Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
File: r9I8xVrurzN-23Pq4ltZCXoneEw.mft (raw, json)
Hash identifier: YL8kWOb/Sw+8ihpoD31GOxVWNzFap0D0xbHVBU9GH60=
Subject key identifier: 6C:EE:E3:55:D9:34:AD:E7:F3:C4:51:85:EE:2A:09:97:E8:0A:CF:90
Authority key identifier: AF:D2:3C:C5:5A:EE:AF:33:7E:DB:73:EA:E2:5B:59:09:7A:27:78:4C
Certificate issuer: /CN=afd23cc55aeeaf337edb73eae25b59097a27784c
Certificate serial: 0197C9F2469A05E749A0921871F46A264218
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
Manifest number: 15BD
Signing time: Wed 02 Jul 2025 07:03:07 +0000
Manifest this update: Wed 02 Jul 2025 07:03:07 +0000
Manifest next update: Thu 03 Jul 2025 07:03:07 +0000
Files and hashes: 1: lHwTYMLdPppQjIGCxxbbE7ChdPI.roa (hash: AdFGp8oSyfut37qs3XRrjrGdC0sy7qxul+fWrYsyUd8=)
2: r9I8xVrurzN-23Pq4ltZCXoneEw.crl (hash: MLJQrBVzqAgwM5ZmXqdXmPvwgNKe+5w1ao/pQB1dXIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 07:03:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:f2:46:9a:05:e7:49:a0:92:18:71:f4:6a:26:42:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afd23cc55aeeaf337edb73eae25b59097a27784c
Validity
Not Before: Jul 2 07:03:07 2025 GMT
Not After : Jul 3 07:03:07 2025 GMT
Subject: CN=6ceee355d934ade7f3c45185ee2a0997e80acf90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:dc:ed:cf:56:d1:73:a3:64:47:76:a3:0f:69:
c0:18:46:25:b2:e0:8c:3e:49:f1:49:c9:c9:05:e1:
be:0b:f8:cc:2a:6c:2a:84:6d:a4:40:56:09:23:1c:
02:d0:2e:53:48:53:a4:7f:83:65:61:19:c1:e3:bb:
71:f4:6c:e9:93:cf:d3:61:ec:5b:ae:a9:96:61:5a:
85:10:fa:06:03:c4:6b:b2:e7:38:ad:e1:0f:56:7a:
b4:69:ab:5e:96:54:64:a9:7b:bb:62:20:e9:78:3a:
f9:f6:e2:90:33:86:c1:a3:3e:b4:f0:52:eb:2c:b1:
a1:80:d2:db:3c:a8:cb:09:cd:eb:cf:50:d9:89:2b:
44:9c:28:34:37:28:4a:82:4c:79:a3:08:3e:dc:46:
72:c0:c7:63:e8:fe:90:5b:4d:cb:a1:ce:9b:64:1e:
1a:ff:58:79:a4:7d:dc:2d:04:15:d3:24:ac:83:b3:
56:cd:70:42:7f:ba:94:66:17:fa:0d:3c:17:1c:f6:
a5:c0:b8:46:5e:0d:99:2a:45:d7:8e:a6:8c:99:b3:
ab:0d:be:04:5e:08:ee:f6:bd:6c:8d:db:89:43:de:
ff:d7:c2:48:ba:58:4f:83:37:92:da:f5:49:19:a7:
9a:41:ff:93:d5:6f:79:d6:b1:91:b1:7c:bd:91:57:
80:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:EE:E3:55:D9:34:AD:E7:F3:C4:51:85:EE:2A:09:97:E8:0A:CF:90
X509v3 Authority Key Identifier:
keyid:AF:D2:3C:C5:5A:EE:AF:33:7E:DB:73:EA:E2:5B:59:09:7A:27:78:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:a1:5c:54:7a:1d:b9:67:23:d4:2e:91:c5:6a:48:42:31:98:
78:49:13:94:c8:31:f2:af:a3:0c:ea:d0:e4:46:39:f1:8d:49:
44:3f:fb:eb:b9:ab:28:bf:5c:9f:d5:9b:9c:ae:56:31:65:14:
80:5d:3a:81:82:71:58:a0:a0:94:a5:a2:a6:6a:12:2a:43:12:
ca:0d:28:0e:a5:42:80:a7:1c:ad:bd:70:18:19:5a:62:48:8b:
6b:21:cf:d3:1d:a9:a0:1b:c3:b6:70:84:6f:7e:54:89:8e:1b:
94:0d:cb:88:f3:5b:18:36:39:9d:64:97:52:ad:8a:ed:a3:ef:
cf:c2:52:e2:ab:74:ca:5d:40:44:b3:29:6a:e0:77:82:92:e1:
8d:45:92:60:c6:30:17:f7:45:46:b7:c9:f5:54:ad:06:1f:c6:
8b:7e:5f:51:b1:cd:df:21:12:e3:a9:64:cd:04:a5:30:db:14:
65:e0:23:5b:11:fe:48:25:25:ab:c3:bd:d9:48:3d:03:70:b7:
bf:6c:56:67:92:cc:d2:d9:81:8d:b9:13:c5:7e:cf:b6:4e:0a:
ff:cc:7a:83:21:71:f1:46:26:f1:df:68:9b:c9:72:8f:fc:fc:
9a:5f:16:62:e7:c9:6b:bd:28:1b:3d:fe:71:10:aa:8b:a9:f9:
bb:ed:8b:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfJ8kaaBedJoJIYcfRqJkIYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmZDIzY2M1NWFlZWFmMzM3ZWRiNzNlYWUyNWI1OTA5N2Ey
Nzc4NGMwHhcNMjUwNzAyMDcwMzA3WhcNMjUwNzAzMDcwMzA3WjAzMTEwLwYDVQQD
Eyg2Y2VlZTM1NWQ5MzRhZGU3ZjNjNDUxODVlZTJhMDk5N2U4MGFjZjkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAydztz1bRc6NkR3ajD2nAGEYlsuCM
PknxScnJBeG+C/jMKmwqhG2kQFYJIxwC0C5TSFOkf4NlYRnB47tx9Gzpk8/TYexb
rqmWYVqFEPoGA8Rrsuc4reEPVnq0aatellRkqXu7YiDpeDr59uKQM4bBoz608FLr
LLGhgNLbPKjLCc3rz1DZiStEnCg0NyhKgkx5owg+3EZywMdj6P6QW03Loc6bZB4a
/1h5pH3cLQQV0ySsg7NWzXBCf7qUZhf6DTwXHPalwLhGXg2ZKkXXjqaMmbOrDb4E
Xgju9r1sjduJQ97/18JIulhPgzeS2vVJGaeaQf+T1W951rGRsXy9kVeAHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGzu41XZNK3n88RRhe4qCZfoCs+QMB8GA1UdIwQY
MBaAFK/SPMVa7q8zfttz6uJbWQl6J3hMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjlJOHhWcnVyek4tMjNQcTRsdFpDWG9uZUV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy81M2Y0NTgtNzYxYS00MzgyLTgyN2Mt
NDk0ZjA4YzIxNDk3LzEvcjlJOHhWcnVyek4tMjNQcTRsdFpDWG9uZUV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy81M2Y0NTgtNzYxYS00MzgyLTgyN2MtNDk0ZjA4YzIxNDk3
LzEvcjlJOHhWcnVyek4tMjNQcTRsdFpDWG9uZUV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN6FcVHod
uWcj1C6RxWpIQjGYeEkTlMgx8q+jDOrQ5EY58Y1JRD/767mrKL9cn9WbnK5WMWUU
gF06gYJxWKCglKWipmoSKkMSyg0oDqVCgKccrb1wGBlaYkiLayHP0x2poBvDtnCE
b35UiY4blA3LiPNbGDY5nWSXUq2K7aPvz8JS4qt0yl1ARLMpauB3gpLhjUWSYMYw
F/dFRrfJ9VStBh/Gi35fUbHN3yES46lkzQSlMNsUZeAjWxH+SCUlq8O92Ug9A3C3
v2xWZ5LM0tmBjbkTxX7Ptk4K/8x6gyFx8UYm8d9om8lyj/z8ml8WYufJa70oGz3+
cRCqi6n5u+2LNg==
-----END CERTIFICATE-----
Generated at Wed Jul 2 13:12:33 2025 by rpki-client