Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
File: mSAfYJ56iT2obPDrvKS79HJ51hc.mft (raw, json)
Hash identifier: rBv/vHrewlbhe5xEqtxE0KDsnaxTa6xRiMmKkzB+SyI=
Subject key identifier: DA:E9:5C:11:44:D7:82:93:08:A3:FD:21:6F:27:46:4B:EB:86:BB:55
Authority key identifier: 99:20:1F:60:9E:7A:89:3D:A8:6C:F0:EB:BC:A4:BB:F4:72:79:D6:17
Certificate issuer: /CN=99201f609e7a893da86cf0ebbca4bbf47279d617
Certificate serial: 019747E7C074D786EB947F4D2107E5FBF7BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
Manifest number: 0413
Signing time: Sat 07 Jun 2025 01:00:59 +0000
Manifest this update: Sat 07 Jun 2025 01:00:59 +0000
Manifest next update: Sun 08 Jun 2025 01:00:59 +0000
Files and hashes: 1: 1tSheZow3C5eA6jOu_MWtrfHmEY.roa (hash: KFhShtQvmMD0Mr4HPxFeWZgSKSgyixhc5C8a67+FVZE=)
2: mSAfYJ56iT2obPDrvKS79HJ51hc.crl (hash: oGLofvhYiAOgON0BivDGUfQgKsdKPNyNovYChA7AZD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:c0:74:d7:86:eb:94:7f:4d:21:07:e5:fb:f7:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99201f609e7a893da86cf0ebbca4bbf47279d617
Validity
Not Before: Jun 7 01:00:59 2025 GMT
Not After : Jun 8 01:00:59 2025 GMT
Subject: CN=dae95c1144d7829308a3fd216f27464beb86bb55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c3:83:17:41:e0:1a:fd:46:d4:4f:b9:b7:d3:
f2:52:ab:b7:b4:5a:7b:6e:6d:8c:1e:96:2c:2c:e6:
27:d2:b5:63:31:83:20:89:f9:cc:99:68:1e:88:32:
bc:88:1e:fa:32:b5:c5:51:a5:55:78:dd:0a:ee:e2:
fb:a0:eb:54:89:c6:bd:8d:5e:7b:24:20:86:4e:c0:
23:d7:98:8a:95:89:a8:2b:f1:b6:6f:2f:c1:c8:46:
52:53:41:b2:f0:70:0b:86:a7:6a:3c:c2:0e:cf:88:
77:28:d5:e5:d4:ad:49:d5:ef:09:6f:28:4b:e0:f0:
b1:63:5b:24:a3:96:94:c7:5c:cf:b0:76:3a:aa:e8:
14:f5:16:5c:11:b3:82:09:5a:6d:f5:b1:b5:96:02:
19:4f:d7:3a:5b:83:67:f0:66:9b:de:24:51:ab:67:
be:ae:10:e0:6b:04:0c:21:28:b5:cf:bb:26:17:3e:
e9:70:60:d8:e2:84:64:01:d0:46:83:f3:fe:a8:54:
b9:f2:79:0a:f2:0a:9c:b1:ae:70:94:00:18:d3:28:
b2:e7:12:e7:c7:12:59:11:9c:ac:88:c4:5a:d4:71:
6c:19:24:73:f4:32:e3:4c:d4:d5:20:be:82:98:cc:
15:5c:ac:68:f3:f7:77:12:33:0f:0f:0c:67:80:57:
7e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:E9:5C:11:44:D7:82:93:08:A3:FD:21:6F:27:46:4B:EB:86:BB:55
X509v3 Authority Key Identifier:
keyid:99:20:1F:60:9E:7A:89:3D:A8:6C:F0:EB:BC:A4:BB:F4:72:79:D6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:39:de:43:63:bb:c5:9f:18:fe:19:57:10:0f:4b:60:74:a4:
22:36:b7:ed:4f:e7:9f:cf:18:98:5a:03:f3:f5:6e:ee:c4:57:
5e:8a:42:04:a7:48:d5:db:6f:09:a0:88:0e:72:4c:8d:26:14:
98:36:12:49:5e:15:f3:e0:21:0c:01:c7:a9:b6:a4:08:93:c1:
01:73:15:b5:69:9e:9a:b3:ac:c4:29:ef:55:f6:ce:58:ee:2b:
45:37:8b:1f:07:3c:22:8e:6a:6c:c6:37:7f:83:17:c5:69:9f:
a6:10:73:d9:49:f9:fe:74:cb:7a:29:8b:ae:7f:cf:0e:24:2e:
a4:bd:11:22:87:c6:96:13:30:a1:ae:a2:60:0b:e1:c5:cf:67:
90:1c:3d:eb:d5:30:82:73:59:ad:da:2c:03:6b:dc:e6:fd:e9:
83:30:c5:67:0a:e8:5d:79:22:58:76:37:4b:08:d5:9f:0a:49:
ba:96:4a:f7:50:bf:91:4b:47:36:e9:81:b1:42:1d:2f:62:70:
72:20:8e:32:11:f9:98:38:fd:d8:e2:2f:9b:d4:2a:69:3b:94:
51:b6:98:90:79:0f:7d:52:85:c9:58:82:6a:d0:d2:04:61:e8:
14:19:03:47:d9:97:42:af:00:20:7b:88:6c:53:5b:af:18:90:
81:f0:39:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdH58B014brlH9NIQfl+/e9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5MjAxZjYwOWU3YTg5M2RhODZjZjBlYmJjYTRiYmY0NzI3
OWQ2MTcwHhcNMjUwNjA3MDEwMDU5WhcNMjUwNjA4MDEwMDU5WjAzMTEwLwYDVQQD
EyhkYWU5NWMxMTQ0ZDc4MjkzMDhhM2ZkMjE2ZjI3NDY0YmViODZiYjU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMODF0HgGv1G1E+5t9PyUqu3tFp7
bm2MHpYsLOYn0rVjMYMgifnMmWgeiDK8iB76MrXFUaVVeN0K7uL7oOtUica9jV57
JCCGTsAj15iKlYmoK/G2by/ByEZSU0Gy8HALhqdqPMIOz4h3KNXl1K1J1e8JbyhL
4PCxY1sko5aUx1zPsHY6qugU9RZcEbOCCVpt9bG1lgIZT9c6W4Nn8Gab3iRRq2e+
rhDgawQMISi1z7smFz7pcGDY4oRkAdBGg/P+qFS58nkK8gqcsa5wlAAY0yiy5xLn
xxJZEZysiMRa1HFsGSRz9DLjTNTVIL6CmMwVXKxo8/d3EjMPDwxngFd+dwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNrpXBFE14KTCKP9IW8nRkvrhrtVMB8GA1UdIwQY
MBaAFJkgH2Ceeok9qGzw67yku/RyedYXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVNBZllKNTZpVDJvYlBEcnZLUzc5SEo1MWhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni82NTM2ZjktODdkZC00ZWRkLWIwMWMt
YjIzMTcyZWI4MWZiLzEvbVNBZllKNTZpVDJvYlBEcnZLUzc5SEo1MWhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni82NTM2ZjktODdkZC00ZWRkLWIwMWMtYjIzMTcyZWI4MWZi
LzEvbVNBZllKNTZpVDJvYlBEcnZLUzc5SEo1MWhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcjneQ2O7
xZ8Y/hlXEA9LYHSkIja37U/nn88YmFoD8/Vu7sRXXopCBKdI1dtvCaCIDnJMjSYU
mDYSSV4V8+AhDAHHqbakCJPBAXMVtWmemrOsxCnvVfbOWO4rRTeLHwc8Io5qbMY3
f4MXxWmfphBz2Un5/nTLeimLrn/PDiQupL0RIofGlhMwoa6iYAvhxc9nkBw969Uw
gnNZrdosA2vc5v3pgzDFZwroXXkiWHY3SwjVnwpJupZK91C/kUtHNumBsUIdL2Jw
ciCOMhH5mDj92OIvm9QqaTuUUbaYkHkPfVKFyViCatDSBGHoFBkDR9mXQq8AIHuI
bFNbrxiQgfA5Tw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 04:21:56 2025 by rpki-client