Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
File: I7KazNTA1fX4N36n9GNDt2Brq3w.mft (raw, json)
Hash identifier: yFbWc06uTKuOvOBxafFxChcoAVJK0+Iu0p2s830Scls=
Subject key identifier: 01:62:89:F8:C0:65:09:15:79:05:6D:C8:46:4A:55:90:25:33:34:A0
Authority key identifier: 23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
Certificate issuer: /CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Certificate serial: 019752A22A59AF304F94C90D808BC3A79CB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
Manifest number: 0BFC
Signing time: Mon 09 Jun 2025 03:00:48 +0000
Manifest this update: Mon 09 Jun 2025 03:00:48 +0000
Manifest next update: Tue 10 Jun 2025 03:00:48 +0000
Files and hashes: 1: BY3gmYE2jAUAzVYgNkSF1kzgx38.roa (hash: o+T/NGOLnxz7Wv8sLagAUwobjqcsqFCif9O5RgNrbi4=)
2: I7KazNTA1fX4N36n9GNDt2Brq3w.crl (hash: pcJCNSnycuqs3ajzUNGytikBJ0+3H4VFGD6vT1A3nlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:a2:2a:59:af:30:4f:94:c9:0d:80:8b:c3:a7:9c:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Validity
Not Before: Jun 9 03:00:48 2025 GMT
Not After : Jun 10 03:00:48 2025 GMT
Subject: CN=016289f8c065091579056dc8464a5590253334a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cd:98:66:23:33:18:d3:9d:5e:45:0f:98:31:
f1:89:9f:31:ee:a9:5a:34:dd:70:4a:ae:13:c5:dc:
66:d1:ac:f0:2d:5d:1a:2d:32:14:4e:b8:f4:57:f5:
14:d9:f8:f2:96:29:0a:67:e1:c1:a0:97:fc:1a:45:
80:f4:af:cc:5a:1c:0f:97:30:9d:13:06:9f:3c:da:
74:e1:98:f8:74:fb:71:4d:23:ae:31:98:3a:70:81:
a3:97:29:59:06:c0:ab:82:ee:51:17:28:56:94:35:
ed:72:11:c5:47:e5:99:a3:2d:16:36:71:e2:d2:24:
51:40:7e:a5:84:d4:69:5e:1f:d6:bf:fd:3a:47:2c:
91:53:5d:db:2b:2c:9a:51:21:fb:c4:c4:3b:31:25:
cb:a2:73:fd:97:48:f2:bc:12:79:f8:9c:04:0b:a5:
04:b5:20:37:6a:ee:ee:15:de:fa:a1:01:34:19:da:
5d:e2:ce:59:a0:f5:88:4f:84:a4:75:e1:6d:e7:df:
34:1e:c7:5d:2b:08:b1:79:a5:09:8d:1f:5f:53:74:
29:55:17:16:b8:ba:95:f2:ad:41:92:08:04:61:a9:
a1:e5:39:09:e0:c7:88:a9:f3:6b:e8:d8:4f:81:fc:
10:8e:fa:f4:b1:88:76:d3:61:40:47:10:78:0a:90:
23:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:62:89:F8:C0:65:09:15:79:05:6D:C8:46:4A:55:90:25:33:34:A0
X509v3 Authority Key Identifier:
keyid:23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:52:16:54:e2:ee:ec:8d:40:3a:bf:90:95:5c:34:69:6f:a8:
97:d5:ba:4e:6f:61:04:6f:2a:16:13:33:15:de:53:3d:de:74:
7d:9f:11:4a:31:02:9f:ea:12:42:16:02:1b:4f:d7:5b:72:10:
c1:ee:5b:be:df:81:b8:ef:49:62:23:29:27:f6:a8:04:53:ab:
16:7a:ae:36:69:4a:4b:d4:f2:5b:4f:f7:87:a7:a7:b9:d7:01:
5f:b8:d3:ca:b9:ea:b7:cb:bc:60:1a:9a:e1:12:33:b7:33:9d:
c2:dd:00:05:d2:d4:3b:4f:40:e8:e4:be:d9:26:3d:af:5e:a6:
04:6a:f7:43:56:2c:1a:0a:a5:70:a1:69:f7:2a:c7:a8:e6:07:
cf:59:6a:96:20:37:c9:71:47:5b:0f:d6:0d:39:3a:11:79:a9:
d6:ff:60:15:44:ef:89:30:a9:83:3c:b6:42:9f:c8:68:81:cc:
52:5f:79:b9:8c:85:b0:2b:e6:d9:22:c4:51:af:bc:dc:d0:ab:
da:a3:b6:84:c7:8e:35:89:f7:79:26:27:3d:0f:1f:af:e5:37:
85:86:3b:8d:37:59:d7:9e:91:f5:0c:a5:46:92:e5:47:a6:25:
3e:66:23:55:88:41:66:f9:f6:a0:0f:90:7d:51:ca:dc:55:4e:
50:51:a8:fe
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdSoipZrzBPlMkNgIvDp5yxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzYjI5YWNjZDRjMGQ1ZjVmODM3N2VhN2Y0NjM0M2I3NjA2
YmFiN2MwHhcNMjUwNjA5MDMwMDQ4WhcNMjUwNjEwMDMwMDQ4WjAzMTEwLwYDVQQD
EygwMTYyODlmOGMwNjUwOTE1NzkwNTZkYzg0NjRhNTU5MDI1MzMzNGEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAys2YZiMzGNOdXkUPmDHxiZ8x7qla
NN1wSq4Txdxm0azwLV0aLTIUTrj0V/UU2fjylikKZ+HBoJf8GkWA9K/MWhwPlzCd
EwafPNp04Zj4dPtxTSOuMZg6cIGjlylZBsCrgu5RFyhWlDXtchHFR+WZoy0WNnHi
0iRRQH6lhNRpXh/Wv/06RyyRU13bKyyaUSH7xMQ7MSXLonP9l0jyvBJ5+JwEC6UE
tSA3au7uFd76oQE0Gdpd4s5ZoPWIT4SkdeFt5980HsddKwixeaUJjR9fU3QpVRcW
uLqV8q1BkggEYamh5TkJ4MeIqfNr6NhPgfwQjvr0sYh202FARxB4CpAjWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAFiifjAZQkVeQVtyEZKVZAlMzSgMB8GA1UdIwQY
MBaAFCOymszUwNX1+Dd+p/RjQ7dga6t8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84MTFkYjktY2JlMC00YTg5LWEyMjAt
MTE3NGE0MjgwMzZiLzEvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS84MTFkYjktY2JlMC00YTg5LWEyMjAtMTE3NGE0MjgwMzZi
LzEvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl1IWVOLu
7I1AOr+QlVw0aW+ol9W6Tm9hBG8qFhMzFd5TPd50fZ8RSjECn+oSQhYCG0/XW3IQ
we5bvt+BuO9JYiMpJ/aoBFOrFnquNmlKS9TyW0/3h6enudcBX7jTyrnqt8u8YBqa
4RIztzOdwt0ABdLUO09A6OS+2SY9r16mBGr3Q1YsGgqlcKFp9yrHqOYHz1lqliA3
yXFHWw/WDTk6EXmp1v9gFUTviTCpgzy2Qp/IaIHMUl95uYyFsCvm2SLEUa+83NCr
2qO2hMeONYn3eSYnPQ8fr+U3hYY7jTdZ156R9QylRpLlR6YlPmYjVYhBZvn2oA+Q
fVHK3FVOUFGo/g==
-----END CERTIFICATE-----
Generated at Mon Jun 9 11:09:28 2025 by rpki-client