Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
File: Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft (raw, json)
Hash identifier: giNLnJDHgiWDruPIIVdm70ujiL240UKNzEPanHshTAs=
Subject key identifier: C9:78:FC:64:C6:10:69:9D:B1:E6:C6:9A:A4:06:9B:FE:A9:3A:8A:70
Authority key identifier: 4A:3C:36:0C:36:4B:B6:6D:C6:35:17:19:35:68:F5:BA:85:17:AC:E8
Certificate issuer: /CN=4a3c360c364bb66dc63517193568f5ba8517ace8
Certificate serial: 01974AB1C5ADF99E7994D0F175534259B433
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
Manifest number: 13CA
Signing time: Sat 07 Jun 2025 14:00:53 +0000
Manifest this update: Sat 07 Jun 2025 14:00:53 +0000
Manifest next update: Sun 08 Jun 2025 14:00:53 +0000
Files and hashes: 1: 4HxC1YnWdGWm4g8pwWn_Hlow4Qo.roa (hash: qpMp8mE7oIuGxE7UiKhcFCXTbJmQfeSevFyEhmL5FpM=)
2: Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl (hash: 6TjqrvNrIf+47aJ4leNdQdZGnAwIR4mVpKAcW2LKjIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:c5:ad:f9:9e:79:94:d0:f1:75:53:42:59:b4:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a3c360c364bb66dc63517193568f5ba8517ace8
Validity
Not Before: Jun 7 14:00:53 2025 GMT
Not After : Jun 8 14:00:53 2025 GMT
Subject: CN=c978fc64c610699db1e6c69aa4069bfea93a8a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a9:48:20:8b:0d:9a:06:ab:e5:ab:13:2d:67:
95:04:b5:b4:4c:a7:42:1c:8a:23:3b:df:f1:25:e2:
3f:76:d6:32:5b:dc:63:10:cb:c9:bc:81:db:f1:7d:
1f:5c:da:00:50:aa:fd:3f:35:b7:d7:ae:39:f5:b3:
c4:ec:95:2b:63:c1:0d:54:e4:6a:86:a9:5c:e8:b4:
7d:86:1e:4f:a6:5b:c6:1a:ca:58:56:95:a1:c1:5b:
62:b5:41:3a:92:ca:8f:40:7c:de:b9:dd:47:56:04:
a4:bc:d9:51:85:c9:32:02:17:e3:20:55:72:fe:44:
48:52:8d:ac:8e:50:74:de:71:2a:cb:7e:e2:b1:e8:
a5:6e:c1:03:0a:42:c2:61:db:b6:64:c1:e5:7b:b2:
2e:38:77:35:dc:21:46:65:f9:56:48:e2:24:65:98:
18:1e:3b:f6:5b:10:cd:ae:b9:4a:a5:6b:3c:a6:7d:
69:8b:31:11:37:01:ca:f2:a5:a6:bb:02:e0:30:ff:
84:be:9c:b2:b1:4d:3d:56:46:37:0b:63:4b:ae:a6:
34:f7:80:32:46:be:37:f7:37:9e:4d:87:df:3e:8f:
a4:e0:0b:d0:f6:40:9e:a5:e4:4f:32:36:70:dc:92:
79:fb:43:f7:d6:63:1f:3f:9c:ac:04:14:76:e4:92:
ff:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:78:FC:64:C6:10:69:9D:B1:E6:C6:9A:A4:06:9B:FE:A9:3A:8A:70
X509v3 Authority Key Identifier:
keyid:4A:3C:36:0C:36:4B:B6:6D:C6:35:17:19:35:68:F5:BA:85:17:AC:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:05:c5:5b:92:08:0d:33:d1:42:8b:1e:2d:ef:93:6b:08:11:
f0:19:e9:08:ec:a8:8d:55:49:ba:31:15:f4:d0:98:f9:10:e6:
a8:f5:21:dd:c3:e6:b6:21:f6:6d:42:12:91:17:4b:ec:27:f8:
b8:ec:f2:90:47:33:15:83:4e:a0:da:1f:c8:d8:a3:bf:1e:af:
d9:a6:71:25:55:4e:25:0e:c5:fc:b8:aa:43:6d:4e:50:83:63:
9d:47:7a:4f:25:01:f3:89:45:ea:7d:12:55:36:ce:e7:7c:9d:
48:33:d3:7e:c6:72:74:21:99:08:84:3a:13:3c:bb:bf:5b:2a:
45:33:63:db:5c:dc:e7:32:b4:56:43:46:94:53:1f:fd:15:cc:
65:f9:d6:e1:ba:75:b9:ea:1d:6d:34:5e:90:fe:0d:82:9d:7f:
a0:e2:b5:55:09:f8:59:64:ac:00:6a:09:75:eb:92:da:4a:e3:
72:9c:21:2b:a2:40:bc:6c:28:52:68:db:0a:04:43:9f:db:c8:
dc:00:a4:36:73:81:1c:5e:57:06:33:be:fe:ba:7d:76:cb:4c:
5d:66:8a:2e:cf:2b:20:23:14:e0:b0:0e:b0:a6:4e:47:ac:3f:
ae:f7:9a:8e:e7:26:48:d4:23:8a:3c:d2:75:c0:c6:13:4b:61:
43:57:33:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKscWt+Z55lNDxdVNCWbQzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhM2MzNjBjMzY0YmI2NmRjNjM1MTcxOTM1NjhmNWJhODUx
N2FjZTgwHhcNMjUwNjA3MTQwMDUzWhcNMjUwNjA4MTQwMDUzWjAzMTEwLwYDVQQD
EyhjOTc4ZmM2NGM2MTA2OTlkYjFlNmM2OWFhNDA2OWJmZWE5M2E4YTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0alIIIsNmgar5asTLWeVBLW0TKdC
HIojO9/xJeI/dtYyW9xjEMvJvIHb8X0fXNoAUKr9PzW316459bPE7JUrY8ENVORq
hqlc6LR9hh5PplvGGspYVpWhwVtitUE6ksqPQHzeud1HVgSkvNlRhckyAhfjIFVy
/kRIUo2sjlB03nEqy37iseilbsEDCkLCYdu2ZMHle7IuOHc13CFGZflWSOIkZZgY
Hjv2WxDNrrlKpWs8pn1pizERNwHK8qWmuwLgMP+EvpyysU09VkY3C2NLrqY094Ay
Rr439zeeTYffPo+k4AvQ9kCepeRPMjZw3JJ5+0P31mMfP5ysBBR25JL/ZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMl4/GTGEGmdsebGmqQGm/6pOopwMB8GA1UdIwQY
MBaAFEo8Ngw2S7ZtxjUXGTVo9bqFF6zoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2p3MkREWkx0bTNHTlJjWk5XajF1b1VYck9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi84YWQ0ZTUtZDljOS00M2U3LWJlMGYt
MWQ5Yzg2NDE2ZTliLzEvU2p3MkREWkx0bTNHTlJjWk5XajF1b1VYck9nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi84YWQ0ZTUtZDljOS00M2U3LWJlMGYtMWQ5Yzg2NDE2ZTli
LzEvU2p3MkREWkx0bTNHTlJjWk5XajF1b1VYck9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoAXFW5II
DTPRQoseLe+TawgR8BnpCOyojVVJujEV9NCY+RDmqPUh3cPmtiH2bUISkRdL7Cf4
uOzykEczFYNOoNofyNijvx6v2aZxJVVOJQ7F/LiqQ21OUINjnUd6TyUB84lF6n0S
VTbO53ydSDPTfsZydCGZCIQ6Ezy7v1sqRTNj21zc5zK0VkNGlFMf/RXMZfnW4bp1
ueodbTRekP4Ngp1/oOK1VQn4WWSsAGoJdeuS2krjcpwhK6JAvGwoUmjbCgRDn9vI
3ACkNnOBHF5XBjO+/rp9dstMXWaKLs8rICMU4LAOsKZOR6w/rveajucmSNQjijzS
dcDGE0thQ1czxQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 20:29:28 2025 by rpki-client