Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
File: aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft (raw, json)
Hash identifier: rBTDbMeH2KJhw9xH1njejHle266elAtlbJtUi7xgbTk=
Subject key identifier: 01:45:64:15:92:FC:28:CE:96:95:F1:6B:05:18:01:CF:71:1E:8C:FF
Authority key identifier: 68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
Certificate issuer: /CN=683b33dc7218b3fe883c49505134cb39a664fd28
Certificate serial: 01974C324EDCA31ED5934550C35E62659CAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
Manifest number: 09E7
Signing time: Sat 07 Jun 2025 21:00:54 +0000
Manifest this update: Sat 07 Jun 2025 21:00:54 +0000
Manifest next update: Sun 08 Jun 2025 21:00:54 +0000
Files and hashes: 1: PecnHh8YFMYIBEgD1PQBC-sYFMY.roa (hash: G67Iyj0Q7isunYlJO9b465cfL0xQGyEo+TS/2SlDQcA=)
2: aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl (hash: fGNqnmN+Imdc4BjK/7sb4bnI7ZlZbmWHHOLzS2/ALdg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:4e:dc:a3:1e:d5:93:45:50:c3:5e:62:65:9c:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=683b33dc7218b3fe883c49505134cb39a664fd28
Validity
Not Before: Jun 7 21:00:54 2025 GMT
Not After : Jun 8 21:00:54 2025 GMT
Subject: CN=0145641592fc28ce9695f16b051801cf711e8cff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d7:f2:21:de:71:e9:25:5a:66:02:05:7e:68:
ff:23:17:eb:cf:ab:0b:69:5f:8b:4d:88:a5:42:59:
d1:a1:88:b7:af:04:c2:a8:2c:1a:a9:98:ff:c5:b6:
4a:d0:03:08:1a:da:5f:8b:69:47:08:12:cf:a6:71:
b2:df:8b:24:85:12:2e:b1:9d:df:8e:cd:2d:de:76:
ba:0d:d2:6c:ae:6f:35:a2:12:fe:7c:89:32:b6:25:
e4:d5:48:78:eb:d1:0f:dc:1f:ca:b6:23:23:03:6e:
e1:30:6e:7f:f2:2a:e5:7a:44:ce:a0:a9:74:b1:4e:
bd:3e:39:88:50:c9:bd:e6:c0:19:50:35:9c:f9:16:
df:89:c4:9f:33:6a:70:f7:80:7a:66:82:fb:75:73:
0e:82:ee:97:8c:43:81:95:f4:e8:c7:f7:db:82:6f:
73:3c:66:3e:eb:a2:d8:bf:9e:d9:e2:5b:2e:33:de:
4e:79:31:de:22:2c:c3:d7:d9:a8:fa:ea:fc:79:cc:
09:bc:f5:9c:94:52:e6:63:52:80:5d:28:76:12:84:
61:62:37:5e:3b:e6:28:fe:f8:39:e8:a6:ce:0f:fd:
84:8a:e0:69:10:a1:7a:cf:3c:82:a2:4b:30:4f:0a:
7c:70:a7:3c:01:c8:85:6c:19:93:1c:4c:e2:60:25:
b7:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:45:64:15:92:FC:28:CE:96:95:F1:6B:05:18:01:CF:71:1E:8C:FF
X509v3 Authority Key Identifier:
keyid:68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:df:f9:ef:de:c5:e1:b9:68:c8:d1:3e:cb:60:e9:43:fc:4e:
aa:ff:71:5c:5b:45:e0:d8:08:6e:de:ec:48:86:a0:77:bb:63:
04:da:07:15:ee:fa:95:2f:06:cf:53:d0:3f:e7:fa:e4:f7:18:
72:5a:1a:bf:e3:cd:fd:10:ab:42:bc:68:67:ed:cf:a5:7d:8e:
14:c7:fe:3b:d7:a3:5c:1d:41:84:1c:36:2c:b5:cc:79:06:23:
ae:22:88:23:2f:6d:b0:47:5c:20:be:68:a5:77:1e:0b:67:ac:
82:c7:e4:77:5e:de:c6:74:c4:10:18:d8:5d:2b:1d:23:8b:c0:
1b:b6:50:7c:89:6f:09:e2:97:eb:38:1c:15:8a:81:e1:ee:a4:
53:fc:d7:0f:57:72:1d:8f:91:6c:ee:8f:20:2d:20:6c:4e:23:
90:2f:01:ab:bf:dc:03:97:77:42:75:d3:db:5e:2f:23:22:e4:
be:7e:66:e0:f4:9a:a6:d1:ce:30:91:9a:0d:76:cc:00:72:d2:
67:0d:33:b7:40:ef:9d:80:d9:25:14:08:b3:5e:6e:07:eb:ef:
2e:99:c2:a0:33:e9:6f:cd:8b:9e:02:48:f4:d6:67:ce:c3:17:
74:36:2b:a7:dc:83:9d:d4:23:2f:8a:dc:e2:c9:62:77:dc:3d:
6b:1a:cc:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMMk7cox7Vk0VQw15iZZyvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4M2IzM2RjNzIxOGIzZmU4ODNjNDk1MDUxMzRjYjM5YTY2
NGZkMjgwHhcNMjUwNjA3MjEwMDU0WhcNMjUwNjA4MjEwMDU0WjAzMTEwLwYDVQQD
EygwMTQ1NjQxNTkyZmMyOGNlOTY5NWYxNmIwNTE4MDFjZjcxMWU4Y2ZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2tfyId5x6SVaZgIFfmj/Ixfrz6sL
aV+LTYilQlnRoYi3rwTCqCwaqZj/xbZK0AMIGtpfi2lHCBLPpnGy34skhRIusZ3f
js0t3na6DdJsrm81ohL+fIkytiXk1Uh469EP3B/KtiMjA27hMG5/8irlekTOoKl0
sU69PjmIUMm95sAZUDWc+RbficSfM2pw94B6ZoL7dXMOgu6XjEOBlfTox/fbgm9z
PGY+66LYv57Z4lsuM95OeTHeIizD19mo+ur8ecwJvPWclFLmY1KAXSh2EoRhYjde
O+Yo/vg56KbOD/2EiuBpEKF6zzyCokswTwp8cKc8AciFbBmTHEziYCW3kQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAFFZBWS/CjOlpXxawUYAc9xHoz/MB8GA1UdIwQY
MBaAFGg7M9xyGLP+iDxJUFE0yzmmZP0oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEt
MTRjNmI5NTRkOTc2LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEtMTRjNmI5NTRkOTc2
LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn9/5797F
4bloyNE+y2DpQ/xOqv9xXFtF4NgIbt7sSIagd7tjBNoHFe76lS8Gz1PQP+f65PcY
cloav+PN/RCrQrxoZ+3PpX2OFMf+O9ejXB1BhBw2LLXMeQYjriKIIy9tsEdcIL5o
pXceC2esgsfkd17exnTEEBjYXSsdI4vAG7ZQfIlvCeKX6zgcFYqB4e6kU/zXD1dy
HY+RbO6PIC0gbE4jkC8Bq7/cA5d3QnXT214vIyLkvn5m4PSaptHOMJGaDXbMAHLS
Zw0zt0DvnYDZJRQIs15uB+vvLpnCoDPpb82LngJI9NZnzsMXdDYrp9yDndQjL4rc
4slid9w9axrMtg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:21:42 2025 by rpki-client