Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.mft
File: thvJe5gnbrO6vZ56pn4nBa4R5lg.mft (raw, json)
Hash identifier: H8QmHER/QpP7Ejsk1go3xj72Pmvlz2Y8kyD2pgkUduE=
Subject key identifier: FA:A1:67:18:8F:3A:91:EF:63:BF:A8:C3:20:65:BD:85:05:08:40:93
Authority key identifier: B6:1B:C9:7B:98:27:6E:B3:BA:BD:9E:7A:A6:7E:27:05:AE:11:E6:58
Certificate issuer: /CN=b61bc97b98276eb3babd9e7aa67e2705ae11e658
Certificate serial: 01974A7B51FFE824ECA9F524244AF1CA243C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thvJe5gnbrO6vZ56pn4nBa4R5lg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.mft
Manifest number: 0411
Signing time: Sat 07 Jun 2025 13:01:25 +0000
Manifest this update: Sat 07 Jun 2025 13:01:25 +0000
Manifest next update: Sun 08 Jun 2025 13:01:25 +0000
Files and hashes: 1: 2KuUzLCv3PyxebEYjGPgT5VXJ00.roa (hash: XmhjXdQGkgD5j9EG5FisxLqYz1hfmvpPHcJGVDqYWyA=)
2: thvJe5gnbrO6vZ56pn4nBa4R5lg.crl (hash: GwYH7IUhr+LQ2qRDUWcuNyoa6sUnLD05/M0AsYxaI5Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.mft
rsync://rpki.ripe.net/repository/DEFAULT/thvJe5gnbrO6vZ56pn4nBa4R5lg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:51:ff:e8:24:ec:a9:f5:24:24:4a:f1:ca:24:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61bc97b98276eb3babd9e7aa67e2705ae11e658
Validity
Not Before: Jun 7 13:01:25 2025 GMT
Not After : Jun 8 13:01:25 2025 GMT
Subject: CN=faa167188f3a91ef63bfa8c32065bd8505084093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9b:0f:34:5f:82:06:a1:14:0b:d5:9e:ad:d4:
e1:f8:32:41:01:88:fd:a0:91:10:e4:4f:cc:47:df:
28:af:b3:50:8a:6c:ca:ed:3c:ae:22:8e:51:c9:a3:
cd:19:0b:9d:87:ea:75:e1:c9:7b:fe:b8:05:8b:f6:
69:f7:60:a5:f8:93:c8:65:63:7b:e6:7f:de:91:b2:
6e:72:ce:19:89:bd:2b:50:d0:53:32:8f:28:5e:56:
a7:e4:13:e1:8a:58:2c:32:94:27:4b:a0:e4:2d:16:
11:55:16:4e:3b:29:83:30:b8:b2:0f:74:af:53:34:
fb:76:b4:36:2b:bb:1c:73:b0:ea:bc:91:2b:c3:be:
a7:a7:ce:e2:e4:08:b5:58:b5:45:db:82:a9:4c:ec:
81:a4:0d:f2:61:58:18:ed:bb:65:1b:10:b2:d2:f8:
dd:90:96:b6:b2:b3:f2:9d:e0:35:3e:a8:5f:14:89:
5d:41:9e:1c:f5:dd:a3:a7:7a:4d:7b:11:9a:4b:98:
2c:67:a4:17:7f:42:c6:60:a3:ea:d2:af:69:8e:60:
07:39:50:6f:83:91:3e:89:88:cf:51:b2:a2:d2:9b:
49:2b:27:71:64:92:fb:44:53:58:95:ce:94:6d:36:
54:52:46:8e:cb:60:07:fc:d1:8c:7a:0a:29:49:13:
d7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A1:67:18:8F:3A:91:EF:63:BF:A8:C3:20:65:BD:85:05:08:40:93
X509v3 Authority Key Identifier:
keyid:B6:1B:C9:7B:98:27:6E:B3:BA:BD:9E:7A:A6:7E:27:05:AE:11:E6:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thvJe5gnbrO6vZ56pn4nBa4R5lg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:33:9c:82:47:57:91:3c:31:ad:f4:d1:ef:d9:78:7e:0d:33:
0a:be:b4:e1:82:e1:12:40:01:67:a7:f8:17:51:d1:2b:96:52:
7b:3c:cf:40:1c:8e:ba:d0:76:cd:0e:00:32:ae:b7:1d:2f:be:
c7:a0:ab:8f:a8:9a:f6:27:f3:55:c5:1e:48:1b:e9:16:0b:7d:
3f:a3:38:44:86:6d:2b:74:7a:40:97:fe:d6:b4:5d:74:31:8b:
42:a5:37:72:7b:0b:80:bf:e5:88:4f:84:a9:d1:fc:e3:eb:1d:
93:be:3c:4b:5f:a1:e7:8f:05:54:7f:96:60:36:be:ff:8d:8d:
81:b5:cb:a2:e9:d9:9c:6a:0a:3e:34:76:f1:09:a2:66:2c:e9:
ee:bb:1d:14:ae:c4:fd:fb:12:2c:15:03:ce:8a:6a:4b:88:39:
25:7b:b5:0f:8b:a8:d8:20:46:a2:cd:eb:7c:cd:38:20:4a:1d:
4c:de:c1:3b:f1:9e:3f:f0:53:74:9d:ee:0e:45:b9:18:41:96:
d8:15:1d:a5:c9:35:7f:aa:ed:f4:ef:4b:d1:8a:be:3e:66:ee:
53:73:a2:ad:e3:f1:20:68:28:c7:cc:eb:5f:5a:6b:2d:00:32:
6f:c8:62:df:fe:8e:1b:05:20:d2:a9:ca:30:03:89:9a:d5:8d:
77:96:39:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKe1H/6CTsqfUkJErxyiQ8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2MWJjOTdiOTgyNzZlYjNiYWJkOWU3YWE2N2UyNzA1YWUx
MWU2NTgwHhcNMjUwNjA3MTMwMTI1WhcNMjUwNjA4MTMwMTI1WjAzMTEwLwYDVQQD
EyhmYWExNjcxODhmM2E5MWVmNjNiZmE4YzMyMDY1YmQ4NTA1MDg0MDkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspsPNF+CBqEUC9WerdTh+DJBAYj9
oJEQ5E/MR98or7NQimzK7TyuIo5RyaPNGQudh+p14cl7/rgFi/Zp92Cl+JPIZWN7
5n/ekbJucs4Zib0rUNBTMo8oXlan5BPhilgsMpQnS6DkLRYRVRZOOymDMLiyD3Sv
UzT7drQ2K7scc7DqvJErw76np87i5Ai1WLVF24KpTOyBpA3yYVgY7btlGxCy0vjd
kJa2srPyneA1PqhfFIldQZ4c9d2jp3pNexGaS5gsZ6QXf0LGYKPq0q9pjmAHOVBv
g5E+iYjPUbKi0ptJKydxZJL7RFNYlc6UbTZUUkaOy2AH/NGMegopSRPXiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPqhZxiPOpHvY7+owyBlvYUFCECTMB8GA1UdIwQY
MBaAFLYbyXuYJ26zur2eeqZ+JwWuEeZYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGh2SmU1Z25ick82dlo1NnBuNG5CYTRSNWxnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9mMjZmNjItZmZhMi00MTcwLWJlNGYt
OTgzZDRkYTEzNDQ3LzEvdGh2SmU1Z25ick82dlo1NnBuNG5CYTRSNWxnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy9mMjZmNjItZmZhMi00MTcwLWJlNGYtOTgzZDRkYTEzNDQ3
LzEvdGh2SmU1Z25ick82dlo1NnBuNG5CYTRSNWxnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbDOcgkdX
kTwxrfTR79l4fg0zCr604YLhEkABZ6f4F1HRK5ZSezzPQByOutB2zQ4AMq63HS++
x6Crj6ia9ifzVcUeSBvpFgt9P6M4RIZtK3R6QJf+1rRddDGLQqU3cnsLgL/liE+E
qdH84+sdk748S1+h548FVH+WYDa+/42NgbXLounZnGoKPjR28QmiZizp7rsdFK7E
/fsSLBUDzopqS4g5JXu1D4uo2CBGos3rfM04IEodTN7BO/GeP/BTdJ3uDkW5GEGW
2BUdpck1f6rt9O9L0Yq+PmbuU3OirePxIGgox8zrX1prLQAyb8hi3/6OGwUg0qnK
MAOJmtWNd5Y5jQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:33:00 2025 by rpki-client