Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
File: b1frSRlt0uBgbVl3wrdLEBt5vAs.mft (raw, json)
Hash identifier: S5WNrTPZxTUojkfUXIygzcHBIru4dyg9gLLmPI+hHc0=
Subject key identifier: 32:85:A2:32:41:12:18:F7:5F:ED:23:6B:A9:B5:FB:68:CA:D5:B1:1F
Authority key identifier: 6F:57:EB:49:19:6D:D2:E0:60:6D:59:77:C2:B7:4B:10:1B:79:BC:0B
Certificate issuer: /CN=6f57eb49196dd2e0606d5977c2b74b101b79bc0b
Certificate serial: 0197C1921F44F99DC9EF798875004F3448A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
Manifest number: 084A
Signing time: Mon 30 Jun 2025 16:01:08 +0000
Manifest this update: Mon 30 Jun 2025 16:01:08 +0000
Manifest next update: Tue 01 Jul 2025 16:01:08 +0000
Files and hashes: 1: b1frSRlt0uBgbVl3wrdLEBt5vAs.crl (hash: sGEsgpJ1mQZ1z0kaVdmKU24xkFmwJlrqySvbPsJNyg0=)
2: qPQvBbAxayZH2DtXKePm47b3aIg.roa (hash: +EzjnlPCeBdtqBhNoYoGX7VYz3jpTXt4JQidHMxpNYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 14:23:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c1:92:1f:44:f9:9d:c9:ef:79:88:75:00:4f:34:48:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f57eb49196dd2e0606d5977c2b74b101b79bc0b
Validity
Not Before: Jun 30 16:01:08 2025 GMT
Not After : Jul 1 16:01:08 2025 GMT
Subject: CN=3285a232411218f75fed236ba9b5fb68cad5b11f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2a:bc:7e:86:1f:d7:55:af:f1:d7:35:15:1a:
c2:53:35:8b:78:68:97:cd:7a:6a:fd:49:0a:f9:8a:
d1:bb:39:5a:52:a0:a4:05:89:b2:1c:2f:86:0c:15:
2a:a7:38:ca:4d:c1:c1:c2:0f:df:52:2b:b7:c0:00:
d7:7d:61:83:64:40:7d:b1:01:88:20:d2:be:19:6e:
dc:a7:d4:1f:4b:01:80:06:38:41:36:ce:fd:d7:b3:
70:96:da:a4:40:30:e1:4f:93:bf:b8:e0:3e:b1:fb:
90:a2:2d:a1:e9:20:45:1b:14:08:e7:bf:ac:c7:88:
66:83:02:08:4f:87:91:1c:98:04:a4:6f:d7:ce:a4:
bb:c3:e9:58:f1:5b:ec:94:73:b1:2b:83:91:24:c1:
0f:00:dc:fc:f0:1b:26:d1:90:cb:d4:d4:80:a9:75:
b0:c0:d3:fa:e5:72:42:2a:6d:81:a5:78:42:e0:29:
4e:af:24:33:e1:f6:88:85:81:c7:1c:71:c5:dd:69:
2e:23:9c:97:bb:f0:ca:a8:73:f5:7b:1e:cb:0a:f5:
af:3d:51:88:bd:85:f7:5b:b4:61:a4:30:c3:d3:ba:
2e:b6:f1:ed:4a:16:b5:d4:e6:9c:e7:30:08:4d:31:
91:0a:83:8a:bd:a4:f6:3f:70:6c:96:0c:ab:eb:8a:
d8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:85:A2:32:41:12:18:F7:5F:ED:23:6B:A9:B5:FB:68:CA:D5:B1:1F
X509v3 Authority Key Identifier:
keyid:6F:57:EB:49:19:6D:D2:E0:60:6D:59:77:C2:B7:4B:10:1B:79:BC:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:26:06:4d:02:c7:f6:1b:f6:69:a0:0f:9e:47:f1:6d:5b:cf:
88:6a:ff:81:cb:d7:bd:22:b0:6b:4d:38:c3:5a:4d:3e:1b:dd:
65:cb:47:49:a9:ba:fc:05:33:c1:51:19:c2:e2:b9:87:ea:38:
82:ae:da:2d:71:fc:9b:f0:9e:89:b8:a9:20:3c:f1:21:bc:06:
11:8a:03:01:e6:e7:f4:bf:2b:78:fd:90:ee:52:54:c6:00:35:
02:6a:33:34:24:ad:3d:3f:f9:a2:d0:69:79:8d:88:50:2e:2c:
07:40:b5:fd:30:e1:26:72:d7:00:6e:54:e9:38:ca:f6:93:73:
c2:ba:df:60:0d:a2:da:cc:7d:12:e3:d0:bc:f0:df:98:7d:63:
e0:6f:cb:f8:8c:10:68:68:f0:d2:c7:10:21:3c:74:ef:f7:d9:
76:9d:b8:92:83:ad:4b:73:8c:5d:05:f1:66:77:3b:03:b5:57:
e0:bd:e1:c3:ae:59:60:87:8a:5d:1d:4f:01:4a:b3:1d:41:bb:
4d:a3:ba:ce:95:b6:f9:53:e1:35:3d:7d:8f:66:ca:54:2f:96:
5f:83:f1:9a:86:ba:ba:2c:5b:7e:3d:a7:83:b0:de:85:5a:4a:
41:32:b7:d3:11:6a:d0:c3:5e:8c:49:b2:ee:dd:67:f7:39:8e:
c1:eb:7e:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfBkh9E+Z3J73mIdQBPNEihMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmNTdlYjQ5MTk2ZGQyZTA2MDZkNTk3N2MyYjc0YjEwMWI3
OWJjMGIwHhcNMjUwNjMwMTYwMTA4WhcNMjUwNzAxMTYwMTA4WjAzMTEwLwYDVQQD
EygzMjg1YTIzMjQxMTIxOGY3NWZlZDIzNmJhOWI1ZmI2OGNhZDViMTFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAryq8foYf11Wv8dc1FRrCUzWLeGiX
zXpq/UkK+YrRuzlaUqCkBYmyHC+GDBUqpzjKTcHBwg/fUiu3wADXfWGDZEB9sQGI
INK+GW7cp9QfSwGABjhBNs7917NwltqkQDDhT5O/uOA+sfuQoi2h6SBFGxQI57+s
x4hmgwIIT4eRHJgEpG/XzqS7w+lY8VvslHOxK4ORJMEPANz88Bsm0ZDL1NSAqXWw
wNP65XJCKm2BpXhC4ClOryQz4faIhYHHHHHF3WkuI5yXu/DKqHP1ex7LCvWvPVGI
vYX3W7RhpDDD07outvHtSha11Oac5zAITTGRCoOKvaT2P3Bslgyr64rY6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDKFojJBEhj3X+0ja6m1+2jK1bEfMB8GA1UdIwQY
MBaAFG9X60kZbdLgYG1Zd8K3SxAbebwLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjFmclNSbHQwdUJnYlZsM3dyZExFQnQ1dkFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9jN2JmNGEtZGE5Ny00YjViLTg3MTkt
MzdiM2UyNDRjMDYzLzEvYjFmclNSbHQwdUJnYlZsM3dyZExFQnQ1dkFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9jN2JmNGEtZGE5Ny00YjViLTg3MTktMzdiM2UyNDRjMDYz
LzEvYjFmclNSbHQwdUJnYlZsM3dyZExFQnQ1dkFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdyYGTQLH
9hv2aaAPnkfxbVvPiGr/gcvXvSKwa004w1pNPhvdZctHSam6/AUzwVEZwuK5h+o4
gq7aLXH8m/CeibipIDzxIbwGEYoDAebn9L8reP2Q7lJUxgA1AmozNCStPT/5otBp
eY2IUC4sB0C1/TDhJnLXAG5U6TjK9pNzwrrfYA2i2sx9EuPQvPDfmH1j4G/L+IwQ
aGjw0scQITx07/fZdp24koOtS3OMXQXxZnc7A7VX4L3hw65ZYIeKXR1PAUqzHUG7
TaO6zpW2+VPhNT19j2bKVC+WX4Pxmoa6uixbfj2ng7DehVpKQTK30xFq0MNejEmy
7t1n9zmOwet+SA==
-----END CERTIFICATE-----
Generated at Mon Jun 30 19:50:27 2025 by rpki-client