Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
File: iDa9j605PlExoCNykxWzVgFOZjc.mft (raw, json)
Hash identifier: us3y0XsPhEQQxsn7f052SGsnFltLFk+liLXyEskteRs=
Subject key identifier: 89:86:66:96:C2:0E:C6:8A:68:39:AE:7E:5D:67:0E:86:51:EA:0E:98
Authority key identifier: 88:36:BD:8F:AD:39:3E:51:31:A0:23:72:93:15:B3:56:01:4E:66:37
Certificate issuer: /CN=8836bd8fad393e5131a023729315b356014e6637
Certificate serial: 01974F6A1D06B08CFE18A0DFFC720708DE1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDa9j605PlExoCNykxWzVgFOZjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
Manifest number: 157F
Signing time: Sun 08 Jun 2025 12:00:43 +0000
Manifest this update: Sun 08 Jun 2025 12:00:43 +0000
Manifest next update: Mon 09 Jun 2025 12:00:43 +0000
Files and hashes: 1: UKX34TFCd0figIbF32wm6M0tdxE.roa (hash: BFLvjvBRECITaOdgL/U7OU6npGQVInzdalw4vhrK37A=)
2: iDa9j605PlExoCNykxWzVgFOZjc.crl (hash: h0wG0bqR/o709hsMAxJGG94oGYGJZ1nKyhNReIyQ2AU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDa9j605PlExoCNykxWzVgFOZjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:6a:1d:06:b0:8c:fe:18:a0:df:fc:72:07:08:de:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8836bd8fad393e5131a023729315b356014e6637
Validity
Not Before: Jun 8 12:00:43 2025 GMT
Not After : Jun 9 12:00:43 2025 GMT
Subject: CN=89866696c20ec68a6839ae7e5d670e8651ea0e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b5:6a:9a:01:ab:ba:10:81:64:5a:05:ba:26:
a9:09:f6:c5:64:f8:4f:ad:cc:e0:95:62:f1:af:cf:
b6:38:89:79:87:c5:dc:55:da:f6:f7:7b:79:69:5a:
72:3d:29:2e:ae:0d:95:a8:50:b2:07:94:56:9b:74:
c4:70:b9:8c:cb:4e:c0:fc:34:6b:07:e0:e0:0c:b1:
49:52:e6:8f:01:c7:02:83:92:85:05:9e:a3:b2:9a:
81:bd:88:dc:08:fb:b9:64:bf:8a:c9:82:7f:04:a2:
a9:0f:4e:c4:44:24:d8:dd:85:83:59:f6:d1:89:02:
ed:85:93:18:95:77:ce:84:ca:57:a0:9e:ad:f8:60:
68:5c:a6:5c:e0:d8:7a:04:09:6c:5e:69:9a:e6:82:
fc:a4:6d:d0:44:78:22:b2:37:8c:c2:f7:74:1c:33:
c8:e5:f1:e3:79:70:b0:37:7b:2b:66:50:1b:51:ce:
65:c6:77:05:72:c1:5f:7a:c3:e6:1d:ca:4d:f0:62:
44:e9:02:6f:93:1d:29:80:71:c4:50:73:b7:f7:67:
b1:b8:2b:ab:48:10:da:6a:60:01:e7:85:c0:c3:7a:
ae:35:4a:19:6b:8e:40:f6:a4:91:c0:f6:5f:e6:3f:
65:9a:c9:05:09:3a:dc:51:f3:e5:48:45:4a:db:8f:
52:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:86:66:96:C2:0E:C6:8A:68:39:AE:7E:5D:67:0E:86:51:EA:0E:98
X509v3 Authority Key Identifier:
keyid:88:36:BD:8F:AD:39:3E:51:31:A0:23:72:93:15:B3:56:01:4E:66:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDa9j605PlExoCNykxWzVgFOZjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:52:45:39:30:7f:9e:d0:88:a2:a4:02:14:12:d0:a4:fc:90:
ce:3b:a7:20:ed:14:18:0b:a2:09:c7:78:27:89:22:4b:14:8e:
75:75:62:dd:1a:3e:87:9b:84:9f:b2:fd:6a:a0:2b:46:cf:40:
2e:69:58:1d:b8:14:f7:72:25:9f:ab:29:e9:ba:a1:61:17:c3:
c5:57:7b:b7:e3:4f:66:0c:8f:3b:20:d1:bd:8e:fd:6d:35:f7:
81:55:68:b7:2f:e5:53:12:f6:9e:53:96:79:9c:f8:17:13:d8:
f2:c7:0e:cf:5d:4e:20:7e:0e:ce:0b:57:18:cf:e4:63:d3:62:
7c:b5:9c:bb:e0:fd:61:d7:b3:cf:c0:cf:e7:6b:18:6e:85:35:
52:7c:55:72:3c:f4:58:1a:c8:7c:04:6f:1c:ae:85:a4:df:06:
80:16:4e:29:a2:50:10:7e:f2:12:d6:f1:12:44:77:58:7a:5b:
82:a1:0f:a8:86:0c:b0:9c:59:f4:89:09:09:1c:2b:cd:9c:3d:
99:60:a6:79:3e:a7:cc:2f:51:10:c3:2a:3c:5f:b1:1d:ed:02:
e7:69:75:a1:0f:8c:61:b2:d7:e4:a6:3b:e9:78:3b:06:b7:7c:
91:db:03:2e:d4:fa:e5:9f:58:ed:9e:6c:cf:f1:3e:19:1f:f9:
1a:bc:73:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdPah0GsIz+GKDf/HIHCN4dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MzZiZDhmYWQzOTNlNTEzMWEwMjM3MjkzMTViMzU2MDE0
ZTY2MzcwHhcNMjUwNjA4MTIwMDQzWhcNMjUwNjA5MTIwMDQzWjAzMTEwLwYDVQQD
Eyg4OTg2NjY5NmMyMGVjNjhhNjgzOWFlN2U1ZDY3MGU4NjUxZWEwZTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7VqmgGruhCBZFoFuiapCfbFZPhP
rczglWLxr8+2OIl5h8XcVdr293t5aVpyPSkurg2VqFCyB5RWm3TEcLmMy07A/DRr
B+DgDLFJUuaPAccCg5KFBZ6jspqBvYjcCPu5ZL+KyYJ/BKKpD07ERCTY3YWDWfbR
iQLthZMYlXfOhMpXoJ6t+GBoXKZc4Nh6BAlsXmma5oL8pG3QRHgisjeMwvd0HDPI
5fHjeXCwN3srZlAbUc5lxncFcsFfesPmHcpN8GJE6QJvkx0pgHHEUHO392exuCur
SBDaamAB54XAw3quNUoZa45A9qSRwPZf5j9lmskFCTrcUfPlSEVK249SawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFImGZpbCDsaKaDmufl1nDoZR6g6YMB8GA1UdIwQY
MBaAFIg2vY+tOT5RMaAjcpMVs1YBTmY3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaURhOWo2MDVQbEV4b0NOeWt4V3pWZ0ZPWmpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi8xMjlhNWItYjdmNi00OWQwLTk1YzIt
MTJmOWNiMGEyMTE4LzEvaURhOWo2MDVQbEV4b0NOeWt4V3pWZ0ZPWmpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi8xMjlhNWItYjdmNi00OWQwLTk1YzItMTJmOWNiMGEyMTE4
LzEvaURhOWo2MDVQbEV4b0NOeWt4V3pWZ0ZPWmpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQFJFOTB/
ntCIoqQCFBLQpPyQzjunIO0UGAuiCcd4J4kiSxSOdXVi3Ro+h5uEn7L9aqArRs9A
LmlYHbgU93Iln6sp6bqhYRfDxVd7t+NPZgyPOyDRvY79bTX3gVVoty/lUxL2nlOW
eZz4FxPY8scOz11OIH4OzgtXGM/kY9NifLWcu+D9Ydezz8DP52sYboU1UnxVcjz0
WBrIfARvHK6FpN8GgBZOKaJQEH7yEtbxEkR3WHpbgqEPqIYMsJxZ9IkJCRwrzZw9
mWCmeT6nzC9REMMqPF+xHe0C52l1oQ+MYbLX5KY76Xg7Brd8kdsDLtT65Z9Y7Z5s
z/E+GR/5Grxzbg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 16:42:34 2025 by rpki-client