Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
File: aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft (raw, json)
Hash identifier: R6Gbggo72OYWMuXKqIKmn27FprANpFjGgNJiKqMqjnI=
Subject key identifier: 14:BD:A8:63:91:78:59:F4:E2:B6:4D:1F:21:3C:47:D0:BB:A3:8B:C1
Authority key identifier: 68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
Certificate issuer: /CN=683b33dc7218b3fe883c49505134cb39a664fd28
Certificate serial: 0197BA7D283C8A27AA58E5DA2C1D3DB6A54B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
Manifest number: 0A20
Signing time: Sun 29 Jun 2025 07:00:53 +0000
Manifest this update: Sun 29 Jun 2025 07:00:53 +0000
Manifest next update: Mon 30 Jun 2025 07:00:53 +0000
Files and hashes: 1: PecnHh8YFMYIBEgD1PQBC-sYFMY.roa (hash: G67Iyj0Q7isunYlJO9b465cfL0xQGyEo+TS/2SlDQcA=)
2: aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl (hash: 5VZ7JHpe03aVsgm4Ej2DHXKM4aAZ4guFGGk6Ah/BloY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7d:28:3c:8a:27:aa:58:e5:da:2c:1d:3d:b6:a5:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=683b33dc7218b3fe883c49505134cb39a664fd28
Validity
Not Before: Jun 29 07:00:53 2025 GMT
Not After : Jun 30 07:00:53 2025 GMT
Subject: CN=14bda863917859f4e2b64d1f213c47d0bba38bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:f4:9b:bd:53:08:a8:ab:2c:62:03:c6:fa:e7:
00:20:3f:f6:05:60:db:14:11:7c:4f:ca:a9:ae:be:
67:ad:f7:15:23:46:56:cd:28:0b:d4:0d:06:85:03:
df:46:bc:86:71:0f:81:4a:c6:4a:64:87:be:c7:42:
a1:10:14:b6:7a:93:26:22:b3:f0:67:a0:0f:b2:3f:
f8:67:19:66:22:90:7f:c9:64:cf:8a:35:35:80:91:
a5:72:d2:ae:d4:e8:ef:fb:5d:30:84:93:d0:f0:31:
cb:8e:f1:a2:d1:82:ef:5d:f4:a5:96:7d:8a:6d:b3:
14:28:09:4f:f1:b9:d5:d2:3f:67:bb:5d:18:d5:c0:
f4:24:1a:33:50:fa:9c:5a:15:2a:1e:84:f6:d2:5f:
42:94:7b:b6:a7:76:ed:b0:33:94:d1:23:25:dd:05:
b7:ee:46:93:7a:4c:eb:8b:6e:18:da:72:34:00:e8:
b5:a4:ae:9a:0a:3f:36:b2:0f:2c:65:cd:3b:37:79:
54:99:e6:b9:98:a8:7d:10:8c:41:75:10:69:ef:2d:
70:79:70:21:2b:99:f6:fc:72:ec:48:04:c8:92:4f:
05:63:97:f7:b0:db:b4:12:d2:50:e9:ce:c4:99:87:
0e:3c:4b:0b:ba:6d:41:47:46:bf:28:93:90:68:7c:
50:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:BD:A8:63:91:78:59:F4:E2:B6:4D:1F:21:3C:47:D0:BB:A3:8B:C1
X509v3 Authority Key Identifier:
keyid:68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:58:33:5d:b6:39:7c:7c:2d:3f:81:9c:6d:92:80:a8:02:50:
af:36:cc:11:bb:62:5e:c2:e9:f1:61:c7:e4:89:84:00:d1:6e:
36:de:e6:aa:80:8b:98:e7:d1:2a:94:fc:42:3c:32:82:40:ef:
d5:12:1e:fa:ab:cf:a5:06:12:ec:66:88:fa:d4:2e:5b:44:7d:
7c:5b:e7:75:6d:57:30:cd:5e:1b:d5:82:90:39:ff:fa:e0:d6:
fa:8a:e3:b7:ef:3b:1b:87:44:4c:1c:62:e7:48:49:96:a7:0f:
08:b8:6b:fa:8c:89:8a:b7:26:51:ff:94:54:6d:46:b9:df:7b:
6d:32:80:c5:91:28:27:7c:48:a1:bf:7f:94:9b:00:b3:f6:fc:
c6:03:10:ba:3c:28:b2:28:c2:a2:47:06:bd:55:c7:03:9a:05:
1b:66:3b:26:4f:32:71:2b:0a:a1:fc:f4:a9:c5:3f:7e:5c:1f:
f7:3f:ab:ab:8c:b5:07:0a:d3:9f:d1:ea:0b:fa:7c:79:d1:a3:
de:96:66:6b:31:fb:51:af:17:0e:3c:34:c5:98:8c:62:35:d6:
2a:72:e7:cb:67:15:76:9c:a6:3f:7c:12:0a:d6:90:02:6e:1d:
09:7a:6a:22:81:cb:f3:ca:74:7e:82:3c:f0:6f:5c:12:93:c5:
f7:b0:21:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6fSg8iieqWOXaLB09tqVLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4M2IzM2RjNzIxOGIzZmU4ODNjNDk1MDUxMzRjYjM5YTY2
NGZkMjgwHhcNMjUwNjI5MDcwMDUzWhcNMjUwNjMwMDcwMDUzWjAzMTEwLwYDVQQD
EygxNGJkYTg2MzkxNzg1OWY0ZTJiNjRkMWYyMTNjNDdkMGJiYTM4YmMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+vSbvVMIqKssYgPG+ucAID/2BWDb
FBF8T8qprr5nrfcVI0ZWzSgL1A0GhQPfRryGcQ+BSsZKZIe+x0KhEBS2epMmIrPw
Z6APsj/4ZxlmIpB/yWTPijU1gJGlctKu1Ojv+10whJPQ8DHLjvGi0YLvXfSlln2K
bbMUKAlP8bnV0j9nu10Y1cD0JBozUPqcWhUqHoT20l9ClHu2p3btsDOU0SMl3QW3
7kaTekzri24Y2nI0AOi1pK6aCj82sg8sZc07N3lUmea5mKh9EIxBdRBp7y1weXAh
K5n2/HLsSATIkk8FY5f3sNu0EtJQ6c7EmYcOPEsLum1BR0a/KJOQaHxQeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBS9qGOReFn04rZNHyE8R9C7o4vBMB8GA1UdIwQY
MBaAFGg7M9xyGLP+iDxJUFE0yzmmZP0oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEt
MTRjNmI5NTRkOTc2LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEtMTRjNmI5NTRkOTc2
LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjFgzXbY5
fHwtP4GcbZKAqAJQrzbMEbtiXsLp8WHH5ImEANFuNt7mqoCLmOfRKpT8QjwygkDv
1RIe+qvPpQYS7GaI+tQuW0R9fFvndW1XMM1eG9WCkDn/+uDW+orjt+87G4dETBxi
50hJlqcPCLhr+oyJircmUf+UVG1Gud97bTKAxZEoJ3xIob9/lJsAs/b8xgMQujwo
sijCokcGvVXHA5oFG2Y7Jk8ycSsKofz0qcU/flwf9z+rq4y1BwrTn9HqC/p8edGj
3pZmazH7Ua8XDjw0xZiMYjXWKnLny2cVdpymP3wSCtaQAm4dCXpqIoHL88p0foI8
8G9cEpPF97AhOw==
-----END CERTIFICATE-----
Generated at Sun Jun 29 11:29:53 2025 by rpki-client