Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
File: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft (raw, json)
Hash identifier: /nsGrEQlPDXz/lTyPYomDosEKXlQv8Gs24MBi3xHQNA=
Subject key identifier: 9E:B9:3C:6E:1A:5C:6E:A4:44:E6:38:CC:62:CF:5D:61:3A:83:21:5D
Authority key identifier: AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82
Certificate issuer: /CN=af9b2cefe389a1ae49756edc2b3293e58830cb82
Certificate serial: 019750EAC8E40A2A9DB0F0F02494EDB295C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
Manifest number: 025D
Signing time: Sun 08 Jun 2025 19:00:53 +0000
Manifest this update: Sun 08 Jun 2025 19:00:53 +0000
Manifest next update: Mon 09 Jun 2025 19:00:53 +0000
Files and hashes: 1: HlRrYVzs80ZJA5_JZ3csPGXIkEY.roa (hash: 2WA22A/U8/r4tDX+UDoYIX+va554GCdeOFSCw5V25j8=)
2: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl (hash: capr+zi1HB1bive/WWt5qKIwPd9InJVqesFa+k0L6to=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:ea:c8:e4:0a:2a:9d:b0:f0:f0:24:94:ed:b2:95:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af9b2cefe389a1ae49756edc2b3293e58830cb82
Validity
Not Before: Jun 8 19:00:53 2025 GMT
Not After : Jun 9 19:00:53 2025 GMT
Subject: CN=9eb93c6e1a5c6ea444e638cc62cf5d613a83215d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7d:ab:be:b9:23:8d:b4:e5:29:f7:5f:91:44:
11:95:9d:fd:94:f1:39:0e:b7:87:22:94:98:6d:14:
39:6e:8f:17:2a:41:1e:ec:b8:3c:eb:e2:dd:88:6a:
f8:6e:f5:e6:ee:fa:fd:07:28:bc:f8:bf:19:8b:40:
d2:98:8a:4b:c7:27:41:fe:2c:b2:b6:a7:00:98:fc:
b0:25:11:1b:54:c5:a0:07:95:65:c8:09:1a:a5:af:
74:26:4c:e5:9f:6e:d9:77:50:41:50:84:95:33:55:
4b:6f:bc:fc:0a:2f:e7:87:f9:c2:69:f2:b5:37:1e:
83:be:c9:5d:f2:3c:a0:6f:40:58:69:d2:51:b4:e0:
2a:33:c2:0b:94:6f:25:9e:f5:5f:b2:c6:a4:fd:a3:
4b:8c:c6:a1:99:88:12:c0:f6:ee:bb:16:be:20:21:
ab:24:e1:8f:93:6d:9d:1c:a6:a5:54:c0:e9:ba:e3:
41:21:ff:e3:55:79:7b:24:46:0d:87:92:1a:bd:4b:
92:ed:dd:e2:ba:8f:bb:7f:18:bf:80:22:7c:a2:cc:
f2:7d:4d:c3:bd:ed:5f:de:42:64:39:50:07:9f:6b:
dd:78:57:b1:4b:31:4f:e7:83:9c:e7:36:8a:92:b2:
24:9e:d8:04:ee:03:1b:f3:4b:fc:1e:a1:9e:e7:db:
46:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:B9:3C:6E:1A:5C:6E:A4:44:E6:38:CC:62:CF:5D:61:3A:83:21:5D
X509v3 Authority Key Identifier:
keyid:AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:cd:49:e9:aa:2a:31:cf:cb:21:e5:7a:20:fd:25:98:02:8c:
3c:8b:44:2a:7e:43:f5:06:e3:5b:79:fd:80:d6:26:4e:8b:86:
ef:48:aa:de:32:3c:2f:f1:1c:63:8b:e4:79:5a:ca:75:af:41:
bf:73:0d:4a:74:93:44:ef:99:14:4f:2d:17:49:eb:41:eb:3e:
27:18:22:22:5b:eb:e9:90:c6:ca:f1:4b:16:25:8f:fb:fa:2a:
b9:60:bd:02:e1:08:42:76:3a:34:28:69:66:36:32:f9:1e:9a:
00:fa:92:03:8f:9f:18:77:a9:08:74:ef:8a:22:e3:33:26:71:
d4:08:a3:f1:67:77:30:ee:e5:87:4b:8c:0f:2f:6d:82:15:77:
3c:34:1d:29:9e:bc:fa:ca:b2:95:c7:96:d9:6d:eb:3e:de:06:
02:e4:28:b0:61:98:0a:4d:a0:86:3e:3b:21:f0:cb:60:34:3f:
97:c1:e0:0e:14:c0:91:b5:84:7b:6c:53:b4:09:27:1e:4f:b1:
46:bb:62:46:5a:5f:04:0a:50:5a:6c:b4:cf:a2:a6:89:3d:dd:
03:1e:e8:a3:e3:6c:f4:07:9b:e1:c8:f4:fd:a5:be:2b:98:6c:
dc:72:e0:f8:94:5d:1d:bf:9b:df:00:59:bb:0e:bb:f1:ed:e5:
83:be:6b:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQ6sjkCiqdsPDwJJTtspXGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmOWIyY2VmZTM4OWExYWU0OTc1NmVkYzJiMzI5M2U1ODgz
MGNiODIwHhcNMjUwNjA4MTkwMDUzWhcNMjUwNjA5MTkwMDUzWjAzMTEwLwYDVQQD
Eyg5ZWI5M2M2ZTFhNWM2ZWE0NDRlNjM4Y2M2MmNmNWQ2MTNhODMyMTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs32rvrkjjbTlKfdfkUQRlZ39lPE5
DreHIpSYbRQ5bo8XKkEe7Lg86+LdiGr4bvXm7vr9Byi8+L8Zi0DSmIpLxydB/iyy
tqcAmPywJREbVMWgB5VlyAkapa90Jkzln27Zd1BBUISVM1VLb7z8Ci/nh/nCafK1
Nx6Dvsld8jygb0BYadJRtOAqM8ILlG8lnvVfssak/aNLjMahmYgSwPbuuxa+ICGr
JOGPk22dHKalVMDpuuNBIf/jVXl7JEYNh5IavUuS7d3iuo+7fxi/gCJ8oszyfU3D
ve1f3kJkOVAHn2vdeFexSzFP54Oc5zaKkrIkntgE7gMb80v8HqGe59tGrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ65PG4aXG6kROY4zGLPXWE6gyFdMB8GA1UdIwQY
MBaAFK+bLO/jiaGuSXVu3Csyk+WIMMuCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjVzczctT0pvYTVKZFc3Y0t6S1Q1WWd3eTRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9iZjBiZmUtOTU1NC00YjdlLTk1ZGEt
NDY5NjE5ZDRlY2RiLzEvcjVzczctT0pvYTVKZFc3Y0t6S1Q1WWd3eTRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9iZjBiZmUtOTU1NC00YjdlLTk1ZGEtNDY5NjE5ZDRlY2Ri
LzEvcjVzczctT0pvYTVKZFc3Y0t6S1Q1WWd3eTRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVs1J6aoq
Mc/LIeV6IP0lmAKMPItEKn5D9QbjW3n9gNYmTouG70iq3jI8L/EcY4vkeVrKda9B
v3MNSnSTRO+ZFE8tF0nrQes+JxgiIlvr6ZDGyvFLFiWP+/oquWC9AuEIQnY6NChp
ZjYy+R6aAPqSA4+fGHepCHTviiLjMyZx1Aij8Wd3MO7lh0uMDy9tghV3PDQdKZ68
+sqylceW2W3rPt4GAuQosGGYCk2ghj47IfDLYDQ/l8HgDhTAkbWEe2xTtAknHk+x
RrtiRlpfBApQWmy0z6KmiT3dAx7oo+Ns9Aeb4cj0/aW+K5hs3HLg+JRdHb+b3wBZ
uw678e3lg75rWQ==
-----END CERTIFICATE-----
Generated at Mon Jun 9 00:55:27 2025 by rpki-client