Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier: CuW8pn8zaKkZnuAWMrwer84EOQFlpmzHC4t7bhY2V/w=
Subject key identifier: D5:2E:78:CC:29:2A:10:F4:92:89:5E:EA:DF:79:F2:23:BC:D1:72:5F
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial: 01975B6DFE31473E5CAF52E3F70741E574B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number: 12D7
Signing time: Tue 10 Jun 2025 20:00:24 +0000
Manifest this update: Tue 10 Jun 2025 20:00:24 +0000
Manifest next update: Wed 11 Jun 2025 20:00:24 +0000
Files and hashes: 1: LM0g69HtGp_batQfV5x1NEUMmOk.roa (hash: 7VtBpd+wuDX24L0fq4Y7fsMl9oygXrzXXYzNLlqhtLg=)
2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: UpTf2d3XuSjRtYOvUOFqvmQ6SlA4pJLorF1cx8Er0cs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:6d:fe:31:47:3e:5c:af:52:e3:f7:07:41:e5:74:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Validity
Not Before: Jun 10 20:00:24 2025 GMT
Not After : Jun 11 20:00:24 2025 GMT
Subject: CN=d52e78cc292a10f492895eeadf79f223bcd1725f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f4:ee:b2:7a:72:85:12:f3:6e:9a:2d:8a:68:
63:bb:32:43:1a:06:eb:36:7f:7d:f2:77:ad:1b:4f:
ff:c2:e7:53:ae:cd:9d:13:65:cb:95:44:90:8f:3a:
69:e0:da:eb:d0:db:c3:f1:e7:5d:f3:60:ac:da:97:
95:bb:36:94:ca:ed:e9:fb:b2:82:12:bf:0d:0c:a4:
5c:b1:b4:f2:8c:f3:a6:f7:71:02:ef:25:29:84:a1:
37:3a:3e:10:53:d1:2b:07:d1:f0:5a:81:eb:ce:87:
70:e0:ae:b8:f4:37:88:a8:a2:94:4b:22:17:a7:d9:
d6:42:71:e8:3b:e9:3b:db:d3:f0:09:c9:94:49:f8:
4f:22:d5:f4:06:11:9f:1a:7c:81:c7:f2:5f:48:af:
95:a3:63:01:4d:33:69:b0:5c:10:5c:af:59:24:e3:
ab:b2:ed:1f:3a:7b:ad:a2:2a:55:58:ea:81:3f:6e:
93:e2:c7:a5:98:a7:4b:38:ac:cf:b9:94:b5:c0:ba:
b3:45:ef:52:1b:64:47:b9:bb:04:bb:06:79:c0:92:
0d:06:b6:43:60:b3:04:c1:ef:54:41:44:8d:af:e0:
48:da:d6:80:32:18:d8:22:59:69:1b:b2:0d:7b:2a:
74:44:2a:7e:77:e4:7c:b1:45:95:8a:53:33:a0:60:
f9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:2E:78:CC:29:2A:10:F4:92:89:5E:EA:DF:79:F2:23:BC:D1:72:5F
X509v3 Authority Key Identifier:
keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:b8:df:e2:a0:89:1f:82:86:c7:d5:9a:c3:c2:e3:29:a9:0c:
39:74:c5:61:15:46:3f:c4:6b:14:67:84:61:2c:b4:cd:f4:56:
71:3f:b7:b5:a0:04:51:c5:fa:90:43:21:32:82:cc:f7:62:ed:
67:8c:49:26:c1:21:0e:a6:83:b4:8b:e6:62:fe:52:76:da:d1:
ab:80:db:93:6e:89:61:e9:6b:d0:cc:c1:23:20:17:0c:c4:ee:
9d:e0:77:2b:79:e3:98:50:ef:b3:03:22:46:1d:68:9b:d7:25:
48:ba:ba:83:c9:b4:22:d3:be:18:23:07:2b:69:a1:19:a6:2d:
66:12:f9:43:cb:c2:9b:e4:69:8c:a4:4b:e2:64:00:6b:cc:5f:
3e:56:f3:36:85:1d:ba:59:c0:ad:a9:f1:c6:69:ec:2a:2a:31:
fe:8d:7f:c3:98:44:ff:04:6b:05:a4:d0:b3:78:a9:51:8f:34:
d7:18:05:47:c8:f9:be:16:76:b8:f3:7d:d6:48:93:da:1d:c3:
b2:4c:db:a8:b0:2e:3f:fd:b8:f6:d1:22:84:77:aa:21:4a:eb:
20:a5:e0:ac:1d:fa:b4:46:83:e4:96:c5:71:d8:09:b7:23:1b:
56:72:b8:97:72:6f:40:73:46:e0:35:fa:c8:7f:f0:ca:7b:a6:
ec:27:e2:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdbbf4xRz5cr1Lj9wdB5XS0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxZDZiYWVjYjYzYWU0NmZlZWEzMGNhYjg2MjFkNDZjNTlm
NzI4MDgwHhcNMjUwNjEwMjAwMDI0WhcNMjUwNjExMjAwMDI0WjAzMTEwLwYDVQQD
EyhkNTJlNzhjYzI5MmExMGY0OTI4OTVlZWFkZjc5ZjIyM2JjZDE3MjVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvTusnpyhRLzbpotimhjuzJDGgbr
Nn998netG0//wudTrs2dE2XLlUSQjzpp4Nrr0NvD8edd82Cs2peVuzaUyu3p+7KC
Er8NDKRcsbTyjPOm93EC7yUphKE3Oj4QU9ErB9HwWoHrzodw4K649DeIqKKUSyIX
p9nWQnHoO+k729PwCcmUSfhPItX0BhGfGnyBx/JfSK+Vo2MBTTNpsFwQXK9ZJOOr
su0fOnutoipVWOqBP26T4selmKdLOKzPuZS1wLqzRe9SG2RHubsEuwZ5wJINBrZD
YLMEwe9UQUSNr+BI2taAMhjYIllpG7INeyp0RCp+d+R8sUWVilMzoGD5wQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNUueMwpKhD0kole6t958iO80XJfMB8GA1UdIwQY
MBaAFLHWuuy2OuRv7qMMq4Yh1GxZ9ygIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83MDNkOTYtZTM0Yi00YzI0LTljOWMt
N2FmNzlkYWE2OWI5LzEvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny83MDNkOTYtZTM0Yi00YzI0LTljOWMtN2FmNzlkYWE2OWI5
LzEvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcrjf4qCJ
H4KGx9Waw8LjKakMOXTFYRVGP8RrFGeEYSy0zfRWcT+3taAEUcX6kEMhMoLM92Lt
Z4xJJsEhDqaDtIvmYv5SdtrRq4Dbk26JYelr0MzBIyAXDMTuneB3K3njmFDvswMi
Rh1om9clSLq6g8m0ItO+GCMHK2mhGaYtZhL5Q8vCm+RpjKRL4mQAa8xfPlbzNoUd
ulnAranxxmnsKiox/o1/w5hE/wRrBaTQs3ipUY801xgFR8j5vhZ2uPN91kiT2h3D
skzbqLAuP/249tEihHeqIUrrIKXgrB36tEaD5JbFcdgJtyMbVnK4l3JvQHNG4DX6
yH/wynum7Cfizw==
-----END CERTIFICATE-----
Generated at Wed Jun 11 04:28:04 2025 by rpki-client