Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
File: 0LYdHx2czatrbY4UUMLJNtOX5nA.mft (raw, json)
Hash identifier: fOBB0uVCMjTitQpRuG6sop3PYS2Fx/4I7UwjsPWj/Xo=
Subject key identifier: 07:FF:89:7D:EB:93:F2:83:0B:D7:40:F6:B9:9E:E7:55:F0:64:E9:2E
Authority key identifier: D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
Certificate issuer: /CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Certificate serial: 01974F6A71B227CFD944DA03E5518ECA30C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
Manifest number: 0263
Signing time: Sun 08 Jun 2025 12:01:05 +0000
Manifest this update: Sun 08 Jun 2025 12:01:05 +0000
Manifest next update: Mon 09 Jun 2025 12:01:05 +0000
Files and hashes: 1: 0LYdHx2czatrbY4UUMLJNtOX5nA.crl (hash: a2Xd8SC1roJ/yBNj7XgJn6ZVgHV3Z5GMt76MTjw7zNk=)
2: WtuPQAz22oEnCEx3Rc-9J0U0Qbk.roa (hash: LqsVaHB6US9lWput6TNuWvOyM8xnvQFU16n5uBdiSPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:6a:71:b2:27:cf:d9:44:da:03:e5:51:8e:ca:30:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Validity
Not Before: Jun 8 12:01:05 2025 GMT
Not After : Jun 9 12:01:05 2025 GMT
Subject: CN=07ff897deb93f2830bd740f6b99ee755f064e92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:43:53:bf:fb:7b:67:db:26:47:12:4d:e3:fc:
26:ca:8d:53:0b:83:f2:82:78:e8:b2:cf:4e:5a:6a:
11:0a:40:5d:b3:da:4d:2a:df:f6:4f:ba:21:65:d6:
c9:50:84:23:3a:ba:de:d8:c1:fb:da:44:59:33:dc:
12:15:e9:ed:79:d3:9b:59:5a:2e:9a:21:76:3a:87:
c9:2e:e9:f3:96:81:d3:11:82:38:09:e4:13:19:61:
20:c7:3d:0b:27:71:44:f6:53:0e:e1:be:6c:20:48:
36:e0:cb:e5:ef:99:13:fe:7e:28:25:1b:1d:be:ab:
2e:92:3a:eb:c3:ca:ad:05:af:7b:b6:d3:33:62:47:
47:b1:65:c9:0f:2c:30:e3:12:f8:2a:6a:f9:d7:30:
00:5d:83:9e:79:1a:67:ad:29:65:5d:24:cb:79:08:
7e:48:2f:fc:bf:fd:90:2a:72:2b:9e:8d:b2:fe:d7:
83:56:f3:36:ff:95:05:fa:12:49:78:a2:9e:d0:d2:
dc:75:22:8a:af:77:70:87:b1:9b:2b:3b:bd:d6:d1:
b9:4a:af:91:f9:bb:9d:43:1e:33:09:61:5c:6b:1f:
75:2c:9b:65:3a:84:40:2c:68:1a:1c:96:a6:28:8c:
41:9c:56:1b:ad:ce:f8:62:98:61:b2:c1:d8:61:b5:
27:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:FF:89:7D:EB:93:F2:83:0B:D7:40:F6:B9:9E:E7:55:F0:64:E9:2E
X509v3 Authority Key Identifier:
keyid:D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:56:07:10:e4:bb:d5:62:9a:67:f2:c3:45:04:0b:06:e6:e2:
b9:1f:8f:6e:70:11:9c:6e:dc:aa:71:6e:37:39:69:04:42:55:
32:b9:f0:26:b0:b5:f6:a9:f9:aa:82:87:99:5f:b3:7c:34:21:
bf:67:2e:96:6b:f2:19:c6:fe:17:e2:a7:c1:e2:bc:bf:91:31:
ea:21:cb:93:06:33:22:b9:de:d8:f4:2d:c8:43:0d:c2:40:73:
12:87:96:af:61:de:ee:b7:1e:55:5b:e9:ae:5e:0a:77:8d:2e:
d3:1b:b2:01:2a:c0:27:44:0d:8a:6b:98:bf:e5:29:1d:27:4e:
65:df:49:ac:6d:c0:33:e4:02:62:b0:a8:6e:70:01:b2:c1:30:
bc:6a:47:4c:6f:9b:cf:48:74:17:3b:41:13:ba:61:52:91:35:
b6:e7:05:44:47:e2:42:ee:2d:45:de:1b:03:9a:8d:ba:ef:b4:
b4:62:8a:85:58:87:ff:05:87:2b:b0:95:6d:27:6a:ad:10:a8:
ff:93:5e:be:a6:2d:9b:73:b9:88:69:8b:e3:bf:8f:33:e7:5f:
c5:fc:66:75:f8:25:2d:8a:5e:d3:9b:be:9d:b0:b5:36:39:d5:
61:c9:0c:26:30:c9:9f:fa:48:0b:bd:78:09:ad:24:b3:e9:6c:
bf:9f:45:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdPanGyJ8/ZRNoD5VGOyjDCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwYjYxZDFmMWQ5Y2NkYWI2YjZkOGUxNDUwYzJjOTM2ZDM5
N2U2NzAwHhcNMjUwNjA4MTIwMTA1WhcNMjUwNjA5MTIwMTA1WjAzMTEwLwYDVQQD
EygwN2ZmODk3ZGViOTNmMjgzMGJkNzQwZjZiOTllZTc1NWYwNjRlOTJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ENTv/t7Z9smRxJN4/wmyo1TC4Py
gnjoss9OWmoRCkBds9pNKt/2T7ohZdbJUIQjOrre2MH72kRZM9wSFentedObWVou
miF2OofJLunzloHTEYI4CeQTGWEgxz0LJ3FE9lMO4b5sIEg24Mvl75kT/n4oJRsd
vqsukjrrw8qtBa97ttMzYkdHsWXJDyww4xL4Kmr51zAAXYOeeRpnrSllXSTLeQh+
SC/8v/2QKnIrno2y/teDVvM2/5UF+hJJeKKe0NLcdSKKr3dwh7GbKzu91tG5Sq+R
+budQx4zCWFcax91LJtlOoRALGgaHJamKIxBnFYbrc74YphhssHYYbUnPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAf/iX3rk/KDC9dA9rme51XwZOkuMB8GA1UdIwQY
MBaAFNC2HR8dnM2ra22OFFDCyTbTl+ZwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzIt
MTVmNjJjODkwYWY4LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzItMTVmNjJjODkwYWY4
LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnlYHEOS7
1WKaZ/LDRQQLBubiuR+PbnARnG7cqnFuNzlpBEJVMrnwJrC19qn5qoKHmV+zfDQh
v2culmvyGcb+F+KnweK8v5Ex6iHLkwYzIrne2PQtyEMNwkBzEoeWr2He7rceVVvp
rl4Kd40u0xuyASrAJ0QNimuYv+UpHSdOZd9JrG3AM+QCYrCobnABssEwvGpHTG+b
z0h0FztBE7phUpE1tucFREfiQu4tRd4bA5qNuu+0tGKKhViH/wWHK7CVbSdqrRCo
/5NevqYtm3O5iGmL47+PM+dfxfxmdfglLYpe05u+nbC1NjnVYckMJjDJn/pIC714
Ca0ks+lsv59FZQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 19:20:34 2025 by rpki-client