Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
File: sXQMTAefLR3uhUOfgngbm651apU.mft (raw, json)
Hash identifier: vKjVv0lkY0/X2IJdz4CE6Xk8KdJb1cjVQXt7oT2Ua0Q=
Subject key identifier: 07:51:1E:38:8F:C5:BF:A5:F5:37:86:21:97:08:A9:30:08:2A:51:46
Authority key identifier: B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
Certificate issuer: /CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Certificate serial: 0197462FC23E395586E472578870761E7DA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
Manifest number: 11C7
Signing time: Fri 06 Jun 2025 17:00:24 +0000
Manifest this update: Fri 06 Jun 2025 17:00:24 +0000
Manifest next update: Sat 07 Jun 2025 17:00:24 +0000
Files and hashes: 1: 0kGm7IS6foM84ApNB5wMBZmcs70.roa (hash: fsNAu7RVtrbBsKEN64Ou91zqn3ieSIW0lwlDv3luCl0=)
2: QHGLz4vDf8HU0PXuv58AHJKDNwE.roa (hash: zsAsJqx3Xlx/j+LLE8QbsIeKt4A9wuocERvf2nTmf7A=)
3: Sz2kPMld2S0NhbWe3VBXUQg4E_g.roa (hash: CgZe2V9k88f5ug37ai2G7ohUxSeYSwTeyOJXFySNdfc=)
4: sXQMTAefLR3uhUOfgngbm651apU.crl (hash: lIPTgpJrFbssuJsDLahmi7SgBGuS8s9fK8kXEkuqEcQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:2f:c2:3e:39:55:86:e4:72:57:88:70:76:1e:7d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Validity
Not Before: Jun 6 17:00:24 2025 GMT
Not After : Jun 7 17:00:24 2025 GMT
Subject: CN=07511e388fc5bfa5f53786219708a930082a5146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d7:56:65:db:27:30:96:b6:4b:36:98:aa:ad:
7d:73:f1:40:3b:54:4c:fb:a0:7b:29:1b:0f:b3:9c:
85:53:cc:ca:36:1a:61:cf:73:6e:10:60:e3:55:6b:
57:69:30:60:70:cb:4c:31:9b:79:e7:b8:ca:94:96:
7b:5e:18:d8:d1:41:b5:bf:cf:8d:46:05:ae:8d:c2:
f2:cd:03:75:38:57:4d:66:17:ab:b5:ec:09:bf:26:
51:ff:50:73:1d:39:e8:a8:93:a1:2e:ad:d4:95:91:
5c:1b:3d:6d:7f:ea:dd:20:e6:2b:45:8b:6f:d0:e7:
2e:16:c6:53:bd:1e:44:10:bc:78:cd:55:ad:5f:a2:
24:d5:be:61:b2:9a:98:84:86:a4:6a:9b:6d:f6:43:
06:b6:0d:f1:44:1e:68:86:c4:b3:79:6a:74:bb:dd:
d0:8c:69:99:67:71:e8:de:83:c8:cc:b4:bb:6a:a4:
ac:44:59:fe:89:ce:a4:af:c6:10:53:29:48:83:27:
fa:19:4f:51:45:71:14:e2:4a:48:57:6a:a7:b5:9a:
36:4c:03:c3:8d:d7:3f:ec:5d:e0:64:ad:33:79:bd:
5e:a2:32:d8:75:40:33:be:35:45:07:fb:dc:c1:22:
86:6b:b8:c8:55:84:31:2d:58:ea:55:4a:ef:60:d6:
54:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:51:1E:38:8F:C5:BF:A5:F5:37:86:21:97:08:A9:30:08:2A:51:46
X509v3 Authority Key Identifier:
keyid:B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:82:cf:d9:9b:a8:85:2a:32:e8:d9:3a:1c:52:86:59:08:25:
4e:cf:8e:db:da:e9:c5:72:e6:bc:0c:50:a4:8c:f2:a0:33:cd:
5d:1f:38:c3:a7:71:9b:2a:71:7f:c5:a9:51:83:c0:e0:72:06:
d4:5c:61:6a:41:6d:3a:78:a7:ef:83:7b:17:76:6c:93:4e:80:
43:ab:54:01:9b:d0:b2:d6:16:64:1a:15:d9:ff:23:45:96:92:
95:4f:e9:49:a7:2c:73:a7:9f:ba:fa:e5:b0:c5:0a:34:57:a0:
9f:fe:e3:47:e9:ff:f7:2b:95:2e:48:7f:65:f3:f1:e1:e7:3e:
53:f2:57:1b:77:66:f6:b5:34:b4:43:92:88:56:46:0a:e7:1b:
88:e9:6a:d2:f3:95:3f:5f:6d:63:f5:db:94:13:5b:aa:d0:80:
80:11:f5:5a:f0:8d:6f:42:42:32:d7:43:c1:77:1d:c6:cb:45:
91:c9:c2:3a:bc:c3:4c:5d:36:cd:8f:c6:f0:a0:e7:66:fd:a7:
78:41:b1:eb:71:a2:2d:ad:e5:27:c7:3b:c8:85:59:60:ba:77:
e4:6c:cb:b2:91:c1:5b:59:ed:1b:e3:b6:1e:83:8d:37:b9:1c:
90:53:e2:0a:ec:1e:13:a3:62:fa:5e:16:a5:4d:67:fc:0c:b0:
b2:3e:9c:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGL8I+OVWG5HJXiHB2Hn2nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNzQwYzRjMDc5ZjJkMWRlZTg1NDM5ZjgyNzgxYjliYWU3
NTZhOTUwHhcNMjUwNjA2MTcwMDI0WhcNMjUwNjA3MTcwMDI0WjAzMTEwLwYDVQQD
EygwNzUxMWUzODhmYzViZmE1ZjUzNzg2MjE5NzA4YTkzMDA4MmE1MTQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiddWZdsnMJa2SzaYqq19c/FAO1RM
+6B7KRsPs5yFU8zKNhphz3NuEGDjVWtXaTBgcMtMMZt557jKlJZ7XhjY0UG1v8+N
RgWujcLyzQN1OFdNZhertewJvyZR/1BzHTnoqJOhLq3UlZFcGz1tf+rdIOYrRYtv
0OcuFsZTvR5EELx4zVWtX6Ik1b5hspqYhIakaptt9kMGtg3xRB5ohsSzeWp0u93Q
jGmZZ3Ho3oPIzLS7aqSsRFn+ic6kr8YQUylIgyf6GU9RRXEU4kpIV2qntZo2TAPD
jdc/7F3gZK0zeb1eojLYdUAzvjVFB/vcwSKGa7jIVYQxLVjqVUrvYNZU5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAdRHjiPxb+l9TeGIZcIqTAIKlFGMB8GA1UdIwQY
MBaAFLF0DEwHny0d7oVDn4J4G5uudWqVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1hRTVRBZWZMUjN1aFVPZmduZ2JtNjUxYXBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83MmE0OTUtMmI1ZC00YTIzLTk5YzQt
ZWYwNjcxYzdjMGRmLzEvc1hRTVRBZWZMUjN1aFVPZmduZ2JtNjUxYXBVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi83MmE0OTUtMmI1ZC00YTIzLTk5YzQtZWYwNjcxYzdjMGRm
LzEvc1hRTVRBZWZMUjN1aFVPZmduZ2JtNjUxYXBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaoLP2Zuo
hSoy6Nk6HFKGWQglTs+O29rpxXLmvAxQpIzyoDPNXR84w6dxmypxf8WpUYPA4HIG
1FxhakFtOnin74N7F3Zsk06AQ6tUAZvQstYWZBoV2f8jRZaSlU/pSacsc6efuvrl
sMUKNFegn/7jR+n/9yuVLkh/ZfPx4ec+U/JXG3dm9rU0tEOSiFZGCucbiOlq0vOV
P19tY/XblBNbqtCAgBH1WvCNb0JCMtdDwXcdxstFkcnCOrzDTF02zY/G8KDnZv2n
eEGx63GiLa3lJ8c7yIVZYLp35GzLspHBW1ntG+O2HoONN7kckFPiCuweE6Ni+l4W
pU1n/Aywsj6caw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 03:17:26 2025 by rpki-client