Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
File: 5PKoZiAvS4y8MzgtboLYHYlkyA4.mft (raw, json)
Hash identifier: N365evqP9wfUA7iL3H3DHDT8PCUZ6p+PWXQYWVhdbM0=
Subject key identifier: 7E:6C:03:0C:DF:BF:1F:9E:BE:ED:5C:07:B9:8C:8F:DC:12:20:F1:EE
Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
Certificate issuer: /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Certificate serial: 01976773025E41FCC0A920A2FF710B5B7C6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
Manifest number: 158C
Signing time: Fri 13 Jun 2025 04:01:19 +0000
Manifest this update: Fri 13 Jun 2025 04:01:19 +0000
Manifest next update: Sat 14 Jun 2025 04:01:19 +0000
Files and hashes: 1: 5PKoZiAvS4y8MzgtboLYHYlkyA4.crl (hash: vs9BPICZhVVA8rL/czZE+67jg/2+r+yJ578kUS88SL8=)
2: DwTC30oaWKwssRCXrBoUlk9Q5bw.roa (hash: ijzA7vHvds3BxvrPMvxvhrjeIw/3n+d/qJzXMvHrD7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:67:73:02:5e:41:fc:c0:a9:20:a2:ff:71:0b:5b:7c:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Validity
Not Before: Jun 13 04:01:19 2025 GMT
Not After : Jun 14 04:01:19 2025 GMT
Subject: CN=7e6c030cdfbf1f9ebeed5c07b98c8fdc1220f1ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7c:58:18:ef:2a:ae:77:71:c8:6e:fc:2d:28:
b4:c5:22:14:f5:59:45:6a:ce:7c:57:ac:16:91:69:
8b:7d:48:d8:b3:59:65:2c:83:46:18:47:15:45:fd:
a0:e5:08:4e:5e:8d:a5:a9:7b:f9:a9:61:a1:b8:81:
2e:40:db:0d:c6:fe:99:52:b0:47:d8:a1:41:2d:dc:
40:93:70:53:e0:3b:45:33:7c:87:db:e6:5f:27:79:
8c:c8:65:ee:eb:a9:78:b7:a7:c5:36:9f:2c:44:eb:
9a:54:41:11:f3:95:c9:17:10:31:a5:66:24:5e:2e:
58:58:6c:b3:53:df:69:42:6f:58:5c:06:99:5f:57:
6f:56:98:ba:88:1b:6e:53:d7:e0:73:82:57:a2:c0:
10:30:d3:e6:fb:84:52:cc:61:3a:ff:48:45:af:52:
7d:21:35:87:0a:0c:38:ee:3c:cd:e9:06:00:95:b6:
e8:0c:b9:90:bb:e1:87:28:be:c8:0a:5c:d6:29:b5:
e6:b7:40:ba:c2:ff:97:ec:a5:9d:1b:5c:62:a6:a7:
97:29:e7:b0:71:e3:cd:22:a3:c8:f6:88:a7:89:48:
6f:20:37:c0:f4:21:7c:db:32:0a:1b:68:9c:a4:2e:
21:16:1d:90:a7:6a:2b:2d:b0:66:d9:4a:ec:9a:7e:
25:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:6C:03:0C:DF:BF:1F:9E:BE:ED:5C:07:B9:8C:8F:DC:12:20:F1:EE
X509v3 Authority Key Identifier:
keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:aa:a5:a0:f5:f3:90:bb:40:88:c6:d3:c0:c3:82:b4:5c:a0:
5f:10:c1:5b:05:ae:88:6b:06:70:14:00:ef:c1:a4:ba:09:95:
00:ed:53:a6:b1:df:4d:b8:68:6f:07:46:99:d9:42:d4:f0:92:
eb:de:6f:99:03:c8:e1:e6:79:97:fb:86:d3:0d:f7:fa:37:ad:
7c:4e:78:0a:3b:f1:f4:75:f8:ef:70:0c:06:22:ce:6e:99:46:
18:99:5f:2d:17:ad:5e:77:44:d6:55:f8:ee:01:4e:02:e4:72:
fe:e2:fa:bf:16:09:67:b8:cb:62:21:0f:05:a2:c8:9f:26:34:
ce:28:fb:18:c7:9a:f2:2f:79:80:8f:a2:fe:96:60:4a:eb:f3:
d8:f3:dd:5f:d0:a1:85:b7:25:f0:29:8f:59:f6:6c:38:17:d3:
a9:35:b8:ca:a9:2e:06:4d:ec:86:9b:c8:98:16:6c:92:ab:c8:
4d:9c:50:95:2a:0e:4d:27:33:92:a5:6b:e6:c8:fd:86:c6:44:
2e:6b:88:7c:fe:62:83:ae:e4:77:81:a9:b4:05:41:06:0e:27:
e9:3e:d0:7d:8c:11:d8:bd:b0:27:82:e4:97:74:b1:e7:c0:ce:
30:86:dc:af:ca:67:78:7f:ac:99:2e:01:6f:1a:49:f4:46:b6:
ba:01:86:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdncwJeQfzAqSCi/3ELW3xuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ZjJhODY2MjAyZjRiOGNiYzMzMzgyZDZlODJkODFkODk2
NGM4MGUwHhcNMjUwNjEzMDQwMTE5WhcNMjUwNjE0MDQwMTE5WjAzMTEwLwYDVQQD
Eyg3ZTZjMDMwY2RmYmYxZjllYmVlZDVjMDdiOThjOGZkYzEyMjBmMWVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2HxYGO8qrndxyG78LSi0xSIU9VlF
as58V6wWkWmLfUjYs1llLINGGEcVRf2g5QhOXo2lqXv5qWGhuIEuQNsNxv6ZUrBH
2KFBLdxAk3BT4DtFM3yH2+ZfJ3mMyGXu66l4t6fFNp8sROuaVEER85XJFxAxpWYk
Xi5YWGyzU99pQm9YXAaZX1dvVpi6iBtuU9fgc4JXosAQMNPm+4RSzGE6/0hFr1J9
ITWHCgw47jzN6QYAlbboDLmQu+GHKL7IClzWKbXmt0C6wv+X7KWdG1xipqeXKeew
cePNIqPI9oiniUhvIDfA9CF82zIKG2icpC4hFh2Qp2orLbBm2Ursmn4lFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH5sAwzfvx+evu1cB7mMj9wSIPHuMB8GA1UdIwQY
MBaAFOTyqGYgL0uMvDM4LW6C2B2JZMgOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVBLb1ppQXZTNHk4TXpndGJvTFlIWWxreUE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy84NzkxYTEtZTY3OS00NjYzLWEyZGEt
MWE1MTNkZjA2OWZjLzEvNVBLb1ppQXZTNHk4TXpndGJvTFlIWWxreUE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy84NzkxYTEtZTY3OS00NjYzLWEyZGEtMWE1MTNkZjA2OWZj
LzEvNVBLb1ppQXZTNHk4TXpndGJvTFlIWWxreUE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEaqloPXz
kLtAiMbTwMOCtFygXxDBWwWuiGsGcBQA78GkugmVAO1TprHfTbhobwdGmdlC1PCS
695vmQPI4eZ5l/uG0w33+jetfE54Cjvx9HX473AMBiLObplGGJlfLRetXndE1lX4
7gFOAuRy/uL6vxYJZ7jLYiEPBaLInyY0zij7GMea8i95gI+i/pZgSuvz2PPdX9Ch
hbcl8CmPWfZsOBfTqTW4yqkuBk3shpvImBZskqvITZxQlSoOTSczkqVr5sj9hsZE
LmuIfP5ig67kd4GptAVBBg4n6T7QfYwR2L2wJ4Lkl3Sx58DOMIbcr8pneH+smS4B
bxpJ9Ea2ugGGCw==
-----END CERTIFICATE-----
Generated at Fri Jun 13 07:58:56 2025 by rpki-client