Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
File: bMdYWreoPsgLVauVe_N7eR52UBY.mft (raw, json)
Hash identifier: dl+DfrUJ0x6RY16xC11oNgQlm6WQsi2tRs/1WLQM22E=
Subject key identifier: C7:57:02:64:05:22:78:78:57:5A:36:A9:4F:A6:7F:0E:B4:7E:2B:A6
Authority key identifier: 6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
Certificate issuer: /CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Certificate serial: 019757C89C993F1A9A04611B742E8C74FEB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
Manifest number: 12EF
Signing time: Tue 10 Jun 2025 03:00:54 +0000
Manifest this update: Tue 10 Jun 2025 03:00:54 +0000
Manifest next update: Wed 11 Jun 2025 03:00:54 +0000
Files and hashes: 1: JJLEui4261ZXJVAJCMhhZuF8jH8.roa (hash: /ixKOls/TcJQuO85TTUBz1567wbeYHBB+Wz+IfsDjR8=)
2: bMdYWreoPsgLVauVe_N7eR52UBY.crl (hash: EAf0wOAT0wQ2oG7SE8azJNdwJe6z9EWb00JlzdlVARU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 03:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:c8:9c:99:3f:1a:9a:04:61:1b:74:2e:8c:74:fe:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Validity
Not Before: Jun 10 03:00:54 2025 GMT
Not After : Jun 11 03:00:54 2025 GMT
Subject: CN=c757026405227878575a36a94fa67f0eb47e2ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d1:d8:ee:e8:93:ea:87:11:80:e0:c7:ff:b1:
c2:34:b8:6d:fb:94:50:c0:c2:bf:1a:28:72:99:b5:
f1:ad:0a:7a:1e:e1:61:ba:4a:4c:19:3a:bd:62:ae:
ba:2f:e1:d3:39:cf:1e:03:0c:d7:7c:a9:91:d2:63:
fb:6c:d8:4e:67:0b:89:9b:d1:71:17:5c:27:37:5a:
70:b4:63:94:29:5f:13:d1:7c:f0:b8:15:ff:ab:1b:
3d:fd:12:6d:ec:2f:3b:77:d2:4e:ef:f6:ea:7b:77:
9d:8f:7f:83:26:c8:ea:8b:09:59:b7:0a:20:e7:f4:
e6:30:f8:f3:b6:29:63:fe:e4:da:6d:ad:73:72:b9:
f2:c8:c9:6c:f2:90:9d:02:21:b6:d9:22:4f:19:37:
66:e5:37:85:d7:02:2c:76:eb:ea:7f:cf:0d:39:bb:
7d:1b:40:7e:7c:0b:b7:e0:36:3f:8d:b3:41:5e:59:
23:2e:dd:32:f7:5f:45:3c:01:3c:f1:81:46:dd:a3:
a6:5f:96:39:fd:11:d3:ea:f8:49:82:66:93:92:9b:
9b:9e:71:c0:af:26:8c:d3:bf:6a:1f:ec:8f:f3:b6:
02:f3:ec:93:67:5a:41:a8:5b:c7:92:05:07:fd:e1:
77:92:18:fc:1d:bf:4f:bb:87:95:11:7f:60:a8:48:
98:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:57:02:64:05:22:78:78:57:5A:36:A9:4F:A6:7F:0E:B4:7E:2B:A6
X509v3 Authority Key Identifier:
keyid:6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:47:de:04:0b:47:4d:5e:c1:96:a9:f9:b0:b6:38:75:36:65:
11:05:01:af:34:49:d2:e6:b5:90:c7:bd:d4:70:a4:7f:9d:3e:
dd:1f:7f:1a:50:32:5e:fd:d3:ea:13:d5:da:65:eb:2c:88:93:
32:1a:f4:0f:9e:e6:e3:5e:f0:b8:c6:f6:5b:62:14:56:c5:ec:
3f:fb:11:0e:9d:3c:2e:16:bd:d4:e8:fe:86:29:50:b4:a7:c7:
e5:aa:03:7e:13:c2:c4:52:a8:19:6b:ad:3b:10:15:c5:75:db:
7e:00:69:35:9e:da:7c:68:53:e2:9a:ef:52:ce:e3:f4:f5:2b:
cf:22:fc:72:c2:a9:67:19:ee:1e:44:13:14:b9:7d:6d:e6:5e:
84:ef:fa:a6:27:94:a2:40:55:92:9a:fc:13:79:52:f0:88:57:
dc:62:41:75:b5:77:dd:97:cb:5b:d7:7b:1e:c2:ee:23:02:50:
86:11:7d:47:e6:7c:82:1b:09:cd:fa:8d:12:19:cd:c1:91:90:
5d:a8:06:32:62:14:24:ba:5c:58:5d:29:bd:1e:b0:86:13:8c:
e9:a8:2f:48:2d:66:7f:c5:b3:a7:0d:c9:fd:d3:e8:8c:e4:80:
0d:ec:1d:84:4c:ad:20:18:a5:60:de:ee:60:44:b9:52:c6:d4:
cc:f7:10:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdXyJyZPxqaBGEbdC6MdP61MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjYzc1ODVhYjdhODNlYzgwYjU1YWI5NTdiZjM3Yjc5MWU3
NjUwMTYwHhcNMjUwNjEwMDMwMDU0WhcNMjUwNjExMDMwMDU0WjAzMTEwLwYDVQQD
EyhjNzU3MDI2NDA1MjI3ODc4NTc1YTM2YTk0ZmE2N2YwZWI0N2UyYmE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA59HY7uiT6ocRgODH/7HCNLht+5RQ
wMK/GihymbXxrQp6HuFhukpMGTq9Yq66L+HTOc8eAwzXfKmR0mP7bNhOZwuJm9Fx
F1wnN1pwtGOUKV8T0XzwuBX/qxs9/RJt7C87d9JO7/bqe3edj3+DJsjqiwlZtwog
5/TmMPjztilj/uTaba1zcrnyyMls8pCdAiG22SJPGTdm5TeF1wIsduvqf88NObt9
G0B+fAu34DY/jbNBXlkjLt0y919FPAE88YFG3aOmX5Y5/RHT6vhJgmaTkpubnnHA
ryaM079qH+yP87YC8+yTZ1pBqFvHkgUH/eF3khj8Hb9Pu4eVEX9gqEiYkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMdXAmQFInh4V1o2qU+mfw60fiumMB8GA1UdIwQY
MBaAFGzHWFq3qD7IC1WrlXvze3kedlAWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk1kWVdyZW9Qc2dMVmF1VmVfTjdlUjUyVUJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS83MDZmNDEtMDUzMS00M2RmLWIxZTkt
NmY4NmQwYjdlM2UwLzEvYk1kWVdyZW9Qc2dMVmF1VmVfTjdlUjUyVUJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS83MDZmNDEtMDUzMS00M2RmLWIxZTktNmY4NmQwYjdlM2Uw
LzEvYk1kWVdyZW9Qc2dMVmF1VmVfTjdlUjUyVUJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXUfeBAtH
TV7Blqn5sLY4dTZlEQUBrzRJ0ua1kMe91HCkf50+3R9/GlAyXv3T6hPV2mXrLIiT
Mhr0D57m417wuMb2W2IUVsXsP/sRDp08Lha91Oj+hilQtKfH5aoDfhPCxFKoGWut
OxAVxXXbfgBpNZ7afGhT4prvUs7j9PUrzyL8csKpZxnuHkQTFLl9beZehO/6pieU
okBVkpr8E3lS8IhX3GJBdbV33ZfLW9d7HsLuIwJQhhF9R+Z8ghsJzfqNEhnNwZGQ
XagGMmIUJLpcWF0pvR6whhOM6agvSC1mf8Wzpw3J/dPojOSADewdhEytIBilYN7u
YES5UsbUzPcQrw==
-----END CERTIFICATE-----
Generated at Tue Jun 10 11:37:17 2025 by rpki-client