Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
File: sG9AQEkaZW_3Um0vF2EbDWisvQw.mft (raw, json)
Hash identifier: dlzmbDgBPOtuhXYEayPHFz74qEUu6byQnA5VurN2SX8=
Subject key identifier: 39:68:50:F2:5E:69:1D:60:98:3B:14:93:D1:D7:A2:B7:4D:1E:7D:93
Authority key identifier: B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
Certificate issuer: /CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Certificate serial: 01974AB1AADAD91147DBE588F1213E0209D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 14:00:46 +0000
Manifest this update: Sat 07 Jun 2025 14:00:46 +0000
Manifest next update: Sun 08 Jun 2025 14:00:46 +0000
Files and hashes: 1: 3oQgBF8b0SlPmJhLRByZqFye4Kg.roa (hash: kYRYhVl9nNIlfjRJmfhpqtBDhLtp2pSGg+NrF/eLIP0=)
2: sG9AQEkaZW_3Um0vF2EbDWisvQw.crl (hash: CihaQUmm7EubEBGQamHo5tUg75ieIBrCFr2rsJ/XMGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:aa:da:d9:11:47:db:e5:88:f1:21:3e:02:09:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Validity
Not Before: Jun 7 14:00:46 2025 GMT
Not After : Jun 8 14:00:46 2025 GMT
Subject: CN=396850f25e691d60983b1493d1d7a2b74d1e7d93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:45:79:e1:9b:1f:ae:25:33:25:cc:8f:35:19:
75:69:bc:42:78:8a:af:17:7f:41:7f:4c:60:03:f7:
0e:43:cd:ec:bf:d9:a5:c7:86:12:f2:e0:29:ce:bf:
9d:dc:0b:42:d9:f7:27:da:ac:4e:a6:98:96:04:4f:
d5:84:f3:bd:04:31:59:d7:53:1f:ea:e7:a8:e3:51:
22:5a:50:4e:ee:69:99:f0:0b:6d:3d:41:8c:2b:1d:
d5:1f:d5:7c:50:7a:f5:95:21:66:10:36:be:e2:9a:
89:94:9e:f6:aa:19:dc:3d:e7:b5:fc:0e:54:ed:d3:
89:00:3f:83:5d:1e:b4:61:44:a5:bf:1f:f9:b3:b7:
bb:e6:f3:c9:6a:40:9a:af:73:24:0b:05:5e:09:8b:
d9:32:e9:e5:ca:38:34:60:6c:a3:77:eb:41:dc:22:
6f:f3:85:9c:58:24:e4:bc:7d:69:4f:bf:77:2b:85:
4e:aa:7f:e9:cc:ff:a6:79:c6:42:e0:ef:a6:55:1e:
94:ea:48:31:d3:44:27:27:78:b7:df:2d:d3:93:6a:
4c:ee:b4:ae:27:fc:c1:f1:68:63:68:e2:a9:ed:43:
46:6b:bf:78:9f:b6:4d:82:cc:4e:d0:32:92:de:6f:
8c:f2:6a:69:39:99:0a:f5:98:82:99:95:9b:e9:1c:
f3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:68:50:F2:5E:69:1D:60:98:3B:14:93:D1:D7:A2:B7:4D:1E:7D:93
X509v3 Authority Key Identifier:
keyid:B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:e7:b4:3d:65:a6:e9:39:36:22:58:23:04:06:a6:55:6e:c0:
b6:52:7d:d9:bc:2d:21:bf:f7:28:99:0e:21:6f:9d:21:ac:6a:
b9:13:1b:18:e8:75:84:8c:4e:bf:61:ec:ba:4d:af:a2:7c:d2:
74:9a:c3:77:55:ae:ac:91:9d:03:98:07:97:73:3c:3d:7a:8f:
c1:0b:25:1a:a7:ab:a0:35:56:ce:d7:db:88:27:42:34:be:56:
0a:5c:ec:d0:50:b4:94:a7:3f:cb:5a:1b:b6:04:d9:cf:3f:b5:
47:1e:8a:2a:4b:96:4a:1c:6a:40:0e:98:e1:5d:96:53:06:9b:
18:4a:7e:75:1a:ea:74:93:4b:cd:51:6d:d2:53:95:d1:df:aa:
7d:21:8f:cf:0b:57:5d:b2:f8:b8:2f:cc:41:cd:72:23:ae:c2:
a6:dd:fe:ec:a3:53:02:0d:f8:da:41:5b:c8:37:2e:f0:59:eb:
eb:20:b8:43:cd:01:6a:78:a2:af:09:2d:f6:b9:3f:d2:cb:53:
8c:30:9b:fd:ec:ae:ce:86:ed:0c:c1:be:1b:03:9f:fb:a5:71:
17:d5:a7:16:6b:df:29:9f:83:69:96:3e:a8:1a:4a:24:39:55:
f3:7b:f5:43:e3:ba:b4:5f:41:bd:49:6f:df:de:fb:de:7a:c3:
8d:a0:7d:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKsara2RFH2+WI8SE+AgnUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwNmY0MDQwNDkxYTY1NmZmNzUyNmQyZjE3NjExYjBkNjhh
Y2JkMGMwHhcNMjUwNjA3MTQwMDQ2WhcNMjUwNjA4MTQwMDQ2WjAzMTEwLwYDVQQD
EygzOTY4NTBmMjVlNjkxZDYwOTgzYjE0OTNkMWQ3YTJiNzRkMWU3ZDkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlEV54ZsfriUzJcyPNRl1abxCeIqv
F39Bf0xgA/cOQ83sv9mlx4YS8uApzr+d3AtC2fcn2qxOppiWBE/VhPO9BDFZ11Mf
6ueo41EiWlBO7mmZ8AttPUGMKx3VH9V8UHr1lSFmEDa+4pqJlJ72qhncPee1/A5U
7dOJAD+DXR60YUSlvx/5s7e75vPJakCar3MkCwVeCYvZMunlyjg0YGyjd+tB3CJv
84WcWCTkvH1pT793K4VOqn/pzP+mecZC4O+mVR6U6kgx00QnJ3i33y3Tk2pM7rSu
J/zB8WhjaOKp7UNGa794n7ZNgsxO0DKS3m+M8mppOZkK9ZiCmZWb6RzzwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDloUPJeaR1gmDsUk9HXordNHn2TMB8GA1UdIwQY
MBaAFLBvQEBJGmVv91JtLxdhGw1orL0MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0c5QVFFa2FaV18zVW0wdkYyRWJEV2lzdlF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9jZTBiMjEtZDY1Yy00MmU2LTg3NGIt
ZjRjYjg2N2Y5MGQ4LzEvc0c5QVFFa2FaV18zVW0wdkYyRWJEV2lzdlF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9jZTBiMjEtZDY1Yy00MmU2LTg3NGItZjRjYjg2N2Y5MGQ4
LzEvc0c5QVFFa2FaV18zVW0wdkYyRWJEV2lzdlF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQue0PWWm
6Tk2IlgjBAamVW7AtlJ92bwtIb/3KJkOIW+dIaxquRMbGOh1hIxOv2Hsuk2vonzS
dJrDd1WurJGdA5gHl3M8PXqPwQslGqeroDVWztfbiCdCNL5WClzs0FC0lKc/y1ob
tgTZzz+1Rx6KKkuWShxqQA6Y4V2WUwabGEp+dRrqdJNLzVFt0lOV0d+qfSGPzwtX
XbL4uC/MQc1yI67Cpt3+7KNTAg342kFbyDcu8Fnr6yC4Q80Baniirwkt9rk/0stT
jDCb/eyuzobtDMG+GwOf+6VxF9WnFmvfKZ+DaZY+qBpKJDlV83v1Q+O6tF9BvUlv
39773nrDjaB9sA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:32:36 2025 by rpki-client