Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.mft
File: P6LWhQu8RyBVepF03LyXYK7MCxo.mft (raw, json)
Hash identifier: Fi0LA+KENVFtzCw3l2DwyQI2QQNAalLYVE1+j8OFPuw=
Subject key identifier: E1:B5:75:AB:02:9C:7E:F3:95:04:20:3A:F6:01:14:AF:C5:A2:CC:A7
Authority key identifier: 3F:A2:D6:85:0B:BC:47:20:55:7A:91:74:DC:BC:97:60:AE:CC:0B:1A
Certificate issuer: /CN=3fa2d6850bbc4720557a9174dcbc9760aecc0b1a
Certificate serial: 01974AE8C1731C2E9F57D0C7D6EC6BD9580B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P6LWhQu8RyBVepF03LyXYK7MCxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.mft
Manifest number: 1289
Signing time: Sat 07 Jun 2025 15:00:57 +0000
Manifest this update: Sat 07 Jun 2025 15:00:57 +0000
Manifest next update: Sun 08 Jun 2025 15:00:57 +0000
Files and hashes: 1: GAO-zTi3etu6ipkvC2n1MQjAfa8.roa (hash: xkkdl+Sobv3rMi6edmSVvQinnG04ZdzSM/7er87DV0E=)
2: P6LWhQu8RyBVepF03LyXYK7MCxo.crl (hash: F2YR66OVd9V2xPAUm+GKoAZJvWjNBtDHItTn62sD4Qc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/P6LWhQu8RyBVepF03LyXYK7MCxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:c1:73:1c:2e:9f:57:d0:c7:d6:ec:6b:d9:58:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fa2d6850bbc4720557a9174dcbc9760aecc0b1a
Validity
Not Before: Jun 7 15:00:57 2025 GMT
Not After : Jun 8 15:00:57 2025 GMT
Subject: CN=e1b575ab029c7ef39504203af60114afc5a2cca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e7:88:6f:ca:19:cc:90:e4:18:73:0e:98:6b:
73:d7:8d:54:77:50:72:40:a9:05:15:78:ba:cc:23:
6e:f4:a1:9c:09:3a:48:e6:81:24:d9:9c:86:26:4a:
42:37:02:2f:b3:16:da:bb:27:5b:f2:b8:67:4a:38:
5c:10:94:1e:46:b9:d4:37:f6:a4:51:a2:88:54:fc:
b0:f1:23:b2:f7:32:f6:92:da:d0:60:79:06:83:b1:
9c:48:96:c2:a2:cb:a0:3e:51:c5:83:f8:ca:18:9d:
cd:53:1f:56:20:a8:0c:37:87:fe:83:3b:ba:70:cd:
16:56:8d:f2:ae:dd:4f:4f:3f:16:05:f1:b2:26:f5:
dd:1c:47:50:62:ae:6c:77:1b:9d:34:95:24:27:4f:
36:bd:1e:26:c7:61:90:d5:a3:50:fc:03:50:33:7e:
fe:64:86:1a:98:48:32:15:5e:2f:26:29:2b:e7:dc:
5a:73:a1:d1:95:b1:06:78:65:20:75:82:5b:6f:a3:
ca:1a:37:a6:e3:dc:f2:a6:71:7b:ae:75:9d:f8:1e:
a1:6e:9d:83:a2:2d:b3:22:cf:c6:a5:0d:2c:b7:d2:
c4:2b:87:14:39:0b:6a:5a:c5:e2:e6:eb:ea:d0:eb:
10:6e:f9:10:0b:ea:49:00:79:25:4a:3b:ce:51:9b:
49:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:B5:75:AB:02:9C:7E:F3:95:04:20:3A:F6:01:14:AF:C5:A2:CC:A7
X509v3 Authority Key Identifier:
keyid:3F:A2:D6:85:0B:BC:47:20:55:7A:91:74:DC:BC:97:60:AE:CC:0B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P6LWhQu8RyBVepF03LyXYK7MCxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:ab:7a:56:d2:6a:8c:22:e4:46:1c:32:d8:c8:a7:70:d9:e2:
74:7f:61:71:88:4e:3e:8d:9e:b9:94:0f:42:5e:8e:f4:ea:c7:
5c:2f:8c:72:65:84:7e:eb:31:33:8d:49:40:0f:c8:13:7c:20:
3c:55:a0:1f:7a:58:ea:e5:dd:83:69:91:9d:ad:83:63:bb:2c:
c9:32:2d:75:6b:fc:1a:27:64:e2:4b:a6:76:4e:8e:7f:cd:a3:
54:1b:0e:60:dd:2e:ae:ca:c9:06:71:4e:ee:91:71:01:71:fd:
63:63:e2:2d:dc:af:aa:87:c3:de:ca:31:60:e0:95:2a:0c:fd:
d9:a9:95:67:2d:41:b7:66:04:d9:77:44:fa:df:06:19:da:f8:
84:13:c0:29:29:58:32:90:59:b2:e7:f5:f4:f7:dd:96:71:7c:
10:5d:cb:9b:01:24:6b:4c:0d:58:c1:69:36:3b:b9:6f:76:4d:
f6:49:1e:94:c2:b1:aa:28:41:ec:30:2c:1d:57:34:0d:46:b5:
d2:ba:7f:96:a1:a2:98:9e:7c:ab:99:3b:de:8a:93:d3:8b:96:
9b:70:40:a9:85:88:c8:13:35:69:0a:76:48:68:52:c4:2f:8e:
6c:7d:6e:59:b1:50:03:70:e2:b6:5c:02:02:50:86:50:68:16:
cf:fa:f1:b7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdK6MFzHC6fV9DH1uxr2VgLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmYTJkNjg1MGJiYzQ3MjA1NTdhOTE3NGRjYmM5NzYwYWVj
YzBiMWEwHhcNMjUwNjA3MTUwMDU3WhcNMjUwNjA4MTUwMDU3WjAzMTEwLwYDVQQD
EyhlMWI1NzVhYjAyOWM3ZWYzOTUwNDIwM2FmNjAxMTRhZmM1YTJjY2E3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+eIb8oZzJDkGHMOmGtz141Ud1By
QKkFFXi6zCNu9KGcCTpI5oEk2ZyGJkpCNwIvsxbauydb8rhnSjhcEJQeRrnUN/ak
UaKIVPyw8SOy9zL2ktrQYHkGg7GcSJbCosugPlHFg/jKGJ3NUx9WIKgMN4f+gzu6
cM0WVo3yrt1PTz8WBfGyJvXdHEdQYq5sdxudNJUkJ082vR4mx2GQ1aNQ/ANQM37+
ZIYamEgyFV4vJikr59xac6HRlbEGeGUgdYJbb6PKGjem49zypnF7rnWd+B6hbp2D
oi2zIs/GpQ0st9LEK4cUOQtqWsXi5uvq0OsQbvkQC+pJAHklSjvOUZtJOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOG1dasCnH7zlQQgOvYBFK/FosynMB8GA1UdIwQY
MBaAFD+i1oULvEcgVXqRdNy8l2CuzAsaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDZMV2hRdThSeUJWZXBGMDNMeVhZSzdNQ3hvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9jM2M3NTgtYTI1My00OTg5LWFlMmQt
OWM2NWQxODhlNTRlLzEvUDZMV2hRdThSeUJWZXBGMDNMeVhZSzdNQ3hvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi9jM2M3NTgtYTI1My00OTg5LWFlMmQtOWM2NWQxODhlNTRl
LzEvUDZMV2hRdThSeUJWZXBGMDNMeVhZSzdNQ3hvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS6t6VtJq
jCLkRhwy2MincNnidH9hcYhOPo2euZQPQl6O9OrHXC+McmWEfusxM41JQA/IE3wg
PFWgH3pY6uXdg2mRna2DY7ssyTItdWv8Gidk4kumdk6Of82jVBsOYN0ursrJBnFO
7pFxAXH9Y2PiLdyvqofD3soxYOCVKgz92amVZy1Bt2YE2XdE+t8GGdr4hBPAKSlY
MpBZsuf19PfdlnF8EF3LmwEka0wNWMFpNju5b3ZN9kkelMKxqihB7DAsHVc0DUa1
0rp/lqGimJ58q5k73oqT04uWm3BAqYWIyBM1aQp2SGhSxC+ObH1uWbFQA3DitlwC
AlCGUGgWz/rxtw==
-----END CERTIFICATE-----
Generated at Sun Jun 8 01:17:13 2025 by rpki-client