Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
File: sFcIRcI56ZkcibxcUEMekIeGDE0.mft (raw, json)
Hash identifier: xXoZup9S4HHHR9pXq48t36d5ytFRamp73HKNCUmPHoY=
Subject key identifier: 72:7A:FE:79:76:0E:D3:6C:60:9E:D2:D8:66:3A:C3:C7:8A:1A:1E:F7
Authority key identifier: B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
Certificate issuer: /CN=b0570845c239e9991c89bc5c50431e9087860c4d
Certificate serial: 0197CBA78870BEB6419935998ED712E9E4B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
Manifest number: 3A
Signing time: Wed 02 Jul 2025 15:00:43 +0000
Manifest this update: Wed 02 Jul 2025 15:00:43 +0000
Manifest next update: Thu 03 Jul 2025 15:00:43 +0000
Files and hashes: 1: n2C0sjvTrbF7unBNdsXDONkHwzQ.roa (hash: jLl0pdc61DzddqyTuR7Io8Gkj/xajAEL7bTJB3EuzC8=)
2: sFcIRcI56ZkcibxcUEMekIeGDE0.crl (hash: vsRG+RNBX/HGkrwfAf2eYNBaiT9dpxoSp/yzqWOlNRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 15:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:a7:88:70:be:b6:41:99:35:99:8e:d7:12:e9:e4:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0570845c239e9991c89bc5c50431e9087860c4d
Validity
Not Before: Jul 2 15:00:43 2025 GMT
Not After : Jul 3 15:00:43 2025 GMT
Subject: CN=727afe79760ed36c609ed2d8663ac3c78a1a1ef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b7:00:8a:3d:01:88:b0:3a:e0:e3:c3:cd:8e:
c4:ed:c3:b3:e9:c0:60:b3:93:9b:58:f5:3d:ff:94:
79:84:85:fd:48:d8:6f:af:8c:bc:b5:94:fe:a2:8b:
cf:16:dc:66:28:db:d9:25:ea:2f:bf:6d:03:a4:fd:
27:e1:a4:7e:fb:f1:d7:36:52:62:7e:a6:b2:0f:a3:
b1:33:8f:13:bb:1c:4b:4a:b9:aa:6d:c6:7a:de:fc:
88:34:07:85:8c:02:9e:72:cd:7a:5b:f3:d1:be:5f:
b7:84:63:88:75:09:e8:b6:4e:7f:53:77:bb:75:b1:
5f:e1:aa:2d:a4:62:9d:0b:b0:4f:19:82:66:be:b6:
1e:d4:d4:90:75:e3:92:9f:84:7f:d6:31:35:b0:87:
e2:e2:d8:f3:66:d3:e9:cd:31:bd:b2:a4:01:10:32:
3a:80:ea:7a:22:b1:8c:7f:40:d6:5e:48:f8:8c:61:
8d:1b:5d:80:23:b7:6c:68:58:6c:8e:ba:31:12:c6:
30:bc:b7:8e:96:de:7f:75:3b:8e:29:11:c4:e0:ef:
ba:4f:c3:30:48:94:d1:16:f5:a4:9e:b8:c7:c2:98:
f9:cc:63:42:6e:9a:c0:91:18:8a:45:3b:c8:93:28:
19:f0:9c:52:20:bb:71:27:ee:dd:6a:7f:98:41:19:
c5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:7A:FE:79:76:0E:D3:6C:60:9E:D2:D8:66:3A:C3:C7:8A:1A:1E:F7
X509v3 Authority Key Identifier:
keyid:B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:35:f2:e2:97:76:1b:09:6e:29:25:ad:39:10:91:9c:18:fd:
ce:74:2d:38:0c:d4:59:c6:2a:8a:d4:dd:ba:fe:30:f0:c0:97:
b4:a5:e0:fa:64:70:13:c9:05:8d:a7:b9:3f:42:63:96:b2:56:
5b:77:06:b5:d7:56:9b:e2:b1:22:68:68:55:3b:0c:91:1c:7b:
7a:7d:b4:96:22:a2:3e:c3:10:2a:95:88:88:33:05:87:f0:bc:
e0:eb:91:9e:3c:c5:34:ca:74:d4:89:90:01:ee:88:7e:14:5b:
2e:f9:9b:91:c9:36:3e:47:31:04:d1:aa:e7:2d:29:2d:8c:a8:
6f:51:56:08:b3:68:96:1c:d6:8b:69:81:ba:ad:69:16:81:33:
df:04:ac:4f:a8:54:87:2f:0a:46:50:a0:43:6d:dd:7d:0d:32:
3d:0c:18:08:f3:82:e3:a5:89:5d:49:65:53:c8:ae:b8:08:4e:
8f:12:29:af:fa:85:5b:4c:4f:8d:26:eb:dd:1c:0e:4c:92:b2:
93:2b:70:dc:07:f2:e3:76:db:10:49:08:17:60:52:13:8c:ce:
30:57:03:e5:00:be:2f:56:2b:49:bb:9f:7d:eb:8b:29:ae:a0:
ad:fc:80:18:75:f9:ec:31:e0:a9:5f:d9:cd:fd:79:95:e6:40:
75:2f:a1:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfLp4hwvrZBmTWZjtcS6eS2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwNTcwODQ1YzIzOWU5OTkxYzg5YmM1YzUwNDMxZTkwODc4
NjBjNGQwHhcNMjUwNzAyMTUwMDQzWhcNMjUwNzAzMTUwMDQzWjAzMTEwLwYDVQQD
Eyg3MjdhZmU3OTc2MGVkMzZjNjA5ZWQyZDg2NjNhYzNjNzhhMWExZWY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7cAij0BiLA64OPDzY7E7cOz6cBg
s5ObWPU9/5R5hIX9SNhvr4y8tZT+oovPFtxmKNvZJeovv20DpP0n4aR++/HXNlJi
fqayD6OxM48TuxxLSrmqbcZ63vyINAeFjAKecs16W/PRvl+3hGOIdQnotk5/U3e7
dbFf4aotpGKdC7BPGYJmvrYe1NSQdeOSn4R/1jE1sIfi4tjzZtPpzTG9sqQBEDI6
gOp6IrGMf0DWXkj4jGGNG12AI7dsaFhsjroxEsYwvLeOlt5/dTuOKRHE4O+6T8Mw
SJTRFvWknrjHwpj5zGNCbprAkRiKRTvIkygZ8JxSILtxJ+7dan+YQRnF6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHJ6/nl2DtNsYJ7S2GY6w8eKGh73MB8GA1UdIwQY
MBaAFLBXCEXCOemZHIm8XFBDHpCHhgxNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0ZjSVJjSTU2WmtjaWJ4Y1VFTWVrSWVHREUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8xZTdjNDgtZjhjMi00Njc5LWI3NzEt
NDZjYTI2YWZmNTQ1LzEvc0ZjSVJjSTU2WmtjaWJ4Y1VFTWVrSWVHREUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy8xZTdjNDgtZjhjMi00Njc5LWI3NzEtNDZjYTI2YWZmNTQ1
LzEvc0ZjSVJjSTU2WmtjaWJ4Y1VFTWVrSWVHREUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoDXy4pd2
GwluKSWtORCRnBj9znQtOAzUWcYqitTduv4w8MCXtKXg+mRwE8kFjae5P0JjlrJW
W3cGtddWm+KxImhoVTsMkRx7en20liKiPsMQKpWIiDMFh/C84OuRnjzFNMp01ImQ
Ae6IfhRbLvmbkck2PkcxBNGq5y0pLYyob1FWCLNolhzWi2mBuq1pFoEz3wSsT6hU
hy8KRlCgQ23dfQ0yPQwYCPOC46WJXUllU8iuuAhOjxIpr/qFW0xPjSbr3RwOTJKy
kytw3Afy43bbEEkIF2BSE4zOMFcD5QC+L1YrSbuffeuLKa6grfyAGHX57DHgqV/Z
zf15leZAdS+h/w==
-----END CERTIFICATE-----
Generated at Thu Jul 3 01:11:35 2025 by rpki-client