Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7a8bf2-6cb3-49ae-9e32-8829ee661c64/1/pPhiddwhxh2gzs0Sfpd0zKoysLs.mft
File: pPhiddwhxh2gzs0Sfpd0zKoysLs.mft (raw, json)
Hash identifier: WdNhiqA1TcUmTI5PeEMZjyL0J8wqFM+FlEvHYnrbgkA=
Subject key identifier: 23:AD:CE:E1:CA:76:59:E5:E4:D2:E9:06:AE:1C:89:BA:9E:69:17:E4
Authority key identifier: A4:F8:62:75:DC:21:C6:1D:A0:CE:CD:12:7E:97:74:CC:AA:32:B0:BB
Certificate issuer: /CN=a4f86275dc21c61da0cecd127e9774ccaa32b0bb
Certificate serial: 0197526B766D8C205FC823B2720A714E1B5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhiddwhxh2gzs0Sfpd0zKoysLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a8bf2-6cb3-49ae-9e32-8829ee661c64/1/pPhiddwhxh2gzs0Sfpd0zKoysLs.mft
Manifest number: 1582
Signing time: Mon 09 Jun 2025 02:01:03 +0000
Manifest this update: Mon 09 Jun 2025 02:01:03 +0000
Manifest next update: Tue 10 Jun 2025 02:01:03 +0000
Files and hashes: 1: a0SjSsK93R47m4eRP1Kso9k59CQ.roa (hash: 4DqaXQky67MktM88+QkXZEvBSJRKln9MtvLpFVmXjJ0=)
2: pPhiddwhxh2gzs0Sfpd0zKoysLs.crl (hash: Vo5w2H5e8O91+5FwRGkpACJB3cM3uA9GcHXgM9c4IiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a8bf2-6cb3-49ae-9e32-8829ee661c64/1/pPhiddwhxh2gzs0Sfpd0zKoysLs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/7a8bf2-6cb3-49ae-9e32-8829ee661c64/1/pPhiddwhxh2gzs0Sfpd0zKoysLs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pPhiddwhxh2gzs0Sfpd0zKoysLs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:6b:76:6d:8c:20:5f:c8:23:b2:72:0a:71:4e:1b:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f86275dc21c61da0cecd127e9774ccaa32b0bb
Validity
Not Before: Jun 9 02:01:03 2025 GMT
Not After : Jun 10 02:01:03 2025 GMT
Subject: CN=23adcee1ca7659e5e4d2e906ae1c89ba9e6917e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6f:90:0c:1d:8b:4e:6d:3b:72:a0:e9:f5:67:
ab:b7:dd:73:85:a7:66:7e:06:d1:c9:1a:ed:d6:ac:
ae:a8:36:9d:79:65:1b:55:b6:ce:09:59:ef:38:c5:
4b:c6:7f:4c:76:52:81:cf:73:23:0b:0b:2f:5f:c4:
82:f2:7a:08:0c:c9:97:5b:d2:df:aa:7d:16:9d:e6:
56:fa:c0:ff:2d:82:1d:33:61:cd:e4:4c:3d:8a:83:
1e:70:ae:36:e3:40:2c:b3:17:c4:2c:31:b6:98:b8:
3c:e2:75:33:a1:71:a3:f6:76:83:07:10:35:db:87:
4e:31:59:6e:2c:a9:e0:70:5a:a6:e1:ce:68:62:86:
35:4e:86:70:2d:d9:bd:6c:1c:e7:fe:a0:f6:e0:48:
da:82:05:4d:99:20:8c:78:60:db:50:9d:1c:3c:06:
8a:7a:71:42:2f:3a:cd:0a:a7:fd:da:bd:d8:43:39:
e7:fc:99:b4:65:40:1a:47:86:3a:3c:6d:0a:f3:fd:
5d:ad:98:14:3e:ab:61:b6:4f:22:0b:ff:4b:7e:3d:
3a:33:97:f0:ba:f7:09:56:52:f0:63:12:d9:0a:c2:
47:a6:27:46:03:d1:01:a3:15:58:20:8c:3d:66:9f:
df:56:9e:c1:9c:7c:9e:d1:0f:3d:bd:2a:18:55:ac:
8f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:AD:CE:E1:CA:76:59:E5:E4:D2:E9:06:AE:1C:89:BA:9E:69:17:E4
X509v3 Authority Key Identifier:
keyid:A4:F8:62:75:DC:21:C6:1D:A0:CE:CD:12:7E:97:74:CC:AA:32:B0:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhiddwhxh2gzs0Sfpd0zKoysLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a8bf2-6cb3-49ae-9e32-8829ee661c64/1/pPhiddwhxh2gzs0Sfpd0zKoysLs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a8bf2-6cb3-49ae-9e32-8829ee661c64/1/pPhiddwhxh2gzs0Sfpd0zKoysLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:9d:44:58:ae:44:ba:77:37:19:99:18:bb:39:b1:4b:49:ca:
26:9a:b9:b2:b7:24:7a:66:01:7b:d8:e1:17:59:11:e0:ce:0a:
f6:0b:ce:d2:2d:b1:71:04:86:9f:6b:d2:f3:7b:76:27:7e:28:
bd:11:3b:ec:e2:28:d6:5c:07:f9:80:1a:43:34:d0:3f:4e:b5:
0e:5d:fa:98:27:c6:92:82:25:74:24:34:70:a5:cb:cd:24:b8:
97:07:f7:f3:a6:da:ef:fd:f4:4c:eb:6d:64:f6:ab:cd:79:92:
61:18:d1:3f:6c:cd:1a:e0:2e:59:28:ae:3e:e6:d0:29:61:7b:
58:c2:10:86:99:4a:10:de:d1:03:27:01:26:8b:d9:34:c6:08:
22:99:ab:bd:57:e9:8a:25:33:67:31:43:ed:43:c1:1f:31:2f:
eb:98:21:c2:1a:93:e5:ea:10:3a:36:83:3f:df:a4:23:30:40:
b0:99:32:fe:09:86:78:76:33:97:75:3a:7f:29:a4:7a:0d:7c:
38:9e:08:d4:26:02:01:d9:43:62:51:fb:51:9c:67:84:6b:e9:
61:84:bd:ae:2d:19:ac:ec:f2:ae:9b:57:5d:23:ed:e9:e4:da:
86:67:8d:57:04:ba:58:49:b4:6a:73:6a:4c:27:4a:ff:d7:00:
18:45:26:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdSa3ZtjCBfyCOycgpxThtaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0Zjg2Mjc1ZGMyMWM2MWRhMGNlY2QxMjdlOTc3NGNjYWEz
MmIwYmIwHhcNMjUwNjA5MDIwMTAzWhcNMjUwNjEwMDIwMTAzWjAzMTEwLwYDVQQD
EygyM2FkY2VlMWNhNzY1OWU1ZTRkMmU5MDZhZTFjODliYTllNjkxN2U0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo2+QDB2LTm07cqDp9Wert91zhadm
fgbRyRrt1qyuqDadeWUbVbbOCVnvOMVLxn9MdlKBz3MjCwsvX8SC8noIDMmXW9Lf
qn0WneZW+sD/LYIdM2HN5Ew9ioMecK4240AssxfELDG2mLg84nUzoXGj9naDBxA1
24dOMVluLKngcFqm4c5oYoY1ToZwLdm9bBzn/qD24EjaggVNmSCMeGDbUJ0cPAaK
enFCLzrNCqf92r3YQznn/Jm0ZUAaR4Y6PG0K8/1drZgUPqthtk8iC/9Lfj06M5fw
uvcJVlLwYxLZCsJHpidGA9EBoxVYIIw9Zp/fVp7BnHye0Q89vSoYVayPEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCOtzuHKdlnl5NLpBq4cibqeaRfkMB8GA1UdIwQY
MBaAFKT4YnXcIcYdoM7NEn6XdMyqMrC7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFBoaWRkd2h4aDJnenMwU2ZwZDB6S295c0xzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83YThiZjItNmNiMy00OWFlLTllMzIt
ODgyOWVlNjYxYzY0LzEvcFBoaWRkd2h4aDJnenMwU2ZwZDB6S295c0xzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS83YThiZjItNmNiMy00OWFlLTllMzItODgyOWVlNjYxYzY0
LzEvcFBoaWRkd2h4aDJnenMwU2ZwZDB6S295c0xzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUJ1EWK5E
unc3GZkYuzmxS0nKJpq5srckemYBe9jhF1kR4M4K9gvO0i2xcQSGn2vS83t2J34o
vRE77OIo1lwH+YAaQzTQP061Dl36mCfGkoIldCQ0cKXLzSS4lwf386ba7/30TOtt
ZParzXmSYRjRP2zNGuAuWSiuPubQKWF7WMIQhplKEN7RAycBJovZNMYIIpmrvVfp
iiUzZzFD7UPBHzEv65ghwhqT5eoQOjaDP9+kIzBAsJky/gmGeHYzl3U6fymkeg18
OJ4I1CYCAdlDYlH7UZxnhGvpYYS9ri0ZrOzyrptXXSPt6eTahmeNVwS6WEm0anNq
TCdK/9cAGEUmEw==
-----END CERTIFICATE-----
Generated at Mon Jun 9 11:55:35 2025 by rpki-client