Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
File: h9OLoS9GKcITH8YOiVDWwwO-fSI.mft (raw, json)
Hash identifier: KPacd9JCwI4aitqHLb1HlO9VvaTCFqiXN/cf3ghVvnE=
Subject key identifier: 53:AB:AC:06:82:CC:87:1B:5A:64:51:7C:0F:25:77:77:1B:B8:7E:F4
Authority key identifier: 87:D3:8B:A1:2F:46:29:C2:13:1F:C6:0E:89:50:D6:C3:03:BE:7D:22
Certificate issuer: /CN=87d38ba12f4629c2131fc60e8950d6c303be7d22
Certificate serial: 01974E8E8B40BD6EFC46EB904E8AEBD7235C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
Manifest number: 06E1
Signing time: Sun 08 Jun 2025 08:00:53 +0000
Manifest this update: Sun 08 Jun 2025 08:00:53 +0000
Manifest next update: Mon 09 Jun 2025 08:00:53 +0000
Files and hashes: 1: NPXq7VLWTvwMe_H1BOcCF7vP8QQ.roa (hash: UBan9KbEcKtiRn9epXoesYMRtYi5lW0QY6/c4yNUKv8=)
2: h9OLoS9GKcITH8YOiVDWwwO-fSI.crl (hash: Pjwl1CLCqUJ6pxVYHywAF53xl+ihjGv5y7CNb8nFf5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:8e:8b:40:bd:6e:fc:46:eb:90:4e:8a:eb:d7:23:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d38ba12f4629c2131fc60e8950d6c303be7d22
Validity
Not Before: Jun 8 08:00:53 2025 GMT
Not After : Jun 9 08:00:53 2025 GMT
Subject: CN=53abac0682cc871b5a64517c0f2577771bb87ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9a:7d:ec:cb:32:a7:8d:ac:8d:0a:33:b7:3f:
30:a3:6c:47:8f:37:c8:6d:93:ce:ad:f2:76:15:98:
27:c3:0e:83:07:73:ec:3f:49:cc:f7:c1:78:48:4f:
15:dc:6f:b6:08:0a:e7:d3:6f:46:ac:a9:14:7a:74:
04:4c:ff:61:1e:5e:56:83:67:63:6a:01:ec:a5:d2:
40:09:17:09:34:6c:6e:b0:54:60:21:03:4c:bb:ce:
fc:5c:f5:ed:3b:02:90:c6:44:59:a0:95:cb:14:ee:
19:99:80:ca:70:74:54:29:22:9e:60:8f:f6:ef:93:
1d:3b:be:c7:ff:77:0c:e1:61:55:d7:8f:a1:cc:ee:
3b:7d:4f:d5:c6:7c:d1:1c:5c:64:98:01:e8:66:b1:
53:6b:c6:df:38:c0:0e:a7:8e:bd:16:c5:d1:55:90:
37:7d:77:61:86:81:25:82:0b:0b:03:62:e9:7f:e3:
00:20:96:7b:c6:3f:05:c9:3f:66:cf:ba:7d:91:02:
1a:84:25:1f:92:60:97:a3:64:f4:16:68:87:9d:9d:
25:39:72:a5:98:d3:79:90:61:99:ec:fb:be:88:47:
7a:86:a2:74:e7:b0:e9:de:e3:8c:98:a9:32:66:f6:
95:49:e5:e9:77:34:c7:f0:98:5a:43:c2:0d:93:2d:
19:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:AB:AC:06:82:CC:87:1B:5A:64:51:7C:0F:25:77:77:1B:B8:7E:F4
X509v3 Authority Key Identifier:
keyid:87:D3:8B:A1:2F:46:29:C2:13:1F:C6:0E:89:50:D6:C3:03:BE:7D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:41:01:d7:19:53:e2:6b:8b:7d:2a:bc:1a:9a:c1:5e:2c:e3:
d1:4a:87:f0:55:27:17:84:27:5c:2e:83:b7:0d:6b:b1:f6:4d:
0e:db:e9:ee:b9:54:f4:08:fc:23:c0:e9:e0:1d:e7:87:31:62:
6a:a9:4e:ed:4a:c2:78:5a:94:11:2e:98:25:46:35:e9:aa:6c:
7d:e7:96:d5:f1:6e:99:ed:1b:20:cb:a3:9a:25:84:5e:d2:dd:
53:59:af:43:19:91:e0:7d:7a:37:36:bc:6c:f4:f2:ff:24:8e:
fc:2a:89:38:07:2b:19:44:2a:dd:a2:b0:18:ef:a6:8b:b8:bc:
ea:56:94:d1:78:5b:fb:f0:f0:2f:75:6e:0b:e9:2a:80:07:78:
29:7b:2a:86:23:2c:5a:d4:7b:7b:cf:79:e4:62:72:92:db:9c:
f9:2f:a2:4d:22:c6:f1:09:f7:49:68:98:0b:14:48:36:0a:c7:
cb:02:57:af:3f:2d:45:bf:b5:a4:9e:2f:12:f3:48:8d:c1:ca:
cf:48:da:b7:27:b3:b6:39:35:69:b7:55:5e:cd:1d:fd:81:58:
b7:1a:9d:3d:e4:3e:b4:98:0a:bc:72:06:40:95:7a:c4:dc:01:
04:c3:0d:ef:f1:fd:67:22:97:b2:d0:ae:01:ed:b2:90:da:94:
f3:6f:87:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOjotAvW78RuuQTorr1yNcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ZDM4YmExMmY0NjI5YzIxMzFmYzYwZTg5NTBkNmMzMDNi
ZTdkMjIwHhcNMjUwNjA4MDgwMDUzWhcNMjUwNjA5MDgwMDUzWjAzMTEwLwYDVQQD
Eyg1M2FiYWMwNjgyY2M4NzFiNWE2NDUxN2MwZjI1Nzc3NzFiYjg3ZWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzJp97Msyp42sjQoztz8wo2xHjzfI
bZPOrfJ2FZgnww6DB3PsP0nM98F4SE8V3G+2CArn029GrKkUenQETP9hHl5Wg2dj
agHspdJACRcJNGxusFRgIQNMu878XPXtOwKQxkRZoJXLFO4ZmYDKcHRUKSKeYI/2
75MdO77H/3cM4WFV14+hzO47fU/VxnzRHFxkmAHoZrFTa8bfOMAOp469FsXRVZA3
fXdhhoElggsLA2Lpf+MAIJZ7xj8FyT9mz7p9kQIahCUfkmCXo2T0FmiHnZ0lOXKl
mNN5kGGZ7Pu+iEd6hqJ057Dp3uOMmKkyZvaVSeXpdzTH8JhaQ8INky0ZswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFOrrAaCzIcbWmRRfA8ld3cbuH70MB8GA1UdIwQY
MBaAFIfTi6EvRinCEx/GDolQ1sMDvn0iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDlPTG9TOUdLY0lUSDhZT2lWRFd3d08tZlNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi8zZDIxNDEtZWNiOC00Mjg5LTk2Njkt
ZmQ1NWM1OGVkYWY3LzEvaDlPTG9TOUdLY0lUSDhZT2lWRFd3d08tZlNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi8zZDIxNDEtZWNiOC00Mjg5LTk2NjktZmQ1NWM1OGVkYWY3
LzEvaDlPTG9TOUdLY0lUSDhZT2lWRFd3d08tZlNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF0EB1xlT
4muLfSq8GprBXizj0UqH8FUnF4QnXC6Dtw1rsfZNDtvp7rlU9Aj8I8Dp4B3nhzFi
aqlO7UrCeFqUES6YJUY16apsfeeW1fFume0bIMujmiWEXtLdU1mvQxmR4H16Nza8
bPTy/ySO/CqJOAcrGUQq3aKwGO+mi7i86laU0Xhb+/DwL3VuC+kqgAd4KXsqhiMs
WtR7e8955GJyktuc+S+iTSLG8Qn3SWiYCxRINgrHywJXrz8tRb+1pJ4vEvNIjcHK
z0jatyeztjk1abdVXs0d/YFYtxqdPeQ+tJgKvHIGQJV6xNwBBMMN7/H9ZyKXstCu
Ae2ykNqU82+H+A==
-----END CERTIFICATE-----
Generated at Sun Jun 8 12:49:31 2025 by rpki-client