Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft
File: pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft (raw, json)
Hash identifier: S7DRzsk8Db7xe6mr/1TOxDBnQowMLq/pxAsGXPyPb7k=
Subject key identifier: 30:8E:1B:D5:96:AA:F1:1D:04:BD:20:82:D5:DE:8E:D7:A7:76:4E:91
Authority key identifier: A4:F5:53:3A:52:7B:26:4C:A2:E8:37:32:85:D7:80:D3:3A:2B:D0:A1
Certificate issuer: /CN=a4f5533a527b264ca2e8373285d780d33a2bd0a1
Certificate serial: 01974D44FFE68A5A7A59592AB321BFBD6D86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft
Manifest number: 0212
Signing time: Sun 08 Jun 2025 02:00:56 +0000
Manifest this update: Sun 08 Jun 2025 02:00:56 +0000
Manifest next update: Mon 09 Jun 2025 02:00:56 +0000
Files and hashes: 1: aU9nU6J43VKML7pOttC9ZY6jQ98.roa (hash: FbRy0Mzafv2hiOEuNsxPoMw70K3GoSJZXHuz7LnmQeE=)
2: pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl (hash: Ij1rs15YmT1iv9hp0qIp17d70HYGLQt6DoO2fkzMtw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:44:ff:e6:8a:5a:7a:59:59:2a:b3:21:bf:bd:6d:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f5533a527b264ca2e8373285d780d33a2bd0a1
Validity
Not Before: Jun 8 02:00:56 2025 GMT
Not After : Jun 9 02:00:56 2025 GMT
Subject: CN=308e1bd596aaf11d04bd2082d5de8ed7a7764e91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:93:d3:e3:32:dc:a0:54:c3:73:d3:bf:41:fa:
b3:c0:6d:43:f4:82:77:25:9f:34:61:8d:b0:0f:ae:
dd:29:83:79:a5:56:1d:e1:9a:4d:91:0b:d6:d7:13:
21:6d:ed:3b:e9:84:ab:25:da:d8:6d:a6:a7:76:81:
c3:6d:92:aa:13:6c:d5:74:8f:10:10:f8:d8:5f:5b:
9d:47:c3:1f:5a:12:76:8d:bd:a0:7e:de:00:c6:d6:
0a:1b:67:ce:2b:aa:7d:37:d4:38:7a:f8:06:68:ff:
52:0a:47:41:3b:ab:2f:88:a0:1b:c9:a0:c2:80:fb:
4c:f0:87:c5:2a:de:4c:21:d8:02:2d:75:03:8d:fb:
6b:81:51:6f:70:3f:d8:c8:a2:e4:2c:c6:95:2f:ac:
01:af:9a:54:bd:9c:77:75:c4:5e:f0:d0:47:2a:22:
2b:0d:88:08:51:8a:a4:3e:e7:54:fe:f1:6a:f8:70:
03:8c:90:0c:bb:44:8e:b2:74:d4:55:a7:b0:b5:2d:
d9:52:5d:83:21:58:e7:00:3d:00:a6:94:4f:e7:3b:
db:d8:e0:f1:25:2a:47:15:db:34:6a:93:83:cf:14:
2b:5b:4f:2e:40:9d:26:4a:23:89:48:1d:62:d6:2f:
94:87:84:68:e8:47:fb:00:01:d3:63:7c:6d:11:95:
c6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:8E:1B:D5:96:AA:F1:1D:04:BD:20:82:D5:DE:8E:D7:A7:76:4E:91
X509v3 Authority Key Identifier:
keyid:A4:F5:53:3A:52:7B:26:4C:A2:E8:37:32:85:D7:80:D3:3A:2B:D0:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:c4:f8:2d:41:b9:fa:f5:c3:d3:1d:a9:37:5a:31:bb:f4:d1:
e0:2e:6d:20:44:14:4d:55:c0:e3:7d:d6:0c:ec:55:0f:c7:e2:
ba:87:c8:c7:7e:d9:f5:fc:93:30:fe:8b:fa:cb:f0:ab:c7:ec:
e9:ef:ea:10:7e:98:20:6d:65:ab:32:6e:8e:4c:c8:24:ca:7c:
cf:79:b5:23:79:8f:32:19:3b:8f:db:46:13:fb:e8:d2:39:62:
e6:d2:0b:8d:ab:8c:b1:3d:ef:8f:c2:94:52:6b:1c:6e:48:17:
7e:28:b2:d9:74:83:5f:5f:cf:6d:c5:72:88:76:16:eb:93:ff:
65:8b:07:bf:11:5b:7b:52:67:90:7e:49:f4:85:5b:5f:ea:cf:
90:dd:2f:d1:ad:c6:c2:77:6c:9c:af:4d:4f:ee:12:76:e0:f7:
f6:f4:40:c3:7f:b7:0a:96:23:e2:6c:b5:2c:14:39:8f:70:2d:
07:e4:5b:21:9c:c1:46:a3:53:50:eb:a7:bd:46:1c:98:45:48:
e6:d5:d4:9a:7c:72:3c:1f:c6:df:4a:c6:ef:63:6b:12:b3:bd:
ca:a3:00:a0:58:ab:98:68:dd:2a:ab:84:42:22:70:d7:dc:f4:
82:ee:e0:37:07:90:a0:8b:37:d9:06:83:9d:a6:30:e8:91:d1:
a2:42:9d:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdNRP/milp6WVkqsyG/vW2GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0ZjU1MzNhNTI3YjI2NGNhMmU4MzczMjg1ZDc4MGQzM2Ey
YmQwYTEwHhcNMjUwNjA4MDIwMDU2WhcNMjUwNjA5MDIwMDU2WjAzMTEwLwYDVQQD
EygzMDhlMWJkNTk2YWFmMTFkMDRiZDIwODJkNWRlOGVkN2E3NzY0ZTkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJPT4zLcoFTDc9O/QfqzwG1D9IJ3
JZ80YY2wD67dKYN5pVYd4ZpNkQvW1xMhbe076YSrJdrYbaandoHDbZKqE2zVdI8Q
EPjYX1udR8MfWhJ2jb2gft4AxtYKG2fOK6p9N9Q4evgGaP9SCkdBO6sviKAbyaDC
gPtM8IfFKt5MIdgCLXUDjftrgVFvcD/YyKLkLMaVL6wBr5pUvZx3dcRe8NBHKiIr
DYgIUYqkPudU/vFq+HADjJAMu0SOsnTUVaewtS3ZUl2DIVjnAD0AppRP5zvb2ODx
JSpHFds0apODzxQrW08uQJ0mSiOJSB1i1i+Uh4Ro6Ef7AAHTY3xtEZXGtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDCOG9WWqvEdBL0ggtXejtendk6RMB8GA1UdIwQY
MBaAFKT1UzpSeyZMoug3MoXXgNM6K9ChMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9hZmMzYzgtZTk1Mi00MDcwLWE1NDYt
NDI0NDYyYmM5NDliLzEvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9hZmMzYzgtZTk1Mi00MDcwLWE1NDYtNDI0NDYyYmM5NDli
LzEvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN8T4LUG5
+vXD0x2pN1oxu/TR4C5tIEQUTVXA433WDOxVD8fiuofIx37Z9fyTMP6L+svwq8fs
6e/qEH6YIG1lqzJujkzIJMp8z3m1I3mPMhk7j9tGE/vo0jli5tILjauMsT3vj8KU
UmscbkgXfiiy2XSDX1/PbcVyiHYW65P/ZYsHvxFbe1JnkH5J9IVbX+rPkN0v0a3G
wndsnK9NT+4SduD39vRAw3+3CpYj4my1LBQ5j3AtB+RbIZzBRqNTUOunvUYcmEVI
5tXUmnxyPB/G30rG72NrErO9yqMAoFirmGjdKquEQiJw19z0gu7gNweQoIs32QaD
naYw6JHRokKdxw==
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:26:44 2025 by rpki-client