Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
File: gEH-6hI_ywfocqjLS92at7jaL88.mft (raw, json)
Hash identifier: s1q/NiHrVzhpBED58WuDKIa7zXYH94qIBNeAFlmlmOM=
Subject key identifier: E5:61:62:7D:65:4F:08:8A:E5:2E:BE:CB:C7:19:82:E0:66:5F:1E:C5
Authority key identifier: 80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
Certificate issuer: /CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Certificate serial: 01975E6FA38B0262C93117222E88900B7212
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
Manifest number: 099E
Signing time: Wed 11 Jun 2025 10:01:04 +0000
Manifest this update: Wed 11 Jun 2025 10:01:04 +0000
Manifest next update: Thu 12 Jun 2025 10:01:04 +0000
Files and hashes: 1: 5QlNV7-3Q34zZfQ5XbNLc8wKA40.roa (hash: T1GmpANOUDoxZLUDnHoNMN2ENMK9C/xESzMwTNL0s2Y=)
2: gEH-6hI_ywfocqjLS92at7jaL88.crl (hash: 4bHryS5TEQsAzVMQcrz69GIfkyFG7m9IBubvvT4L2Mw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 10:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5e:6f:a3:8b:02:62:c9:31:17:22:2e:88:90:0b:72:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Validity
Not Before: Jun 11 10:01:04 2025 GMT
Not After : Jun 12 10:01:04 2025 GMT
Subject: CN=e561627d654f088ae52ebecbc71982e0665f1ec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b0:c0:7c:93:dd:58:e4:27:ec:40:88:fc:b8:
58:27:c1:c1:fb:75:a3:17:d6:4f:96:8b:70:86:05:
5b:7e:b5:52:02:d0:de:5d:b1:dd:54:f1:d9:cb:f0:
1a:ac:b5:42:8a:ee:07:b0:cb:59:72:b9:4b:2b:a9:
36:b4:00:b6:8b:15:2e:16:6f:4c:f9:fe:0d:a5:41:
0c:2f:d0:ea:45:f0:a0:2a:a5:4d:b7:8b:4b:0c:b3:
cc:9c:18:fe:0d:21:1f:1f:97:65:45:bd:a1:10:79:
0f:89:bc:0b:a1:f2:56:b1:3f:01:3f:77:d4:f0:e8:
41:46:a3:90:f5:ea:1c:81:c4:4e:d6:1a:42:26:94:
27:b8:c0:73:85:62:41:79:a3:87:67:c1:0f:17:39:
f2:b1:0c:01:46:78:4e:10:46:cd:ad:3f:16:11:a6:
5c:96:42:46:17:cb:8e:03:69:1e:c8:e1:ed:fb:25:
64:d5:6e:c6:82:7d:d0:c1:54:a1:b6:b9:c3:4a:5b:
3c:0a:1b:a2:7a:4a:67:0f:48:00:2b:3b:07:de:2b:
7a:67:99:fa:65:c1:d0:be:98:36:77:15:7a:ff:65:
55:9d:68:b5:eb:5c:4d:0d:71:c8:64:aa:3e:14:6f:
e7:73:1c:14:fe:cd:54:d7:8f:60:70:e2:44:76:9f:
1c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:61:62:7D:65:4F:08:8A:E5:2E:BE:CB:C7:19:82:E0:66:5F:1E:C5
X509v3 Authority Key Identifier:
keyid:80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:ae:a8:b8:e9:21:46:7e:96:4a:c5:c4:16:9b:7e:54:30:73:
0b:e8:69:b7:ed:8c:b4:74:d0:a9:51:be:8f:72:95:5d:f2:ca:
61:ae:4f:ee:38:cd:32:dc:89:92:3b:08:a9:2a:a0:39:70:fa:
ad:3b:5e:37:5b:df:07:6f:ee:b2:b6:e1:b0:38:e8:8a:6c:66:
c9:01:17:9d:f6:3e:5f:06:ae:80:66:5b:0a:a3:9e:2a:0f:8f:
41:4c:2a:a3:54:3b:08:23:67:5d:d0:d1:34:68:38:22:b6:f7:
8b:7b:0f:96:b1:16:c5:62:2a:a5:ed:86:2a:44:41:95:a8:df:
21:62:79:55:26:1a:d7:11:35:fa:ac:73:3a:6a:50:33:a4:c6:
4a:f1:1e:26:86:50:07:a3:56:80:6e:8d:f9:ed:4e:bf:ac:f0:
e2:9c:7f:70:87:41:bb:96:92:51:b6:d4:07:30:c3:00:aa:0c:
d8:d6:04:3b:e8:51:46:7d:ae:aa:65:40:c9:32:3e:4b:eb:a0:
6e:50:83:08:62:23:1f:30:12:a8:21:32:5b:32:c1:a7:27:63:
62:84:8b:b0:df:1f:3b:c8:cf:0f:01:55:7f:0d:e5:32:62:95:
14:0b:5d:53:7f:a0:ac:ba:c9:6a:ea:c9:ff:8d:dd:09:e2:6b:
71:66:d2:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdeb6OLAmLJMRciLoiQC3ISMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwNDFmZWVhMTIzZmNiMDdlODcyYThjYjRiZGQ5YWI3Yjhk
YTJmY2YwHhcNMjUwNjExMTAwMTA0WhcNMjUwNjEyMTAwMTA0WjAzMTEwLwYDVQQD
EyhlNTYxNjI3ZDY1NGYwODhhZTUyZWJlY2JjNzE5ODJlMDY2NWYxZWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurDAfJPdWOQn7ECI/LhYJ8HB+3Wj
F9ZPlotwhgVbfrVSAtDeXbHdVPHZy/AarLVCiu4HsMtZcrlLK6k2tAC2ixUuFm9M
+f4NpUEML9DqRfCgKqVNt4tLDLPMnBj+DSEfH5dlRb2hEHkPibwLofJWsT8BP3fU
8OhBRqOQ9eocgcRO1hpCJpQnuMBzhWJBeaOHZ8EPFznysQwBRnhOEEbNrT8WEaZc
lkJGF8uOA2keyOHt+yVk1W7Ggn3QwVShtrnDSls8ChuiekpnD0gAKzsH3it6Z5n6
ZcHQvpg2dxV6/2VVnWi161xNDXHIZKo+FG/ncxwU/s1U149gcOJEdp8cLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOVhYn1lTwiK5S6+y8cZguBmXx7FMB8GA1UdIwQY
MBaAFIBB/uoSP8sH6HKoy0vdmre42i/PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0VILTZoSV95d2ZvY3FqTFM5MmF0N2phTDg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9kMzE3Y2EtMzk2MS00ZmUwLWJkZTgt
ZjdjNTAxNDE4ZTU2LzEvZ0VILTZoSV95d2ZvY3FqTFM5MmF0N2phTDg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi9kMzE3Y2EtMzk2MS00ZmUwLWJkZTgtZjdjNTAxNDE4ZTU2
LzEvZ0VILTZoSV95d2ZvY3FqTFM5MmF0N2phTDg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtq6ouOkh
Rn6WSsXEFpt+VDBzC+hpt+2MtHTQqVG+j3KVXfLKYa5P7jjNMtyJkjsIqSqgOXD6
rTteN1vfB2/usrbhsDjoimxmyQEXnfY+XwaugGZbCqOeKg+PQUwqo1Q7CCNnXdDR
NGg4Irb3i3sPlrEWxWIqpe2GKkRBlajfIWJ5VSYa1xE1+qxzOmpQM6TGSvEeJoZQ
B6NWgG6N+e1Ov6zw4px/cIdBu5aSUbbUBzDDAKoM2NYEO+hRRn2uqmVAyTI+S+ug
blCDCGIjHzASqCEyWzLBpydjYoSLsN8fO8jPDwFVfw3lMmKVFAtdU3+grLrJaurJ
/43dCeJrcWbS2A==
-----END CERTIFICATE-----
Generated at Wed Jun 11 20:44:28 2025 by rpki-client