
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
File: bRRgVvD7veYYv_ARwPIrp0pYMrc.mft (raw, json)
Hash identifier: mTxlIofWHr428NS1CF5crEGYPNPagLsK8O27ZeVgj+w=
Subject key identifier: EF:12:BB:45:7E:26:35:37:B9:B8:B2:DB:E7:CC:B8:4E:72:08:33:08
Authority key identifier: 6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
Certificate issuer: /CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Certificate serial: 0197666021205749DAF3AE6D46A5BA46B990
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
Manifest number: 158C
Signing time: Thu 12 Jun 2025 23:01:05 +0000
Manifest this update: Thu 12 Jun 2025 23:01:05 +0000
Manifest next update: Fri 13 Jun 2025 23:01:05 +0000
Files and hashes: 1: PWSDM2wQmRNxztAKQ8wgaZS7VDM.roa (hash: d9Wa5FwcE+PxgkYEzEZPmnpoKU1tHYNjbElNCRhvEFk=)
2: bRRgVvD7veYYv_ARwPIrp0pYMrc.crl (hash: My4PGngBAuY88hrrZQwoiju7z+RDq4xQwc5RorvBmjA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 23:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:60:21:20:57:49:da:f3:ae:6d:46:a5:ba:46:b9:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Validity
Not Before: Jun 12 23:01:05 2025 GMT
Not After : Jun 13 23:01:05 2025 GMT
Subject: CN=ef12bb457e263537b9b8b2dbe7ccb84e72083308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c3:0e:a6:b3:5b:7f:1e:0e:a5:3d:97:73:0e:
46:93:72:65:ee:b1:5f:1b:a0:f1:dd:21:da:48:58:
1b:60:4a:04:fd:1c:9c:c5:a9:ce:aa:84:37:77:69:
0f:48:90:04:ee:37:99:a7:93:20:ba:7b:69:ac:b6:
b5:32:16:81:30:35:32:74:f8:0e:12:fd:13:67:0b:
f0:ac:df:98:ec:72:35:76:e9:1d:f0:43:90:47:20:
d0:9b:a1:94:1e:29:9b:46:bc:a1:74:e2:09:69:be:
95:83:a2:8b:63:46:8e:82:ac:81:e6:8e:c2:d9:6a:
95:26:3d:b3:9b:39:8d:a5:01:38:07:ad:76:c9:07:
d5:e1:ea:eb:ad:d6:69:15:2b:db:44:3d:86:52:b9:
fd:36:13:7b:4c:e8:49:1d:26:15:8f:0c:ba:0c:1c:
56:f3:ef:f2:c8:16:f4:c6:49:94:15:1c:bd:12:8b:
bd:29:98:87:39:6f:fc:11:77:14:a3:dd:bb:c5:c6:
4c:85:8d:bf:80:93:1f:fb:2e:50:9a:cd:9a:86:d1:
a7:e1:0e:18:5d:cd:85:52:8f:87:6e:57:b0:3d:33:
7e:4d:59:b4:b8:f6:6f:e7:f6:ee:65:63:13:f6:7e:
2a:58:77:c9:44:21:0a:42:81:84:34:39:df:58:9e:
fd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:12:BB:45:7E:26:35:37:B9:B8:B2:DB:E7:CC:B8:4E:72:08:33:08
X509v3 Authority Key Identifier:
keyid:6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:30:f2:87:98:01:61:95:51:4b:88:c7:ba:f7:8b:01:6e:2f:
41:98:da:70:9b:48:33:0e:05:54:92:e8:ee:20:55:0b:53:29:
4c:24:50:96:c9:23:4e:5b:5c:c3:51:2a:a0:a0:98:13:de:f5:
01:9e:0b:e4:89:7a:75:c5:3f:04:49:56:97:03:8a:31:f4:3a:
55:50:44:b6:0c:aa:8e:eb:5a:06:63:88:b6:3c:5a:2c:ed:59:
5e:2c:1f:ba:03:2f:55:8a:54:35:88:b9:43:3e:76:36:90:9b:
21:74:8f:bc:ba:3c:98:c3:d9:28:a8:a2:58:db:23:3d:3e:6e:
0b:e6:b7:43:01:3d:b6:b2:cb:71:92:61:71:23:eb:04:b9:0c:
2c:08:b9:40:63:13:85:bc:68:75:89:ac:4e:af:49:3e:96:c2:
78:70:ca:45:26:0f:de:ff:2d:6f:dc:6d:39:4e:77:f4:a9:f1:
7a:1d:91:7c:42:d7:b4:c5:94:48:4e:ca:d1:b1:8b:72:e7:78:
5b:13:84:59:0f:3d:27:6d:c2:a5:f1:d9:86:68:27:37:f9:3e:
0c:e3:02:6c:3d:86:52:1a:40:06:a7:00:64:78:35:be:29:5b:
15:c1:0b:31:ab:ce:72:39:ed:f1:e0:a6:ed:2d:ce:81:67:9a:
fc:e8:eb:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdmYCEgV0na865tRqW6RrmQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMTQ2MDU2ZjBmYmJkZTYxOGJmZjAxMWMwZjIyYmE3NGE1
ODMyYjcwHhcNMjUwNjEyMjMwMTA1WhcNMjUwNjEzMjMwMTA1WjAzMTEwLwYDVQQD
EyhlZjEyYmI0NTdlMjYzNTM3YjliOGIyZGJlN2NjYjg0ZTcyMDgzMzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucMOprNbfx4OpT2Xcw5Gk3Jl7rFf
G6Dx3SHaSFgbYEoE/RycxanOqoQ3d2kPSJAE7jeZp5MguntprLa1MhaBMDUydPgO
Ev0TZwvwrN+Y7HI1dukd8EOQRyDQm6GUHimbRryhdOIJab6Vg6KLY0aOgqyB5o7C
2WqVJj2zmzmNpQE4B612yQfV4errrdZpFSvbRD2GUrn9NhN7TOhJHSYVjwy6DBxW
8+/yyBb0xkmUFRy9Eou9KZiHOW/8EXcUo927xcZMhY2/gJMf+y5Qms2ahtGn4Q4Y
Xc2FUo+HblewPTN+TVm0uPZv5/buZWMT9n4qWHfJRCEKQoGENDnfWJ79cQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO8Su0V+JjU3ubiy2+fMuE5yCDMIMB8GA1UdIwQY
MBaAFG0UYFbw+73mGL/wEcDyK6dKWDK3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlJSZ1Z2RDd2ZVlZdl9BUndQSXJwMHBZTXJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS81ODlkYjktZTIyYi00ZDY0LTk0YjQt
OGVjZjc1MTA1N2FjLzEvYlJSZ1Z2RDd2ZVlZdl9BUndQSXJwMHBZTXJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS81ODlkYjktZTIyYi00ZDY0LTk0YjQtOGVjZjc1MTA1N2Fj
LzEvYlJSZ1Z2RDd2ZVlZdl9BUndQSXJwMHBZTXJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVjDyh5gB
YZVRS4jHuveLAW4vQZjacJtIMw4FVJLo7iBVC1MpTCRQlskjTltcw1EqoKCYE971
AZ4L5Il6dcU/BElWlwOKMfQ6VVBEtgyqjutaBmOItjxaLO1ZXiwfugMvVYpUNYi5
Qz52NpCbIXSPvLo8mMPZKKiiWNsjPT5uC+a3QwE9trLLcZJhcSPrBLkMLAi5QGMT
hbxodYmsTq9JPpbCeHDKRSYP3v8tb9xtOU539Knxeh2RfELXtMWUSE7K0bGLcud4
WxOEWQ89J23CpfHZhmgnN/k+DOMCbD2GUhpABqcAZHg1vilbFcELMavOcjnt8eCm
7S3OgWea/OjrvQ==
-----END CERTIFICATE-----
Generated at Fri Jun 13 09:15:27 2025 by rpki-client