Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
File: bRRgVvD7veYYv_ARwPIrp0pYMrc.mft (raw, json)
Hash identifier: nlc1xlcTGmGCN5b7uVoWfOZ2Zu1MNwnc0goKXUR4DzM=
Subject key identifier: 93:87:8D:1A:57:BE:5F:AB:20:D8:01:F4:42:96:A0:E3:1F:36:72:D0
Authority key identifier: 6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
Certificate issuer: /CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Certificate serial: 01975AC9544FEEFD83F78D50EDA1A89E6F3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
Manifest number: 1586
Signing time: Tue 10 Jun 2025 17:00:32 +0000
Manifest this update: Tue 10 Jun 2025 17:00:32 +0000
Manifest next update: Wed 11 Jun 2025 17:00:32 +0000
Files and hashes: 1: PWSDM2wQmRNxztAKQ8wgaZS7VDM.roa (hash: d9Wa5FwcE+PxgkYEzEZPmnpoKU1tHYNjbElNCRhvEFk=)
2: bRRgVvD7veYYv_ARwPIrp0pYMrc.crl (hash: 0fGcL/jw+zjqpRPDxZ6h3aefbDDsxfi2k+ZMFLRsQ84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 14:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5a:c9:54:4f:ee:fd:83:f7:8d:50:ed:a1:a8:9e:6f:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Validity
Not Before: Jun 10 17:00:32 2025 GMT
Not After : Jun 11 17:00:32 2025 GMT
Subject: CN=93878d1a57be5fab20d801f44296a0e31f3672d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b9:ae:41:08:e3:04:45:ce:ea:3d:55:47:4e:
2f:c2:a2:2d:a9:19:cd:a3:a0:fd:f7:bf:f6:2e:95:
1f:5d:62:05:c2:6a:77:6b:47:35:69:0e:f8:4f:37:
be:46:73:3f:bb:23:5d:ce:94:69:a9:50:d0:e4:5d:
c5:08:73:a0:2d:fb:ff:db:27:2d:09:51:7a:a2:8f:
83:27:09:11:ee:75:3d:2e:66:87:b0:a0:bf:fe:af:
c4:fa:d9:26:79:c6:30:56:37:12:13:2d:fd:1e:cf:
31:ca:dd:8c:01:3f:7f:c9:71:59:70:19:bd:be:55:
40:79:98:98:b8:35:1b:90:46:a4:56:60:e3:8e:7f:
60:b0:d3:b5:b8:2a:2b:37:35:51:d2:e9:02:d8:a0:
af:5f:3b:05:58:a6:57:e8:2d:b7:93:5c:2f:30:ab:
30:07:f9:db:7d:b1:3c:80:b8:11:d6:fb:3e:65:f9:
3b:58:ac:a1:25:04:30:77:36:29:2c:fc:d9:df:62:
8a:88:53:52:a0:b7:56:5d:b9:f4:e3:4a:44:d2:3b:
73:be:2f:27:52:36:7b:0c:d7:22:79:8c:d8:c7:f4:
67:c9:09:19:d0:ac:08:6a:30:eb:d9:a9:1b:f1:67:
16:d3:7c:4f:8d:92:7a:f2:cf:50:0e:98:fc:27:83:
18:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:87:8D:1A:57:BE:5F:AB:20:D8:01:F4:42:96:A0:E3:1F:36:72:D0
X509v3 Authority Key Identifier:
keyid:6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:c8:d9:d7:35:a4:c4:e7:64:b5:f6:04:3d:cc:96:87:f2:2e:
fa:dc:a9:8d:b5:7b:8b:0c:90:a7:8b:4e:4a:f2:17:fc:58:57:
ea:e5:70:bc:80:e9:21:72:f1:3b:8a:c1:e4:be:57:63:22:6e:
01:96:40:6b:51:9e:3d:7a:74:26:29:25:48:ad:f2:d4:28:9f:
d4:9d:91:ce:d8:36:94:30:8a:f8:47:5b:eb:b7:33:75:69:1f:
60:c8:1f:78:7c:71:02:45:9e:b1:ea:be:e8:5d:2f:df:ce:24:
03:b0:e4:7c:ea:a4:85:f9:13:b7:bc:f5:c4:d4:a3:53:07:bd:
a5:08:a0:71:1a:78:ba:b6:e2:75:26:f4:ed:a8:f9:bc:58:e8:
52:3f:60:45:32:67:a6:d4:58:e4:e3:63:87:84:7d:fd:77:b0:
45:b3:84:41:ee:6e:df:bf:9d:d1:db:56:32:9a:13:2e:75:5c:
fd:c3:cc:7f:47:a5:be:57:e1:14:77:a5:2b:7c:43:6f:29:fe:
87:91:a9:32:9d:24:1e:db:75:5c:36:77:ae:1a:e0:c9:f0:5b:
e5:c0:73:ee:39:85:ca:2b:8a:ee:b9:64:fc:05:b2:83:cb:0d:
0c:14:00:d2:c9:0e:01:9d:da:23:b7:97:b6:d8:e5:63:42:6d:
67:6f:e1:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdayVRP7v2D941Q7aGonm8+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMTQ2MDU2ZjBmYmJkZTYxOGJmZjAxMWMwZjIyYmE3NGE1
ODMyYjcwHhcNMjUwNjEwMTcwMDMyWhcNMjUwNjExMTcwMDMyWjAzMTEwLwYDVQQD
Eyg5Mzg3OGQxYTU3YmU1ZmFiMjBkODAxZjQ0Mjk2YTBlMzFmMzY3MmQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAormuQQjjBEXO6j1VR04vwqItqRnN
o6D997/2LpUfXWIFwmp3a0c1aQ74Tze+RnM/uyNdzpRpqVDQ5F3FCHOgLfv/2yct
CVF6oo+DJwkR7nU9LmaHsKC//q/E+tkmecYwVjcSEy39Hs8xyt2MAT9/yXFZcBm9
vlVAeZiYuDUbkEakVmDjjn9gsNO1uCorNzVR0ukC2KCvXzsFWKZX6C23k1wvMKsw
B/nbfbE8gLgR1vs+Zfk7WKyhJQQwdzYpLPzZ32KKiFNSoLdWXbn040pE0jtzvi8n
UjZ7DNcieYzYx/RnyQkZ0KwIajDr2akb8WcW03xPjZJ68s9QDpj8J4MYKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJOHjRpXvl+rINgB9EKWoOMfNnLQMB8GA1UdIwQY
MBaAFG0UYFbw+73mGL/wEcDyK6dKWDK3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlJSZ1Z2RDd2ZVlZdl9BUndQSXJwMHBZTXJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS81ODlkYjktZTIyYi00ZDY0LTk0YjQt
OGVjZjc1MTA1N2FjLzEvYlJSZ1Z2RDd2ZVlZdl9BUndQSXJwMHBZTXJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS81ODlkYjktZTIyYi00ZDY0LTk0YjQtOGVjZjc1MTA1N2Fj
LzEvYlJSZ1Z2RDd2ZVlZdl9BUndQSXJwMHBZTXJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKcjZ1zWk
xOdktfYEPcyWh/Iu+typjbV7iwyQp4tOSvIX/FhX6uVwvIDpIXLxO4rB5L5XYyJu
AZZAa1GePXp0JiklSK3y1Cif1J2Rztg2lDCK+Edb67czdWkfYMgfeHxxAkWeseq+
6F0v384kA7DkfOqkhfkTt7z1xNSjUwe9pQigcRp4urbidSb07aj5vFjoUj9gRTJn
ptRY5ONjh4R9/XewRbOEQe5u37+d0dtWMpoTLnVc/cPMf0elvlfhFHelK3xDbyn+
h5GpMp0kHtt1XDZ3rhrgyfBb5cBz7jmFyiuK7rlk/AWyg8sNDBQA0skOAZ3aI7eX
ttjlY0JtZ2/hjw==
-----END CERTIFICATE-----
Generated at Tue Jun 10 23:52:26 2025 by rpki-client