Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
File: d5pKQpXGOP3nYPPNpHbYv8JxErI.mft (raw, json)
Hash identifier: sMRZMFQUDkA0g+ocniMQDvBvSKLApz6uAe0Ik0zZYBo=
Subject key identifier: 9B:6F:84:51:DD:C5:39:2E:FE:DA:C5:D9:7A:BC:FB:1B:CB:19:BB:E4
Authority key identifier: 77:9A:4A:42:95:C6:38:FD:E7:60:F3:CD:A4:76:D8:BF:C2:71:12:B2
Certificate issuer: /CN=779a4a4295c638fde760f3cda476d8bfc27112b2
Certificate serial: 01974BFB42E1EBEB648C89931359D70A9D5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
Manifest number: 33
Signing time: Sat 07 Jun 2025 20:00:47 +0000
Manifest this update: Sat 07 Jun 2025 20:00:47 +0000
Manifest next update: Sun 08 Jun 2025 20:00:47 +0000
Files and hashes: 1: 9YQA36vAku85UbE81d8YCXXLJnY.roa (hash: Aeb9cL8NYmy9yNSDJcp65b2WQtEKFZt794slbkjrbPk=)
2: d5pKQpXGOP3nYPPNpHbYv8JxErI.crl (hash: EPAa8sIbkb0Ks8oKrzWk9jilAn9jgt91XCe2HLaNerk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:42:e1:eb:eb:64:8c:89:93:13:59:d7:0a:9d:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779a4a4295c638fde760f3cda476d8bfc27112b2
Validity
Not Before: Jun 7 20:00:47 2025 GMT
Not After : Jun 8 20:00:47 2025 GMT
Subject: CN=9b6f8451ddc5392efedac5d97abcfb1bcb19bbe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2f:00:d6:69:6f:00:1b:32:e5:00:4b:3a:6a:
bc:dc:5f:b9:bf:82:29:8c:4b:0e:39:f0:9c:c5:da:
34:e3:8e:1b:f2:66:5b:04:aa:e9:34:a5:3b:fa:e6:
03:4a:a9:51:e5:15:22:74:a2:02:0f:b7:9e:fa:96:
79:9d:af:c8:f8:af:56:7b:ab:b4:e4:93:d5:4e:d4:
c1:55:40:ce:a2:a0:1f:25:f1:6f:6a:98:05:0f:8e:
7a:a3:36:81:66:50:12:47:8d:e7:02:95:ec:45:c7:
25:9a:9f:e8:a1:cd:ff:82:10:b6:d7:de:05:05:74:
bc:6f:b1:8b:d7:a4:93:76:c5:c1:88:38:a9:63:24:
4b:3a:b0:71:85:a9:6f:bd:78:31:51:31:ea:1d:05:
fb:d5:d1:da:dc:39:ea:47:bd:b2:b3:90:83:fd:2a:
f5:3d:a8:34:0f:d6:fc:d2:29:45:54:05:8e:5b:e6:
9d:33:24:73:f3:80:84:b5:32:fa:35:a9:43:25:7a:
2a:a7:06:8d:66:42:a1:65:e6:3a:70:69:89:a7:0b:
29:60:6e:66:8c:b4:ba:49:f9:23:63:6c:43:24:20:
f5:9c:84:ee:b0:2a:57:a8:ab:31:fb:45:4a:63:89:
c7:96:93:e9:42:cc:fb:ca:3a:1a:ac:c2:3b:d2:ce:
69:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:6F:84:51:DD:C5:39:2E:FE:DA:C5:D9:7A:BC:FB:1B:CB:19:BB:E4
X509v3 Authority Key Identifier:
keyid:77:9A:4A:42:95:C6:38:FD:E7:60:F3:CD:A4:76:D8:BF:C2:71:12:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:d5:af:9c:65:6a:68:c9:24:eb:55:fc:14:a8:c4:f5:30:2f:
c7:43:a0:d4:c1:82:3d:d6:ed:9b:26:e3:e5:05:ed:79:5e:a2:
ad:4a:07:82:c1:e0:5d:ef:0d:2e:f0:a1:51:38:fe:8d:05:7e:
4e:d9:07:40:ab:4c:23:36:9f:5f:d8:81:d5:5b:29:c6:0e:fb:
77:a5:3a:ae:9e:84:99:f8:32:fe:07:e4:1f:84:0e:ba:4c:68:
ba:6a:12:eb:49:58:3d:97:90:a0:7f:59:3d:30:f3:e9:c0:ce:
49:60:7d:6f:dc:f7:73:c8:fa:93:b8:2a:a8:03:cb:33:d4:19:
ac:52:09:7c:67:20:cc:1f:98:c1:69:df:80:f2:7e:32:ea:4e:
9f:42:88:b4:b4:45:f0:be:41:78:77:93:c6:38:0c:73:cc:d1:
af:52:7a:5b:c1:78:6f:a1:01:11:56:38:e9:48:a1:24:68:c7:
aa:fb:b8:28:93:79:33:e8:22:a2:e6:a7:1d:44:fb:2b:8a:0e:
76:39:99:d9:ef:80:7d:43:be:f7:cd:3f:14:9d:4b:ba:7b:f8:
3c:24:74:e3:cb:a0:7e:2a:5d:c7:39:34:05:23:90:10:4a:55:
e7:ad:3c:14:2c:b3:6a:b7:fd:45:55:e7:c9:fb:79:eb:2b:fc:
09:18:64:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdL+0Lh6+tkjImTE1nXCp1fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3OWE0YTQyOTVjNjM4ZmRlNzYwZjNjZGE0NzZkOGJmYzI3
MTEyYjIwHhcNMjUwNjA3MjAwMDQ3WhcNMjUwNjA4MjAwMDQ3WjAzMTEwLwYDVQQD
Eyg5YjZmODQ1MWRkYzUzOTJlZmVkYWM1ZDk3YWJjZmIxYmNiMTliYmU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAty8A1mlvABsy5QBLOmq83F+5v4Ip
jEsOOfCcxdo0444b8mZbBKrpNKU7+uYDSqlR5RUidKICD7ee+pZ5na/I+K9We6u0
5JPVTtTBVUDOoqAfJfFvapgFD456ozaBZlASR43nApXsRcclmp/ooc3/ghC2194F
BXS8b7GL16STdsXBiDipYyRLOrBxhalvvXgxUTHqHQX71dHa3DnqR72ys5CD/Sr1
Pag0D9b80ilFVAWOW+adMyRz84CEtTL6NalDJXoqpwaNZkKhZeY6cGmJpwspYG5m
jLS6SfkjY2xDJCD1nITusCpXqKsx+0VKY4nHlpPpQsz7yjoarMI70s5pDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJtvhFHdxTku/trF2Xq8+xvLGbvkMB8GA1UdIwQY
MBaAFHeaSkKVxjj952DzzaR22L/CcRKyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDVwS1FwWEdPUDNuWVBQTnBIYll2OEp4RXJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9mZDg5ZjktOThiNi00MjE3LWJjY2Qt
NjJjNjdkNGJjNTQ2LzEvZDVwS1FwWEdPUDNuWVBQTnBIYll2OEp4RXJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9mZDg5ZjktOThiNi00MjE3LWJjY2QtNjJjNjdkNGJjNTQ2
LzEvZDVwS1FwWEdPUDNuWVBQTnBIYll2OEp4RXJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZNWvnGVq
aMkk61X8FKjE9TAvx0Og1MGCPdbtmybj5QXteV6irUoHgsHgXe8NLvChUTj+jQV+
TtkHQKtMIzafX9iB1Vspxg77d6U6rp6Emfgy/gfkH4QOukxoumoS60lYPZeQoH9Z
PTDz6cDOSWB9b9z3c8j6k7gqqAPLM9QZrFIJfGcgzB+YwWnfgPJ+MupOn0KItLRF
8L5BeHeTxjgMc8zRr1J6W8F4b6EBEVY46UihJGjHqvu4KJN5M+giouanHUT7K4oO
djmZ2e+AfUO+980/FJ1Lunv4PCR048ugfipdxzk0BSOQEEpV5608FCyzarf9RVXn
yft56yv8CRhkWw==
-----END CERTIFICATE-----
Generated at Sun Jun 8 00:15:48 2025 by rpki-client