Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
File: bf7PoOZpJZXPvqUmYHbo5T79lGE.mft (raw, json)
Hash identifier: wJqb3xN9FYuzlOlnFgTjaZ/iOuD7Of/QDNs8Ab27C3g=
Subject key identifier: 15:4B:9F:71:59:27:EB:B9:FF:11:AF:A0:BB:D2:57:24:5F:F7:99:A9
Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Certificate serial: 01974AB1B8F6207CEFADEDBE30029B226C49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
Manifest number: 0E17
Signing time: Sat 07 Jun 2025 14:00:50 +0000
Manifest this update: Sat 07 Jun 2025 14:00:50 +0000
Manifest next update: Sun 08 Jun 2025 14:00:50 +0000
Files and hashes: 1: 8JVtNiH742v8cd9f6HB8HsLnHqc.roa (hash: en+F0ICvUKwr0qrq9ILAxUcATJZUAoxaoEpiR8+7A9M=)
2: GzE_PF4lRurN113fXZhaZRzDRYM.roa (hash: b8RRWDnlm3gv9H+fLurnrwDRk5Rn7Ig722jB2SuqPOg=)
3: O1rsJf608w55c6uzax6qELf-V10.roa (hash: eTLBCFWFUORcPgLfQZK3GxMskhs+vxERoSr/SRYqzwQ=)
4: W0ytEpzp3PGLQgQDEe1kmGvhrx8.roa (hash: Rx2fPbh4hFdhpWyNIm7FiwaS49uoStv5r5BjlCfRWrA=)
5: bf7PoOZpJZXPvqUmYHbo5T79lGE.crl (hash: c6Jw3qivzG3a4HhargQl6xF+9wsfo5nwSbbHNCyi3Lc=)
6: qfLtpL022R2vNSfmfA6qR_jq_6k.roa (hash: 99hvsDHWBX451/OxAu/FvLR5vG5KLyjpmEGTCKGnQ6c=)
7: s5XW1sPa3LVHkVbaHF8KM4lyi3k.roa (hash: kYlioc7r4tkKKuXQwZeSGnhgTGO7wN8mLbsZJSv0XnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:b8:f6:20:7c:ef:ad:ed:be:30:02:9b:22:6c:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Validity
Not Before: Jun 7 14:00:50 2025 GMT
Not After : Jun 8 14:00:50 2025 GMT
Subject: CN=154b9f715927ebb9ff11afa0bbd257245ff799a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c7:e0:ee:5a:18:09:31:6f:d0:cd:80:55:57:
79:ab:56:36:6d:9f:ae:0e:9c:ba:76:d3:d3:22:b2:
db:0f:49:1f:e5:ad:69:b5:cf:37:a7:71:0b:68:33:
d1:2f:1c:6a:61:95:07:6d:2d:16:e4:78:ba:65:f5:
3f:62:30:5e:48:d2:1f:cf:9c:18:a0:95:00:0f:a3:
ce:f6:a5:b9:0c:f3:6d:50:19:8e:a1:fd:27:e1:8e:
98:87:bb:9d:20:5d:4e:8c:a4:1f:1b:39:ef:ae:59:
bb:6e:a8:75:17:3e:9f:cb:da:c9:94:2c:d8:09:ce:
2f:fe:7f:23:76:3c:76:b2:30:7f:93:b4:11:66:70:
31:d3:34:67:b9:4c:13:35:7c:05:6d:04:c0:de:b8:
9b:c4:8a:4f:9d:c4:c6:1b:08:80:21:33:b8:35:97:
2d:34:53:46:66:9c:51:87:bc:47:5f:c0:65:1e:da:
7d:24:f1:a0:8e:26:b5:f7:28:71:af:3e:87:3b:7a:
d9:d9:05:71:df:33:95:d9:5e:36:da:46:d2:16:21:
2d:c5:8c:83:88:60:ec:df:a2:1f:96:11:f7:91:e4:
1c:22:93:6b:00:cc:80:55:e3:03:b6:d0:71:bb:9c:
1b:e6:49:0d:f5:31:aa:a9:92:d7:52:92:48:7e:5f:
78:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:4B:9F:71:59:27:EB:B9:FF:11:AF:A0:BB:D2:57:24:5F:F7:99:A9
X509v3 Authority Key Identifier:
keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:f3:f4:64:db:1c:a0:41:0c:a6:ba:3d:d0:fd:7e:2a:c2:d3:
34:21:99:e2:24:92:06:51:91:6b:41:09:a5:a8:1a:d8:59:a3:
9c:db:6f:5b:a3:16:15:67:d5:30:74:c6:a1:03:6f:b9:f2:b6:
78:38:8e:1a:ef:db:28:d0:78:7e:d7:f2:57:b9:0e:b6:20:a3:
67:57:bf:8b:8e:69:75:8a:16:aa:36:15:71:5e:eb:08:14:df:
b0:8f:31:d1:f9:a1:7c:b8:f1:d1:32:c4:62:fb:67:d4:3e:bb:
e4:0f:16:8a:66:2a:3a:73:95:60:41:44:ab:cc:5c:98:f3:12:
2e:f4:b5:4c:c1:06:61:41:15:50:a6:2e:ad:f3:13:d0:86:fc:
b0:1d:f7:f6:39:07:f6:3e:77:1f:cc:65:20:33:50:d8:c3:cf:
75:f3:53:1a:ce:5d:fb:9d:d9:c2:09:02:56:ec:d8:44:17:8b:
e5:2f:d0:81:25:e9:16:53:88:39:79:f7:8b:ab:da:9e:0d:1e:
bc:3a:c6:88:cf:ed:b0:b8:fb:3b:22:f1:5c:8f:fc:9d:74:99:
00:87:1f:7b:07:ea:f5:38:b9:68:90:b7:dc:87:d2:6c:42:b5:
c0:f0:ed:54:63:65:c4:6a:2c:71:31:a7:b5:88:53:11:f2:bb:
e4:82:4e:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKsbj2IHzvre2+MAKbImxJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZmVjZmEwZTY2OTI1OTVjZmJlYTUyNjYwNzZlOGU1M2Vm
ZDk0NjEwHhcNMjUwNjA3MTQwMDUwWhcNMjUwNjA4MTQwMDUwWjAzMTEwLwYDVQQD
EygxNTRiOWY3MTU5MjdlYmI5ZmYxMWFmYTBiYmQyNTcyNDVmZjc5OWE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA28fg7loYCTFv0M2AVVd5q1Y2bZ+u
Dpy6dtPTIrLbD0kf5a1ptc83p3ELaDPRLxxqYZUHbS0W5Hi6ZfU/YjBeSNIfz5wY
oJUAD6PO9qW5DPNtUBmOof0n4Y6Yh7udIF1OjKQfGznvrlm7bqh1Fz6fy9rJlCzY
Cc4v/n8jdjx2sjB/k7QRZnAx0zRnuUwTNXwFbQTA3ribxIpPncTGGwiAITO4NZct
NFNGZpxRh7xHX8BlHtp9JPGgjia19yhxrz6HO3rZ2QVx3zOV2V422kbSFiEtxYyD
iGDs36IflhH3keQcIpNrAMyAVeMDttBxu5wb5kkN9TGqqZLXUpJIfl943QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBVLn3FZJ+u5/xGvoLvSVyRf95mpMB8GA1UdIwQY
MBaAFG3+z6DmaSWVz76lJmB26OU+/ZRhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMt
Zjk4OGQ0OGU1MWU4LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMtZjk4OGQ0OGU1MWU4
LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADvP0ZNsc
oEEMpro90P1+KsLTNCGZ4iSSBlGRa0EJpaga2FmjnNtvW6MWFWfVMHTGoQNvufK2
eDiOGu/bKNB4ftfyV7kOtiCjZ1e/i45pdYoWqjYVcV7rCBTfsI8x0fmhfLjx0TLE
Yvtn1D675A8WimYqOnOVYEFEq8xcmPMSLvS1TMEGYUEVUKYurfMT0Ib8sB339jkH
9j53H8xlIDNQ2MPPdfNTGs5d+53ZwgkCVuzYRBeL5S/QgSXpFlOIOXn3i6vang0e
vDrGiM/tsLj7OyLxXI/8nXSZAIcfewfq9Ti5aJC33IfSbEK1wPDtVGNlxGoscTGn
tYhTEfK75IJOsg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:29:46 2025 by rpki-client