Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
File: b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft (raw, json)
Hash identifier: yCr/M6lv3F6Yb6kIab8zD2wB+3g2/D6uQBiS8jcjwt8=
Subject key identifier: D9:2C:EC:65:A2:07:29:6B:50:B3:8C:2E:6E:76:43:0A:39:16:12:7A
Authority key identifier: 6F:A4:8E:96:19:74:26:E4:C5:EE:B4:23:E0:FD:9C:2E:95:2C:41:77
Certificate issuer: /CN=6fa48e96197426e4c5eeb423e0fd9c2e952c4177
Certificate serial: 01974A7AB53EB25A5E444CFA04BD07C0C238
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
Manifest number: 14BF
Signing time: Sat 07 Jun 2025 13:00:45 +0000
Manifest this update: Sat 07 Jun 2025 13:00:45 +0000
Manifest next update: Sun 08 Jun 2025 13:00:45 +0000
Files and hashes: 1: SAc4N5mOYskXXQItNaC6-fHezN4.roa (hash: 3vn4QWZ4UzqrNwc2gut08M7Edo0Fd06IMg0+84eAYXA=)
2: XVZjts2IAQT3D-3i0mJSagboiZ4.roa (hash: P8G3dqnA4ISbflUuxnqvGaJIWR204WqE02ZEJaENHX0=)
3: b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl (hash: QmfNEXDIB3oSH6YmZ0TFtNG4CWjAh9m8VnMit4C0ZRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:b5:3e:b2:5a:5e:44:4c:fa:04:bd:07:c0:c2:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fa48e96197426e4c5eeb423e0fd9c2e952c4177
Validity
Not Before: Jun 7 13:00:45 2025 GMT
Not After : Jun 8 13:00:45 2025 GMT
Subject: CN=d92cec65a207296b50b38c2e6e76430a3916127a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d6:52:8a:53:87:25:a9:f5:17:f5:83:fe:de:
d3:de:9b:eb:0b:44:76:ff:f7:9b:8a:ac:fd:28:a5:
f7:5a:38:aa:9a:4f:f7:2b:83:79:b2:a1:54:ce:25:
96:68:ee:8b:30:17:40:68:9d:6b:3c:bf:d4:a0:74:
9a:01:31:5a:c6:76:7c:7f:bf:1f:ae:0d:ff:b1:e8:
13:8f:0d:e6:d2:7d:90:15:78:cb:02:ff:7a:0c:e4:
2c:0b:7a:cc:d8:2b:be:23:60:57:35:29:84:19:8e:
01:93:cd:2f:03:78:de:12:3e:84:f9:43:f7:29:cf:
33:4a:df:57:ce:5f:19:af:87:ea:7c:5d:78:f2:1d:
ff:61:83:b9:03:6b:67:27:73:d9:64:cd:c0:e4:14:
54:f8:4b:4f:25:d8:c7:de:a8:fb:72:8a:23:4c:dd:
f8:90:fc:de:06:94:9f:21:81:7c:f8:26:50:4c:bc:
9e:53:36:2e:7f:22:04:ca:99:00:17:26:be:cd:06:
a2:b8:44:e8:86:2f:fa:96:c1:c2:70:04:be:5d:8c:
ce:ad:e1:16:76:cb:59:dc:f5:ae:8d:18:16:de:c0:
06:b2:37:b9:d1:c0:5d:6e:ba:5e:cc:eb:47:75:a5:
3e:93:44:50:d7:43:b6:9d:f8:62:63:ef:5c:1e:ac:
4b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:2C:EC:65:A2:07:29:6B:50:B3:8C:2E:6E:76:43:0A:39:16:12:7A
X509v3 Authority Key Identifier:
keyid:6F:A4:8E:96:19:74:26:E4:C5:EE:B4:23:E0:FD:9C:2E:95:2C:41:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:40:8e:4e:a9:65:7f:f0:56:b1:3f:2f:b9:53:4e:ae:66:42:
94:4b:c4:ee:aa:e7:c8:3e:a5:da:d9:5f:e6:32:b8:a2:3c:51:
0a:1c:bc:3c:47:26:09:62:1a:2b:84:1b:ca:84:31:2d:be:ba:
18:9c:86:0b:08:fa:c1:b8:e2:10:a3:b7:1b:3b:29:07:9b:7a:
88:1b:4d:7c:1c:24:42:2b:6e:58:d0:8a:f5:50:28:4f:c8:c8:
08:31:9e:fc:83:c7:b3:84:d0:99:07:2b:a5:99:31:41:f7:14:
0f:01:dc:b7:1f:03:1a:d5:f2:73:ec:94:89:0d:41:99:77:e3:
d6:2a:25:c1:29:38:de:a8:b8:a9:a3:a6:9a:5a:ce:b3:cc:70:
0e:54:bd:af:f5:93:a2:eb:58:b9:0a:22:a2:03:2d:2d:71:9d:
29:bd:e6:14:b1:77:ee:e7:35:1a:46:0b:ed:44:78:d9:d9:c0:
db:20:b7:c2:4e:70:b7:49:65:af:d1:5f:56:61:1c:80:b5:10:
3a:57:71:85:84:a9:22:b0:bd:ea:85:b9:9a:62:9e:c8:ba:63:
74:f3:b5:0a:0c:15:f0:9f:5f:a5:17:4f:dc:cd:5c:f1:19:eb:
f5:f7:62:57:a6:0b:e3:13:81:fc:33:09:28:90:8d:f9:b6:bb:
9b:0d:71:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKerU+slpeREz6BL0HwMI4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmYTQ4ZTk2MTk3NDI2ZTRjNWVlYjQyM2UwZmQ5YzJlOTUy
YzQxNzcwHhcNMjUwNjA3MTMwMDQ1WhcNMjUwNjA4MTMwMDQ1WjAzMTEwLwYDVQQD
EyhkOTJjZWM2NWEyMDcyOTZiNTBiMzhjMmU2ZTc2NDMwYTM5MTYxMjdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNZSilOHJan1F/WD/t7T3pvrC0R2
//ebiqz9KKX3Wjiqmk/3K4N5sqFUziWWaO6LMBdAaJ1rPL/UoHSaATFaxnZ8f78f
rg3/segTjw3m0n2QFXjLAv96DOQsC3rM2Cu+I2BXNSmEGY4Bk80vA3jeEj6E+UP3
Kc8zSt9Xzl8Zr4fqfF148h3/YYO5A2tnJ3PZZM3A5BRU+EtPJdjH3qj7coojTN34
kPzeBpSfIYF8+CZQTLyeUzYufyIEypkAFya+zQaiuETohi/6lsHCcAS+XYzOreEW
dstZ3PWujRgW3sAGsje50cBdbrpezOtHdaU+k0RQ10O2nfhiY+9cHqxLPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNks7GWiBylrULOMLm52Qwo5FhJ6MB8GA1UdIwQY
MBaAFG+kjpYZdCbkxe60I+D9nC6VLEF3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjZTT2xobDBKdVRGN3JRajRQMmNMcFVzUVhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC84YzViYzctNTVmYS00MDQ0LTg4ZGEt
NjgxODVmZGI5MDAzLzEvYjZTT2xobDBKdVRGN3JRajRQMmNMcFVzUVhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC84YzViYzctNTVmYS00MDQ0LTg4ZGEtNjgxODVmZGI5MDAz
LzEvYjZTT2xobDBKdVRGN3JRajRQMmNMcFVzUVhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEECOTqll
f/BWsT8vuVNOrmZClEvE7qrnyD6l2tlf5jK4ojxRChy8PEcmCWIaK4QbyoQxLb66
GJyGCwj6wbjiEKO3GzspB5t6iBtNfBwkQituWNCK9VAoT8jICDGe/IPHs4TQmQcr
pZkxQfcUDwHctx8DGtXyc+yUiQ1BmXfj1iolwSk43qi4qaOmmlrOs8xwDlS9r/WT
outYuQoiogMtLXGdKb3mFLF37uc1GkYL7UR42dnA2yC3wk5wt0llr9FfVmEcgLUQ
OldxhYSpIrC96oW5mmKeyLpjdPO1CgwV8J9fpRdP3M1c8Rnr9fdiV6YL4xOB/DMJ
KJCN+ba7mw1xFA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:35:24 2025 by rpki-client