Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
File: 0q5eM4eU5g1di1I72yto7ErHYs4.mft (raw, json)
Hash identifier: 7lJSwFFJil18Lw/CsA264ZGOWxcQXKHbPVXmuudR1EU=
Subject key identifier: 37:20:75:21:D6:89:9F:1F:D1:23:7C:C3:72:BE:C3:C8:72:DA:A9:F2
Authority key identifier: D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
Certificate issuer: /CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Certificate serial: 01974D0DF747988B0002C70DD308240EF9B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
Manifest number: 1580
Signing time: Sun 08 Jun 2025 01:00:50 +0000
Manifest this update: Sun 08 Jun 2025 01:00:50 +0000
Manifest next update: Mon 09 Jun 2025 01:00:50 +0000
Files and hashes: 1: 0q5eM4eU5g1di1I72yto7ErHYs4.crl (hash: cM7i5edXhMwDAtodFOe2N+geg9OZ6z5u02XA257Xw8M=)
2: 5JInjtJs-s2-yK_dBCuc4HDNHSk.roa (hash: JUxQOg0RzN7jHCpHsSZf+phi3+AooD9Ty47K9VLPoKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0d:f7:47:98:8b:00:02:c7:0d:d3:08:24:0e:f9:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Validity
Not Before: Jun 8 01:00:50 2025 GMT
Not After : Jun 9 01:00:50 2025 GMT
Subject: CN=37207521d6899f1fd1237cc372bec3c872daa9f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b7:6f:5d:67:58:a1:e0:ee:90:59:d8:ff:44:
42:4b:ae:6f:f5:52:25:d9:84:de:02:c2:c8:da:44:
87:ce:c1:24:0e:f7:5f:fd:68:9e:da:88:14:50:c4:
10:b8:83:24:3b:45:bd:7c:33:6a:a6:c8:32:0a:94:
dd:73:6d:d2:ef:2b:b4:27:06:92:7c:dc:bb:51:2f:
9f:58:71:52:26:36:b0:5e:26:64:8c:e4:fa:98:3e:
65:bb:bd:c0:a4:2b:45:8d:79:b7:a0:1f:b6:c8:33:
c6:aa:8f:7f:20:af:b6:36:e0:f9:61:be:45:87:63:
46:17:1c:f2:d9:a4:e8:41:3c:0d:49:78:bd:27:db:
3b:fa:9f:f8:6d:40:31:3e:de:c9:97:a2:23:eb:04:
91:c2:d4:73:67:84:cc:9b:52:53:a8:ed:35:ba:c1:
9a:d0:81:99:7c:89:b5:c8:76:59:81:58:40:ce:bb:
48:04:56:4c:ce:ba:06:77:2f:b7:cd:81:de:31:62:
cb:46:85:4f:12:f4:70:f7:29:b4:b2:2d:7d:70:b3:
9a:45:66:0f:86:0c:e9:19:95:e3:ed:e3:71:b6:03:
0f:f5:bf:60:af:ae:0c:c1:fd:45:38:7a:e1:d1:6d:
bc:96:47:b5:5c:38:29:e6:fa:85:d3:f8:01:6e:bf:
b7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:20:75:21:D6:89:9F:1F:D1:23:7C:C3:72:BE:C3:C8:72:DA:A9:F2
X509v3 Authority Key Identifier:
keyid:D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:d1:3c:25:a6:2c:cd:9c:1c:b4:16:d2:d4:96:19:3c:99:6f:
8e:7c:4c:24:b1:c6:ad:72:af:c9:69:8c:88:ff:ea:53:93:b0:
9b:cd:53:e2:f4:37:40:89:db:17:46:18:e1:66:06:fa:11:bb:
57:23:99:89:b4:c3:f7:d9:37:a1:9e:aa:d4:de:93:cd:ed:96:
15:54:61:eb:6a:8e:22:3d:d5:9c:ef:fa:57:7a:fc:6c:2b:a5:
b5:87:34:15:12:2b:5f:34:ec:21:fd:b9:b9:ed:d2:f6:4d:37:
c9:bc:0f:03:61:0b:18:40:b3:f4:be:21:47:ef:3f:25:1a:68:
eb:c1:0f:08:a1:80:d5:f2:27:1d:96:44:65:a8:ca:5b:22:d1:
e9:5a:80:9c:18:de:4c:32:2c:6f:76:82:aa:8d:5b:07:19:7a:
a5:99:c6:d6:d9:b0:6b:c0:30:ec:15:84:da:c1:b5:55:f7:08:
ce:61:68:66:72:ff:c3:19:cb:42:d5:7d:5e:49:0e:32:ed:68:
02:be:fb:94:71:40:26:4e:03:70:df:25:72:27:bb:75:d7:de:
65:ad:a7:7a:83:30:23:f4:69:0b:89:37:db:c3:51:2d:6e:7c:
97:08:39:fa:50:d5:c1:28:ea:39:84:98:18:ae:a6:af:ea:e6:
d4:f4:34:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdNDfdHmIsAAscN0wgkDvm4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyYWU1ZTMzODc5NGU2MGQ1ZDhiNTIzYmRiMmI2OGVjNGFj
NzYyY2UwHhcNMjUwNjA4MDEwMDUwWhcNMjUwNjA5MDEwMDUwWjAzMTEwLwYDVQQD
EygzNzIwNzUyMWQ2ODk5ZjFmZDEyMzdjYzM3MmJlYzNjODcyZGFhOWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7dvXWdYoeDukFnY/0RCS65v9VIl
2YTeAsLI2kSHzsEkDvdf/Wie2ogUUMQQuIMkO0W9fDNqpsgyCpTdc23S7yu0JwaS
fNy7US+fWHFSJjawXiZkjOT6mD5lu73ApCtFjXm3oB+2yDPGqo9/IK+2NuD5Yb5F
h2NGFxzy2aToQTwNSXi9J9s7+p/4bUAxPt7Jl6Ij6wSRwtRzZ4TMm1JTqO01usGa
0IGZfIm1yHZZgVhAzrtIBFZMzroGdy+3zYHeMWLLRoVPEvRw9ym0si19cLOaRWYP
hgzpGZXj7eNxtgMP9b9gr64Mwf1FOHrh0W28lke1XDgp5vqF0/gBbr+32wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDcgdSHWiZ8f0SN8w3K+w8hy2qnyMB8GA1UdIwQY
MBaAFNKuXjOHlOYNXYtSO9sraOxKx2LOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYt
OGQ4ZTllYTE0MzI1LzEvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYtOGQ4ZTllYTE0MzI1
LzEvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZtE8JaYs
zZwctBbS1JYZPJlvjnxMJLHGrXKvyWmMiP/qU5Owm81T4vQ3QInbF0YY4WYG+hG7
VyOZibTD99k3oZ6q1N6Tze2WFVRh62qOIj3VnO/6V3r8bCultYc0FRIrXzTsIf25
ue3S9k03ybwPA2ELGECz9L4hR+8/JRpo68EPCKGA1fInHZZEZajKWyLR6VqAnBje
TDIsb3aCqo1bBxl6pZnG1tmwa8Aw7BWE2sG1VfcIzmFoZnL/wxnLQtV9XkkOMu1o
Ar77lHFAJk4DcN8lcie7ddfeZa2neoMwI/RpC4k328NRLW58lwg5+lDVwSjqOYSY
GK6mr+rm1PQ06A==
-----END CERTIFICATE-----
Generated at Sun Jun 8 04:02:25 2025 by rpki-client