Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
File: tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft (raw, json)
Hash identifier: iwtzdIXtQPb8ojjSL9pTwI0XqqPBt0N1tOM0zYtdp0w=
Subject key identifier: 1A:63:62:97:BF:F1:CF:D5:78:53:65:86:B6:82:72:8C:2B:59:A7:A7
Authority key identifier: B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4
Certificate issuer: /CN=b453a2b3fb83d86c7806cc0660d829119d9375b4
Certificate serial: 0197504696239261B6E27227C4FB4C842416
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
Manifest number: 0657
Signing time: Sun 08 Jun 2025 16:01:32 +0000
Manifest this update: Sun 08 Jun 2025 16:01:32 +0000
Manifest next update: Mon 09 Jun 2025 16:01:32 +0000
Files and hashes: 1: G4FFwIyiIU29W95QZk9-MWiLljM.roa (hash: iDaSzS67wgh1om9NMNs4mTJZEfMH7AGf6ifeuTsPDRg=)
2: tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl (hash: U8tBcn9GckyOUWlEAATk3lDkpDkQpZnXFeglIRuxeNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:46:96:23:92:61:b6:e2:72:27:c4:fb:4c:84:24:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b453a2b3fb83d86c7806cc0660d829119d9375b4
Validity
Not Before: Jun 8 16:01:32 2025 GMT
Not After : Jun 9 16:01:32 2025 GMT
Subject: CN=1a636297bff1cfd578536586b682728c2b59a7a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:79:82:59:d1:2c:01:04:49:64:cb:dd:77:01:
e3:49:96:36:af:73:02:37:ca:10:3d:5a:2d:03:dd:
21:e5:6a:85:7d:ac:ea:92:5a:4c:5f:ed:39:08:90:
65:06:7b:f6:bb:a8:c8:75:b8:71:4d:49:3b:93:23:
9f:8f:02:8e:b2:0e:37:91:1a:80:0b:38:12:47:7e:
ae:50:4f:3f:90:5e:6f:6b:31:66:5a:0d:78:16:bc:
27:9b:f6:de:d2:09:11:44:03:d5:0c:0b:2c:90:97:
3a:a9:4c:45:65:3a:aa:80:b6:db:cc:b4:42:3f:d1:
59:7e:9d:32:18:5b:34:ec:03:8a:22:10:e9:c4:92:
8a:f4:4f:ac:38:0b:a7:fd:d5:df:54:6d:bc:0b:cd:
b3:f5:da:52:d9:36:40:75:6a:5a:7d:29:89:4d:e2:
62:ad:2d:88:bd:ba:26:37:f0:99:78:e3:35:b7:bd:
27:84:00:5f:24:67:a4:e9:16:0b:4d:45:91:16:87:
31:f9:01:7b:ef:19:90:4e:87:4d:72:f2:e3:a6:af:
67:eb:71:37:7e:c9:c6:81:fb:83:38:a0:f1:8f:6a:
40:90:aa:82:8a:a4:95:3b:9e:07:86:f3:4b:04:03:
a0:67:73:bc:3a:78:3d:4b:f7:25:30:bc:cf:0e:89:
9d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:63:62:97:BF:F1:CF:D5:78:53:65:86:B6:82:72:8C:2B:59:A7:A7
X509v3 Authority Key Identifier:
keyid:B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:64:b6:4c:c5:c5:b6:83:ef:57:62:fa:ef:47:d3:c5:44:0e:
3d:97:51:22:02:86:f7:af:75:16:55:d5:2f:36:b4:78:97:0e:
62:1f:5e:19:f6:0c:fb:b8:bd:17:fc:8a:2e:80:c2:48:c8:e7:
83:af:7c:4d:fb:06:c3:b5:48:bb:6b:b2:04:06:a6:7c:9f:87:
13:3e:8c:8f:7c:c8:39:01:4b:79:cb:42:d2:b7:02:0c:c3:7d:
ed:18:4d:e7:34:fa:b9:c9:7e:70:de:15:bb:ec:fe:21:a5:81:
55:1e:12:49:03:70:93:2e:57:4a:63:09:ff:c9:00:eb:ed:28:
e1:bd:5b:92:cc:b4:63:50:9c:c8:51:69:fa:f8:85:44:b8:89:
00:65:28:b4:5c:e5:3b:cc:a9:ed:57:19:c4:09:eb:73:a3:fd:
c8:e6:c1:35:8f:0b:63:62:dd:20:33:45:78:07:9e:8d:76:cd:
4e:1c:31:8a:9d:f7:54:c1:33:13:ac:44:0c:92:9f:02:02:2d:
da:07:54:d3:41:ea:ff:e0:44:dc:0d:0b:45:07:ef:10:54:e9:
5f:0f:5a:d2:fc:38:86:a0:1e:86:bd:c2:c8:69:29:5c:18:08:
78:59:a4:d8:cd:8e:6f:63:01:8c:01:89:1e:9d:e4:cc:73:a7:
d2:c9:8a:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQRpYjkmG24nInxPtMhCQWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0NTNhMmIzZmI4M2Q4NmM3ODA2Y2MwNjYwZDgyOTExOWQ5
Mzc1YjQwHhcNMjUwNjA4MTYwMTMyWhcNMjUwNjA5MTYwMTMyWjAzMTEwLwYDVQQD
EygxYTYzNjI5N2JmZjFjZmQ1Nzg1MzY1ODZiNjgyNzI4YzJiNTlhN2E3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuXmCWdEsAQRJZMvddwHjSZY2r3MC
N8oQPVotA90h5WqFfazqklpMX+05CJBlBnv2u6jIdbhxTUk7kyOfjwKOsg43kRqA
CzgSR36uUE8/kF5vazFmWg14Frwnm/be0gkRRAPVDAsskJc6qUxFZTqqgLbbzLRC
P9FZfp0yGFs07AOKIhDpxJKK9E+sOAun/dXfVG28C82z9dpS2TZAdWpafSmJTeJi
rS2IvbomN/CZeOM1t70nhABfJGek6RYLTUWRFocx+QF77xmQTodNcvLjpq9n63E3
fsnGgfuDOKDxj2pAkKqCiqSVO54HhvNLBAOgZ3O8Ong9S/clMLzPDomdNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBpjYpe/8c/VeFNlhraCcowrWaenMB8GA1UdIwQY
MBaAFLRTorP7g9hseAbMBmDYKRGdk3W0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEZPaXNfdUQyR3g0QnN3R1lOZ3BFWjJUZGJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9iZjc0OGQtYzRjYS00ZmQxLWE1OWQt
NDA2MGYyMTFmM2MzLzEvdEZPaXNfdUQyR3g0QnN3R1lOZ3BFWjJUZGJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi9iZjc0OGQtYzRjYS00ZmQxLWE1OWQtNDA2MGYyMTFmM2Mz
LzEvdEZPaXNfdUQyR3g0QnN3R1lOZ3BFWjJUZGJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPWS2TMXF
toPvV2L670fTxUQOPZdRIgKG9691FlXVLza0eJcOYh9eGfYM+7i9F/yKLoDCSMjn
g698TfsGw7VIu2uyBAamfJ+HEz6Mj3zIOQFLectC0rcCDMN97RhN5zT6ucl+cN4V
u+z+IaWBVR4SSQNwky5XSmMJ/8kA6+0o4b1bksy0Y1CcyFFp+viFRLiJAGUotFzl
O8yp7VcZxAnrc6P9yObBNY8LY2LdIDNFeAeejXbNThwxip33VMEzE6xEDJKfAgIt
2gdU00Hq/+BE3A0LRQfvEFTpXw9a0vw4hqAehr3CyGkpXBgIeFmk2M2Ob2MBjAGJ
Hp3kzHOn0smK/w==
-----END CERTIFICATE-----
Generated at Sun Jun 8 18:41:36 2025 by rpki-client