Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
File: rtyPMnpGGWTAqHqceAlAHFfIbUE.mft (raw, json)
Hash identifier: ZjGXLvOtxUmIwohY5vuWUtqGVkILnMAenHFIk7czPfY=
Subject key identifier: 3A:25:32:8B:12:F8:6E:2D:F3:27:A1:29:72:09:55:81:40:D8:B4:52
Authority key identifier: AE:DC:8F:32:7A:46:19:64:C0:A8:7A:9C:78:09:40:1C:57:C8:6D:41
Certificate issuer: /CN=aedc8f327a461964c0a87a9c7809401c57c86d41
Certificate serial: 01974A0C72044AFA14ACC9E158547866DE43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 11:00:18 +0000
Manifest this update: Sat 07 Jun 2025 11:00:18 +0000
Manifest next update: Sun 08 Jun 2025 11:00:18 +0000
Files and hashes: 1: 2r5V-jLaZB51UHtAh-bFMsh9deI.roa (hash: MKCPJpuTtJZg9qISSN6i7GBsMIxb/Qe56YUG3zY4d1Q=)
2: rtyPMnpGGWTAqHqceAlAHFfIbUE.crl (hash: Ina5R3/FuxY8TmXR3IeTECbGVJ41cqNlkc4KGtlLGk4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:72:04:4a:fa:14:ac:c9:e1:58:54:78:66:de:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedc8f327a461964c0a87a9c7809401c57c86d41
Validity
Not Before: Jun 7 11:00:18 2025 GMT
Not After : Jun 8 11:00:18 2025 GMT
Subject: CN=3a25328b12f86e2df327a1297209558140d8b452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e9:70:71:e4:2c:ad:c3:8e:3a:a1:4f:33:90:
02:67:52:94:49:b9:59:4c:f8:39:1c:32:8f:bc:96:
7b:61:90:6b:d9:87:6d:b6:c3:e6:4a:46:93:ed:22:
8e:89:0d:f0:94:57:24:75:32:ca:8b:42:0f:48:e9:
bc:e1:72:b4:e2:1c:82:ab:b8:a4:ea:d2:4a:2c:5d:
3a:0b:11:83:36:6b:cc:75:40:10:2f:bc:23:30:e5:
44:ef:6f:e3:4f:c9:f0:09:f0:c8:d8:be:95:1e:cd:
f3:6b:bc:cd:d7:28:6f:c2:4f:c5:76:63:95:0f:47:
25:7e:9a:9d:e9:32:be:55:10:6b:47:96:5c:58:dc:
1a:99:04:e9:81:43:36:5f:eb:fc:48:03:96:fb:08:
fe:90:bf:b5:1e:84:d2:27:99:8e:33:b6:a1:a1:c0:
9f:c4:77:c8:a5:77:33:cd:a8:53:7c:09:9d:24:70:
7a:0e:ca:6a:7b:66:78:99:0f:00:b3:ff:e6:22:00:
da:d2:c2:ad:28:ef:21:ca:48:a0:1c:72:9b:b8:1c:
a4:3f:17:0e:0e:82:80:d3:f3:49:ee:b0:00:02:18:
f3:10:8e:bd:b7:9a:6b:e7:26:4c:5d:96:a3:de:cc:
c7:8d:28:b9:ca:ab:85:de:45:8e:d5:ae:d2:6d:c9:
db:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:25:32:8B:12:F8:6E:2D:F3:27:A1:29:72:09:55:81:40:D8:B4:52
X509v3 Authority Key Identifier:
keyid:AE:DC:8F:32:7A:46:19:64:C0:A8:7A:9C:78:09:40:1C:57:C8:6D:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:bf:55:9f:0d:2f:08:5b:2e:e0:5d:bc:3d:c0:ad:c4:b0:f5:
74:b8:ad:7e:16:b9:12:e8:5b:f6:1d:fd:e5:c5:40:eb:35:e9:
b0:0c:33:f2:bf:b4:7a:a0:30:69:c1:bc:56:c5:8e:7a:49:d6:
af:61:a4:2d:62:5f:51:b5:c6:bc:78:d9:ea:95:ad:9c:7a:00:
cb:eb:d1:bb:fb:ce:32:b1:40:c4:fd:d5:bb:68:23:24:0f:35:
ff:da:a2:4f:ab:55:64:45:10:c9:68:cb:1e:9d:92:99:10:07:
08:e9:82:e7:43:80:86:65:4b:b4:c3:04:bb:e2:17:f2:02:39:
8f:32:53:c0:01:08:f6:73:bf:d6:30:c5:c5:5d:82:57:11:01:
c0:b9:e1:61:4f:4c:16:d9:96:4e:66:18:fc:bd:cd:62:cc:04:
0f:db:a9:a6:d5:10:2a:83:6a:e6:2d:08:89:c9:df:f9:03:25:
43:f8:d8:c6:c5:65:f8:1e:85:ff:7c:1b:1a:08:c2:72:30:e7:
03:23:21:f5:5e:8d:a4:16:02:30:ab:48:1e:08:54:fb:d9:f8:
9f:80:2f:88:95:86:58:cb:e3:6f:27:82:8f:2a:1d:cc:cc:03:
8c:18:19:b9:86:7f:d8:7e:d8:90:03:e5:6d:a8:af:18:e9:cc:
de:b4:5e:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKDHIESvoUrMnhWFR4Zt5DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlZGM4ZjMyN2E0NjE5NjRjMGE4N2E5Yzc4MDk0MDFjNTdj
ODZkNDEwHhcNMjUwNjA3MTEwMDE4WhcNMjUwNjA4MTEwMDE4WjAzMTEwLwYDVQQD
EygzYTI1MzI4YjEyZjg2ZTJkZjMyN2ExMjk3MjA5NTU4MTQwZDhiNDUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyulwceQsrcOOOqFPM5ACZ1KUSblZ
TPg5HDKPvJZ7YZBr2YdttsPmSkaT7SKOiQ3wlFckdTLKi0IPSOm84XK04hyCq7ik
6tJKLF06CxGDNmvMdUAQL7wjMOVE72/jT8nwCfDI2L6VHs3za7zN1yhvwk/FdmOV
D0clfpqd6TK+VRBrR5ZcWNwamQTpgUM2X+v8SAOW+wj+kL+1HoTSJ5mOM7ahocCf
xHfIpXczzahTfAmdJHB6Dspqe2Z4mQ8As//mIgDa0sKtKO8hykigHHKbuBykPxcO
DoKA0/NJ7rAAAhjzEI69t5pr5yZMXZaj3szHjSi5yquF3kWO1a7SbcnbTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDolMosS+G4t8yehKXIJVYFA2LRSMB8GA1UdIwQY
MBaAFK7cjzJ6RhlkwKh6nHgJQBxXyG1BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnR5UE1ucEdHV1RBcUhxY2VBbEFIRmZJYlVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iMGRjNTItNDE2ZS00YTAyLTg5OTMt
ZmJjNWExZTM4MmM1LzEvcnR5UE1ucEdHV1RBcUhxY2VBbEFIRmZJYlVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9iMGRjNTItNDE2ZS00YTAyLTg5OTMtZmJjNWExZTM4MmM1
LzEvcnR5UE1ucEdHV1RBcUhxY2VBbEFIRmZJYlVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUr9Vnw0v
CFsu4F28PcCtxLD1dLitfha5Euhb9h395cVA6zXpsAwz8r+0eqAwacG8VsWOeknW
r2GkLWJfUbXGvHjZ6pWtnHoAy+vRu/vOMrFAxP3Vu2gjJA81/9qiT6tVZEUQyWjL
Hp2SmRAHCOmC50OAhmVLtMMEu+IX8gI5jzJTwAEI9nO/1jDFxV2CVxEBwLnhYU9M
FtmWTmYY/L3NYswED9upptUQKoNq5i0Iicnf+QMlQ/jYxsVl+B6F/3wbGgjCcjDn
AyMh9V6NpBYCMKtIHghU+9n4n4AviJWGWMvjbyeCjyodzMwDjBgZuYZ/2H7YkAPl
baivGOnM3rReVg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 22:52:21 2025 by rpki-client