Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: NmUGH1nuDxhDDef8xRZC/BFYZSZX+kuUjs+GX4ySSDI=
Subject key identifier: DE:35:70:2A:E3:C4:CA:D6:45:8C:48:53:FD:47:1E:A8:DE:24:04:D7
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 01974B5656B6E64279722DBA595C5CCA4026
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 0D78
Signing time: Sat 07 Jun 2025 17:00:38 +0000
Manifest this update: Sat 07 Jun 2025 17:00:38 +0000
Manifest next update: Sun 08 Jun 2025 17:00:38 +0000
Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=)
2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: eM4EUzQkf7UYD1tiKyF53Vd0zPy6jaJMKV71YJQZyf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 17:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:56:b6:e6:42:79:72:2d:ba:59:5c:5c:ca:40:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Jun 7 17:00:38 2025 GMT
Not After : Jun 8 17:00:38 2025 GMT
Subject: CN=de35702ae3c4cad6458c4853fd471ea8de2404d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:52:20:79:18:d1:40:d3:18:d5:6e:19:99:56:
20:79:72:f7:12:e9:e4:42:07:07:8f:da:05:43:05:
6f:28:48:50:46:73:ff:46:f0:a6:57:31:5a:94:77:
1c:05:ea:e3:d9:61:8a:37:d5:d5:7c:3e:bb:15:8a:
c6:b6:f4:7e:6b:af:39:2e:4d:ef:54:74:8b:14:96:
05:f4:28:a5:5b:db:df:af:b6:72:d9:50:53:5b:63:
2e:bc:b5:e9:e9:28:f3:d2:7b:63:4d:9f:23:14:2f:
fd:59:ac:00:1c:3b:9a:b1:5a:ae:9e:a5:50:58:c5:
0b:e8:81:9a:c9:7b:91:22:c3:71:e1:a6:4e:6f:c4:
1c:c7:23:bf:46:e7:3f:59:c5:09:77:85:02:ae:1d:
d8:9f:a5:bc:cf:ac:e1:1e:4e:d2:92:fa:b9:68:57:
5b:9b:c6:33:d4:fb:d9:2c:1c:a0:ed:30:d3:5e:02:
ab:90:d0:b1:ae:b5:11:11:ee:17:05:33:a4:2a:f5:
e1:ee:1a:e1:7e:d2:20:87:f0:ce:12:3f:f2:01:cc:
ad:6d:10:4c:2b:f7:3d:7a:64:ca:c4:3a:67:07:d9:
b3:48:62:95:d1:2e:e2:95:c1:3c:19:6b:aa:10:e6:
6c:3c:12:47:fa:4f:ac:08:ba:aa:45:ab:9f:59:f2:
e5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:35:70:2A:E3:C4:CA:D6:45:8C:48:53:FD:47:1E:A8:DE:24:04:D7
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:24:1e:a1:b3:7d:61:f2:ac:c3:ba:ec:66:dc:fb:97:f9:92:
17:6f:26:65:a5:38:78:6c:61:8e:1e:cd:c1:07:1c:ac:55:8e:
da:41:ec:55:03:3d:8b:5f:a3:9f:32:89:66:80:d0:fe:08:43:
6f:49:9e:7f:a5:a8:0b:1a:3f:16:f9:78:ab:40:f7:33:d3:75:
9b:ff:21:e1:19:6d:6e:47:fe:ee:6c:9a:24:74:ec:8f:da:74:
d3:97:ce:27:b1:a0:4e:4b:de:89:8c:52:e1:5e:4c:2a:40:f4:
3c:22:7c:ca:8b:0a:1b:31:0c:25:0c:06:c2:3d:0c:cc:09:2c:
ed:91:cc:a5:56:dd:ac:cb:f7:9f:30:26:8d:c2:3f:33:06:76:
55:e0:5c:9b:62:d5:d1:bf:f6:d5:9d:ea:82:3e:83:dd:3e:e2:
0a:56:fe:ae:35:16:77:00:c6:f5:de:0a:51:de:76:81:60:62:
c0:0c:6a:55:44:d5:d3:bd:13:14:85:3a:38:07:75:b1:e5:2c:
e3:49:99:e8:a9:02:dd:a4:98:10:2d:c5:01:80:43:e7:03:4a:
b4:d7:ea:24:53:64:d7:1f:a3:45:ba:4f:46:ea:9d:f4:64:6e:
f9:50:dd:ca:19:a2:2d:cc:c0:4e:cc:5a:d0:47:cd:3f:ad:e3:
97:d3:9d:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLVla25kJ5ci26WVxcykAmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxOGRiMjg4MjNmMzcwOGIyNTVhYTEyNGJhNmVmNzQxZDEx
M2VhZjMwHhcNMjUwNjA3MTcwMDM4WhcNMjUwNjA4MTcwMDM4WjAzMTEwLwYDVQQD
EyhkZTM1NzAyYWUzYzRjYWQ2NDU4YzQ4NTNmZDQ3MWVhOGRlMjQwNGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1IgeRjRQNMY1W4ZmVYgeXL3Eunk
QgcHj9oFQwVvKEhQRnP/RvCmVzFalHccBerj2WGKN9XVfD67FYrGtvR+a685Lk3v
VHSLFJYF9CilW9vfr7Zy2VBTW2MuvLXp6Sjz0ntjTZ8jFC/9WawAHDuasVqunqVQ
WMUL6IGayXuRIsNx4aZOb8QcxyO/Ruc/WcUJd4UCrh3Yn6W8z6zhHk7Skvq5aFdb
m8Yz1PvZLByg7TDTXgKrkNCxrrUREe4XBTOkKvXh7hrhftIgh/DOEj/yAcytbRBM
K/c9emTKxDpnB9mzSGKV0S7ilcE8GWuqEOZsPBJH+k+sCLqqRaufWfLl2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN41cCrjxMrWRYxIU/1HHqjeJATXMB8GA1UdIwQY
MBaAFCGNsogj83CLJVqhJLpu90HRE+rzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQt
NzlkYzNkMGJiZWQ4LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQtNzlkYzNkMGJiZWQ4
LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFSQeobN9
YfKsw7rsZtz7l/mSF28mZaU4eGxhjh7NwQccrFWO2kHsVQM9i1+jnzKJZoDQ/ghD
b0mef6WoCxo/Fvl4q0D3M9N1m/8h4Rltbkf+7myaJHTsj9p005fOJ7GgTkveiYxS
4V5MKkD0PCJ8yosKGzEMJQwGwj0MzAks7ZHMpVbdrMv3nzAmjcI/MwZ2VeBcm2LV
0b/21Z3qgj6D3T7iClb+rjUWdwDG9d4KUd52gWBiwAxqVUTV070TFIU6OAd1seUs
40mZ6KkC3aSYEC3FAYBD5wNKtNfqJFNk1x+jRbpPRuqd9GRu+VDdyhmiLczATsxa
0EfNP63jl9OdIw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:29:52 2025 by rpki-client