Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
File: tMBDnHlVURAtbx5M620cUvvF6j8.mft (raw, json)
Hash identifier: n8CboX0WuP2zFSBdKT8kGWFco/t8WKsu0bgVVQkfC28=
Subject key identifier: 96:19:C1:C0:6C:3A:3A:DD:F2:6A:77:C8:F4:81:5E:2A:43:14:C0:66
Authority key identifier: B4:C0:43:9C:79:55:51:10:2D:6F:1E:4C:EB:6D:1C:52:FB:C5:EA:3F
Certificate issuer: /CN=b4c0439c795551102d6f1e4ceb6d1c52fbc5ea3f
Certificate serial: 0197470BBC67EFCC936433CB647444FE6147
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
Manifest number: 157D
Signing time: Fri 06 Jun 2025 21:00:40 +0000
Manifest this update: Fri 06 Jun 2025 21:00:40 +0000
Manifest next update: Sat 07 Jun 2025 21:00:40 +0000
Files and hashes: 1: n5jiYoIoGZQqwQOVrCfprt-PApk.roa (hash: MrCF/3iJ71+/LWf1gBDblDTWmF567DIjZvwBvhh1aT0=)
2: tMBDnHlVURAtbx5M620cUvvF6j8.crl (hash: hwjSAZXmp3HTvmgN7HYJUXmUPHmjb1P4INvWzMQes+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:bc:67:ef:cc:93:64:33:cb:64:74:44:fe:61:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4c0439c795551102d6f1e4ceb6d1c52fbc5ea3f
Validity
Not Before: Jun 6 21:00:40 2025 GMT
Not After : Jun 7 21:00:40 2025 GMT
Subject: CN=9619c1c06c3a3addf26a77c8f4815e2a4314c066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:72:8f:3b:e9:3a:59:01:02:03:97:38:aa:23:
0d:e4:10:6b:42:08:a5:b5:d5:fd:73:34:8d:9e:c9:
4e:8c:d7:a5:1c:52:33:ef:76:26:48:2a:77:76:e0:
0d:0d:65:93:c2:cc:d5:1e:5e:5e:5c:50:75:d1:39:
bc:2d:73:d6:2f:34:61:2f:16:1c:a4:2c:15:44:b9:
39:38:8e:c7:91:97:1c:6f:39:11:02:21:68:1a:95:
4c:9a:52:aa:a6:fc:9a:6e:31:8d:4e:01:bb:98:5b:
e4:d6:e5:93:fc:fa:4a:9d:42:87:6d:7b:4b:7f:9f:
b1:d8:8d:7d:04:ea:87:51:9d:32:fc:40:bb:51:0c:
c1:2b:29:96:72:6e:eb:1f:6b:5d:81:b0:22:00:e1:
a4:ba:82:74:75:e6:0e:d4:e1:c1:61:6b:1f:06:6e:
0c:21:ac:54:b9:54:38:13:5e:44:34:18:0a:a5:6f:
19:9a:46:f3:c4:38:5f:eb:76:7a:1a:cc:73:06:57:
22:10:b0:89:74:94:ac:64:07:dd:0b:72:14:8b:b0:
44:fd:ea:1d:24:49:86:46:23:f4:88:05:cd:16:ed:
c7:a3:18:42:58:fd:49:b6:2c:58:91:a6:b9:70:27:
a1:5f:14:fe:3f:27:f3:8f:20:bd:3f:59:38:80:c1:
5e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:19:C1:C0:6C:3A:3A:DD:F2:6A:77:C8:F4:81:5E:2A:43:14:C0:66
X509v3 Authority Key Identifier:
keyid:B4:C0:43:9C:79:55:51:10:2D:6F:1E:4C:EB:6D:1C:52:FB:C5:EA:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:74:77:a5:0b:d6:7e:28:a1:31:72:17:7e:e8:81:a5:b9:3e:
3b:f7:3f:ae:a7:57:3f:1b:de:ab:b2:c0:88:a3:c5:b4:7b:8c:
9e:e2:02:70:ca:ac:0d:83:6e:63:4b:d8:9c:fe:e4:e2:69:98:
11:38:64:aa:cc:90:2d:a6:1e:25:d3:7e:cc:09:19:01:52:28:
48:d3:38:d5:00:f5:15:85:3c:60:f3:bf:e1:2e:07:04:74:70:
ed:c3:50:c3:18:e8:10:ff:a7:a6:aa:5c:73:ce:94:a8:91:ca:
d4:1f:80:c1:89:d9:d8:f3:60:a6:d1:d3:a5:13:04:d0:05:96:
5b:72:a4:c8:e7:70:88:1e:8b:6b:1e:a4:0d:cd:fd:52:84:9f:
e0:7f:55:eb:af:10:95:da:93:68:22:68:a1:35:0f:28:54:13:
a4:4e:81:05:25:0f:6c:00:ff:9d:41:59:d0:3b:2a:f7:34:13:
74:4e:63:43:74:f2:42:82:3b:8c:cd:52:92:b6:0e:50:9a:96:
30:46:d2:f6:10:ab:61:74:ab:f6:49:22:96:96:bc:4d:87:36:
56:55:ff:08:9d:70:6b:88:57:39:35:f1:27:be:ce:f9:54:76:
0f:e5:17:3a:7b:40:e8:fe:e8:b2:69:74:3f:5e:00:e7:d9:85:
b2:56:67:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHC7xn78yTZDPLZHRE/mFHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0YzA0MzljNzk1NTUxMTAyZDZmMWU0Y2ViNmQxYzUyZmJj
NWVhM2YwHhcNMjUwNjA2MjEwMDQwWhcNMjUwNjA3MjEwMDQwWjAzMTEwLwYDVQQD
Eyg5NjE5YzFjMDZjM2EzYWRkZjI2YTc3YzhmNDgxNWUyYTQzMTRjMDY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3KPO+k6WQECA5c4qiMN5BBrQgil
tdX9czSNnslOjNelHFIz73YmSCp3duANDWWTwszVHl5eXFB10Tm8LXPWLzRhLxYc
pCwVRLk5OI7HkZccbzkRAiFoGpVMmlKqpvyabjGNTgG7mFvk1uWT/PpKnUKHbXtL
f5+x2I19BOqHUZ0y/EC7UQzBKymWcm7rH2tdgbAiAOGkuoJ0deYO1OHBYWsfBm4M
IaxUuVQ4E15ENBgKpW8ZmkbzxDhf63Z6GsxzBlciELCJdJSsZAfdC3IUi7BE/eod
JEmGRiP0iAXNFu3HoxhCWP1JtixYkaa5cCehXxT+PyfzjyC9P1k4gMFe9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJYZwcBsOjrd8mp3yPSBXipDFMBmMB8GA1UdIwQY
MBaAFLTAQ5x5VVEQLW8eTOttHFL7xeo/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdE1CRG5IbFZVUkF0Yng1TTYyMGNVdnZGNmo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy84NmJhMDItZjk3MC00ODY5LWJlMjct
ZThlZGU1YTJmODc1LzEvdE1CRG5IbFZVUkF0Yng1TTYyMGNVdnZGNmo4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy84NmJhMDItZjk3MC00ODY5LWJlMjctZThlZGU1YTJmODc1
LzEvdE1CRG5IbFZVUkF0Yng1TTYyMGNVdnZGNmo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQnR3pQvW
fiihMXIXfuiBpbk+O/c/rqdXPxveq7LAiKPFtHuMnuICcMqsDYNuY0vYnP7k4mmY
EThkqsyQLaYeJdN+zAkZAVIoSNM41QD1FYU8YPO/4S4HBHRw7cNQwxjoEP+npqpc
c86UqJHK1B+AwYnZ2PNgptHTpRME0AWWW3KkyOdwiB6Lax6kDc39UoSf4H9V668Q
ldqTaCJooTUPKFQTpE6BBSUPbAD/nUFZ0Dsq9zQTdE5jQ3TyQoI7jM1SkrYOUJqW
MEbS9hCrYXSr9kkilpa8TYc2VlX/CJ1wa4hXOTXxJ77O+VR2D+UXOntA6P7osml0
P14A59mFslZnTw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:25:21 2025 by rpki-client