Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
File: h4R32LYtCfmui_29gSpT-X7UxXY.mft (raw, json)
Hash identifier: DdSWwQC7fCHNfRGrE6qeMH86jY5bM2/GR0Ia1Kr0YDY=
Subject key identifier: AF:39:BD:47:CE:AA:1D:75:86:79:84:F8:B0:80:FA:CD:03:AF:FD:2B
Authority key identifier: 87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
Certificate issuer: /CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Certificate serial: 0197470BE572170289096E0F8D5ED20219DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
Manifest number: 03A3
Signing time: Fri 06 Jun 2025 21:00:51 +0000
Manifest this update: Fri 06 Jun 2025 21:00:51 +0000
Manifest next update: Sat 07 Jun 2025 21:00:51 +0000
Files and hashes: 1: 1-chTvEPLKpclBFunFsZudwhteCw.roa (hash: Mk7QbJ14tNyeCXu9wD1n7MpPtkSCXANni+lDYxJDiAk=)
2: h4R32LYtCfmui_29gSpT-X7UxXY.crl (hash: MUK5hWQXay8vqKtTPmld+mVfx6eXxMm5a54xvOiATEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:e5:72:17:02:89:09:6e:0f:8d:5e:d2:02:19:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Validity
Not Before: Jun 6 21:00:51 2025 GMT
Not After : Jun 7 21:00:51 2025 GMT
Subject: CN=af39bd47ceaa1d75867984f8b080facd03affd2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a5:2e:82:c0:26:26:ba:50:a1:ee:ab:6e:68:
cd:1d:2a:93:b7:ff:3e:43:81:a8:1f:87:08:18:64:
98:44:31:08:28:83:11:da:11:12:9c:c0:2b:97:c9:
a7:ee:67:9e:8b:65:80:4c:fa:96:8e:f3:71:98:d8:
a0:af:0a:f3:a3:4c:ba:92:23:13:4b:07:2a:ff:da:
1f:bd:c1:ca:00:3e:b6:be:90:a5:80:ba:5a:7f:52:
1e:69:c5:5c:c3:c8:1d:fb:48:1c:84:37:93:35:d0:
a3:0c:1d:ce:d3:bc:98:83:88:08:66:e9:38:14:d4:
5c:75:72:d7:8a:cd:53:8b:05:c3:d0:83:71:b5:5c:
57:91:7d:72:22:cb:eb:8c:88:9d:a4:17:65:f0:46:
52:bb:bb:39:9c:71:db:c8:1d:f4:93:ca:43:d7:30:
dc:a7:a4:47:aa:2f:8b:e3:13:27:b4:4a:09:75:66:
c2:73:26:02:27:e2:18:c8:de:d1:8a:d9:a2:f4:8e:
80:1f:ff:26:9d:40:07:54:14:f1:82:f8:0f:79:84:
b1:da:4d:57:9c:0a:7b:4d:85:71:bd:45:3b:24:7b:
56:a7:75:01:8e:4e:15:86:3c:b1:f5:39:8c:8e:8f:
54:fb:79:93:07:fb:67:6f:5a:13:36:d7:ac:48:5d:
24:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:39:BD:47:CE:AA:1D:75:86:79:84:F8:B0:80:FA:CD:03:AF:FD:2B
X509v3 Authority Key Identifier:
keyid:87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:de:4c:00:ef:cc:53:e1:00:ef:83:99:3a:31:41:09:10:0b:
6d:1a:66:6e:03:90:f4:55:7b:0c:5f:af:a1:6c:a0:bd:f3:7f:
f2:c3:8e:7d:be:a9:f4:91:37:cd:40:2c:0b:68:04:83:c0:df:
3d:03:88:4d:0b:7b:7b:93:a1:45:4b:a1:71:0a:75:f8:e2:1f:
42:68:2e:84:24:5c:05:ac:c4:c1:f4:eb:0c:cd:0a:4f:b7:33:
8c:8a:5d:86:9c:d0:ed:71:db:0f:31:59:23:ee:89:0e:aa:b3:
19:75:84:e8:c5:52:b2:59:cf:43:7b:22:76:e2:b5:3d:c8:4c:
1f:bd:7e:f8:68:a9:35:08:58:5b:46:66:3d:eb:c3:c0:0f:8a:
11:f8:14:49:9d:50:b0:0a:1e:45:98:70:e4:49:12:64:38:b0:
d1:e3:fc:70:3f:98:0b:0f:93:df:a3:e8:51:84:1c:7f:27:87:
09:85:ca:f7:50:2f:1c:45:46:e9:32:b0:c9:10:30:e9:32:2f:
8f:d2:2f:5c:5d:5b:28:6c:43:1a:dc:6b:71:82:42:9e:ae:96:
43:07:a5:fb:26:8d:4c:ae:e7:94:d7:a9:66:48:7a:a6:f2:3c:
8f:bc:d1:a3:a9:50:76:53:d9:01:ce:a5:b1:47:c8:b0:0d:e6:
9f:2d:8f:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHC+VyFwKJCW4PjV7SAhnaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ODQ3N2Q4YjYyZDA5ZjlhZThiZmRiZDgxMmE1M2Y5N2Vk
NGM1NzYwHhcNMjUwNjA2MjEwMDUxWhcNMjUwNjA3MjEwMDUxWjAzMTEwLwYDVQQD
EyhhZjM5YmQ0N2NlYWExZDc1ODY3OTg0ZjhiMDgwZmFjZDAzYWZmZDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1KUugsAmJrpQoe6rbmjNHSqTt/8+
Q4GoH4cIGGSYRDEIKIMR2hESnMArl8mn7meei2WATPqWjvNxmNigrwrzo0y6kiMT
Swcq/9ofvcHKAD62vpClgLpaf1IeacVcw8gd+0gchDeTNdCjDB3O07yYg4gIZuk4
FNRcdXLXis1TiwXD0INxtVxXkX1yIsvrjIidpBdl8EZSu7s5nHHbyB30k8pD1zDc
p6RHqi+L4xMntEoJdWbCcyYCJ+IYyN7Ritmi9I6AH/8mnUAHVBTxgvgPeYSx2k1X
nAp7TYVxvUU7JHtWp3UBjk4Vhjyx9TmMjo9U+3mTB/tnb1oTNtesSF0kHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK85vUfOqh11hnmE+LCA+s0Dr/0rMB8GA1UdIwQY
MBaAFIeEd9i2LQn5rov9vYEqU/l+1MV2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9lODNhYzUtNDQ4Yi00ZTQ5LThlYmYt
ODg0MmU1ZWRjZTAyLzEvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9lODNhYzUtNDQ4Yi00ZTQ5LThlYmYtODg0MmU1ZWRjZTAy
LzEvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGt5MAO/M
U+EA74OZOjFBCRALbRpmbgOQ9FV7DF+voWygvfN/8sOOfb6p9JE3zUAsC2gEg8Df
PQOITQt7e5OhRUuhcQp1+OIfQmguhCRcBazEwfTrDM0KT7czjIpdhpzQ7XHbDzFZ
I+6JDqqzGXWE6MVSslnPQ3siduK1PchMH71++GipNQhYW0ZmPevDwA+KEfgUSZ1Q
sAoeRZhw5EkSZDiw0eP8cD+YCw+T36PoUYQcfyeHCYXK91AvHEVG6TKwyRAw6TIv
j9IvXF1bKGxDGtxrcYJCnq6WQwel+yaNTK7nlNepZkh6pvI8j7zRo6lQdlPZAc6l
sUfIsA3mny2Pug==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:29:27 2025 by rpki-client