Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
File: bd1AUuD8dlNjYcu9x3UId93zYK0.mft (raw, json)
Hash identifier: UnnXliYuivpO+HgTXQ75Go43Ywihn3pw4qOQA5zQLfM=
Subject key identifier: FD:CC:CE:FA:59:7E:34:5A:D3:C1:C0:A6:AA:02:86:95:CB:A3:A1:7E
Authority key identifier: 6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
Certificate issuer: /CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Certificate serial: 01976AE1491A96DCEFE189DAA5D1B15433AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
Manifest number: 0E9D
Signing time: Fri 13 Jun 2025 20:00:38 +0000
Manifest this update: Fri 13 Jun 2025 20:00:38 +0000
Manifest next update: Sat 14 Jun 2025 20:00:38 +0000
Files and hashes: 1: PBeiTxVVl13KulRPara1RXYVicA.roa (hash: RXsTBTBPcZfgBdF/8hAfnipircCVtF7KKV+ZAN7eFr0=)
2: bd1AUuD8dlNjYcu9x3UId93zYK0.crl (hash: t9kJ1sXqWMxcFkoTRevcBXV+czhpQ8Plz2sEmy1Liyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 18:59:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:e1:49:1a:96:dc:ef:e1:89:da:a5:d1:b1:54:33:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Validity
Not Before: Jun 13 20:00:38 2025 GMT
Not After : Jun 14 20:00:38 2025 GMT
Subject: CN=fdcccefa597e345ad3c1c0a6aa028695cba3a17e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8c:7b:b7:4a:5c:89:52:26:69:88:82:d1:f7:
15:b9:f2:53:9d:7d:d3:4d:08:22:e0:bc:54:88:da:
e8:3c:e8:13:ed:ac:64:98:b9:60:6e:4c:11:8b:0b:
5e:aa:f5:8d:ec:26:cc:65:a8:28:d1:e7:04:1e:10:
b8:7c:c8:1f:48:4f:f8:3b:f4:f3:2f:7e:20:0f:a8:
e8:b7:fc:bf:b2:02:e1:a6:4e:c0:4b:14:78:a7:90:
55:1a:66:eb:44:b9:16:04:d9:83:b8:ed:9e:b9:4f:
d8:35:6b:bf:ab:89:ce:b8:cd:7c:bd:ac:26:64:fb:
ee:10:04:6f:7e:f2:4c:8a:be:64:4d:4c:a3:ab:6f:
7e:7c:83:3c:a5:17:79:19:90:a5:29:41:4f:45:c0:
61:af:75:8c:58:54:13:58:24:de:d4:cb:db:e2:16:
9d:9a:07:37:8e:1c:d8:85:32:f2:11:6f:0e:be:03:
3e:74:f8:0e:1b:26:8b:45:a6:c9:29:46:55:4c:a9:
ab:71:12:46:05:65:8e:97:22:09:ca:51:b6:7d:81:
48:20:99:3a:56:ca:ed:75:d9:1a:f6:c9:bb:80:0f:
b9:12:ac:6a:16:19:4d:ba:39:5f:12:f7:ce:51:94:
08:68:5e:c4:0e:73:54:0e:c1:d7:0f:16:3f:17:1b:
ab:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:CC:CE:FA:59:7E:34:5A:D3:C1:C0:A6:AA:02:86:95:CB:A3:A1:7E
X509v3 Authority Key Identifier:
keyid:6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:d5:04:2d:41:cb:25:15:50:1b:14:20:c8:f5:de:0d:20:6b:
1b:ae:dd:7b:ce:da:9a:61:84:10:70:4e:27:c0:ec:25:38:d7:
4f:6e:ac:2c:f1:38:ed:62:f2:07:38:1f:f1:2b:c8:5b:a9:7a:
df:a4:20:f1:a3:bb:bb:44:81:c1:7e:1f:90:ed:de:21:50:fa:
55:14:52:ad:78:ad:e1:20:67:ea:9a:87:e9:ab:89:43:55:5e:
fe:c9:d1:a3:52:c1:0e:84:27:80:70:6a:98:e8:b7:8d:cd:a5:
9b:df:05:a1:40:41:60:9b:42:5a:e3:ee:32:f4:42:82:ae:bd:
09:f3:08:12:4e:ab:32:ce:fc:ab:65:23:6b:5e:ce:8c:ee:d1:
8c:dc:7a:ca:98:c7:8b:63:8a:a7:fb:ae:f3:fb:8b:08:10:f8:
47:92:34:3a:a9:a7:9d:12:d7:5b:bb:64:2e:99:46:11:54:31:
02:31:f6:f5:0c:55:b7:7e:82:af:ef:d2:98:cf:b4:3b:83:31:
8d:79:e1:6a:14:9f:a8:b3:48:5b:d0:b2:b5:33:1b:e5:85:d7:
87:4e:51:32:a7:f8:3f:06:1b:57:31:75:ff:e9:27:69:17:e2:
d2:d8:1d:36:b9:21:60:a9:c3:9f:f3:db:15:97:ab:47:a7:57:
bc:fc:9a:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdq4Ukaltzv4YnapdGxVDOvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZGQ0MDUyZTBmYzc2NTM2MzYxY2JiZGM3NzUwODc3ZGRm
MzYwYWQwHhcNMjUwNjEzMjAwMDM4WhcNMjUwNjE0MjAwMDM4WjAzMTEwLwYDVQQD
EyhmZGNjY2VmYTU5N2UzNDVhZDNjMWMwYTZhYTAyODY5NWNiYTNhMTdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyIx7t0pciVImaYiC0fcVufJTnX3T
TQgi4LxUiNroPOgT7axkmLlgbkwRiwteqvWN7CbMZago0ecEHhC4fMgfSE/4O/Tz
L34gD6jot/y/sgLhpk7ASxR4p5BVGmbrRLkWBNmDuO2euU/YNWu/q4nOuM18vawm
ZPvuEARvfvJMir5kTUyjq29+fIM8pRd5GZClKUFPRcBhr3WMWFQTWCTe1Mvb4had
mgc3jhzYhTLyEW8OvgM+dPgOGyaLRabJKUZVTKmrcRJGBWWOlyIJylG2fYFIIJk6
Vsrtddka9sm7gA+5EqxqFhlNujlfEvfOUZQIaF7EDnNUDsHXDxY/FxurbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP3MzvpZfjRa08HApqoChpXLo6F+MB8GA1UdIwQY
MBaAFG3dQFLg/HZTY2HLvcd1CHfd82CtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmQxQVV1RDhkbE5qWWN1OXgzVUlkOTN6WUswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85MjM0NDgtMzAyNy00OTQxLTk4YTQt
YmE3YjFmMzc2OWUzLzEvYmQxQVV1RDhkbE5qWWN1OXgzVUlkOTN6WUswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi85MjM0NDgtMzAyNy00OTQxLTk4YTQtYmE3YjFmMzc2OWUz
LzEvYmQxQVV1RDhkbE5qWWN1OXgzVUlkOTN6WUswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaNUELUHL
JRVQGxQgyPXeDSBrG67de87ammGEEHBOJ8DsJTjXT26sLPE47WLyBzgf8SvIW6l6
36Qg8aO7u0SBwX4fkO3eIVD6VRRSrXit4SBn6pqH6auJQ1Ve/snRo1LBDoQngHBq
mOi3jc2lm98FoUBBYJtCWuPuMvRCgq69CfMIEk6rMs78q2Uja17OjO7RjNx6ypjH
i2OKp/uu8/uLCBD4R5I0OqmnnRLXW7tkLplGEVQxAjH29QxVt36Cr+/SmM+0O4Mx
jXnhahSfqLNIW9CytTMb5YXXh05RMqf4PwYbVzF1/+knaRfi0tgdNrkhYKnDn/Pb
FZerR6dXvPyaBg==
-----END CERTIFICATE-----
Generated at Sat Jun 14 03:32:41 2025 by rpki-client