Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier: gOqG3ky0Wk0FDrvZcpSjf/FgE0w1pWNBWElcBOBNAko=
Subject key identifier: F6:37:74:A7:3E:68:80:B4:18:B0:60:A1:F9:D3:B4:16:33:08:52:EC
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 019739BDC2FC2FB028F2EABA1040EA348693
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number: 0687
Signing time: Wed 04 Jun 2025 07:00:26 +0000
Manifest this update: Wed 04 Jun 2025 07:00:26 +0000
Manifest next update: Thu 05 Jun 2025 07:00:26 +0000
Files and hashes: 1: EKdJIayRjGqpNjC_sXcLD4LpFxg.roa (hash: Q7XyDf/+ZYlwIoQHzzpWgBVzZ1z6oDECbrHcCzM9GG4=)
2: _-z4nvaTTyccKXJFwod66iKewX0.roa (hash: B/6vrb0o2kiLAGPMrkOgglOkupcsHoxdqdIe49F5XFQ=)
3: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: 1Qjj6yWow9b3zOMBhZzomfpMUDw4+SMGql3FYXsXW5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:39:bd:c2:fc:2f:b0:28:f2:ea:ba:10:40:ea:34:86:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: Jun 4 07:00:26 2025 GMT
Not After : Jun 5 07:00:26 2025 GMT
Subject: CN=f63774a73e6880b418b060a1f9d3b416330852ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e1:50:7a:53:83:66:28:55:14:c1:ec:b3:37:
56:67:71:b9:04:9f:a2:ce:1b:08:fa:69:49:80:d6:
25:83:55:a1:52:d0:a6:26:5a:aa:79:49:2e:0c:27:
7e:93:77:e5:db:a7:8f:c9:bc:9f:61:a5:a9:29:5c:
62:14:52:35:94:93:37:56:20:70:a0:00:a0:c6:78:
84:60:68:a6:be:ee:38:2d:c7:d8:dc:00:cb:8b:be:
ec:c1:b3:2f:7b:ee:d8:f3:9a:58:35:0e:46:14:1b:
9a:f0:81:b3:6e:9b:d1:43:6a:58:23:61:dd:ca:80:
47:cf:ea:31:25:50:18:75:92:9c:6a:c6:6f:75:2f:
2f:63:6f:7a:4a:3a:6f:dd:bd:5f:45:c6:59:e4:5e:
16:73:12:7d:37:a1:61:b0:2e:b0:f0:c9:75:27:d0:
7a:98:fa:4a:92:48:fa:8c:3a:65:71:ce:d2:8c:44:
e9:79:a4:bc:7c:7e:07:05:d6:a2:0a:a3:4a:81:59:
eb:21:5c:45:9f:d3:ac:d6:ed:f4:d0:74:cd:4d:b7:
f6:0d:19:63:4e:40:ca:96:3d:44:04:7e:eb:1e:58:
d2:d5:ff:4d:0c:ab:7a:b6:02:58:01:00:f7:77:d4:
81:bd:f5:4d:86:17:6f:da:82:48:d8:1e:7c:42:60:
ad:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:37:74:A7:3E:68:80:B4:18:B0:60:A1:F9:D3:B4:16:33:08:52:EC
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:a6:12:d9:d1:c1:37:e9:fc:78:81:60:5a:ce:44:86:53:68:
a9:dc:1f:e0:01:9e:00:30:23:38:70:97:d2:c6:5f:3d:62:4e:
8e:5d:fb:01:77:2a:6f:d9:ed:5f:f3:a9:12:84:87:46:f4:eb:
b8:59:94:1d:71:43:1a:28:82:ae:08:4c:06:e5:45:0e:ca:f2:
e2:fc:b9:0b:4a:b5:cf:a4:e4:7f:3b:f3:d9:38:95:ff:cc:82:
34:7f:2a:f6:1b:03:ce:ae:78:76:a9:c2:76:95:df:76:63:71:
40:e5:0c:29:bd:1f:75:85:78:67:16:c6:ec:b2:01:2d:61:d9:
b1:fd:f5:16:90:dc:43:03:67:8d:59:11:3a:e9:9d:08:fa:8e:
f2:23:8a:cc:c8:71:d3:43:94:a7:ed:e9:4b:4d:72:8b:12:01:
fb:2f:c9:e3:25:78:52:60:3d:b2:76:d1:09:07:b3:15:7c:8e:
e7:4b:34:a7:d3:6a:9d:c5:53:d2:a5:2b:e7:5e:1e:e6:14:81:
8b:13:43:d3:f7:45:f3:fd:5e:b6:0e:9a:38:fe:b6:e4:bf:51:
3f:f5:24:7e:a5:54:37:67:52:0d:33:04:bb:12:42:96:1e:73:
11:39:7c:52:c1:5b:ca:4f:c7:d0:28:22:e6:99:3e:f2:9f:79:
6b:a4:f4:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZc5vcL8L7Ao8uq6EEDqNIaTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3NDFkMTNhMTVhOTg3ZGQ2MDAxOWMwMjY1ZDJlY2VjNDg0
MDk0NGEwHhcNMjUwNjA0MDcwMDI2WhcNMjUwNjA1MDcwMDI2WjAzMTEwLwYDVQQD
EyhmNjM3NzRhNzNlNjg4MGI0MThiMDYwYTFmOWQzYjQxNjMzMDg1MmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1uFQelODZihVFMHsszdWZ3G5BJ+i
zhsI+mlJgNYlg1WhUtCmJlqqeUkuDCd+k3fl26ePybyfYaWpKVxiFFI1lJM3ViBw
oACgxniEYGimvu44LcfY3ADLi77swbMve+7Y85pYNQ5GFBua8IGzbpvRQ2pYI2Hd
yoBHz+oxJVAYdZKcasZvdS8vY296Sjpv3b1fRcZZ5F4WcxJ9N6FhsC6w8Ml1J9B6
mPpKkkj6jDplcc7SjETpeaS8fH4HBdaiCqNKgVnrIVxFn9Os1u300HTNTbf2DRlj
TkDKlj1EBH7rHljS1f9NDKt6tgJYAQD3d9SBvfVNhhdv2oJI2B58QmCtMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPY3dKc+aIC0GLBgofnTtBYzCFLsMB8GA1UdIwQY
MBaAFHdB0ToVqYfdYAGcAmXS7OxIQJRKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDBIUk9oV3BoOTFnQVp3Q1pkTHM3RWhBbEVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My8wYmU5ZDAtOTk5YS00NDlhLTg1MTkt
MzUyM2UzMDMwYmU0LzEvZDBIUk9oV3BoOTFnQVp3Q1pkTHM3RWhBbEVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My8wYmU5ZDAtOTk5YS00NDlhLTg1MTktMzUyM2UzMDMwYmU0
LzEvZDBIUk9oV3BoOTFnQVp3Q1pkTHM3RWhBbEVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPKYS2dHB
N+n8eIFgWs5EhlNoqdwf4AGeADAjOHCX0sZfPWJOjl37AXcqb9ntX/OpEoSHRvTr
uFmUHXFDGiiCrghMBuVFDsry4vy5C0q1z6Tkfzvz2TiV/8yCNH8q9hsDzq54dqnC
dpXfdmNxQOUMKb0fdYV4ZxbG7LIBLWHZsf31FpDcQwNnjVkROumdCPqO8iOKzMhx
00OUp+3pS01yixIB+y/J4yV4UmA9snbRCQezFXyO50s0p9NqncVT0qUr514e5hSB
ixND0/dF8/1etg6aOP625L9RP/UkfqVUN2dSDTMEuxJClh5zETl8UsFbyk/H0Cgi
5pk+8p95a6T0Ow==
-----END CERTIFICATE-----
Generated at Wed Jun 4 11:56:13 2025 by rpki-client