Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
File: _XTetBhEJvpiIlthIMNnBvc3uOI.mft (raw, json)
Hash identifier: DSoeNJSS1+38su5cPWjDgTsTaJxbfa6Ts0YFCPglDz4=
Subject key identifier: 9B:D2:B4:2A:8F:EA:C5:98:50:98:FB:AE:DC:05:3E:A3:0E:0F:F2:7F
Authority key identifier: FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2
Certificate issuer: /CN=fd74deb4184426fa62225b6120c36706f737b8e2
Certificate serial: 019746300430E4A4141A544A48E7FE67FB3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
Manifest number: 157B
Signing time: Fri 06 Jun 2025 17:00:41 +0000
Manifest this update: Fri 06 Jun 2025 17:00:41 +0000
Manifest next update: Sat 07 Jun 2025 17:00:41 +0000
Files and hashes: 1: K3K73SOKoUl1BbH2-VG761We22I.roa (hash: JYStvIUn6egbkb0Wps8aA9dlj6GWDzxPYmBqdWiziOs=)
2: _XTetBhEJvpiIlthIMNnBvc3uOI.crl (hash: bQR5U4rM8RYUIdxXRHH4uDw/2FVtUlchUNSXawVPak8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:04:30:e4:a4:14:1a:54:4a:48:e7:fe:67:fb:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd74deb4184426fa62225b6120c36706f737b8e2
Validity
Not Before: Jun 6 17:00:41 2025 GMT
Not After : Jun 7 17:00:41 2025 GMT
Subject: CN=9bd2b42a8feac5985098fbaedc053ea30e0ff27f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e7:b2:0a:22:b2:8c:30:71:5d:63:37:3c:94:
0b:15:1e:12:05:69:5a:9c:29:eb:9e:d3:38:db:e7:
32:d3:39:78:c7:4a:5d:73:8b:ac:c9:3e:9a:cd:8a:
46:12:c4:fb:e0:ee:9b:47:b1:2c:17:62:2d:56:89:
a1:59:f7:a4:4d:0a:d3:b9:73:ca:a9:17:c9:4b:c0:
c3:e6:36:e8:fa:3d:8f:18:96:1a:d3:a3:15:c4:e5:
28:32:21:68:11:1d:24:fe:9d:e3:4a:d1:7f:fa:5d:
df:cc:70:4e:c3:22:ca:e1:7c:32:11:67:ae:3e:c4:
91:52:1b:4f:b2:46:b3:df:40:63:4c:bb:38:46:26:
a6:17:0e:21:63:8e:45:f3:c9:42:21:ef:8e:bd:f8:
9f:68:8c:8c:7e:78:ee:d8:26:58:83:42:a9:c7:44:
50:f5:fc:68:94:dd:69:d2:a8:e9:7a:54:b9:b2:bf:
cf:5b:79:18:03:d9:4f:54:b2:38:c0:07:46:eb:0f:
40:a8:21:06:65:d9:c9:7e:40:63:11:8c:cb:ae:a8:
96:ce:37:45:97:45:ab:7a:b1:cc:f0:47:1b:5a:4c:
42:50:7c:5b:cd:08:c3:cb:e5:5b:45:d1:5a:5b:41:
b8:ed:58:91:67:32:d3:93:e2:ca:a1:45:03:c7:27:
1a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:D2:B4:2A:8F:EA:C5:98:50:98:FB:AE:DC:05:3E:A3:0E:0F:F2:7F
X509v3 Authority Key Identifier:
keyid:FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:75:ee:31:bc:44:f6:15:26:75:7e:f8:e4:b0:c2:db:dc:7c:
7d:65:98:43:9c:6c:dc:3f:8b:bc:a0:82:ae:93:65:dd:d9:d3:
e9:f3:cc:be:ae:bc:1c:d3:4b:d8:d0:9c:3b:e8:89:27:db:3b:
ed:2c:6c:15:f9:96:15:f0:fe:17:3c:91:f0:f6:12:71:8b:5f:
de:bc:56:f2:0a:09:da:95:38:15:b9:cc:b8:8b:42:4d:5d:cc:
77:63:46:84:ec:87:ff:bc:a2:94:b1:33:da:67:7e:94:f6:ae:
66:48:5e:02:8d:f6:98:6f:e8:4d:d8:b6:6f:46:a8:45:00:21:
70:b6:e5:9f:2f:5f:45:bb:c3:42:e1:5a:f1:02:bc:64:2d:3a:
f6:82:45:da:81:be:98:3e:f0:0a:3a:3d:7e:e2:40:e4:d7:3c:
34:e2:c2:77:51:92:08:62:4e:cc:af:97:2b:05:12:90:d1:3a:
15:54:39:e1:01:f2:b5:56:97:65:36:ab:e4:1d:7f:ba:b7:60:
9f:d7:74:af:2f:66:69:51:6f:d3:f0:68:0d:5d:ab:7f:37:1c:
4a:9a:cf:dd:59:36:77:6b:1d:55:94:01:d0:40:b7:b8:5e:49:
5e:35:0f:61:66:06:22:c3:cc:a1:59:e8:97:dd:e9:45:d0:3d:
55:13:e6:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGMAQw5KQUGlRKSOf+Z/s6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkNzRkZWI0MTg0NDI2ZmE2MjIyNWI2MTIwYzM2NzA2Zjcz
N2I4ZTIwHhcNMjUwNjA2MTcwMDQxWhcNMjUwNjA3MTcwMDQxWjAzMTEwLwYDVQQD
Eyg5YmQyYjQyYThmZWFjNTk4NTA5OGZiYWVkYzA1M2VhMzBlMGZmMjdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk+eyCiKyjDBxXWM3PJQLFR4SBWla
nCnrntM42+cy0zl4x0pdc4usyT6azYpGEsT74O6bR7EsF2ItVomhWfekTQrTuXPK
qRfJS8DD5jbo+j2PGJYa06MVxOUoMiFoER0k/p3jStF/+l3fzHBOwyLK4XwyEWeu
PsSRUhtPskaz30BjTLs4RiamFw4hY45F88lCIe+OvfifaIyMfnju2CZYg0Kpx0RQ
9fxolN1p0qjpelS5sr/PW3kYA9lPVLI4wAdG6w9AqCEGZdnJfkBjEYzLrqiWzjdF
l0WrerHM8EcbWkxCUHxbzQjDy+VbRdFaW0G47ViRZzLTk+LKoUUDxyca5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJvStCqP6sWYUJj7rtwFPqMOD/J/MB8GA1UdIwQY
MBaAFP103rQYRCb6YiJbYSDDZwb3N7jiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1hUZXRCaEVKdnBpSWx0aElNTm5CdmMzdU9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8xODQ5MWYtYjA0ZC00YjBkLTkwN2It
ZDU3MDVhZTM3MDE0LzEvX1hUZXRCaEVKdnBpSWx0aElNTm5CdmMzdU9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi8xODQ5MWYtYjA0ZC00YjBkLTkwN2ItZDU3MDVhZTM3MDE0
LzEvX1hUZXRCaEVKdnBpSWx0aElNTm5CdmMzdU9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPHXuMbxE
9hUmdX745LDC29x8fWWYQ5xs3D+LvKCCrpNl3dnT6fPMvq68HNNL2NCcO+iJJ9s7
7SxsFfmWFfD+FzyR8PYScYtf3rxW8goJ2pU4FbnMuItCTV3Md2NGhOyH/7yilLEz
2md+lPauZkheAo32mG/oTdi2b0aoRQAhcLblny9fRbvDQuFa8QK8ZC069oJF2oG+
mD7wCjo9fuJA5Nc8NOLCd1GSCGJOzK+XKwUSkNE6FVQ54QHytVaXZTar5B1/urdg
n9d0ry9maVFv0/BoDV2rfzccSprP3Vk2d2sdVZQB0EC3uF5JXjUPYWYGIsPMoVno
l93pRdA9VRPmQw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:03:47 2025 by rpki-client