Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
File: 0jtkd-HIT1KQfNYMY-qD715Kx4I.mft (raw, json)
Hash identifier: L9Y8w2sj5u3Edy2G19Jgfi0H5UEPKZRjwAMrAYnO2U4=
Subject key identifier: 63:BF:C7:BB:AF:53:BC:F0:5D:33:A9:07:11:74:22:46:FA:6B:B5:10
Authority key identifier: D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
Certificate issuer: /CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Certificate serial: 019753B4831F0BA3946CCED6D2643B99FD06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
Manifest number: 08CE
Signing time: Mon 09 Jun 2025 08:00:28 +0000
Manifest this update: Mon 09 Jun 2025 08:00:28 +0000
Manifest next update: Tue 10 Jun 2025 08:00:28 +0000
Files and hashes: 1: 0jtkd-HIT1KQfNYMY-qD715Kx4I.crl (hash: ybzaMkWc8cbr2T4XOGFlIjDm+Pk4JwepZULlHCqPNJk=)
2: 99RaY9xH4qOYuC0KdiJQrFMbC5E.roa (hash: TZUHN/mcHmz7AzTn504QkH94CMbEPlnfBvzJqjhXWtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:b4:83:1f:0b:a3:94:6c:ce:d6:d2:64:3b:99:fd:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Validity
Not Before: Jun 9 08:00:28 2025 GMT
Not After : Jun 10 08:00:28 2025 GMT
Subject: CN=63bfc7bbaf53bcf05d33a90711742246fa6bb510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ed:58:05:8b:57:d2:57:85:fc:fc:2f:ad:b6:
0d:54:a2:12:9e:bb:a2:95:52:65:df:76:8e:80:13:
27:3e:81:1c:0a:a4:fd:de:03:40:47:e0:c1:e8:30:
57:44:c0:c2:42:56:57:8f:29:2c:51:88:5b:73:eb:
0e:ab:51:c8:da:17:d3:1e:73:ba:e6:c7:cd:90:5d:
4d:49:b1:ad:98:3f:45:d3:06:c3:d1:15:b8:11:a0:
d1:38:58:80:9e:e6:b3:78:ab:6a:db:9b:6f:63:53:
bb:f1:f0:21:ee:47:c5:32:ed:ea:12:e5:c5:cd:7e:
a7:d9:db:33:30:31:f4:0a:47:e2:c9:bc:0c:c0:27:
fd:9c:1d:13:eb:b7:bc:c3:b2:69:83:25:b1:78:62:
c2:2b:98:98:02:10:c4:e7:96:4f:f4:dc:9a:84:4a:
e2:15:a4:ed:85:4f:c4:9e:5a:0f:02:e4:1e:2c:62:
7a:aa:5c:c8:d1:41:e3:fa:de:ec:ab:60:60:82:02:
4f:ef:09:13:3e:cc:06:b1:dd:a7:29:c2:28:30:21:
0d:c3:3e:23:a3:5e:af:30:33:b7:e3:4e:7d:ff:8a:
66:23:f9:09:55:52:6d:a5:7d:89:97:ef:a5:6a:4a:
f5:03:08:9a:16:bc:e5:9f:77:4e:56:f8:b9:a7:f6:
3e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:BF:C7:BB:AF:53:BC:F0:5D:33:A9:07:11:74:22:46:FA:6B:B5:10
X509v3 Authority Key Identifier:
keyid:D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:7d:e9:dc:f3:f8:79:35:c9:b4:f8:1d:06:74:9f:97:b9:c1:
2a:04:8a:d3:94:09:ba:fd:91:2b:40:3c:0f:db:64:57:7e:2d:
1b:dd:5a:98:89:48:04:83:24:fc:00:9f:a3:11:2c:4a:ed:db:
eb:cf:07:a1:70:e1:d5:f2:20:8e:48:bd:d9:f9:a3:4f:67:5e:
a8:ad:60:42:c6:d9:97:b4:41:67:a9:bd:6b:09:ca:81:51:31:
bb:02:a6:bf:59:32:7a:49:6b:c7:bf:39:9e:ec:4f:6d:fe:c2:
c5:05:05:46:72:26:93:70:a0:a1:47:8c:ab:15:0a:eb:e9:d1:
97:d5:92:4a:c3:aa:39:22:74:6a:18:24:2a:d0:50:a2:e2:e8:
f9:55:68:14:e4:4a:fe:78:a7:fb:b4:76:88:89:a9:29:27:8d:
43:0a:54:b3:d7:22:72:90:83:d1:1b:8d:3f:61:25:b5:cd:a1:
1e:c9:c4:92:45:a2:f6:e7:9b:0c:e0:33:d4:c0:cd:4c:fc:43:
61:be:26:75:54:f4:02:54:c8:79:0e:db:4b:c2:93:ad:aa:90:
51:39:3e:b1:d5:2e:cc:7b:04:b2:d5:bd:76:24:50:5c:a4:ef:
6e:9e:a2:c7:09:a9:28:bf:78:a2:32:af:be:a0:06:c5:8c:7a:
37:0d:3f:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdTtIMfC6OUbM7W0mQ7mf0GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyM2I2NDc3ZTFjODRmNTI5MDdjZDYwYzYzZWE4M2VmNWU0
YWM3ODIwHhcNMjUwNjA5MDgwMDI4WhcNMjUwNjEwMDgwMDI4WjAzMTEwLwYDVQQD
Eyg2M2JmYzdiYmFmNTNiY2YwNWQzM2E5MDcxMTc0MjI0NmZhNmJiNTEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArO1YBYtX0leF/PwvrbYNVKISnrui
lVJl33aOgBMnPoEcCqT93gNAR+DB6DBXRMDCQlZXjyksUYhbc+sOq1HI2hfTHnO6
5sfNkF1NSbGtmD9F0wbD0RW4EaDROFiAnuazeKtq25tvY1O78fAh7kfFMu3qEuXF
zX6n2dszMDH0CkfiybwMwCf9nB0T67e8w7JpgyWxeGLCK5iYAhDE55ZP9NyahEri
FaTthU/EnloPAuQeLGJ6qlzI0UHj+t7sq2BgggJP7wkTPswGsd2nKcIoMCENwz4j
o16vMDO34059/4pmI/kJVVJtpX2Jl++lakr1AwiaFrzln3dOVvi5p/Y+iQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGO/x7uvU7zwXTOpBxF0Ikb6a7UQMB8GA1UdIwQY
MBaAFNI7ZHfhyE9SkHzWDGPqg+9eSseCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGp0a2QtSElUMUtRZk5ZTVktcUQ3MTVLeDRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS80NTU5ZmQtYjQwOS00NzljLWE0MGYt
MjI1NTU4NWRkZWNiLzEvMGp0a2QtSElUMUtRZk5ZTVktcUQ3MTVLeDRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS80NTU5ZmQtYjQwOS00NzljLWE0MGYtMjI1NTU4NWRkZWNi
LzEvMGp0a2QtSElUMUtRZk5ZTVktcUQ3MTVLeDRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhH3p3PP4
eTXJtPgdBnSfl7nBKgSK05QJuv2RK0A8D9tkV34tG91amIlIBIMk/ACfoxEsSu3b
688HoXDh1fIgjki92fmjT2deqK1gQsbZl7RBZ6m9awnKgVExuwKmv1kyeklrx785
nuxPbf7CxQUFRnImk3CgoUeMqxUK6+nRl9WSSsOqOSJ0ahgkKtBQouLo+VVoFORK
/nin+7R2iImpKSeNQwpUs9cicpCD0RuNP2Eltc2hHsnEkkWi9uebDOAz1MDNTPxD
Yb4mdVT0AlTIeQ7bS8KTraqQUTk+sdUuzHsEstW9diRQXKTvbp6ixwmpKL94ojKv
vqAGxYx6Nw0/qA==
-----END CERTIFICATE-----
Generated at Mon Jun 9 14:37:46 2025 by rpki-client