Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
File: 0fbkNwERz7-WhASFQie4CShRRQ0.mft (raw, json)
Hash identifier: p7BTQjk4xAtTFgoby+IIfQ4ljhg29VYAcj43a8kyYyQ=
Subject key identifier: B5:F2:06:25:3F:02:6A:A7:E2:73:5D:F2:6C:38:75:13:80:9A:07:74
Authority key identifier: D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
Certificate issuer: /CN=d1f6e4370111cfbf968404854227b8092851450d
Certificate serial: 01974BC49888EE136FC75216E3856B12C5DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
Manifest number: 0DDF
Signing time: Sat 07 Jun 2025 19:01:04 +0000
Manifest this update: Sat 07 Jun 2025 19:01:04 +0000
Manifest next update: Sun 08 Jun 2025 19:01:04 +0000
Files and hashes: 1: 0fbkNwERz7-WhASFQie4CShRRQ0.crl (hash: rIRx+Wo4lvYNOZei94GDLxI7gmt1ullRvrm95rM627A=)
2: w9laCbfNTG9x8SgYBLM8cjfOdmA.roa (hash: WglJOtLwDI5HpNhEnz7a8Exzapc/0A4kuz517Fgs06A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:98:88:ee:13:6f:c7:52:16:e3:85:6b:12:c5:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f6e4370111cfbf968404854227b8092851450d
Validity
Not Before: Jun 7 19:01:04 2025 GMT
Not After : Jun 8 19:01:04 2025 GMT
Subject: CN=b5f206253f026aa7e2735df26c387513809a0774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:51:78:76:ee:1b:c2:0c:3e:51:c1:31:ad:44:
47:39:39:56:cf:f3:de:7a:42:8e:60:62:76:54:e0:
60:2e:47:72:ea:e5:e4:8b:2b:19:02:bd:c7:af:9e:
f3:8f:8d:9c:a8:cb:95:89:49:1d:8b:97:94:de:04:
f5:de:85:e9:d3:19:dd:c0:d0:69:8b:61:88:50:24:
8f:be:b0:d2:9d:c4:46:ea:bf:45:c8:0f:45:98:1c:
18:b5:ac:d2:a8:e8:37:f7:f6:07:ea:fa:fa:22:fe:
34:cb:7d:6b:2b:50:55:d5:14:01:85:7f:20:ae:8e:
19:b2:bf:ac:4e:ae:c8:f1:aa:14:df:36:8b:91:bc:
17:78:c8:4a:63:8a:59:ab:0c:9f:af:be:5e:d8:6c:
77:13:2e:8a:08:6c:0a:51:2f:81:e7:32:a2:98:52:
af:1b:18:1f:1b:ec:cf:b2:ae:20:1c:3c:90:19:45:
f3:d3:94:d7:ad:6f:92:83:2f:c7:85:b0:63:48:26:
be:c5:be:62:9d:29:71:1f:d7:7c:1e:38:2d:9d:04:
3a:35:53:ca:8f:2a:e8:03:35:9f:c4:84:dc:93:93:
7c:0d:89:40:16:b6:49:08:90:7c:84:4a:b6:5b:2b:
5c:a0:71:81:bd:d1:87:a9:14:0a:71:4d:4e:dc:67:
b8:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:F2:06:25:3F:02:6A:A7:E2:73:5D:F2:6C:38:75:13:80:9A:07:74
X509v3 Authority Key Identifier:
keyid:D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:7d:59:e3:c3:c1:dd:2b:8c:2f:0e:ea:7e:b3:a5:e6:8c:9a:
5c:8a:83:74:1d:5b:13:ab:5e:2f:fa:ee:61:cd:f0:71:c9:c0:
8e:68:b8:68:67:61:ed:10:e2:8f:82:6a:9f:c9:bb:78:22:e1:
03:bb:89:18:51:90:c5:23:24:31:8f:66:c6:c7:0c:6f:e0:a6:
81:4d:c3:8c:4e:b6:2e:d8:1f:5d:80:09:85:62:a9:01:a7:33:
5b:ab:01:49:a5:c0:31:cc:60:49:71:18:75:0e:94:b1:07:77:
b6:4d:c0:3a:d5:9f:3c:0d:43:a0:c3:06:cb:68:0e:25:8e:ae:
e0:f2:9f:8c:7e:36:9e:07:47:c1:44:43:9c:b6:0b:4b:24:e7:
ba:ea:3a:c3:27:d8:35:22:fb:71:0e:eb:78:79:7e:91:5f:e9:
ee:e0:89:22:e3:8b:44:53:bb:41:ee:44:46:ca:e4:4a:da:e6:
21:1f:d8:f9:3e:94:af:da:0e:4b:81:f2:52:1f:81:14:fe:c2:
ea:b3:ec:b3:42:3a:de:c1:21:c3:c5:bb:15:23:7a:e8:eb:9a:
2e:33:e3:3b:f0:c5:c5:fe:44:63:af:76:4b:91:45:58:98:a3:
0a:32:a4:17:14:46:32:23:35:de:79:2e:88:a8:ec:da:21:c8:
6c:d1:77:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLxJiI7hNvx1IW44VrEsXeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxZjZlNDM3MDExMWNmYmY5Njg0MDQ4NTQyMjdiODA5Mjg1
MTQ1MGQwHhcNMjUwNjA3MTkwMTA0WhcNMjUwNjA4MTkwMTA0WjAzMTEwLwYDVQQD
EyhiNWYyMDYyNTNmMDI2YWE3ZTI3MzVkZjI2YzM4NzUxMzgwOWEwNzc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVF4du4bwgw+UcExrURHOTlWz/Pe
ekKOYGJ2VOBgLkdy6uXkiysZAr3Hr57zj42cqMuViUkdi5eU3gT13oXp0xndwNBp
i2GIUCSPvrDSncRG6r9FyA9FmBwYtazSqOg39/YH6vr6Iv40y31rK1BV1RQBhX8g
ro4Zsr+sTq7I8aoU3zaLkbwXeMhKY4pZqwyfr75e2Gx3Ey6KCGwKUS+B5zKimFKv
GxgfG+zPsq4gHDyQGUXz05TXrW+Sgy/HhbBjSCa+xb5inSlxH9d8HjgtnQQ6NVPK
jyroAzWfxITck5N8DYlAFrZJCJB8hEq2WytcoHGBvdGHqRQKcU1O3Ge49QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLXyBiU/Amqn4nNd8mw4dROAmgd0MB8GA1UdIwQY
MBaAFNH25DcBEc+/loQEhUInuAkoUUUNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGZia053RVJ6Ny1XaEFTRlFpZTRDU2hSUlEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny81OWQ0ZTktNjYyYy00MzVhLWIzNTEt
NGFhNTM5YTMwZDIxLzEvMGZia053RVJ6Ny1XaEFTRlFpZTRDU2hSUlEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny81OWQ0ZTktNjYyYy00MzVhLWIzNTEtNGFhNTM5YTMwZDIx
LzEvMGZia053RVJ6Ny1XaEFTRlFpZTRDU2hSUlEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb31Z48PB
3SuMLw7qfrOl5oyaXIqDdB1bE6teL/ruYc3wccnAjmi4aGdh7RDij4Jqn8m7eCLh
A7uJGFGQxSMkMY9mxscMb+CmgU3DjE62LtgfXYAJhWKpAaczW6sBSaXAMcxgSXEY
dQ6UsQd3tk3AOtWfPA1DoMMGy2gOJY6u4PKfjH42ngdHwURDnLYLSyTnuuo6wyfY
NSL7cQ7reHl+kV/p7uCJIuOLRFO7Qe5ERsrkStrmIR/Y+T6Ur9oOS4HyUh+BFP7C
6rPss0I63sEhw8W7FSN66OuaLjPjO/DFxf5EY692S5FFWJijCjKkFxRGMiM13nku
iKjs2iHIbNF3SQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 00:39:42 2025 by rpki-client