Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
File: 1jND98xsI32j-LgROMBR2Pk8nE0.mft (raw, json)
Hash identifier: Wwp6aZyCAWZbhhOrCuBjiox93jcXRrZN9kzKiKJ7XzE=
Subject key identifier: 5B:C4:4B:00:C8:6D:22:14:67:C8:E4:87:7D:78:47:22:C7:B1:5B:EC
Authority key identifier: D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D
Certificate issuer: /CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d
Certificate serial: 0197CE040A7E03A4B4E0199CF9ACC9245674
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
Manifest number: 15C1
Signing time: Thu 03 Jul 2025 02:01:00 +0000
Manifest this update: Thu 03 Jul 2025 02:01:00 +0000
Manifest next update: Fri 04 Jul 2025 02:01:00 +0000
Files and hashes: 1: 1jND98xsI32j-LgROMBR2Pk8nE0.crl (hash: X+4YPLvGro0/qft0vJGuh/JZGgI43P++soLu6UiqfYQ=)
2: r8Cx9iv2Us-sXIBLH4ymKtjO_pw.roa (hash: zSG7oRCig4axArTg72yLWZy9j2Lnt0Tay8wTKKxpjxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ce:04:0a:7e:03:a4:b4:e0:19:9c:f9:ac:c9:24:56:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d
Validity
Not Before: Jul 3 02:01:00 2025 GMT
Not After : Jul 4 02:01:00 2025 GMT
Subject: CN=5bc44b00c86d221467c8e4877d784722c7b15bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fb:7a:de:c3:ee:35:b1:cb:9e:f5:ae:bd:ba:
3c:79:e9:98:8b:b2:ba:c6:14:c4:b0:a2:cd:56:a7:
28:26:b1:53:83:82:ea:b5:77:18:27:90:d1:e9:4b:
c8:02:90:51:6f:ce:c0:4e:d5:79:8f:2a:4f:7f:0d:
1a:29:4d:fd:f0:4f:cc:09:cc:1f:03:91:d1:cd:b6:
01:a0:ae:79:77:cf:e7:b2:71:14:c8:e8:95:63:b9:
09:ac:b4:9d:a5:86:11:79:45:ff:79:53:45:61:6d:
fa:32:d6:02:db:8d:c0:5d:ec:f8:d3:8a:cd:73:5a:
ee:2d:9c:67:e8:cb:08:03:de:86:c3:57:16:f9:57:
70:e6:10:0c:ed:64:01:68:d3:50:ab:e3:92:d3:81:
17:7a:57:1e:c9:4b:9c:74:21:56:8e:96:2f:64:b9:
58:89:ed:13:ec:6e:09:52:e1:e3:31:b4:78:d0:18:
d4:a8:79:b2:27:23:d2:ed:f7:ff:f6:2b:3d:dc:61:
4d:d7:21:5e:6a:8b:2f:2c:24:f9:cc:d0:0e:24:79:
f9:6f:ef:b5:bd:a9:22:98:ba:99:03:1f:2e:d5:2a:
07:56:bc:65:c6:8d:d2:d2:15:3e:08:32:94:5a:3a:
2e:8d:ab:79:c4:35:70:20:9d:75:f3:ba:8e:09:0c:
18:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C4:4B:00:C8:6D:22:14:67:C8:E4:87:7D:78:47:22:C7:B1:5B:EC
X509v3 Authority Key Identifier:
keyid:D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:cb:8c:b3:ba:b8:ff:8b:0f:7f:08:1b:7d:f4:3c:79:45:35:
7b:87:b4:c3:16:ef:61:af:30:2b:69:a4:68:54:e3:47:f2:93:
b5:87:dc:78:b0:b2:ac:08:85:9b:42:3e:9f:f6:fb:61:97:4c:
36:73:a9:ec:cc:2d:6f:a4:a9:f0:a7:5a:3e:f7:61:c5:c5:5c:
58:cf:bb:cc:4f:e5:bd:fe:c1:5d:2c:fb:80:34:e8:3a:11:db:
ed:bb:cb:67:2e:ec:cf:74:39:f1:7c:07:c8:94:f9:f2:ae:ef:
0f:22:cd:e5:e9:f9:62:96:60:b9:38:40:85:a0:b4:e8:61:e9:
b8:2e:25:f6:f9:39:e9:ed:dc:66:d3:ea:71:97:b0:af:ab:e2:
3e:78:7c:77:5f:6a:fe:bb:f7:43:a4:fd:78:40:ae:82:fe:b5:
50:49:90:66:3a:e3:d4:4c:9e:b1:06:c2:75:28:21:3b:7b:88:
0d:9e:69:df:8e:42:ab:5d:33:39:7a:37:b4:fa:ce:d1:2b:54:
5f:30:af:c9:e9:5f:3e:7b:be:c8:3b:80:93:32:c3:2f:ee:3d:
db:5b:93:08:25:57:0a:c9:5e:18:35:c1:19:3b:b1:aa:d1:4e:
85:1d:a1:1e:1b:ea:7e:4a:a8:d7:33:d7:e2:d1:87:ad:8c:fd:
2d:92:e9:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfOBAp+A6S04Bmc+azJJFZ0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2MzM0M2Y3Y2M2YzIzN2RhM2Y4YjgxMTM4YzA1MWQ4Zjkz
YzljNGQwHhcNMjUwNzAzMDIwMTAwWhcNMjUwNzA0MDIwMTAwWjAzMTEwLwYDVQQD
Eyg1YmM0NGIwMGM4NmQyMjE0NjdjOGU0ODc3ZDc4NDcyMmM3YjE1YmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlvt63sPuNbHLnvWuvbo8eemYi7K6
xhTEsKLNVqcoJrFTg4LqtXcYJ5DR6UvIApBRb87ATtV5jypPfw0aKU398E/MCcwf
A5HRzbYBoK55d8/nsnEUyOiVY7kJrLSdpYYReUX/eVNFYW36MtYC243AXez404rN
c1ruLZxn6MsIA96Gw1cW+Vdw5hAM7WQBaNNQq+OS04EXelceyUucdCFWjpYvZLlY
ie0T7G4JUuHjMbR40BjUqHmyJyPS7ff/9is93GFN1yFeaosvLCT5zNAOJHn5b++1
vakimLqZAx8u1SoHVrxlxo3S0hU+CDKUWjoujat5xDVwIJ1187qOCQwYzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFvESwDIbSIUZ8jkh314RyLHsVvsMB8GA1UdIwQY
MBaAFNYzQ/fMbCN9o/i4ETjAUdj5PJxNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS84ZWI1ODEtOWM3NC00OGUxLTgyMWEt
NTMxODBlZWM1NmZiLzEvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS84ZWI1ODEtOWM3NC00OGUxLTgyMWEtNTMxODBlZWM1NmZi
LzEvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUsuMs7q4
/4sPfwgbffQ8eUU1e4e0wxbvYa8wK2mkaFTjR/KTtYfceLCyrAiFm0I+n/b7YZdM
NnOp7Mwtb6Sp8KdaPvdhxcVcWM+7zE/lvf7BXSz7gDToOhHb7bvLZy7sz3Q58XwH
yJT58q7vDyLN5en5YpZguThAhaC06GHpuC4l9vk56e3cZtPqcZewr6viPnh8d19q
/rv3Q6T9eECugv61UEmQZjrj1EyesQbCdSghO3uIDZ5p345Cq10zOXo3tPrO0StU
XzCvyelfPnu+yDuAkzLDL+4921uTCCVXCsleGDXBGTuxqtFOhR2hHhvqfkqo1zPX
4tGHrYz9LZLpZw==
-----END CERTIFICATE-----
Generated at Thu Jul 3 05:28:11 2025 by rpki-client