Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
File: unnFAIApfLnMDMk07jifUMPnPUo.mft (raw, json)
Hash identifier: LiYK97qcIEQu9xReU6Nm23D6yKa0OYfhdVzrMVQsimo=
Subject key identifier: 83:B5:E8:D1:EB:B2:EA:0A:C3:EE:2A:F6:49:2B:C6:B3:44:0B:36:B9
Authority key identifier: BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
Certificate issuer: /CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Certificate serial: 01974C32654593DC7E05E78B4E505A0332F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
Manifest number: 044C
Signing time: Sat 07 Jun 2025 21:01:00 +0000
Manifest this update: Sat 07 Jun 2025 21:01:00 +0000
Manifest next update: Sun 08 Jun 2025 21:01:00 +0000
Files and hashes: 1: CpPRk_TNW4CH4jbImpFoaI2OcL4.roa (hash: eYYsy6V5aRdmdwv40uWtw/bgoED55t23eDlp8kMf818=)
2: unnFAIApfLnMDMk07jifUMPnPUo.crl (hash: zbDpBQ1+fT3Kp+pC6/f1h7O1xA0KgOWF1ucongKCAB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:65:45:93:dc:7e:05:e7:8b:4e:50:5a:03:32:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Validity
Not Before: Jun 7 21:01:00 2025 GMT
Not After : Jun 8 21:01:00 2025 GMT
Subject: CN=83b5e8d1ebb2ea0ac3ee2af6492bc6b3440b36b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:77:13:06:6b:c0:16:29:c1:bf:33:75:f5:9f:
e7:3f:d2:25:73:dc:7c:36:b5:0e:b7:72:36:8c:85:
80:9a:58:1d:e9:d5:3c:53:b9:d2:a1:a0:d0:92:1d:
50:5f:55:0d:77:8b:89:7d:7e:53:c6:9f:7b:0e:a3:
3f:6f:a6:67:bb:16:20:86:e8:b7:4c:8e:a4:52:8f:
ae:bc:ef:73:b2:71:49:35:0f:37:d9:cb:6a:71:21:
34:35:40:0d:e2:45:21:61:71:00:e3:3e:63:84:47:
18:4f:02:de:2f:7c:fb:41:ea:70:de:4c:eb:90:a5:
dd:69:36:a0:44:9c:16:5c:a0:8c:3f:87:6a:10:d0:
81:86:f8:21:f8:35:fa:1c:db:57:43:ed:ef:7c:d7:
73:8d:76:b3:b1:04:d5:13:0a:42:71:b0:01:53:6f:
f8:08:c2:a7:bc:53:1a:68:b7:84:96:83:56:a4:a0:
68:98:90:82:a8:f8:d0:42:84:3e:85:d6:6d:48:ba:
95:08:e8:90:ab:a3:29:a8:5e:30:59:a6:57:b9:a8:
7e:aa:b2:27:c3:23:8d:3c:e1:54:d8:a3:66:22:55:
30:d5:3e:7b:4f:08:46:2c:6f:b5:55:e1:8a:92:d1:
83:89:30:30:cb:e0:ca:76:68:f2:b7:e8:df:f3:fa:
38:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B5:E8:D1:EB:B2:EA:0A:C3:EE:2A:F6:49:2B:C6:B3:44:0B:36:B9
X509v3 Authority Key Identifier:
keyid:BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:49:e9:5e:07:40:4e:bd:04:2c:5e:92:65:8a:f5:62:dc:a9:
4d:1e:3d:e0:a3:6d:af:22:ac:b8:94:d2:d4:90:83:5d:10:15:
2b:80:bf:c1:a6:2f:98:00:28:50:54:8d:0e:ea:5f:a9:3f:15:
ce:cd:4a:48:38:45:2c:7e:44:9b:dc:df:85:1d:b9:78:ae:e2:
a5:62:d6:d2:68:bd:ca:7d:de:e1:fb:ea:d9:ba:12:97:eb:8d:
07:2a:d5:dd:34:6b:25:98:b2:dc:2b:44:09:57:3b:58:7e:db:
6f:72:d5:b7:c0:59:57:a3:5d:7d:89:31:28:06:52:cb:a9:df:
1c:81:97:70:49:3c:7f:fe:d1:69:5c:4b:1a:b5:fd:3b:6a:f6:
9f:0f:23:b5:d2:30:af:27:1f:da:0a:ef:e3:65:3d:d4:f6:64:
99:f8:a4:91:e7:d6:5e:be:1c:17:03:f4:82:36:b7:d1:77:ce:
d1:65:7d:c0:bc:95:94:d7:41:de:60:7a:33:38:84:3d:83:73:
05:c4:e7:d6:d4:c0:d0:24:0e:df:57:6d:1c:fc:c7:e8:db:69:
3d:2b:82:a6:0b:4b:83:2d:7b:11:90:bc:19:49:0f:9b:4b:65:
77:d0:b6:47:26:cc:24:5b:ef:cf:67:d7:25:1b:39:c1:27:4c:
36:89:1e:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMMmVFk9x+BeeLTlBaAzLwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNzljNTAwODAyOTdjYjljYzBjYzkzNGVlMzg5ZjUwYzNl
NzNkNGEwHhcNMjUwNjA3MjEwMTAwWhcNMjUwNjA4MjEwMTAwWjAzMTEwLwYDVQQD
Eyg4M2I1ZThkMWViYjJlYTBhYzNlZTJhZjY0OTJiYzZiMzQ0MGIzNmI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3cTBmvAFinBvzN19Z/nP9Ilc9x8
NrUOt3I2jIWAmlgd6dU8U7nSoaDQkh1QX1UNd4uJfX5Txp97DqM/b6ZnuxYghui3
TI6kUo+uvO9zsnFJNQ832ctqcSE0NUAN4kUhYXEA4z5jhEcYTwLeL3z7Qepw3kzr
kKXdaTagRJwWXKCMP4dqENCBhvgh+DX6HNtXQ+3vfNdzjXazsQTVEwpCcbABU2/4
CMKnvFMaaLeEloNWpKBomJCCqPjQQoQ+hdZtSLqVCOiQq6MpqF4wWaZXuah+qrIn
wyONPOFU2KNmIlUw1T57TwhGLG+1VeGKktGDiTAwy+DKdmjyt+jf8/o4dwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIO16NHrsuoKw+4q9kkrxrNECza5MB8GA1UdIwQY
MBaAFLp5xQCAKXy5zAzJNO44n1DD5z1KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW5uRkFJQXBmTG5NRE1rMDdqaWZVTVBuUFVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9hNjIxYTgtZTA3OS00YTE0LTk4YmEt
ZTM2YTk3OTNlYTZkLzEvdW5uRkFJQXBmTG5NRE1rMDdqaWZVTVBuUFVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9hNjIxYTgtZTA3OS00YTE0LTk4YmEtZTM2YTk3OTNlYTZk
LzEvdW5uRkFJQXBmTG5NRE1rMDdqaWZVTVBuUFVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE0npXgdA
Tr0ELF6SZYr1YtypTR494KNtryKsuJTS1JCDXRAVK4C/waYvmAAoUFSNDupfqT8V
zs1KSDhFLH5Em9zfhR25eK7ipWLW0mi9yn3e4fvq2boSl+uNByrV3TRrJZiy3CtE
CVc7WH7bb3LVt8BZV6NdfYkxKAZSy6nfHIGXcEk8f/7RaVxLGrX9O2r2nw8jtdIw
rycf2grv42U91PZkmfikkefWXr4cFwP0gja30XfO0WV9wLyVlNdB3mB6MziEPYNz
BcTn1tTA0CQO31dtHPzH6NtpPSuCpgtLgy17EZC8GUkPm0tld9C2RybMJFvvz2fX
JRs5wSdMNokeFw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:21:52 2025 by rpki-client