Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
File: cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft (raw, json)
Hash identifier: HwJdJKfR1SQMR98IOwg9QNJcrUwUhkcfJOvtVE4VD1g=
Subject key identifier: 47:AB:26:D5:04:EC:68:16:00:71:53:73:01:84:E3:53:FE:66:06:83
Authority key identifier: 72:BD:0E:36:E1:C2:02:30:4A:35:13:3B:11:66:66:25:E5:D6:E5:EF
Certificate issuer: /CN=72bd0e36e1c202304a35133b11666625e5d6e5ef
Certificate serial: 01974A7B6EC9D1F7203470D06A0840DE87C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cr0ONuHCAjBKNRM7EWZmJeXW5e8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
Manifest number: 091E
Signing time: Sat 07 Jun 2025 13:01:32 +0000
Manifest this update: Sat 07 Jun 2025 13:01:32 +0000
Manifest next update: Sun 08 Jun 2025 13:01:32 +0000
Files and hashes: 1: YJ__Jpr1denKLIU4A4wwpaBEGuM.roa (hash: HQMvWJSgBySt+TDaIiCe+VSZte2lW30WZtz1IJWSvxM=)
2: cr0ONuHCAjBKNRM7EWZmJeXW5e8.crl (hash: ilQxIMXNp4Uj+24k3SOhyZV1k26H6dBd37uVUuRvRe8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
rsync://rpki.ripe.net/repository/DEFAULT/cr0ONuHCAjBKNRM7EWZmJeXW5e8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:6e:c9:d1:f7:20:34:70:d0:6a:08:40:de:87:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72bd0e36e1c202304a35133b11666625e5d6e5ef
Validity
Not Before: Jun 7 13:01:32 2025 GMT
Not After : Jun 8 13:01:32 2025 GMT
Subject: CN=47ab26d504ec6816007153730184e353fe660683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:50:0a:88:d6:c7:fe:87:7b:33:fe:d7:b2:7a:
6d:8c:f6:ff:88:f6:df:59:94:72:09:31:68:a3:cf:
43:5a:40:81:2f:00:91:5a:6f:f2:81:55:ab:e4:fb:
89:22:25:06:ed:51:e2:13:6e:1a:a3:c5:63:b5:3b:
71:4a:1b:6a:63:50:57:0c:c0:e2:cf:63:ec:eb:4c:
72:e8:66:9f:9a:e6:2c:6a:8b:0a:14:79:16:b7:93:
98:10:ad:c8:50:ff:b1:c8:8c:df:6a:f6:7c:bf:ef:
65:5e:e8:dd:f3:ca:72:a2:e2:59:b4:db:90:f3:92:
36:76:60:d2:da:ec:8a:79:5b:b0:3b:43:12:1c:37:
b1:73:e5:27:9c:e7:0f:63:89:5c:dd:eb:0b:ae:06:
fa:d4:a6:56:c4:b3:4e:69:62:f9:48:0b:46:36:44:
df:98:10:d0:d5:21:a0:37:7a:79:50:2a:67:93:8d:
33:bc:1e:a0:ac:f2:86:c1:c3:af:0b:ec:c1:e3:b9:
db:aa:a8:94:1a:0e:87:53:55:57:07:61:fc:00:b4:
04:ee:37:6d:6d:5a:43:c7:b1:15:de:74:8d:da:9c:
6d:da:71:68:98:06:b3:08:a3:26:65:ca:4b:cd:cf:
2d:c6:5a:fc:f7:66:46:1a:45:d0:eb:0a:0b:36:de:
5d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:AB:26:D5:04:EC:68:16:00:71:53:73:01:84:E3:53:FE:66:06:83
X509v3 Authority Key Identifier:
keyid:72:BD:0E:36:E1:C2:02:30:4A:35:13:3B:11:66:66:25:E5:D6:E5:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cr0ONuHCAjBKNRM7EWZmJeXW5e8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:ec:9b:31:85:4a:dd:d9:2f:30:70:75:39:6c:05:4c:b9:e2:
bd:c9:08:fa:d4:8a:78:5f:93:4d:c6:00:fa:63:69:2f:8b:4f:
d9:92:6d:13:9f:4c:af:09:84:e8:09:5b:39:8c:95:88:b6:b0:
02:99:69:02:62:d7:3d:62:ed:17:7c:ca:2d:c4:5b:d4:47:90:
de:38:7b:ca:c4:40:15:4d:0a:34:6f:df:9e:8b:67:13:e9:cb:
9b:1a:d2:b3:f6:03:6d:59:c8:56:49:40:d4:51:2d:77:35:6c:
b3:f6:e8:f7:11:79:3f:5b:d2:3a:78:a5:65:6c:ca:50:7b:db:
7d:c9:b9:92:3b:40:07:b1:ca:2a:a5:67:1f:96:76:81:d4:ee:
85:11:ff:4b:5d:49:a1:8b:69:a8:60:cd:6d:b3:98:df:9d:81:
3b:1a:8b:cc:b3:e9:91:62:2e:11:58:0b:f1:41:2c:54:c4:1b:
04:95:a0:b0:51:3b:bf:62:d6:af:a8:88:85:7c:37:17:38:c5:
11:c4:76:86:56:45:fb:b6:7b:9a:b0:59:da:bb:1e:27:c2:18:
b0:f4:6e:51:13:f8:ec:9c:fa:93:d0:8d:3a:b4:96:62:c3:2f:
22:3c:58:bb:ba:72:50:7f:60:8c:21:5f:9f:92:30:1f:59:33:
63:75:26:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKe27J0fcgNHDQaghA3ofCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyYmQwZTM2ZTFjMjAyMzA0YTM1MTMzYjExNjY2NjI1ZTVk
NmU1ZWYwHhcNMjUwNjA3MTMwMTMyWhcNMjUwNjA4MTMwMTMyWjAzMTEwLwYDVQQD
Eyg0N2FiMjZkNTA0ZWM2ODE2MDA3MTUzNzMwMTg0ZTM1M2ZlNjYwNjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1AKiNbH/od7M/7XsnptjPb/iPbf
WZRyCTFoo89DWkCBLwCRWm/ygVWr5PuJIiUG7VHiE24ao8VjtTtxShtqY1BXDMDi
z2Ps60xy6GafmuYsaosKFHkWt5OYEK3IUP+xyIzfavZ8v+9lXujd88pyouJZtNuQ
85I2dmDS2uyKeVuwO0MSHDexc+UnnOcPY4lc3esLrgb61KZWxLNOaWL5SAtGNkTf
mBDQ1SGgN3p5UCpnk40zvB6grPKGwcOvC+zB47nbqqiUGg6HU1VXB2H8ALQE7jdt
bVpDx7EV3nSN2pxt2nFomAazCKMmZcpLzc8txlr892ZGGkXQ6woLNt5dpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEerJtUE7GgWAHFTcwGE41P+ZgaDMB8GA1UdIwQY
MBaAFHK9DjbhwgIwSjUTOxFmZiXl1uXvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3IwT051SENBakJLTlJNN0VXWm1KZVhXNWU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC81MjQ3NmQtYTc5NC00N2Q1LThmNTAt
YWVkYTgyNDY3OGQ0LzEvY3IwT051SENBakJLTlJNN0VXWm1KZVhXNWU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC81MjQ3NmQtYTc5NC00N2Q1LThmNTAtYWVkYTgyNDY3OGQ0
LzEvY3IwT051SENBakJLTlJNN0VXWm1KZVhXNWU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAReybMYVK
3dkvMHB1OWwFTLnivckI+tSKeF+TTcYA+mNpL4tP2ZJtE59MrwmE6AlbOYyViLaw
AplpAmLXPWLtF3zKLcRb1EeQ3jh7ysRAFU0KNG/fnotnE+nLmxrSs/YDbVnIVklA
1FEtdzVss/bo9xF5P1vSOnilZWzKUHvbfcm5kjtAB7HKKqVnH5Z2gdTuhRH/S11J
oYtpqGDNbbOY352BOxqLzLPpkWIuEVgL8UEsVMQbBJWgsFE7v2LWr6iIhXw3FzjF
EcR2hlZF+7Z7mrBZ2rseJ8IYsPRuURP47Jz6k9CNOrSWYsMvIjxYu7pyUH9gjCFf
n5IwH1kzY3UmEA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 19:28:52 2025 by rpki-client