Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft
File: CgIUob8dOv0t1msjqZcxBrXTFso.mft (raw, json)
Hash identifier: OkHR6aSTcYfOiH+qc0wLlVcung4sjZJplDlFggMUFlg=
Subject key identifier: 7D:A0:B3:74:5E:4B:DD:1C:2D:7D:64:04:13:02:86:A6:5D:80:04:DF
Authority key identifier: 0A:02:14:A1:BF:1D:3A:FD:2D:D6:6B:23:A9:97:31:06:B5:D3:16:CA
Certificate issuer: /CN=0a0214a1bf1d3afd2dd66b23a9973106b5d316ca
Certificate serial: 01974B1F44FB618D14B44DA331F6B94CBE63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CgIUob8dOv0t1msjqZcxBrXTFso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft
Manifest number: 105F
Signing time: Sat 07 Jun 2025 16:00:29 +0000
Manifest this update: Sat 07 Jun 2025 16:00:29 +0000
Manifest next update: Sun 08 Jun 2025 16:00:29 +0000
Files and hashes: 1: CgIUob8dOv0t1msjqZcxBrXTFso.crl (hash: 2p8DIKOg32LgxbDD+Iedfh2B89s8EhSe3cID44StxRA=)
2: EaaXkbC8P0tMcWH8_B2AeHqJuik.roa (hash: Agyi8/XYUtn0V9u60ReeITYzaWhDJOT1A+JDHxK163o=)
3: iRncY0RPMdG6ZS1FNbvbNQvbM88.roa (hash: cZd3pDxm+3G7IN3N9+ceJiYJz5MHexdMYYiB+WqQjOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft
rsync://rpki.ripe.net/repository/DEFAULT/CgIUob8dOv0t1msjqZcxBrXTFso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 16:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:44:fb:61:8d:14:b4:4d:a3:31:f6:b9:4c:be:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a0214a1bf1d3afd2dd66b23a9973106b5d316ca
Validity
Not Before: Jun 7 16:00:29 2025 GMT
Not After : Jun 8 16:00:29 2025 GMT
Subject: CN=7da0b3745e4bdd1c2d7d6404130286a65d8004df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ae:9a:52:a2:f1:94:39:f1:fc:cf:80:60:50:
75:46:ae:50:de:9a:e7:34:76:b4:a6:6f:d6:26:ac:
7f:3b:e8:5e:f5:98:89:c9:ee:24:c6:9c:69:aa:02:
0e:85:92:3a:b2:16:0f:a6:69:74:15:29:97:d1:5e:
b2:ed:0d:a3:a3:2b:20:bb:86:68:ea:fe:ef:1c:6f:
40:52:bb:21:d3:99:2e:cf:51:6e:ab:d2:99:50:1a:
f7:08:78:46:d1:b7:6d:e6:89:61:9d:d6:ac:70:68:
15:ac:36:f8:17:b2:04:11:c2:c2:78:00:07:f1:0a:
5d:84:a1:53:4c:92:fe:71:a7:cb:2e:a1:7c:a3:2e:
2c:ef:22:23:7c:45:4c:9c:37:d4:ab:fa:82:1d:14:
30:5d:35:3c:b0:b8:d6:5a:7f:c9:49:ec:15:43:ef:
f4:63:f6:15:3d:c2:db:17:2e:c9:55:28:e8:f5:69:
8c:6d:a4:93:bc:f4:5a:ec:6a:72:bf:86:c6:85:b5:
5a:8c:6a:12:68:84:43:46:88:8d:c5:75:50:dd:1c:
b7:2a:57:e4:11:5f:b9:a7:21:2a:ae:dd:c8:b5:5c:
d1:b9:11:b9:be:62:37:e6:d8:61:cf:21:5c:82:dd:
dc:15:76:c4:b3:a2:3a:53:d7:c9:3b:c5:62:d4:0c:
b7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A0:B3:74:5E:4B:DD:1C:2D:7D:64:04:13:02:86:A6:5D:80:04:DF
X509v3 Authority Key Identifier:
keyid:0A:02:14:A1:BF:1D:3A:FD:2D:D6:6B:23:A9:97:31:06:B5:D3:16:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CgIUob8dOv0t1msjqZcxBrXTFso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:6a:72:8b:ab:37:5f:10:60:06:25:5b:9f:87:c0:7a:26:81:
05:9e:f5:64:9f:d0:a4:e2:92:cf:6a:82:e0:7a:32:50:55:9e:
65:89:c7:c8:f2:60:cf:35:cd:37:ed:5d:38:65:69:6e:2a:8c:
92:6a:d8:86:2a:7a:08:3d:d3:1c:20:fa:8c:2f:8e:8a:eb:7e:
a2:f3:49:a5:a7:95:6a:6f:9c:1f:c5:a6:18:fe:ab:b2:9f:2f:
9b:3a:d4:ed:2e:30:c9:ca:57:60:a3:55:3c:71:9c:2a:d5:67:
55:9e:ab:18:e9:5c:ab:6c:ea:14:cd:d5:1a:88:82:43:1d:5c:
bf:48:71:6d:1e:d9:be:bf:3b:22:39:53:af:51:e7:02:68:67:
1a:97:0e:4a:2f:e1:79:e8:c0:1e:cb:f2:23:87:a0:34:5f:a5:
0c:24:f2:50:17:0f:5d:be:be:bd:39:35:1a:1b:95:dc:76:99:
f4:dc:6f:fd:89:b6:cc:9b:20:cb:9a:8e:87:5e:d4:fb:ec:d3:
ba:2d:72:88:be:86:d4:61:c5:52:c0:d8:4c:85:7a:84:d3:53:
e5:b9:63:d5:d3:39:9d:d6:11:9b:71:41:01:45:99:06:f1:cd:
dd:e3:81:f0:db:0f:8e:e6:22:94:85:7d:11:5d:9d:fa:a6:9f:
c6:2e:90:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLH0T7YY0UtE2jMfa5TL5jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhMDIxNGExYmYxZDNhZmQyZGQ2NmIyM2E5OTczMTA2YjVk
MzE2Y2EwHhcNMjUwNjA3MTYwMDI5WhcNMjUwNjA4MTYwMDI5WjAzMTEwLwYDVQQD
Eyg3ZGEwYjM3NDVlNGJkZDFjMmQ3ZDY0MDQxMzAyODZhNjVkODAwNGRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAia6aUqLxlDnx/M+AYFB1Rq5Q3prn
NHa0pm/WJqx/O+he9ZiJye4kxpxpqgIOhZI6shYPpml0FSmX0V6y7Q2joysgu4Zo
6v7vHG9AUrsh05kuz1Fuq9KZUBr3CHhG0bdt5olhndascGgVrDb4F7IEEcLCeAAH
8QpdhKFTTJL+cafLLqF8oy4s7yIjfEVMnDfUq/qCHRQwXTU8sLjWWn/JSewVQ+/0
Y/YVPcLbFy7JVSjo9WmMbaSTvPRa7Gpyv4bGhbVajGoSaIRDRoiNxXVQ3Ry3Klfk
EV+5pyEqrt3ItVzRuRG5vmI35thhzyFcgt3cFXbEs6I6U9fJO8Vi1Ay3mwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH2gs3ReS90cLX1kBBMChqZdgATfMB8GA1UdIwQY
MBaAFAoCFKG/HTr9LdZrI6mXMQa10xbKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2dJVW9iOGRPdjB0MW1zanFaY3hCclhURnNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS8wNGVjYzAtNjYzYy00NjBlLTkyMGQt
MzMyZWU1NDI1YzdhLzEvQ2dJVW9iOGRPdjB0MW1zanFaY3hCclhURnNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOS8wNGVjYzAtNjYzYy00NjBlLTkyMGQtMzMyZWU1NDI1Yzdh
LzEvQ2dJVW9iOGRPdjB0MW1zanFaY3hCclhURnNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmWpyi6s3
XxBgBiVbn4fAeiaBBZ71ZJ/QpOKSz2qC4HoyUFWeZYnHyPJgzzXNN+1dOGVpbiqM
kmrYhip6CD3THCD6jC+Oiut+ovNJpaeVam+cH8WmGP6rsp8vmzrU7S4wycpXYKNV
PHGcKtVnVZ6rGOlcq2zqFM3VGoiCQx1cv0hxbR7Zvr87IjlTr1HnAmhnGpcOSi/h
eejAHsvyI4egNF+lDCTyUBcPXb6+vTk1GhuV3HaZ9Nxv/Ym2zJsgy5qOh17U++zT
ui1yiL6G1GHFUsDYTIV6hNNT5blj1dM5ndYRm3FBAUWZBvHN3eOB8NsPjuYilIV9
EV2d+qafxi6Qsg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 00:31:58 2025 by rpki-client