:c4:01:ff:fe:2d:
ac:de:24:27:98:83:27:ba:4c:80:08:98:d2:12:50:
8f:62:76:5a:5a:9a:c4:11:6b:aa:b4:ec:22:75:0c:
24:c9:76:9a:6e:97:af:69:ea:ef:51:de:32:1e:c6:
8a:fd:02:bd:db:09:12:4d:42:de:28:3e:28:58:f3:
19:d8:22:34:6f:0a:ae:f0:9e:ff:a5:4d:00:d3:63:
17:23:6c:7e:bc:d8:cc:0c:d2:a7:dd:38:13:e2:e5:
a2:ae:49:2e:a1:00:a2:81:39:17:0e:78:31:13:3a:
79:10:42:42:38:6e:e6:fd:e6:38:45:2f:e1:86:23:
e2:c9:35:d5:a9:b4:99:59:ae:1b:1d:d3:2e:a8:f2:
32:a4:f5:24:8a:51:ef:2a:d4:31:d0:c3:f4:89:aa:
0b:59:83:d5:42:3c:6e:c8:59:29:2d:18:ae:ec:f1:
c3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:1C:28:38:BB:75:70:C0:74:F0:06:D0:DD:26:96:5D:58:64:27:7A
X509v3 Authority Key Identifier:
keyid:53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:ca:03:ee:f3:fe:78:97:73:6e:d4:0c:7a:41:15:28:58:c9:
3f:41:7f:e0:6d:77:bb:66:9d:29:90:21:96:67:6f:1f:33:ba:
f4:1d:0b:eb:8f:0d:64:e6:1a:e6:46:2b:ec:44:42:74:2c:f0:
c2:4c:e9:f3:bb:f4:c3:d4:13:30:53:e8:ce:b1:11:ab:27:62:
f0:d8:63:6e:5c:7a:8d:79:f0:f1:1e:e4:d3:ce:c8:8a:61:04:
34:70:16:aa:de:cd:16:ff:e3:de:61:02:35:23:1d:1e:31:ed:
66:83:fc:86:9b:1c:3b:46:79:66:e9:75:30:77:c5:e1:da:a3:
9b:d2:b7:7e:d4:46:35:b4:60:47:91:4c:87:f5:5d:82:3f:8b:
20:55:ee:e9:a6:39:ec:32:96:48:85:b9:49:f4:70:7d:94:84:
92:c2:58:83:04:8c:fb:0d:9d:81:06:7d:42:89:e2:00:58:08:
55:89:4c:e9:78:2d:55:28:73:bc:53:78:db:12:7c:27:51:fb:
c9:9c:d5:b0:d9:96:7d:cf:c1:a9:7a:8e:78:0e:ec:62:ee:b3:
a6:a8:f9:86:4b:8a:90:dc:30:fa:de:e2:26:b5:36:e4:2e:2c:
fe:9d:ad:ea:23:17:25:80:b7:60:fc:af:dc:04:db:6d:c5:7e:
b3:a2:33:6c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdNfB1Vm/qIS8986DGPaSJEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYzkxMmEwNDExYmIwMTc0NTA3MDkyZDBjYTM1YTkxYWQ3
OTkwNWMwHhcNMjUwNjA4MDMwMTA4WhcNMjUwNjA5MDMwMTA4WjAzMTEwLwYDVQQD
EyhjMzFjMjgzOGJiNzU3MGMwNzRmMDA2ZDBkZDI2OTY1ZDU4NjQyNzdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnEYp5mFmbVEnSX0R2lg/BIT1E3Fq
Z6lIoNy64ma9JAMAKozaQhANMKvLTwK6PEBcHmnRXxQgxRYiZYwV9HnZN7gjTV+G
oCaXW5USVy37siX2lVC1xAH//i2s3iQnmIMnukyACJjSElCPYnZaWprEEWuqtOwi
dQwkyXaabpevaervUd4yHsaK/QK92wkSTULeKD4oWPMZ2CI0bwqu8J7/pU0A02MX
I2x+vNjMDNKn3TgT4uWirkkuoQCigTkXDngxEzp5EEJCOG7m/eY4RS/hhiPiyTXV
qbSZWa4bHdMuqPIypPUkilHvKtQx0MP0iaoLWYPVQjxuyFkpLRiu7PHDmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMMcKDi7dXDAdPAG0N0mll1YZCd6MB8GA1UdIwQY
MBaAFFPJEqBBG7AXRQcJLQyjWpGteZBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9kNzdlNjAtODkxNi00Zjk2LThlZDAt
ZTIxYzQzNmI2MmVmLzEvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi9kNzdlNjAtODkxNi00Zjk2LThlZDAtZTIxYzQzNmI2MmVm
LzEvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd8oD7vP+
eJdzbtQMekEVKFjJP0F/4G13u2adKZAhlmdvHzO69B0L648NZOYa5kYr7ERCdCzw
wkzp87v0w9QTMFPozrERqydi8Nhjblx6jXnw8R7k087IimEENHAWqt7NFv/j3mEC
NSMdHjHtZoP8hpscO0Z5Zul1MHfF4dqjm9K3ftRGNbRgR5FMh/Vdgj+LIFXu6aY5
7DKWSIW5SfRwfZSEksJYgwSM+w2dgQZ9QoniAFgIVYlM6XgtVShzvFN42xJ8J1H7
yZzVsNmWfc/BqXqOeA7sYu6zpqj5hkuKkNww+t7iJrU25C4s/p2t6iMXJYC3YPyv
3ATbbcV+s6IzbA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 07:34:35 2025 by rpki-client