Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: ZXUf/+f5iP2wAO7ZWO2E+3G9CrH42s+4tmDE1Ronjx8=
Subject key identifier: 94:5C:1D:46:C9:84:57:64:A8:3A:D5:CB:F8:49:E6:17:85:4C:0E:D7
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019748C36C02148D2782B1DE70A18E867FCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 05:00:55 +0000
Manifest this update: Sat 07 Jun 2025 05:00:55 +0000
Manifest next update: Sun 08 Jun 2025 05:00:55 +0000
Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=)
2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=)
3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: 1Gm4o9WyjPtyEGVL2nLve1LxvIA1bj3TuzY5mGTrCEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:6c:02:14:8d:27:82:b1:de:70:a1:8e:86:7f:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jun 7 05:00:55 2025 GMT
Not After : Jun 8 05:00:55 2025 GMT
Subject: CN=945c1d46c9845764a83ad5cbf849e617854c0ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:28:2e:f3:91:b4:9e:e5:13:73:1d:37:9f:ff:
19:b2:c6:e1:1d:eb:60:c7:8b:bf:84:59:2a:6b:3c:
7d:49:a5:26:f7:14:02:16:f9:06:6f:1c:b3:e1:52:
50:b3:61:d5:22:a5:2c:1b:1f:07:e8:50:67:91:bc:
9d:77:04:8d:95:ac:ed:35:2c:8c:77:db:6d:33:c9:
a0:67:09:f2:9f:43:1e:31:77:b3:c9:6f:61:4d:de:
37:0e:a3:33:f2:59:73:27:3b:37:cc:0e:0c:ff:ce:
c5:1f:19:71:a5:d7:22:65:f7:c6:af:bf:cd:cf:22:
df:8d:57:7e:71:e8:27:01:39:ca:65:4a:61:09:66:
c7:28:e0:a8:25:c4:74:15:92:15:a8:e0:ce:b1:b7:
83:8c:d6:25:32:dd:20:bc:fe:a1:ec:75:3a:47:48:
31:cf:8f:a3:5c:3d:1c:57:03:6e:79:a3:d5:16:de:
26:cc:7e:6a:1e:ca:b8:c7:bb:78:4f:ee:2b:90:60:
6e:83:96:84:7c:80:d1:fe:63:93:da:05:27:fd:4a:
fe:36:5a:6e:fe:a4:1e:67:66:0e:74:04:1a:ee:b1:
cf:f8:62:08:04:a6:be:c6:64:6e:8b:a1:5a:74:b5:
e9:e6:44:13:f7:06:31:56:09:02:db:43:ee:a7:0c:
eb:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:5C:1D:46:C9:84:57:64:A8:3A:D5:CB:F8:49:E6:17:85:4C:0E:D7
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:18:57:b1:2f:bd:25:b9:4c:8f:30:82:a2:c2:ce:c4:4f:8c:
14:e2:9f:89:1c:2b:03:0e:f4:1a:a0:61:e2:73:cc:1e:65:4b:
dd:e3:64:ac:36:5b:f6:75:f8:cb:d3:25:f6:63:84:12:67:1a:
4e:c1:70:86:ac:4e:31:f1:07:e7:a7:7a:bd:0e:75:8e:49:ca:
9d:57:1e:b4:88:f0:21:db:61:ac:99:4e:0a:6d:bd:ae:64:27:
0b:53:76:c2:eb:4d:76:98:be:53:35:68:83:c6:53:e8:56:9a:
4d:2d:80:64:4d:9e:d3:97:aa:f5:50:5c:0c:0b:9b:b8:06:81:
ae:2a:46:dc:00:aa:d4:a7:12:0c:24:7d:11:3d:b1:5b:06:5f:
7c:1f:c4:8a:c0:8e:84:43:27:3f:ac:98:95:9a:a2:e2:a4:bd:
c1:28:f5:60:3f:a8:b1:07:b1:e9:d7:87:0a:c9:17:23:9f:c3:
f3:55:5a:63:df:ea:f5:f6:f2:36:60:67:b6:d2:37:f3:9b:b3:
fe:be:51:b7:8e:97:47:f1:dd:d8:03:98:9b:35:51:88:59:3c:
30:9b:b2:80:0a:71:ba:46:92:c3:a4:1c:5e:33:f6:66:41:79:
d5:61:7d:65:06:e5:45:bc:5d:ac:0a:67:63:ca:fd:8d:39:5a:
22:71:14:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIw2wCFI0ngrHecKGOhn/LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4
ZjdkMjEwHhcNMjUwNjA3MDUwMDU1WhcNMjUwNjA4MDUwMDU1WjAzMTEwLwYDVQQD
Eyg5NDVjMWQ0NmM5ODQ1NzY0YTgzYWQ1Y2JmODQ5ZTYxNzg1NGMwZWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSgu85G0nuUTcx03n/8ZssbhHetg
x4u/hFkqazx9SaUm9xQCFvkGbxyz4VJQs2HVIqUsGx8H6FBnkbyddwSNlaztNSyM
d9ttM8mgZwnyn0MeMXezyW9hTd43DqMz8llzJzs3zA4M/87FHxlxpdciZffGr7/N
zyLfjVd+cegnATnKZUphCWbHKOCoJcR0FZIVqODOsbeDjNYlMt0gvP6h7HU6R0gx
z4+jXD0cVwNueaPVFt4mzH5qHsq4x7t4T+4rkGBug5aEfIDR/mOT2gUn/Ur+Nlpu
/qQeZ2YOdAQa7rHP+GIIBKa+xmRui6FadLXp5kQT9wYxVgkC20PupwzrOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJRcHUbJhFdkqDrVy/hJ5heFTA7XMB8GA1UdIwQY
MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt
ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5
LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcxhXsS+9
JblMjzCCosLOxE+MFOKfiRwrAw70GqBh4nPMHmVL3eNkrDZb9nX4y9Ml9mOEEmca
TsFwhqxOMfEH56d6vQ51jknKnVcetIjwIdthrJlOCm29rmQnC1N2wutNdpi+UzVo
g8ZT6FaaTS2AZE2e05eq9VBcDAubuAaBripG3ACq1KcSDCR9ET2xWwZffB/EisCO
hEMnP6yYlZqi4qS9wSj1YD+osQex6deHCskXI5/D81VaY9/q9fbyNmBnttI385uz
/r5Rt46XR/Hd2AOYmzVRiFk8MJuygApxukaSw6QcXjP2ZkF51WF9ZQblRbxdrApn
Y8r9jTlaInEUCg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:48:47 2025 by rpki-client