Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/f3YJUscz9vLuklTtzRTg2qeLOIw.mft
File: f3YJUscz9vLuklTtzRTg2qeLOIw.mft (raw, json)
Hash identifier: duWqwpIUaJuDezNblSlnSC6NWUxf1bDTXjD2h2mPQJs=
Subject key identifier: C5:42:DC:AF:7F:94:E4:76:27:4A:D9:4E:9F:34:36:18:50:FC:B8:81
Authority key identifier: 7F:76:09:52:C7:33:F6:F2:EE:92:54:ED:CD:14:E0:DA:A7:8B:38:8C
Certificate issuer: /CN=7f760952c733f6f2ee9254edcd14e0daa78b388c
Certificate serial: 019748C310C59DE722FFF616C4810DD1DD65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f3YJUscz9vLuklTtzRTg2qeLOIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/f3YJUscz9vLuklTtzRTg2qeLOIw.mft
Manifest number: 0360
Signing time: Sat 07 Jun 2025 05:00:32 +0000
Manifest this update: Sat 07 Jun 2025 05:00:32 +0000
Manifest next update: Sun 08 Jun 2025 05:00:32 +0000
Files and hashes: 1: ZCBQTSRDp2Vji2C9hSrbiPFq7OY.roa (hash: PB9NVbc1SKDdgUUB+S0NaDZM0GQCTky3OkA9OktttX0=)
2: f3YJUscz9vLuklTtzRTg2qeLOIw.crl (hash: rbAfaZYrVeNFNrl6H27aKtEHMa8v2I6Lh/Bn8vPuAL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/f3YJUscz9vLuklTtzRTg2qeLOIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/f3YJUscz9vLuklTtzRTg2qeLOIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/f3YJUscz9vLuklTtzRTg2qeLOIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:10:c5:9d:e7:22:ff:f6:16:c4:81:0d:d1:dd:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f760952c733f6f2ee9254edcd14e0daa78b388c
Validity
Not Before: Jun 7 05:00:32 2025 GMT
Not After : Jun 8 05:00:32 2025 GMT
Subject: CN=c542dcaf7f94e476274ad94e9f34361850fcb881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:96:e0:8c:b3:21:b3:6e:2e:82:f1:bc:1c:cc:
ea:e9:db:59:14:05:2c:70:1d:cd:f3:51:3f:3b:29:
1f:3f:e9:64:ec:90:3c:57:c1:ad:0f:27:38:d5:d9:
2f:a0:ee:b3:d2:41:71:1e:f5:43:55:20:46:ec:a5:
a6:52:bf:5a:d3:08:31:7d:f6:a2:b6:04:d0:b1:c8:
7f:65:7e:6c:17:25:ea:7a:1c:b3:ed:a9:5e:f9:9d:
57:ef:fc:26:70:06:52:de:99:f1:a0:b5:ae:86:85:
82:59:fe:f7:24:00:20:6b:35:34:33:07:50:c6:11:
61:c7:0b:3e:4c:1d:d2:b0:96:c5:81:d8:65:32:71:
9b:47:27:6f:0e:11:0a:c0:88:27:7b:08:b3:68:30:
ed:4e:8e:68:a8:c1:3f:0c:c2:98:a2:f4:f9:b2:7a:
8c:24:5f:4a:61:54:5c:4f:8a:f5:fc:05:c0:32:6e:
44:1a:05:bb:f0:d7:32:dc:f4:80:25:19:de:95:01:
83:49:c5:8b:20:e7:c1:0e:0c:7e:8b:47:76:b3:d2:
ab:99:a2:b6:85:47:17:35:d6:56:98:d4:f5:75:65:
d4:d4:b2:d0:f9:02:3d:41:23:02:e9:75:8a:c5:4d:
5d:5e:c8:4e:33:47:34:19:e4:a2:9a:33:86:f7:d0:
3b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:42:DC:AF:7F:94:E4:76:27:4A:D9:4E:9F:34:36:18:50:FC:B8:81
X509v3 Authority Key Identifier:
keyid:7F:76:09:52:C7:33:F6:F2:EE:92:54:ED:CD:14:E0:DA:A7:8B:38:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3YJUscz9vLuklTtzRTg2qeLOIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/f3YJUscz9vLuklTtzRTg2qeLOIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/f3YJUscz9vLuklTtzRTg2qeLOIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:6b:bf:82:fc:a1:c1:74:fe:ab:53:fc:04:fb:09:3f:09:e5:
62:b3:db:4c:94:eb:aa:66:93:6e:c6:7a:d4:07:d4:34:74:c1:
35:5f:ed:87:6c:b2:ad:9c:f1:88:29:55:ee:e8:b4:20:36:6d:
89:46:33:4d:a1:c8:50:09:ec:39:82:3b:b6:8e:b8:1f:02:c1:
18:1e:66:f3:d4:c9:c8:e0:d7:b9:5a:44:5c:1d:11:31:02:e0:
8b:58:56:1b:36:43:3e:93:92:df:dd:99:cf:f3:dd:12:3e:b4:
f2:89:72:3f:07:6b:20:05:22:ad:73:b3:1d:36:95:29:66:fb:
36:61:e2:f8:08:1b:aa:10:f6:76:a5:2f:c0:08:b0:b9:66:04:
36:d6:ab:34:5c:43:52:3d:36:ea:bb:04:a7:fa:c7:97:2a:03:
17:f1:96:46:a0:55:f1:7d:5b:d6:b2:51:f5:56:19:14:1d:b7:
61:d8:98:b0:84:b1:4b:50:0a:e1:13:19:d0:01:a1:78:45:84:
ad:9a:42:1e:78:24:73:7a:82:31:dd:41:4e:70:4b:e7:88:9f:
b7:01:05:9c:67:3d:37:0c:ba:df:80:6a:e0:be:0c:26:9c:01:
57:2c:f7:d8:39:9c:4b:1a:06:28:d5:df:0c:24:ec:ff:4b:53:
de:95:a7:5a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIwxDFneci//YWxIEN0d1lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmNzYwOTUyYzczM2Y2ZjJlZTkyNTRlZGNkMTRlMGRhYTc4
YjM4OGMwHhcNMjUwNjA3MDUwMDMyWhcNMjUwNjA4MDUwMDMyWjAzMTEwLwYDVQQD
EyhjNTQyZGNhZjdmOTRlNDc2Mjc0YWQ5NGU5ZjM0MzYxODUwZmNiODgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJbgjLMhs24ugvG8HMzq6dtZFAUs
cB3N81E/OykfP+lk7JA8V8GtDyc41dkvoO6z0kFxHvVDVSBG7KWmUr9a0wgxffai
tgTQsch/ZX5sFyXqehyz7ale+Z1X7/wmcAZS3pnxoLWuhoWCWf73JAAgazU0MwdQ
xhFhxws+TB3SsJbFgdhlMnGbRydvDhEKwIgnewizaDDtTo5oqME/DMKYovT5snqM
JF9KYVRcT4r1/AXAMm5EGgW78Ncy3PSAJRnelQGDScWLIOfBDgx+i0d2s9KrmaK2
hUcXNdZWmNT1dWXU1LLQ+QI9QSMC6XWKxU1dXshOM0c0GeSimjOG99A7DQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMVC3K9/lOR2J0rZTp80NhhQ/LiBMB8GA1UdIwQY
MBaAFH92CVLHM/by7pJU7c0U4NqniziMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjNZSlVzY3o5dkx1a2xUdHpSVGcycWVMT0l3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9iNjRhNTktOWZlZC00MWRhLWI4MzUt
OWFlODgwOWM4NTE1LzEvZjNZSlVzY3o5dkx1a2xUdHpSVGcycWVMT0l3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9iNjRhNTktOWZlZC00MWRhLWI4MzUtOWFlODgwOWM4NTE1
LzEvZjNZSlVzY3o5dkx1a2xUdHpSVGcycWVMT0l3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI2u/gvyh
wXT+q1P8BPsJPwnlYrPbTJTrqmaTbsZ61AfUNHTBNV/th2yyrZzxiClV7ui0IDZt
iUYzTaHIUAnsOYI7to64HwLBGB5m89TJyODXuVpEXB0RMQLgi1hWGzZDPpOS392Z
z/PdEj608olyPwdrIAUirXOzHTaVKWb7NmHi+AgbqhD2dqUvwAiwuWYENtarNFxD
Uj026rsEp/rHlyoDF/GWRqBV8X1b1rJR9VYZFB23YdiYsISxS1AK4RMZ0AGheEWE
rZpCHngkc3qCMd1BTnBL54iftwEFnGc9Nwy634Bq4L4MJpwBVyz32DmcSxoGKNXf
DCTs/0tT3pWnWg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:34:39 2025 by rpki-client