Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
File: R1oGyte9DD25-KOB8euc1sdaqyg.mft (raw, json)
Hash identifier: YvO2f6WlHTywKxGtioDMq74pvB6LHz85/v/PMX+L5V0=
Subject key identifier: 43:84:B2:91:B1:3F:60:8D:10:98:59:22:C9:22:C3:69:CD:86:5B:A2
Authority key identifier: 47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
Certificate issuer: /CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Certificate serial: 01974C31BF3CEFBBE5CA7150585B3068CFA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
Manifest number: 0139
Signing time: Sat 07 Jun 2025 21:00:17 +0000
Manifest this update: Sat 07 Jun 2025 21:00:17 +0000
Manifest next update: Sun 08 Jun 2025 21:00:17 +0000
Files and hashes: 1: P26izWnWykundEbYZ5JEBhpU0uU.roa (hash: cWV+pN/zcAshvYcQxK5v+o4IGsyjFJQg91I3ipirKBI=)
2: R1oGyte9DD25-KOB8euc1sdaqyg.crl (hash: kJw4LaeUyLiRkXVMpdcp2HcyKg8ntn/I8Fq7KZLphQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:31:bf:3c:ef:bb:e5:ca:71:50:58:5b:30:68:cf:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Validity
Not Before: Jun 7 21:00:17 2025 GMT
Not After : Jun 8 21:00:17 2025 GMT
Subject: CN=4384b291b13f608d10985922c922c369cd865ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e5:c1:30:79:bc:da:26:0f:1b:ad:11:6d:3a:
80:e5:83:e4:d8:2c:8f:50:30:09:54:4e:ab:63:18:
d1:dd:e9:d3:01:2c:c5:b8:c7:53:66:7d:e9:e0:db:
b4:e3:ba:f1:e2:01:36:69:e0:e8:d6:35:18:58:76:
8f:46:6d:37:3e:3e:40:1f:e6:26:ea:cc:b8:bf:81:
6e:ae:24:ac:81:4c:b8:e5:3c:bb:6e:57:5a:87:52:
ef:6d:4c:df:af:9c:35:0c:4f:34:d8:be:9f:f4:32:
07:2e:b1:a2:09:41:8e:c2:8b:c2:b0:5e:21:1e:6c:
fc:f0:d4:da:09:38:bf:30:48:25:f8:3b:55:75:dd:
8b:7a:6b:f8:5d:69:6a:b1:2c:b2:6f:38:a5:1e:db:
95:dc:24:47:88:07:36:d0:a0:9d:2e:b2:67:38:77:
c3:9c:9f:a7:52:fb:8b:47:13:b2:7a:8b:4f:66:bb:
e5:79:b3:4b:4b:21:68:2b:4c:13:64:e2:a8:2a:fe:
25:05:27:90:87:54:ac:09:3f:92:c2:3f:c4:1d:e7:
19:be:92:59:71:10:38:e6:0b:18:69:9e:9d:ea:c3:
d0:4e:12:65:53:93:be:df:21:36:1a:f9:02:a1:23:
53:fd:31:62:83:c7:56:22:01:86:2a:41:3b:2f:24:
fa:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:84:B2:91:B1:3F:60:8D:10:98:59:22:C9:22:C3:69:CD:86:5B:A2
X509v3 Authority Key Identifier:
keyid:47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:ae:d1:1f:df:aa:cc:55:c7:36:03:02:ec:06:19:42:81:02:
89:18:89:af:9a:93:8c:11:f0:b8:41:e0:d5:68:cb:67:ec:ee:
30:8b:1b:0e:ee:41:14:77:aa:e2:80:1f:af:8e:3d:c5:9a:80:
fa:1d:e9:bc:68:0a:b9:a9:e6:3b:52:b8:a3:c0:c2:df:32:4b:
7a:c9:1c:3b:3f:39:4e:3f:5d:5e:85:9c:f6:66:5d:2b:06:c2:
7e:a5:51:77:e4:9f:c1:b2:df:4e:d6:d5:83:80:f3:f3:cd:84:
ec:bc:e8:1f:08:49:c0:cf:eb:48:f3:92:76:d8:d9:ae:1d:52:
d2:f3:fc:9b:b2:0a:d8:40:e9:e6:1f:07:1a:8a:68:b6:95:b3:
2b:c1:73:0a:da:fd:8d:09:79:15:2c:e7:15:73:30:c8:99:c1:
b7:a3:a1:93:36:3d:db:ea:83:eb:48:ca:3f:60:07:fc:06:3c:
af:c4:09:f4:df:84:4f:3a:47:31:12:c6:18:95:23:6a:5e:e1:
01:f2:df:9a:97:18:ff:34:d2:0a:7d:c5:32:35:30:dd:8d:c8:
20:e3:11:c4:58:7c:19:c1:2d:c8:23:c9:60:e8:d8:fc:f6:de:
08:5c:88:1e:a0:97:dc:ef:50:fc:e3:2c:56:b2:62:cb:cf:81:
31:0c:4b:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMMb8877vlynFQWFswaM+jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3NWEwNmNhZDdiZDBjM2RiOWY4YTM4MWYxZWI5Y2Q2Yzc1
YWFiMjgwHhcNMjUwNjA3MjEwMDE3WhcNMjUwNjA4MjEwMDE3WjAzMTEwLwYDVQQD
Eyg0Mzg0YjI5MWIxM2Y2MDhkMTA5ODU5MjJjOTIyYzM2OWNkODY1YmEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+XBMHm82iYPG60RbTqA5YPk2CyP
UDAJVE6rYxjR3enTASzFuMdTZn3p4Nu047rx4gE2aeDo1jUYWHaPRm03Pj5AH+Ym
6sy4v4FuriSsgUy45Ty7bldah1LvbUzfr5w1DE802L6f9DIHLrGiCUGOwovCsF4h
Hmz88NTaCTi/MEgl+DtVdd2Lemv4XWlqsSyybzilHtuV3CRHiAc20KCdLrJnOHfD
nJ+nUvuLRxOyeotPZrvlebNLSyFoK0wTZOKoKv4lBSeQh1SsCT+Swj/EHecZvpJZ
cRA45gsYaZ6d6sPQThJlU5O+3yE2GvkCoSNT/TFig8dWIgGGKkE7LyT6nQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEOEspGxP2CNEJhZIskiw2nNhluiMB8GA1UdIwQY
MBaAFEdaBsrXvQw9ufijgfHrnNbHWqsoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUjFvR3l0ZTlERDI1LUtPQjhldWMxc2RhcXlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9iZGZkNzAtMzA2Ny00NzNkLThmNjUt
YjU1MzIyMDI4YmI4LzEvUjFvR3l0ZTlERDI1LUtPQjhldWMxc2RhcXlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9iZGZkNzAtMzA2Ny00NzNkLThmNjUtYjU1MzIyMDI4YmI4
LzEvUjFvR3l0ZTlERDI1LUtPQjhldWMxc2RhcXlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcq7RH9+q
zFXHNgMC7AYZQoECiRiJr5qTjBHwuEHg1WjLZ+zuMIsbDu5BFHeq4oAfr449xZqA
+h3pvGgKuanmO1K4o8DC3zJLeskcOz85Tj9dXoWc9mZdKwbCfqVRd+SfwbLfTtbV
g4Dz882E7LzoHwhJwM/rSPOSdtjZrh1S0vP8m7IK2EDp5h8HGopotpWzK8FzCtr9
jQl5FSznFXMwyJnBt6OhkzY92+qD60jKP2AH/AY8r8QJ9N+ETzpHMRLGGJUjal7h
AfLfmpcY/zTSCn3FMjUw3Y3IIOMRxFh8GcEtyCPJYOjY/PbeCFyIHqCX3O9Q/OMs
VrJiy8+BMQxL0w==
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:13:01 2025 by rpki-client