Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
File: gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft (raw, json)
Hash identifier: /5ZTCbRqU+mwnrfuZaHT9zdK4E/3I+6+g1zFLHm1H6Y=
Subject key identifier: 2F:60:99:A9:7C:D9:B8:54:2B:50:1C:E8:AB:C2:AB:7F:4C:7F:A9:8A
Authority key identifier: 81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE
Certificate issuer: /CN=819b97b20ccb4f696518e47c437259a8913e72ae
Certificate serial: 01974B8D9E5F434F7D6367D94C462B25E773
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
Manifest number: 0FCD
Signing time: Sat 07 Jun 2025 18:01:01 +0000
Manifest this update: Sat 07 Jun 2025 18:01:01 +0000
Manifest next update: Sun 08 Jun 2025 18:01:01 +0000
Files and hashes: 1: 20-9mytYHMHndruQgUnF8ikroR8.roa (hash: 2lr50ig6vbMmIzHsYNAhFoZOypQ5RbpTRGyrByTCT20=)
2: fI8A3CovPrmNEuNSOd5whasfei4.roa (hash: vdsVJdsI5nRx6IGPnIMOMSeTTdkDkOzyswcHJNq1lig=)
3: g1EKkeORDxQo9Cif76DEx1ayRZo.roa (hash: vbPzjHWrPv/5Wuh7IZWDGYTkmh23maqwjvKxVVDLrlI=)
4: gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl (hash: tupcRyN5/eFUSsPIPSde6d3O+3YtJrCpLCt6ZtLEMuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:9e:5f:43:4f:7d:63:67:d9:4c:46:2b:25:e7:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=819b97b20ccb4f696518e47c437259a8913e72ae
Validity
Not Before: Jun 7 18:01:01 2025 GMT
Not After : Jun 8 18:01:01 2025 GMT
Subject: CN=2f6099a97cd9b8542b501ce8abc2ab7f4c7fa98a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c6:11:bc:51:a2:ba:bd:d7:3c:8b:35:ac:da:
d6:f9:ef:03:30:e6:3e:b3:c5:46:24:4d:0d:53:ce:
37:03:f7:db:be:68:26:b7:a1:da:88:23:08:46:b9:
9a:03:4a:8c:e4:e0:1a:b9:31:87:fc:69:58:90:75:
e0:e3:09:a1:5b:eb:57:11:58:d6:b9:29:82:e4:1e:
29:c6:12:af:2e:78:23:91:6b:f2:53:5b:2e:ef:4a:
67:cf:38:f2:dc:2e:2c:9d:59:f8:16:51:e6:f4:73:
5f:cb:d1:37:32:43:50:d0:0f:46:3d:0d:5f:80:e1:
de:84:22:00:d3:ee:32:6f:f5:e7:a0:61:2c:27:d6:
c2:72:15:12:06:64:c7:03:22:45:1c:00:a6:a7:f5:
25:c8:4c:5a:19:b9:24:03:58:1b:7e:48:2f:b5:c4:
30:1e:73:51:9b:f6:7e:9e:29:c7:1b:35:0e:b0:81:
8d:0f:97:f5:ee:17:1c:7f:6c:b1:5c:5f:8f:40:2d:
f5:a8:52:0c:cd:6d:e9:95:86:64:57:cf:76:cb:cf:
b8:6e:28:27:f7:77:2b:34:16:90:c9:bd:98:f5:ed:
29:45:5c:07:57:f1:dd:c2:c3:72:ed:8d:e3:26:b8:
84:b8:91:62:c3:be:ba:cb:0d:c2:32:e0:46:ad:3c:
87:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:60:99:A9:7C:D9:B8:54:2B:50:1C:E8:AB:C2:AB:7F:4C:7F:A9:8A
X509v3 Authority Key Identifier:
keyid:81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:43:92:10:f5:ec:5d:d2:92:2c:cd:3d:ab:4c:35:ea:fa:b9:
14:74:59:7f:ff:30:e8:a6:dd:d1:51:f3:de:77:e0:41:49:f9:
ef:f2:17:33:35:b9:15:e8:64:67:31:91:46:e0:77:32:a6:74:
af:65:b6:56:81:b3:99:e4:46:e9:e9:c2:b4:a7:36:19:60:c6:
e9:06:5b:b0:56:e8:01:13:4c:7c:2a:e3:da:49:ca:96:c5:8a:
b4:c4:1c:03:bc:fb:04:4f:c4:91:ae:3b:bd:fe:7e:7b:35:fe:
48:a1:99:fa:52:d0:ba:2a:0a:63:21:0f:1c:56:32:d8:30:86:
43:34:4c:70:a3:09:32:f8:5f:76:1d:a3:ce:fc:10:96:a1:ea:
e2:11:c9:28:7a:65:73:e0:4f:7c:37:5e:ae:e3:ff:f0:64:25:
44:fc:af:fb:7a:0b:61:7a:bf:91:eb:f0:5c:f1:59:40:45:69:
96:f7:42:a0:fd:79:15:4e:dc:f7:e9:23:9a:be:d2:fa:58:73:
76:8f:54:57:82:1e:6b:b4:20:93:38:23:22:98:da:d9:01:3f:
da:89:42:a8:00:0f:53:70:93:3a:1a:99:c1:6b:2f:9a:11:a2:
88:49:81:34:7c:2c:a4:b8:71:90:b9:61:ee:7f:28:ca:4b:51:
57:fe:27:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLjZ5fQ099Y2fZTEYrJedzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxOWI5N2IyMGNjYjRmNjk2NTE4ZTQ3YzQzNzI1OWE4OTEz
ZTcyYWUwHhcNMjUwNjA3MTgwMTAxWhcNMjUwNjA4MTgwMTAxWjAzMTEwLwYDVQQD
EygyZjYwOTlhOTdjZDliODU0MmI1MDFjZThhYmMyYWI3ZjRjN2ZhOThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8YRvFGiur3XPIs1rNrW+e8DMOY+
s8VGJE0NU843A/fbvmgmt6HaiCMIRrmaA0qM5OAauTGH/GlYkHXg4wmhW+tXEVjW
uSmC5B4pxhKvLngjkWvyU1su70pnzzjy3C4snVn4FlHm9HNfy9E3MkNQ0A9GPQ1f
gOHehCIA0+4yb/XnoGEsJ9bCchUSBmTHAyJFHACmp/UlyExaGbkkA1gbfkgvtcQw
HnNRm/Z+ninHGzUOsIGND5f17hccf2yxXF+PQC31qFIMzW3plYZkV892y8+4bign
93crNBaQyb2Y9e0pRVwHV/HdwsNy7Y3jJriEuJFiw766yw3CMuBGrTyHXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC9gmal82bhUK1Ac6KvCq39Mf6mKMB8GA1UdIwQY
MBaAFIGbl7IMy09pZRjkfENyWaiRPnKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1p1WHNnekxUMmxsR09SOFEzSlpxSkUtY3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy83NzRmMzctMGU1Ny00OWU2LTg4NjUt
YTY0YmE0YjhmYTE5LzEvZ1p1WHNnekxUMmxsR09SOFEzSlpxSkUtY3E0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy83NzRmMzctMGU1Ny00OWU2LTg4NjUtYTY0YmE0YjhmYTE5
LzEvZ1p1WHNnekxUMmxsR09SOFEzSlpxSkUtY3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlEOSEPXs
XdKSLM09q0w16vq5FHRZf/8w6Kbd0VHz3nfgQUn57/IXMzW5FehkZzGRRuB3MqZ0
r2W2VoGzmeRG6enCtKc2GWDG6QZbsFboARNMfCrj2knKlsWKtMQcA7z7BE/Eka47
vf5+ezX+SKGZ+lLQuioKYyEPHFYy2DCGQzRMcKMJMvhfdh2jzvwQlqHq4hHJKHpl
c+BPfDderuP/8GQlRPyv+3oLYXq/kevwXPFZQEVplvdCoP15FU7c9+kjmr7S+lhz
do9UV4Iea7QgkzgjIpja2QE/2olCqAAPU3CTOhqZwWsvmhGiiEmBNHwspLhxkLlh
7n8oyktRV/4n3A==
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:06:34 2025 by rpki-client