Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
File: fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft (raw, json)
Hash identifier: t+5bCnX7hVwRiBoghB4cuI+E/I4EUT7cyE8PhfcdkVE=
Subject key identifier: BC:AD:9C:D2:7A:99:25:6E:4B:C7:C0:E9:42:98:C5:C4:8D:9B:11:7D
Authority key identifier: 7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
Certificate issuer: /CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Certificate serial: 01975346C8408DB40D73C7133A1F3F8FC4B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
Manifest number: 157F
Signing time: Mon 09 Jun 2025 06:00:37 +0000
Manifest this update: Mon 09 Jun 2025 06:00:37 +0000
Manifest next update: Tue 10 Jun 2025 06:00:37 +0000
Files and hashes: 1: JcAhZrilsZkvSyojajHWDjOF_6I.roa (hash: W7eqhWRP/GcuUd5Q71f0zaMk5StnfS4hfdbNGseVYE0=)
2: fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl (hash: zTp9wl9CuykFr4CySQPp9CpnJUrpIwCHdy8+pKIHsTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:46:c8:40:8d:b4:0d:73:c7:13:3a:1f:3f:8f:c4:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Validity
Not Before: Jun 9 06:00:37 2025 GMT
Not After : Jun 10 06:00:37 2025 GMT
Subject: CN=bcad9cd27a99256e4bc7c0e94298c5c48d9b117d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:99:aa:c0:16:61:76:1a:9d:ab:1e:92:fd:9b:
67:0b:ab:5c:44:5c:d1:74:86:97:b5:af:b8:6f:a6:
dd:66:4f:73:e6:40:17:0e:b4:30:c8:86:7e:37:ec:
0d:5e:75:1a:59:b0:05:00:08:af:4e:2b:e3:35:c8:
e7:9e:d4:29:07:22:6b:19:a0:5d:7f:f2:d4:37:aa:
48:d2:19:17:27:a9:2f:f1:63:41:33:ae:12:c5:a6:
85:b0:95:52:5e:af:51:f3:5e:fb:f0:0b:64:c0:d5:
64:a4:64:2c:91:66:f4:72:32:a8:46:29:70:4b:c4:
a5:9d:9a:e1:65:47:6e:b8:01:df:a3:89:15:39:f1:
0f:68:b2:ea:25:4c:f7:02:47:d3:3c:63:cd:1a:79:
b0:09:02:fe:57:30:f9:ed:18:e7:ea:b9:46:98:d2:
ed:78:60:12:ed:33:d9:d4:f0:78:dd:27:cb:72:b6:
0d:0b:70:fb:cb:31:5f:60:9a:ad:07:34:8f:65:84:
a1:b8:95:28:2d:db:b8:3a:d6:d4:ec:97:51:55:75:
6e:b3:70:1f:6e:0a:bc:a6:54:ef:ca:b5:14:f2:5e:
96:c0:ac:0d:3f:2b:4f:70:a0:ac:6e:c0:fa:c9:55:
ed:65:e0:2a:ff:1b:82:c7:cb:d8:4f:87:88:15:44:
03:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:AD:9C:D2:7A:99:25:6E:4B:C7:C0:E9:42:98:C5:C4:8D:9B:11:7D
X509v3 Authority Key Identifier:
keyid:7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:fe:66:28:3d:b7:9f:63:c4:2a:11:1e:48:79:81:f9:d3:9e:
da:a3:09:5c:ad:ec:04:68:38:5b:70:c5:35:7f:80:f4:d6:8f:
fa:e4:0f:39:41:be:a7:d9:f0:3c:93:a2:9e:22:b2:b1:ed:c6:
af:7f:59:46:cd:9c:32:eb:44:bd:da:86:58:7c:a6:63:44:f7:
4c:dc:9d:b3:5e:e7:d9:6e:cf:c3:c5:c4:93:63:27:c5:ff:94:
b5:ae:88:6e:63:91:da:e9:06:06:57:d0:d1:f2:5b:28:55:2b:
04:3a:ae:b8:4d:3f:e9:71:89:2b:97:e5:06:3a:e0:69:7d:bd:
92:14:d2:b5:b0:0d:5e:bd:96:6b:a9:c4:86:7a:87:28:48:ab:
71:70:1f:55:02:1a:0a:6e:9d:19:b1:99:9d:76:0c:8b:f5:ce:
22:4e:8e:ba:31:21:b9:0c:5d:77:31:48:e6:94:da:be:c2:66:
7e:57:ca:44:e7:15:22:78:08:fe:74:99:af:7f:2e:6d:65:9e:
e3:2c:89:23:a0:0a:0b:9f:7f:55:69:eb:a5:15:4a:b5:2b:43:
18:41:bc:64:66:47:4e:18:cb:0f:bb:21:0d:85:aa:e0:d9:af:
45:95:0d:17:f3:64:76:91:31:73:cb:1f:cc:ee:db:23:72:42:
aa:32:67:03
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdTRshAjbQNc8cTOh8/j8S0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlYzYxMGQyMTVkMzg5MTM0MmJjMzI4NzJhNTBmNGQwY2Zh
OWRjOWYwHhcNMjUwNjA5MDYwMDM3WhcNMjUwNjEwMDYwMDM3WjAzMTEwLwYDVQQD
EyhiY2FkOWNkMjdhOTkyNTZlNGJjN2MwZTk0Mjk4YzVjNDhkOWIxMTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJmqwBZhdhqdqx6S/ZtnC6tcRFzR
dIaXta+4b6bdZk9z5kAXDrQwyIZ+N+wNXnUaWbAFAAivTivjNcjnntQpByJrGaBd
f/LUN6pI0hkXJ6kv8WNBM64SxaaFsJVSXq9R81778AtkwNVkpGQskWb0cjKoRilw
S8SlnZrhZUduuAHfo4kVOfEPaLLqJUz3AkfTPGPNGnmwCQL+VzD57Rjn6rlGmNLt
eGAS7TPZ1PB43SfLcrYNC3D7yzFfYJqtBzSPZYShuJUoLdu4OtbU7JdRVXVus3Af
bgq8plTvyrUU8l6WwKwNPytPcKCsbsD6yVXtZeAq/xuCx8vYT4eIFUQD2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLytnNJ6mSVuS8fA6UKYxcSNmxF9MB8GA1UdIwQY
MBaAFH7GENIV04kTQrwyhypQ9NDPqdyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZnNZUTBoWFRpUk5DdkRLSEtsRDAwTS1wM0o4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8yMjkxMWMtY2U1MS00MzhiLTg2Y2Yt
ZTg1NjYxM2QyYjEwLzEvZnNZUTBoWFRpUk5DdkRLSEtsRDAwTS1wM0o4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS8yMjkxMWMtY2U1MS00MzhiLTg2Y2YtZTg1NjYxM2QyYjEw
LzEvZnNZUTBoWFRpUk5DdkRLSEtsRDAwTS1wM0o4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY/5mKD23
n2PEKhEeSHmB+dOe2qMJXK3sBGg4W3DFNX+A9NaP+uQPOUG+p9nwPJOiniKyse3G
r39ZRs2cMutEvdqGWHymY0T3TNyds17n2W7Pw8XEk2Mnxf+Uta6IbmOR2ukGBlfQ
0fJbKFUrBDquuE0/6XGJK5flBjrgaX29khTStbANXr2Wa6nEhnqHKEircXAfVQIa
Cm6dGbGZnXYMi/XOIk6OujEhuQxddzFI5pTavsJmflfKROcVIngI/nSZr38ubWWe
4yyJI6AKC59/VWnrpRVKtStDGEG8ZGZHThjLD7shDYWq4NmvRZUNF/NkdpExc8sf
zO7bI3JCqjJnAw==
-----END CERTIFICATE-----
Generated at Mon Jun 9 11:53:39 2025 by rpki-client