Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: r2Lc/J+Nc877F/obB7mrywVJ/cIuvdlyz04pRUQTYOQ=
Subject key identifier: 01:83:E0:97:7E:84:BD:51:01:03:37:52:80:73:52:1E:FF:8E:A8:BB
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 019760CB5DB7CEC8805E77F1443258500CF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 06FA
Signing time: Wed 11 Jun 2025 21:00:29 +0000
Manifest this update: Wed 11 Jun 2025 21:00:29 +0000
Manifest next update: Thu 12 Jun 2025 21:00:29 +0000
Files and hashes: 1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=)
2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: +BgJm6gavwm56kXeOPk2HkkQM6BsPUeBDWuiH3Nxmec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 15:40:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:60:cb:5d:b7:ce:c8:80:5e:77:f1:44:32:58:50:0c:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: Jun 11 21:00:29 2025 GMT
Not After : Jun 12 21:00:29 2025 GMT
Subject: CN=0183e0977e84bd51010337528073521eff8ea8bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e3:c1:3d:ac:8f:7b:79:36:a4:cf:2d:50:f7:
2d:ba:3c:af:35:55:56:3e:b4:be:03:3d:2a:b5:5c:
53:ca:00:5c:37:f7:7c:d9:2d:7b:ef:12:37:ab:be:
7f:75:a0:35:5b:ac:ca:e7:dd:56:ab:f5:fc:67:16:
17:e8:87:77:74:09:4c:23:9a:63:5b:ba:74:25:62:
bb:07:71:19:a1:30:c8:4e:7b:82:7a:3f:a2:59:df:
5e:83:7e:a6:44:8a:a2:fb:88:ab:ba:71:e5:55:12:
cf:a1:46:37:5d:c1:ab:14:ff:7f:af:d3:34:b2:25:
d8:c0:69:35:ed:8d:02:8d:83:f8:34:13:79:50:3e:
fc:c7:d8:ad:71:35:e0:8e:97:13:3c:1c:75:50:41:
0f:a1:aa:3a:18:0e:85:04:56:34:b4:34:11:de:91:
11:cf:9d:e5:40:85:ed:9d:65:d0:22:49:c0:a8:c2:
cb:f4:40:d0:cd:4e:7f:3b:39:79:92:c1:d0:c6:3e:
ea:18:10:6f:5e:eb:fc:fb:45:29:94:ca:a4:9c:77:
8f:1d:09:74:ce:86:b0:84:47:7a:c3:c6:6f:ca:d4:
e5:a7:0e:31:07:7a:4b:50:c4:8b:c7:f5:c7:53:29:
ae:30:5d:ca:e2:1c:33:b5:06:36:fd:f1:e4:cc:55:
59:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:83:E0:97:7E:84:BD:51:01:03:37:52:80:73:52:1E:FF:8E:A8:BB
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:73:17:1d:d8:2d:51:0d:a6:af:8d:bb:c4:7e:32:8e:57:bb:
e6:94:84:ba:e0:51:4b:ad:b0:da:9e:1e:c4:b9:29:63:b0:96:
37:a3:20:95:16:f8:e0:a5:5c:f2:48:cc:88:c9:97:76:6b:f8:
c4:51:78:2f:64:a3:c8:ea:23:c8:c1:c0:08:13:22:1c:41:44:
62:48:e1:da:22:56:bd:f3:78:fc:b1:ad:ef:3e:81:bc:81:e9:
70:6d:77:ee:16:de:c9:25:e0:3d:be:e5:b0:c8:c9:67:1d:7a:
2e:c2:6a:b8:ee:34:46:2d:98:7a:fb:a1:60:1b:da:e2:54:a3:
5b:21:f7:81:2a:95:51:e4:e1:7a:77:c2:8d:22:d5:d9:da:4e:
4b:8f:8a:f6:5e:c5:5d:d9:9a:9b:0c:ac:b2:1e:14:40:9e:79:
b8:d8:86:4d:e4:68:3f:68:d3:ae:2c:72:db:92:8c:83:06:da:
29:1e:18:bf:20:65:d8:d4:16:92:4a:62:a8:6e:fa:20:34:4c:
8c:e5:b6:a8:a2:b5:ab:a9:67:33:15:71:f3:b2:1f:82:a1:06:
06:e8:a6:30:78:16:3d:d9:f5:38:68:fc:6b:20:51:57:34:43:
0d:27:61:cb:bf:49:5d:c1:e4:2e:81:b7:5b:39:14:bf:b3:71:
2f:10:56:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdgy123zsiAXnfxRDJYUAzxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzZWE1MDhhODViYzczYTlhYWEyMDNhOGE3YmFmOWMxNjJl
NmYzNmMwHhcNMjUwNjExMjEwMDI5WhcNMjUwNjEyMjEwMDI5WjAzMTEwLwYDVQQD
EygwMTgzZTA5NzdlODRiZDUxMDEwMzM3NTI4MDczNTIxZWZmOGVhOGJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzePBPayPe3k2pM8tUPctujyvNVVW
PrS+Az0qtVxTygBcN/d82S177xI3q75/daA1W6zK591Wq/X8ZxYX6Id3dAlMI5pj
W7p0JWK7B3EZoTDITnuCej+iWd9eg36mRIqi+4irunHlVRLPoUY3XcGrFP9/r9M0
siXYwGk17Y0CjYP4NBN5UD78x9itcTXgjpcTPBx1UEEPoao6GA6FBFY0tDQR3pER
z53lQIXtnWXQIknAqMLL9EDQzU5/Ozl5ksHQxj7qGBBvXuv8+0UplMqknHePHQl0
zoawhEd6w8ZvytTlpw4xB3pLUMSLx/XHUymuMF3K4hwztQY2/fHkzFVZvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAGD4Jd+hL1RAQM3UoBzUh7/jqi7MB8GA1UdIwQY
MBaAFAPqUIqFvHOpqqIDqKe6+cFi5vNsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAt
ZDcyNzA5MDVlOTIzLzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAtZDcyNzA5MDVlOTIz
LzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlXMXHdgt
UQ2mr427xH4yjle75pSEuuBRS62w2p4exLkpY7CWN6MglRb44KVc8kjMiMmXdmv4
xFF4L2SjyOojyMHACBMiHEFEYkjh2iJWvfN4/LGt7z6BvIHpcG137hbeySXgPb7l
sMjJZx16LsJquO40Ri2YevuhYBva4lSjWyH3gSqVUeThenfCjSLV2dpOS4+K9l7F
Xdmamwyssh4UQJ55uNiGTeRoP2jTrixy25KMgwbaKR4YvyBl2NQWkkpiqG76IDRM
jOW2qKK1q6lnMxVx87IfgqEGBuimMHgWPdn1OGj8ayBRVzRDDSdhy79JXcHkLoG3
WzkUv7NxLxBWpw==
-----END CERTIFICATE-----
Generated at Thu Jun 12 00:07:16 2025 by rpki-client