Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
File: 1XfOFDQjLYCBldDKcKs5HfsHry0.mft (raw, json)
Hash identifier: SgbCJhGBjMc0UfSiarX4XmLU4u/l1ijTwqSf0HUuV3s=
Subject key identifier: B8:C7:7C:A7:72:FE:50:DD:62:EC:2F:6D:83:AE:9A:EF:DF:BF:CF:BE
Authority key identifier: D5:77:CE:14:34:23:2D:80:81:95:D0:CA:70:AB:39:1D:FB:07:AF:2D
Certificate issuer: /CN=d577ce1434232d808195d0ca70ab391dfb07af2d
Certificate serial: 019749319E35AF434103E7BB6C40775D6A02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 07:01:17 +0000
Manifest this update: Sat 07 Jun 2025 07:01:17 +0000
Manifest next update: Sun 08 Jun 2025 07:01:17 +0000
Files and hashes: 1: 1XfOFDQjLYCBldDKcKs5HfsHry0.crl (hash: UJgYa377iueyxVri3HnxT9xFZ/DOhxom+yBOqJ2XY+Q=)
2: HcDxgF3nqk8cgEWN2FjSYTqgWIU.roa (hash: zRQPtKl4Mi8+zyT9yY1R1Qmmn1wM9W5eQbvQLliU+lY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:9e:35:af:43:41:03:e7:bb:6c:40:77:5d:6a:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d577ce1434232d808195d0ca70ab391dfb07af2d
Validity
Not Before: Jun 7 07:01:17 2025 GMT
Not After : Jun 8 07:01:17 2025 GMT
Subject: CN=b8c77ca772fe50dd62ec2f6d83ae9aefdfbfcfbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:7b:c9:7d:62:61:25:35:60:fd:98:89:78:22:
f3:1c:1d:fd:6f:11:52:69:58:e1:d7:56:dd:b5:6a:
83:48:51:6a:34:3b:ab:be:38:00:06:e3:36:32:72:
c6:71:30:f9:17:ff:22:3e:9f:8d:10:2b:be:2c:46:
0c:54:5f:17:43:17:0b:33:fc:33:5a:44:65:6b:79:
9f:27:55:5f:9e:a3:e8:cf:18:37:59:1f:29:ee:5f:
1d:13:67:4a:d1:75:ee:e6:ab:24:f3:c4:67:21:fe:
4e:89:8a:11:65:e8:79:ec:0d:82:8d:a9:48:93:57:
16:16:68:19:80:aa:b6:9a:3d:1c:8d:31:a8:ac:54:
4b:a2:20:b7:7a:aa:b1:7b:21:60:18:07:85:97:5c:
95:1c:c1:8e:9d:7c:31:7e:c4:63:a2:25:a8:0c:87:
83:b3:65:09:c2:ae:0d:35:cb:8f:a0:b4:37:cd:86:
8d:c3:2a:4d:e0:22:56:27:2e:9d:1f:f2:5a:96:7a:
a3:ec:cf:5d:eb:5d:8c:cb:3c:04:8a:71:c5:66:b7:
b3:1b:d4:f7:34:9b:fb:10:cc:c5:a5:f0:98:4b:5d:
e1:9f:66:d0:d8:ad:f3:68:dd:29:87:2d:bb:38:c7:
2f:98:b6:d8:89:b8:2b:75:2e:3e:f5:05:de:6a:4b:
a4:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C7:7C:A7:72:FE:50:DD:62:EC:2F:6D:83:AE:9A:EF:DF:BF:CF:BE
X509v3 Authority Key Identifier:
keyid:D5:77:CE:14:34:23:2D:80:81:95:D0:CA:70:AB:39:1D:FB:07:AF:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:b9:c8:52:0c:1b:59:e2:17:4b:1b:9c:38:72:07:8c:7a:05:
08:90:08:b7:9a:57:b2:13:c5:d3:4f:34:d3:f2:20:26:61:e4:
59:00:23:97:b3:55:fe:33:b0:b2:40:7d:d1:2e:77:b1:de:ed:
40:6f:5c:03:f5:ff:b1:cd:7d:98:a3:5e:59:0b:53:df:c8:65:
d0:6d:88:2f:8a:2d:a6:42:17:70:5e:0d:5b:89:6b:fe:46:96:
31:63:f9:35:eb:d6:9b:f8:6a:38:e4:e4:9d:ee:22:eb:4e:b0:
82:7a:30:e9:a6:a7:c0:a5:ab:d1:50:45:01:76:34:51:77:fd:
06:ac:fb:c1:6b:17:2b:a2:15:48:21:a7:60:ab:c8:5b:57:60:
22:0c:fa:42:65:a9:06:d5:c7:0b:00:20:d0:17:82:70:06:50:
80:fe:b7:d1:eb:b1:04:63:9a:e9:8e:e8:42:8a:6f:39:c5:15:
76:f1:85:c1:9c:c6:f4:ed:b6:d6:e9:fe:53:52:26:71:21:f9:
0b:95:ac:9b:ec:9b:de:2a:a1:35:5c:ea:d2:2d:64:89:a0:c2:
6f:0b:03:2f:0c:c7:79:a3:b0:95:15:f3:18:14:1b:43:cd:1a:
c8:f8:c0:28:36:8b:38:7d:12:b1:bd:d0:8c:d1:59:6c:32:33:
0c:54:90:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJMZ41r0NBA+e7bEB3XWoCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NzdjZTE0MzQyMzJkODA4MTk1ZDBjYTcwYWIzOTFkZmIw
N2FmMmQwHhcNMjUwNjA3MDcwMTE3WhcNMjUwNjA4MDcwMTE3WjAzMTEwLwYDVQQD
EyhiOGM3N2NhNzcyZmU1MGRkNjJlYzJmNmQ4M2FlOWFlZmRmYmZjZmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmnvJfWJhJTVg/ZiJeCLzHB39bxFS
aVjh11bdtWqDSFFqNDurvjgABuM2MnLGcTD5F/8iPp+NECu+LEYMVF8XQxcLM/wz
WkRla3mfJ1VfnqPozxg3WR8p7l8dE2dK0XXu5qsk88RnIf5OiYoRZeh57A2CjalI
k1cWFmgZgKq2mj0cjTGorFRLoiC3eqqxeyFgGAeFl1yVHMGOnXwxfsRjoiWoDIeD
s2UJwq4NNcuPoLQ3zYaNwypN4CJWJy6dH/Jalnqj7M9d612MyzwEinHFZrezG9T3
NJv7EMzFpfCYS13hn2bQ2K3zaN0phy27OMcvmLbYibgrdS4+9QXeakukAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLjHfKdy/lDdYuwvbYOumu/fv8++MB8GA1UdIwQY
MBaAFNV3zhQ0Iy2AgZXQynCrOR37B68tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVhmT0ZEUWpMWUNCbGRES2NLczVIZnNIcnkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8wZDYxNWUtMjRkYi00N2VmLTlhYTMt
NjBlNmIxNDhkMjhiLzEvMVhmT0ZEUWpMWUNCbGRES2NLczVIZnNIcnkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS8wZDYxNWUtMjRkYi00N2VmLTlhYTMtNjBlNmIxNDhkMjhi
LzEvMVhmT0ZEUWpMWUNCbGRES2NLczVIZnNIcnkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAabnIUgwb
WeIXSxucOHIHjHoFCJAIt5pXshPF00800/IgJmHkWQAjl7NV/jOwskB90S53sd7t
QG9cA/X/sc19mKNeWQtT38hl0G2IL4otpkIXcF4NW4lr/kaWMWP5NevWm/hqOOTk
ne4i606wgnow6aanwKWr0VBFAXY0UXf9Bqz7wWsXK6IVSCGnYKvIW1dgIgz6QmWp
BtXHCwAg0BeCcAZQgP630euxBGOa6Y7oQopvOcUVdvGFwZzG9O221un+U1ImcSH5
C5Wsm+yb3iqhNVzq0i1kiaDCbwsDLwzHeaOwlRXzGBQbQ80ayPjAKDaLOH0Ssb3Q
jNFZbDIzDFSQqw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:21:37 2025 by rpki-client