Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
File: c4DHWfVY-ca-iN0iakOdmcnqzww.mft (raw, json)
Hash identifier: NhRVVjBvNuQi9O+otoAyMZtZzMpdKOKqkFFvcxnrR3o=
Subject key identifier: 73:AA:75:BE:89:25:45:B0:DA:57:72:47:45:B3:1B:51:32:C2:24:C0
Authority key identifier: 73:80:C7:59:F5:58:F9:C6:BE:88:DD:22:6A:43:9D:99:C9:EA:CF:0C
Certificate issuer: /CN=7380c759f558f9c6be88dd226a439d99c9eacf0c
Certificate serial: 01974E576DE8F8C30EAF9F1FC21EE369B7CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
Manifest number: 0CB0
Signing time: Sun 08 Jun 2025 07:00:41 +0000
Manifest this update: Sun 08 Jun 2025 07:00:41 +0000
Manifest next update: Mon 09 Jun 2025 07:00:41 +0000
Files and hashes: 1: RBq_sIlJapW_qBhhOYs3cfjmb6g.roa (hash: fg25CTdh4wWfSSlLDFZZPAEIB6IEQNMofjk6UtMoVYc=)
2: c4DHWfVY-ca-iN0iakOdmcnqzww.crl (hash: 4J0VVr47S16EWVqiizXoSZvH1oV8YG5daOmSSoroGdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:6d:e8:f8:c3:0e:af:9f:1f:c2:1e:e3:69:b7:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7380c759f558f9c6be88dd226a439d99c9eacf0c
Validity
Not Before: Jun 8 07:00:41 2025 GMT
Not After : Jun 9 07:00:41 2025 GMT
Subject: CN=73aa75be892545b0da57724745b31b5132c224c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:bf:7c:f4:67:32:2d:83:a5:97:27:a4:d2:b0:
9b:c8:6d:b7:53:ed:3c:39:50:4f:13:5e:26:6a:00:
d5:65:e4:e0:c3:dd:68:a1:31:3b:32:a0:9e:c5:15:
aa:83:0e:42:e6:42:86:45:56:6b:9c:8d:d2:de:08:
ec:b8:49:11:0c:a7:bb:5e:ba:fd:73:55:38:57:5b:
4e:51:51:95:17:60:e3:75:1a:04:4d:b1:0c:e7:38:
83:4c:fc:cf:a0:d5:7a:99:ee:7b:45:b4:39:95:64:
07:19:b6:90:4a:90:7b:bf:dc:fa:98:ec:20:34:49:
65:57:78:93:ff:bc:17:ea:13:d9:41:c0:57:57:9b:
85:17:48:82:7f:31:31:34:a8:46:06:dd:0b:34:75:
a4:bb:a1:f3:fc:08:17:10:fc:5a:15:2c:8f:85:c4:
9c:19:d1:ae:b0:d7:9d:48:d6:4c:70:15:56:14:a1:
70:13:9b:ff:66:a9:be:89:e9:64:c9:3d:61:b0:78:
13:26:00:36:8f:3d:ee:63:98:cc:64:39:d7:3c:b2:
1f:c9:7d:84:9b:c3:3b:0f:0b:ce:f9:cf:f8:27:90:
5e:b6:6d:9e:2c:5f:26:9e:3b:10:bb:e9:22:05:f3:
ec:cc:7b:c5:88:1e:69:57:07:5e:f3:d7:cf:09:6f:
8e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:AA:75:BE:89:25:45:B0:DA:57:72:47:45:B3:1B:51:32:C2:24:C0
X509v3 Authority Key Identifier:
keyid:73:80:C7:59:F5:58:F9:C6:BE:88:DD:22:6A:43:9D:99:C9:EA:CF:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:6f:08:e6:a6:ed:79:ea:14:da:02:ce:77:9e:aa:0d:f4:28:
cb:17:8e:6d:83:77:b5:91:d8:93:28:5d:be:b6:9a:81:a3:a7:
55:ba:8d:40:67:29:93:1d:0a:fa:71:f7:d9:0e:94:da:9b:62:
be:e1:f0:04:25:bd:d6:42:bd:cf:c7:26:d7:96:51:98:28:5b:
4d:83:96:dc:3c:ff:44:94:89:c4:39:89:ee:19:79:19:a7:80:
b1:77:52:83:54:0b:70:4d:97:d8:23:79:09:ce:7f:e2:82:2f:
67:1f:3d:29:82:36:1c:e7:90:56:29:6e:81:84:55:b9:f8:db:
70:c8:ea:9c:cb:b7:ab:13:10:1a:61:83:89:4b:d6:a6:b7:6d:
af:08:34:9f:63:d3:57:53:e0:b3:d9:67:b6:d3:28:da:ce:9e:
de:04:d3:9d:40:dd:65:8c:02:d4:e5:26:9d:70:ed:8e:26:bc:
37:1c:11:57:c2:80:48:c5:ad:10:7b:e7:86:8a:af:e6:a0:17:
80:79:88:e6:9e:ba:2b:9a:72:ee:73:38:dd:58:3f:6b:c8:73:
60:0c:af:f1:c4:d7:8c:1c:e0:e2:a2:b0:2b:71:38:b6:01:d7:
98:30:fb:91:a5:13:2e:fe:84:7f:e3:c3:d0:70:78:ba:3b:cc:
65:5b:4a:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOV23o+MMOr58fwh7jabfLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczODBjNzU5ZjU1OGY5YzZiZTg4ZGQyMjZhNDM5ZDk5Yzll
YWNmMGMwHhcNMjUwNjA4MDcwMDQxWhcNMjUwNjA5MDcwMDQxWjAzMTEwLwYDVQQD
Eyg3M2FhNzViZTg5MjU0NWIwZGE1NzcyNDc0NWIzMWI1MTMyYzIyNGMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkb989GcyLYOllyek0rCbyG23U+08
OVBPE14magDVZeTgw91ooTE7MqCexRWqgw5C5kKGRVZrnI3S3gjsuEkRDKe7Xrr9
c1U4V1tOUVGVF2DjdRoETbEM5ziDTPzPoNV6me57RbQ5lWQHGbaQSpB7v9z6mOwg
NEllV3iT/7wX6hPZQcBXV5uFF0iCfzExNKhGBt0LNHWku6Hz/AgXEPxaFSyPhcSc
GdGusNedSNZMcBVWFKFwE5v/Zqm+ielkyT1hsHgTJgA2jz3uY5jMZDnXPLIfyX2E
m8M7DwvO+c/4J5Betm2eLF8mnjsQu+kiBfPszHvFiB5pVwde89fPCW+OJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHOqdb6JJUWw2ldyR0WzG1EywiTAMB8GA1UdIwQY
MBaAFHOAx1n1WPnGvojdImpDnZnJ6s8MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzRESFdmVlktY2EtaU4waWFrT2RtY25xend3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9iODAwMDAtMDYwOS00ODhmLWEzNGEt
MmNhNjI2Y2ZlZDQ1LzEvYzRESFdmVlktY2EtaU4waWFrT2RtY25xend3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9iODAwMDAtMDYwOS00ODhmLWEzNGEtMmNhNjI2Y2ZlZDQ1
LzEvYzRESFdmVlktY2EtaU4waWFrT2RtY25xend3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADG8I5qbt
eeoU2gLOd56qDfQoyxeObYN3tZHYkyhdvraagaOnVbqNQGcpkx0K+nH32Q6U2pti
vuHwBCW91kK9z8cm15ZRmChbTYOW3Dz/RJSJxDmJ7hl5GaeAsXdSg1QLcE2X2CN5
Cc5/4oIvZx89KYI2HOeQVilugYRVufjbcMjqnMu3qxMQGmGDiUvWprdtrwg0n2PT
V1Pgs9lnttMo2s6e3gTTnUDdZYwC1OUmnXDtjia8NxwRV8KASMWtEHvnhoqv5qAX
gHmI5p66K5py7nM43Vg/a8hzYAyv8cTXjBzg4qKwK3E4tgHXmDD7kaUTLv6Ef+PD
0HB4ujvMZVtKaQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 16:01:47 2025 by rpki-client