Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: f9sY1sa5hETFvyv3VIGwUsi3rQTAH7ELAtIwxuxJM0c=
Subject key identifier: 37:76:43:29:52:A0:C2:3F:1A:23:B0:73:B6:3F:96:81:CA:7A:F7:5C
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 01974F337323EB61DE32613BEE32A65CEF87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 95
Signing time: Sun 08 Jun 2025 11:01:01 +0000
Manifest this update: Sun 08 Jun 2025 11:01:01 +0000
Manifest next update: Mon 09 Jun 2025 11:01:01 +0000
Files and hashes: 1: GdRMKH6WdmmVubPmURRtVnS8GV8.roa (hash: gQYTKVfews/6lfRAQlloM0LgEpj91iqOXwXozcwIpNc=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: K9WXLEQWE6xkKzTtANeCxWGJoqQNxVBCe2SIZnAktd0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:33:73:23:eb:61:de:32:61:3b:ee:32:a6:5c:ef:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Jun 8 11:01:01 2025 GMT
Not After : Jun 9 11:01:01 2025 GMT
Subject: CN=3776432952a0c23f1a23b073b63f9681ca7af75c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2f:19:a4:fc:3e:9b:97:b6:47:19:84:b4:b4:
e2:2c:ce:09:3e:a9:fa:b4:b5:db:5b:a5:f3:2d:60:
84:6c:1f:11:19:44:70:24:6b:1f:d8:77:68:a1:c8:
bd:60:5f:d9:ee:3d:31:26:f9:dc:b5:5d:77:cb:5a:
96:4f:17:cd:4d:5a:9d:d9:05:b1:41:8d:fe:59:57:
04:d1:1a:f0:8c:b0:84:31:68:94:55:fa:78:c7:60:
5c:23:88:43:6a:c3:7b:dd:d5:ec:ca:a7:69:cc:31:
c7:a9:a1:b4:14:5e:6f:2c:6b:50:2a:ab:74:75:04:
12:60:ad:d8:58:17:f3:6b:d9:ae:e3:68:99:00:cb:
10:92:5b:6b:1f:91:0c:78:21:24:3e:58:a3:dc:5a:
65:88:69:c8:62:a7:05:9e:69:17:b6:36:f6:78:af:
58:41:10:0d:c0:36:ce:93:0f:88:bc:0d:58:10:e8:
e9:6c:e6:ba:00:1d:70:82:e3:80:34:58:a4:4e:7d:
82:35:66:52:8d:a8:c3:b7:c3:cb:87:c0:c8:10:ab:
e8:69:e5:43:6a:8e:ce:3d:a4:fa:b3:1f:95:91:33:
7e:b4:24:7e:05:c9:a5:cf:6c:21:0d:7b:25:54:a3:
99:15:66:3f:55:01:60:d7:fb:10:f8:f1:df:e8:80:
a7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:76:43:29:52:A0:C2:3F:1A:23:B0:73:B6:3F:96:81:CA:7A:F7:5C
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:17:67:84:03:a5:5d:87:28:9c:7c:56:a2:7e:bf:f2:15:66:
39:48:fd:3e:82:b0:5d:65:b7:b5:58:bf:f5:43:4b:c0:0f:43:
c3:aa:f9:e4:85:76:86:46:0e:8d:3b:a3:f4:b1:1b:7e:f9:ea:
41:c2:29:6b:34:0e:7b:b4:db:46:a1:4f:f0:db:9a:94:23:a7:
55:58:9a:9a:cb:82:ee:6d:f2:7c:6f:8d:6b:2b:4b:3f:4b:ce:
eb:d0:7b:b3:b7:99:47:c0:9a:f5:0d:69:77:43:d2:ad:33:7d:
2c:d8:81:52:4a:98:11:5b:94:6c:0a:cd:c6:7b:3c:9a:48:fc:
5e:d7:bf:5a:f2:28:60:91:7a:4b:8a:b4:24:8d:ea:97:f8:7a:
24:15:23:70:34:b1:0f:cc:16:7f:1f:d8:94:ad:b9:41:e8:a9:
94:df:7d:51:a2:1c:99:e3:b5:ad:05:c8:cd:32:60:dc:de:c3:
ac:3e:95:19:56:c2:44:5f:53:9a:06:d1:83:3b:27:ff:2e:65:
a0:2b:39:60:0d:e5:c3:bd:00:52:85:19:8f:98:00:41:4c:67:
ea:89:b7:e2:a7:a3:d2:d4:78:93:3a:8f:c9:2d:a9:fa:86:9e:
ee:23:df:ac:46:4c:09:98:52:88:7d:a9:8d:0f:5e:d7:08:8b:
03:ba:18:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdPM3Mj62HeMmE77jKmXO+HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxZGY4ZTAwMzdmMWFlODJmN2JlMjIzNWFlNjEyYzQwMTBm
NmZlOTEwHhcNMjUwNjA4MTEwMTAxWhcNMjUwNjA5MTEwMTAxWjAzMTEwLwYDVQQD
EygzNzc2NDMyOTUyYTBjMjNmMWEyM2IwNzNiNjNmOTY4MWNhN2FmNzVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApi8ZpPw+m5e2RxmEtLTiLM4JPqn6
tLXbW6XzLWCEbB8RGURwJGsf2Hdooci9YF/Z7j0xJvnctV13y1qWTxfNTVqd2QWx
QY3+WVcE0RrwjLCEMWiUVfp4x2BcI4hDasN73dXsyqdpzDHHqaG0FF5vLGtQKqt0
dQQSYK3YWBfza9mu42iZAMsQkltrH5EMeCEkPlij3FpliGnIYqcFnmkXtjb2eK9Y
QRANwDbOkw+IvA1YEOjpbOa6AB1wguOANFikTn2CNWZSjajDt8PLh8DIEKvoaeVD
ao7OPaT6sx+VkTN+tCR+Bcmlz2whDXslVKOZFWY/VQFg1/sQ+PHf6ICnNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDd2QylSoMI/GiOwc7Y/loHKevdcMB8GA1UdIwQY
MBaAFLHfjgA38a6C974iNa5hLEAQ9v6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2QtT0FEZnhyb0wzdmlJMXJtRXNRQkQyX3BFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My82YjRhMTgtMDdiYy00MzUzLWI3ZWEt
MTljYTUwY2YzNGFiLzEvc2QtT0FEZnhyb0wzdmlJMXJtRXNRQkQyX3BFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My82YjRhMTgtMDdiYy00MzUzLWI3ZWEtMTljYTUwY2YzNGFi
LzEvc2QtT0FEZnhyb0wzdmlJMXJtRXNRQkQyX3BFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFBdnhAOl
XYconHxWon6/8hVmOUj9PoKwXWW3tVi/9UNLwA9Dw6r55IV2hkYOjTuj9LEbfvnq
QcIpazQOe7TbRqFP8NualCOnVViamsuC7m3yfG+NaytLP0vO69B7s7eZR8Ca9Q1p
d0PSrTN9LNiBUkqYEVuUbArNxns8mkj8Xte/WvIoYJF6S4q0JI3ql/h6JBUjcDSx
D8wWfx/YlK25QeiplN99UaIcmeO1rQXIzTJg3N7DrD6VGVbCRF9TmgbRgzsn/y5l
oCs5YA3lw70AUoUZj5gAQUxn6om34qej0tR4kzqPyS2p+oae7iPfrEZMCZhSiH2p
jQ9e1wiLA7oY+g==
-----END CERTIFICATE-----
Generated at Sun Jun 8 13:35:38 2025 by rpki-client