Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
File: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft (raw, json)
Hash identifier: WtPdiuChe0C8JFSwDGASzzL+MZvrSYG6pk7+ralAU1c=
Subject key identifier: 5D:0A:3C:FD:B8:CF:28:EF:43:75:54:19:5E:5E:80:A2:77:A8:20:91
Authority key identifier: 83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
Certificate issuer: /CN=83c8d01caf2b0751d035c537566f45627925e4f6
Certificate serial: 01975BA4E8918FCB773C8FB70DCBF73335A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
Manifest number: 10CB
Signing time: Tue 10 Jun 2025 21:00:23 +0000
Manifest this update: Tue 10 Jun 2025 21:00:23 +0000
Manifest next update: Wed 11 Jun 2025 21:00:23 +0000
Files and hashes: 1: J4HW2mYS6aU6LfQRgOlYRDbLp5k.roa (hash: Bt4aDKGWyvEeRSoxrjAjHWSOknnKJY9L9kMvMSuInRo=)
2: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl (hash: ZqrGkX1NAlpBDtU4K4SBAX359CMz9sX3Fced94uhUf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 20:45:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:a4:e8:91:8f:cb:77:3c:8f:b7:0d:cb:f7:33:35:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c8d01caf2b0751d035c537566f45627925e4f6
Validity
Not Before: Jun 10 21:00:23 2025 GMT
Not After : Jun 11 21:00:23 2025 GMT
Subject: CN=5d0a3cfdb8cf28ef437554195e5e80a277a82091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9c:f0:cb:68:fe:75:52:a4:59:93:d4:3f:ad:
5c:b5:5c:74:ad:14:b8:e7:f1:2b:99:62:0d:3d:1b:
19:02:64:8f:2b:e4:e4:b8:b0:da:ce:c8:a0:c8:6a:
29:4f:75:dc:1c:81:40:16:df:52:c8:f9:04:36:79:
8e:0d:20:d2:06:7f:88:39:00:3d:e3:0c:ef:17:cb:
c6:5a:b8:63:e2:40:a0:59:88:87:7f:3d:5a:fb:83:
1c:83:c7:50:54:56:0f:b9:3d:7d:9c:b3:59:9a:ce:
dc:4a:82:a7:06:cb:a3:73:ce:1b:ed:68:98:26:a2:
a4:9b:c7:b7:55:83:63:38:0f:4a:f7:8d:53:5c:38:
3d:d2:7a:44:e3:c7:78:dc:f9:81:a6:12:7e:0d:df:
13:b1:ec:c8:1f:90:70:69:e0:1e:df:d9:a9:d6:f8:
5e:c2:d5:d5:dd:81:8b:47:82:71:5b:49:df:20:14:
aa:90:d3:68:8d:8c:e4:b1:c5:63:4f:b1:35:f9:61:
f4:1d:ce:60:49:0f:71:82:dc:be:31:6a:e0:ed:fa:
2e:8c:22:4d:31:05:ce:06:4b:7a:06:61:78:1c:d8:
84:10:c9:ed:85:7d:6a:57:35:e2:13:15:02:12:a4:
f7:7f:cd:08:4f:f4:e9:f9:93:d4:b4:9e:77:c3:ec:
f6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:0A:3C:FD:B8:CF:28:EF:43:75:54:19:5E:5E:80:A2:77:A8:20:91
X509v3 Authority Key Identifier:
keyid:83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:b0:39:19:dd:06:a5:82:1f:a4:cf:eb:dc:6a:d6:38:9e:1c:
65:b8:05:f8:91:68:a6:a9:2c:e2:ba:87:4f:77:8d:22:6f:e9:
8e:cb:81:99:fb:28:a9:84:08:8c:ce:1c:67:29:36:5d:c4:ab:
e7:6d:18:8e:e9:e6:8f:36:c1:f8:23:80:7a:41:6e:5c:fd:a3:
8b:9d:d5:5f:ee:7e:da:6a:95:79:3c:ee:89:59:d8:26:10:a6:
25:87:d9:87:33:4e:e5:88:f8:20:df:75:65:e3:d5:9a:b7:b9:
88:0b:6e:2f:14:34:fe:22:e8:60:87:d8:84:ef:08:e7:b2:87:
1a:a1:38:a0:45:69:6c:ed:ee:3a:5c:79:37:74:d9:2e:9a:6e:
4c:6d:e5:71:e7:7e:d1:d0:92:fc:46:c9:e5:2e:e5:06:99:79:
6a:40:3d:a2:2c:42:3c:fc:a0:1f:89:66:34:07:fa:8f:68:71:
af:a0:19:67:6d:ef:26:a9:25:7b:1f:15:62:c4:07:12:4d:28:
4c:26:7b:f7:a0:ff:c5:16:5d:69:aa:68:46:61:b9:ae:27:1c:
c4:e8:2e:2b:a8:80:95:1f:92:18:10:be:84:ad:d5:e5:b5:28:
65:a8:9b:33:4a:c7:c9:ae:73:99:b7:cf:cc:b6:9d:c9:67:6f:
62:3b:a9:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdbpOiRj8t3PI+3Dcv3MzWmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzYzhkMDFjYWYyYjA3NTFkMDM1YzUzNzU2NmY0NTYyNzky
NWU0ZjYwHhcNMjUwNjEwMjEwMDIzWhcNMjUwNjExMjEwMDIzWjAzMTEwLwYDVQQD
Eyg1ZDBhM2NmZGI4Y2YyOGVmNDM3NTU0MTk1ZTVlODBhMjc3YTgyMDkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzpzwy2j+dVKkWZPUP61ctVx0rRS4
5/ErmWINPRsZAmSPK+TkuLDazsigyGopT3XcHIFAFt9SyPkENnmODSDSBn+IOQA9
4wzvF8vGWrhj4kCgWYiHfz1a+4Mcg8dQVFYPuT19nLNZms7cSoKnBsujc84b7WiY
JqKkm8e3VYNjOA9K941TXDg90npE48d43PmBphJ+Dd8TsezIH5BwaeAe39mp1vhe
wtXV3YGLR4JxW0nfIBSqkNNojYzkscVjT7E1+WH0Hc5gSQ9xgty+MWrg7foujCJN
MQXOBkt6BmF4HNiEEMnthX1qVzXiExUCEqT3f80IT/Tp+ZPUtJ53w+z2IwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF0KPP24zyjvQ3VUGV5egKJ3qCCRMB8GA1UdIwQY
MBaAFIPI0ByvKwdR0DXFN1ZvRWJ5JeT2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzhqUUhLOHJCMUhRTmNVM1ZtOUZZbmtsNVBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9jZmE3YzMtZjBjOC00NjIyLThhNDct
OWFiMjZiMjY2YWE3LzEvZzhqUUhLOHJCMUhRTmNVM1ZtOUZZbmtsNVBZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9jZmE3YzMtZjBjOC00NjIyLThhNDctOWFiMjZiMjY2YWE3
LzEvZzhqUUhLOHJCMUhRTmNVM1ZtOUZZbmtsNVBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoLA5Gd0G
pYIfpM/r3GrWOJ4cZbgF+JFopqks4rqHT3eNIm/pjsuBmfsoqYQIjM4cZyk2XcSr
520YjunmjzbB+COAekFuXP2ji53VX+5+2mqVeTzuiVnYJhCmJYfZhzNO5Yj4IN91
ZePVmre5iAtuLxQ0/iLoYIfYhO8I57KHGqE4oEVpbO3uOlx5N3TZLppuTG3lced+
0dCS/EbJ5S7lBpl5akA9oixCPPygH4lmNAf6j2hxr6AZZ23vJqklex8VYsQHEk0o
TCZ796D/xRZdaapoRmG5riccxOguK6iAlR+SGBC+hK3V5bUoZaibM0rHya5zmbfP
zLadyWdvYjupBQ==
-----END CERTIFICATE-----
Generated at Wed Jun 11 04:37:13 2025 by rpki-client