Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: YOf6KzHbe8QNXBPfIB1pLuEfrWaq6sEHL1o5DMeB6QE=
Subject key identifier: 79:1F:09:22:34:C8:40:21:79:F6:43:24:0B:9C:27:3D:83:30:F3:F8
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 0197C1245F4E86D071F932B8AC431E3A1468
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 0A8B
Signing time: Mon 30 Jun 2025 14:01:15 +0000
Manifest this update: Mon 30 Jun 2025 14:01:15 +0000
Manifest next update: Tue 01 Jul 2025 14:01:15 +0000
Files and hashes: 1: WJX8pUUgztAx5ziEUO7pdOPaYpY.roa (hash: Zv2hcAwndmbcI8AgNFSDMAAPE42QlNQ0rd+YTdhMpog=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: 2AoeVyb1jg/moLy9ITtGf5kUjKbOgCvDr9ipMZ5bJrw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 14:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c1:24:5f:4e:86:d0:71:f9:32:b8:ac:43:1e:3a:14:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: Jun 30 14:01:15 2025 GMT
Not After : Jul 1 14:01:15 2025 GMT
Subject: CN=791f092234c8402179f643240b9c273d8330f3f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9b:0c:5b:ee:95:2f:34:ca:98:4a:b3:2b:7f:
f6:ce:d1:c3:26:ab:95:2b:3c:d2:69:59:85:a9:4a:
74:37:96:ea:86:18:76:32:b6:df:d2:8c:a5:d5:b0:
8d:6b:91:78:fb:b1:64:f2:01:04:a0:b5:0f:7a:03:
c0:37:55:d6:d1:6c:79:83:06:89:bf:12:0d:c8:df:
ea:72:10:68:ef:71:f0:ca:b8:f4:42:74:b5:28:3e:
82:ce:70:f6:66:15:26:fb:9e:4b:d8:49:69:80:77:
9f:18:b9:60:a1:c6:b9:b4:25:19:58:15:b9:3a:f3:
eb:7b:34:25:7b:37:9d:79:0f:25:b2:0c:27:2b:14:
59:da:64:52:cf:49:82:ef:0d:07:c1:e4:67:82:61:
09:e7:2e:07:99:fc:35:ce:83:47:a5:bd:e8:3c:f8:
23:9c:b2:01:e4:2c:9b:17:63:54:35:e9:c0:cf:72:
93:08:a9:31:2a:a8:e5:20:b2:20:eb:26:5b:9b:85:
4d:b9:27:5b:7a:7d:f3:ac:63:fa:1a:a8:b7:58:95:
a4:d7:49:5c:07:57:f8:23:99:7a:f5:7c:f9:93:9b:
17:6a:e3:e9:02:c2:34:57:c2:5f:37:10:f0:a9:c9:
c1:e9:24:d5:39:8c:cb:56:51:5f:8f:f3:a3:ea:eb:
8c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1F:09:22:34:C8:40:21:79:F6:43:24:0B:9C:27:3D:83:30:F3:F8
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:07:75:99:44:49:b9:8d:5f:04:4a:61:9f:cd:45:6d:85:b4:
51:b4:f3:89:96:7d:62:55:00:d9:93:78:94:43:19:a3:1c:36:
58:3c:e7:9c:0e:55:22:80:f0:7a:54:94:5c:f4:ea:36:1e:9c:
92:24:da:6e:e0:06:15:6b:73:4b:63:9b:9c:67:e5:54:f1:ad:
c7:b7:dc:0d:b5:16:51:0f:5a:43:27:74:b1:66:6c:6c:1d:6a:
85:fa:38:e8:e2:50:60:41:8e:ea:85:9e:14:fb:be:d1:dd:cf:
bf:2e:03:68:2d:cb:37:3b:34:21:f5:46:c9:b6:51:f3:05:72:
84:86:99:69:6f:41:a7:ba:d3:53:cc:94:10:d5:97:17:e9:f4:
31:f3:fa:13:86:4d:e2:55:6d:22:5e:42:db:c0:e7:55:6f:71:
e4:cc:9f:ff:03:17:92:e4:6a:3f:ea:50:6a:8c:64:49:d4:7d:
fb:b6:59:98:fd:6a:8c:b1:fe:f4:50:29:c5:a2:d2:55:b6:e0:
17:44:e3:40:89:60:39:4f:03:84:47:ae:bb:73:f0:73:14:38:
25:35:a9:46:7f:77:c4:08:b0:ad:27:7b:06:d5:52:41:c0:31:
4b:a7:6c:fe:93:b7:ef:39:3b:cd:83:75:af:ed:49:ed:bf:38:
32:d7:a3:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfBJF9OhtBx+TK4rEMeOhRoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0M2Q0ZTlmZTNhNTQ4N2QyMGYxMDAwMTkxNjI5MTUwZjYy
OGYzYTEwHhcNMjUwNjMwMTQwMTE1WhcNMjUwNzAxMTQwMTE1WjAzMTEwLwYDVQQD
Eyg3OTFmMDkyMjM0Yzg0MDIxNzlmNjQzMjQwYjljMjczZDgzMzBmM2Y4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppsMW+6VLzTKmEqzK3/2ztHDJquV
KzzSaVmFqUp0N5bqhhh2Mrbf0oyl1bCNa5F4+7Fk8gEEoLUPegPAN1XW0Wx5gwaJ
vxINyN/qchBo73Hwyrj0QnS1KD6CznD2ZhUm+55L2ElpgHefGLlgoca5tCUZWBW5
OvPrezQlezedeQ8lsgwnKxRZ2mRSz0mC7w0HweRngmEJ5y4Hmfw1zoNHpb3oPPgj
nLIB5CybF2NUNenAz3KTCKkxKqjlILIg6yZbm4VNuSdben3zrGP6Gqi3WJWk10lc
B1f4I5l69Xz5k5sXauPpAsI0V8JfNxDwqcnB6STVOYzLVlFfj/Oj6uuMnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHkfCSI0yEAhefZDJAucJz2DMPP4MB8GA1UdIwQY
MBaAFLQ9Tp/jpUh9IPEAAZFikVD2KPOhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8xOGQwMzUtMzQ5NC00YWI3LWE1Y2It
OWY3ODhmZDI3NTIwLzEvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi8xOGQwMzUtMzQ5NC00YWI3LWE1Y2ItOWY3ODhmZDI3NTIw
LzEvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdAd1mURJ
uY1fBEphn81FbYW0UbTziZZ9YlUA2ZN4lEMZoxw2WDznnA5VIoDwelSUXPTqNh6c
kiTabuAGFWtzS2ObnGflVPGtx7fcDbUWUQ9aQyd0sWZsbB1qhfo46OJQYEGO6oWe
FPu+0d3Pvy4DaC3LNzs0IfVGybZR8wVyhIaZaW9Bp7rTU8yUENWXF+n0MfP6E4ZN
4lVtIl5C28DnVW9x5Myf/wMXkuRqP+pQaoxkSdR9+7ZZmP1qjLH+9FApxaLSVbbg
F0TjQIlgOU8DhEeuu3PwcxQ4JTWpRn93xAiwrSd7BtVSQcAxS6ds/pO37zk7zYN1
r+1J7b84MtejVw==
-----END CERTIFICATE-----
Generated at Mon Jun 30 23:47:02 2025 by rpki-client