Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
File: fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft (raw, json)
Hash identifier: wubvsJzJhkiJS9lyb8ReI1HtD+u2z4bUDjRv94QEPDs=
Subject key identifier: 74:63:DE:0F:2C:F9:B7:1B:21:67:F4:87:B6:1C:B7:C4:E3:DC:4F:A9
Authority key identifier: 7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
Certificate issuer: /CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Certificate serial: 01975E6F221053DF2A4E1D7C9C4A2822A1F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
Manifest number: 03D0
Signing time: Wed 11 Jun 2025 10:00:30 +0000
Manifest this update: Wed 11 Jun 2025 10:00:30 +0000
Manifest next update: Thu 12 Jun 2025 10:00:30 +0000
Files and hashes: 1: 7IU0huufqQxYxItg8zFZPOwzYRM.roa (hash: I4C8M2jxvU1m60xK7AT2Uz7jOA8Cd0LrtZ3lmEnNBLc=)
2: fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl (hash: yOweoFp3q3vcKeZZAN9ZwQ98SNecbOwKhQKURKSAWio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 10:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5e:6f:22:10:53:df:2a:4e:1d:7c:9c:4a:28:22:a1:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Validity
Not Before: Jun 11 10:00:30 2025 GMT
Not After : Jun 12 10:00:30 2025 GMT
Subject: CN=7463de0f2cf9b71b2167f487b61cb7c4e3dc4fa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0e:b1:c7:59:27:34:46:f8:69:c1:a7:f7:7a:
12:d8:5f:9f:22:55:e4:5a:26:24:66:6c:93:5a:9b:
37:f0:f3:e4:eb:44:70:bc:78:fa:1b:55:53:00:b0:
f6:9e:33:f8:5b:e1:e1:4e:ca:80:ba:4d:39:b8:ec:
f7:4b:19:9e:c5:e1:24:a8:ca:d9:bb:b8:fe:5f:93:
a8:4d:b3:5c:60:d7:3e:11:14:26:03:02:7c:13:1c:
ce:bf:60:e5:42:71:cf:c2:1b:41:e6:15:68:44:b6:
6f:1d:9a:e3:59:b3:fe:9b:ad:d9:ce:fd:68:7d:68:
f0:0c:2a:e1:94:c7:8d:89:92:e9:96:53:06:3e:bd:
fc:a3:2d:44:f8:8b:11:80:0f:79:ab:34:a2:6e:17:
1f:c1:73:09:78:0a:4e:4b:85:9e:ca:7b:f0:c1:9b:
cb:d4:45:ea:0b:b4:6a:72:0c:3f:3d:0d:31:70:e1:
70:bc:33:59:0e:0f:d1:fe:7f:58:66:d4:96:25:19:
af:db:eb:7b:5c:6e:51:44:42:6f:42:f4:b7:25:36:
61:af:ac:09:2f:2d:76:de:a2:6f:4b:6d:7e:26:cf:
06:23:c2:2b:80:83:6b:13:c6:db:c6:78:43:13:6c:
af:7c:1b:95:a7:5c:49:a9:f6:54:d0:6a:dd:bc:63:
fd:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:63:DE:0F:2C:F9:B7:1B:21:67:F4:87:B6:1C:B7:C4:E3:DC:4F:A9
X509v3 Authority Key Identifier:
keyid:7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:59:21:d2:8a:0b:e7:1f:98:6f:56:d4:3e:0b:01:4b:c0:92:
57:49:21:8e:91:e8:7d:80:10:c6:3a:b6:da:3e:3b:f4:84:4d:
c3:db:63:44:75:96:d9:6a:c8:66:d2:72:01:71:bb:81:8c:e1:
2b:6d:bb:f5:98:6c:47:90:a1:f7:03:19:8a:13:90:02:d4:57:
ce:44:7e:55:86:c3:10:ae:98:2d:6d:19:85:6e:8d:7d:4a:de:
89:cd:9c:66:ca:3d:52:dc:21:db:c0:ed:c1:ce:19:72:da:31:
bd:a8:fa:2b:50:9f:ad:79:a7:b4:8e:87:0a:61:9f:6b:91:a2:
31:f0:99:1d:3e:47:ef:81:db:cf:97:58:69:5a:5e:62:98:4a:
b3:ca:54:77:32:51:6c:1a:35:ec:77:b9:41:ed:c9:57:01:b2:
dd:91:c3:47:9d:60:5f:3d:d4:d8:b7:92:9a:0e:92:19:5b:20:
99:82:80:de:49:51:4b:91:27:49:26:8a:3b:ee:40:90:04:42:
ce:1b:a1:e3:db:dc:73:36:0e:35:99:8e:a1:60:0c:fe:2a:e6:
68:f9:fc:06:46:5c:9f:ac:00:ef:a6:01:97:9b:e5:39:fd:06:
96:92:b7:92:d4:bd:d5:a4:ce:a5:bd:74:96:85:e3:d1:d0:b1:
71:8d:84:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdebyIQU98qTh18nEooIqH1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNzg1NmM5N2JlYjk3YzJiMzg2ZmI5NThjMmRiMTIyYzU3
ZGIzNmMwHhcNMjUwNjExMTAwMDMwWhcNMjUwNjEyMTAwMDMwWjAzMTEwLwYDVQQD
Eyg3NDYzZGUwZjJjZjliNzFiMjE2N2Y0ODdiNjFjYjdjNGUzZGM0ZmE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0g6xx1knNEb4acGn93oS2F+fIlXk
WiYkZmyTWps38PPk60RwvHj6G1VTALD2njP4W+HhTsqAuk05uOz3SxmexeEkqMrZ
u7j+X5OoTbNcYNc+ERQmAwJ8ExzOv2DlQnHPwhtB5hVoRLZvHZrjWbP+m63Zzv1o
fWjwDCrhlMeNiZLpllMGPr38oy1E+IsRgA95qzSibhcfwXMJeApOS4WeynvwwZvL
1EXqC7Rqcgw/PQ0xcOFwvDNZDg/R/n9YZtSWJRmv2+t7XG5RREJvQvS3JTZhr6wJ
Ly123qJvS21+Js8GI8IrgINrE8bbxnhDE2yvfBuVp1xJqfZU0GrdvGP9NQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHRj3g8s+bcbIWf0h7Yct8Tj3E+pMB8GA1UdIwQY
MBaAFH14Vsl765fCs4b7lYwtsSLFfbNsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlhoV3lYdnJsOEt6aHZ1VmpDMnhJc1Y5czJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jMDNkMzctNGVmYy00YzNjLTgyODEt
M2M3Mzg1NDQ0ODJlLzEvZlhoV3lYdnJsOEt6aHZ1VmpDMnhJc1Y5czJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9jMDNkMzctNGVmYy00YzNjLTgyODEtM2M3Mzg1NDQ0ODJl
LzEvZlhoV3lYdnJsOEt6aHZ1VmpDMnhJc1Y5czJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm1kh0ooL
5x+Yb1bUPgsBS8CSV0khjpHofYAQxjq22j479IRNw9tjRHWW2WrIZtJyAXG7gYzh
K2279ZhsR5Ch9wMZihOQAtRXzkR+VYbDEK6YLW0ZhW6NfUreic2cZso9Utwh28Dt
wc4Zctoxvaj6K1CfrXmntI6HCmGfa5GiMfCZHT5H74Hbz5dYaVpeYphKs8pUdzJR
bBo17He5Qe3JVwGy3ZHDR51gXz3U2LeSmg6SGVsgmYKA3klRS5EnSSaKO+5AkARC
zhuh49vcczYONZmOoWAM/irmaPn8BkZcn6wA76YBl5vlOf0GlpK3ktS91aTOpb10
loXj0dCxcY2EUA==
-----END CERTIFICATE-----
Generated at Wed Jun 11 20:32:34 2025 by rpki-client