Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier: WrY6WnkZiuk9RYjCmCjNBKUDKzJrKXZvPhSITLPbdC0=
Subject key identifier: 76:F3:BA:69:9B:3E:65:C6:E0:78:D2:5E:9F:48:ED:7E:39:80:A7:51
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 0197B6A16E46DA10D47728490AFB2D7D1153
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number: 1073
Signing time: Sat 28 Jun 2025 13:02:02 +0000
Manifest this update: Sat 28 Jun 2025 13:02:02 +0000
Manifest next update: Sun 29 Jun 2025 13:02:02 +0000
Files and hashes: 1: 0CceuujOUN7fI6SJWiU4I3JvZeo.roa (hash: ReNIag9nA9bjr82rfcj5JjzPGdjpj3RK7GRwiAamY6Q=)
2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: 67uG0i9ANxtjrJLu69oiFJvmwy6cL4CUGohMl5Z6Zjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:6e:46:da:10:d4:77:28:49:0a:fb:2d:7d:11:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: Jun 28 13:02:02 2025 GMT
Not After : Jun 29 13:02:02 2025 GMT
Subject: CN=76f3ba699b3e65c6e078d25e9f48ed7e3980a751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:87:2c:1c:52:c2:81:70:5e:21:b2:b0:50:3f:
98:94:29:e4:e4:35:85:98:39:32:cf:a6:18:e8:db:
26:ee:93:75:5a:d7:1e:ac:fc:23:de:a7:c9:e3:15:
f0:41:0c:45:1f:2f:bf:26:af:72:e8:c5:69:0f:04:
34:b1:b0:f6:ce:92:8d:04:bc:23:9d:45:ac:04:de:
8a:0d:cb:8d:7c:5c:7d:82:af:a5:34:2e:8c:03:8d:
c2:d4:08:58:a3:f5:27:31:fb:2a:59:57:a3:04:1a:
17:21:82:d5:e1:82:da:83:08:83:9c:c5:c1:51:7d:
44:71:b3:6d:23:37:44:91:c8:09:1e:e7:0e:1f:b6:
c5:22:d4:47:31:5f:7b:c3:cb:0c:49:7c:8a:08:6a:
8e:32:1c:01:34:5c:1a:e3:36:e7:f6:50:f2:88:e9:
7c:3d:54:bc:0f:91:ef:02:b4:bf:0b:d8:c2:d5:b2:
bc:88:57:97:54:44:3d:c1:53:2c:0c:1d:a1:47:aa:
d3:11:b2:3e:13:03:2b:ad:b4:8d:1c:f9:cf:8b:f5:
af:35:dc:64:ed:29:59:60:61:10:42:08:35:1a:9e:
f6:07:8b:2e:b5:91:43:58:02:04:68:79:85:0f:af:
23:d3:36:d5:43:32:cf:51:42:8c:e3:61:eb:3a:fa:
c4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:F3:BA:69:9B:3E:65:C6:E0:78:D2:5E:9F:48:ED:7E:39:80:A7:51
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:bd:fa:c6:ff:43:73:aa:44:e4:c6:66:6c:66:a0:bb:1f:36:
22:c1:f9:ef:e0:1c:44:60:c9:65:8e:20:3e:8f:3f:b0:9f:c9:
a7:9b:32:83:d3:7a:98:37:39:a8:92:86:69:07:ae:53:12:68:
9b:a9:bf:5e:0f:06:a5:88:97:3a:81:a8:4c:bb:3d:27:ef:b8:
94:67:91:af:e6:cb:57:04:e9:e3:5c:62:eb:44:12:d7:ec:12:
00:37:22:be:3b:74:78:fd:62:3a:74:89:3c:4c:41:49:54:83:
ac:2b:20:1d:70:42:74:57:41:11:e6:b2:03:9a:aa:27:e8:83:
d5:04:77:64:ed:bc:16:de:de:67:49:d6:ee:07:d4:80:c1:b5:
26:76:f2:c7:b2:2e:09:68:e0:fd:85:7b:f8:36:11:1c:13:b7:
8b:dc:4f:a2:1f:15:77:4a:fa:31:aa:5a:28:42:9d:ec:e4:f0:
4b:b0:47:e7:0e:a8:51:42:a8:5a:6e:f6:b6:c8:1b:f5:e5:dd:
6e:a8:26:67:d6:ca:fb:93:a4:13:63:9f:16:f5:df:a9:63:7c:
4e:d7:37:ba:de:5a:0e:0e:6f:eb:65:48:7b:99:ca:96:db:c4:
67:f1:5e:e9:83:af:3d:42:75:19:ae:f7:27:ee:4b:28:ab:39:
80:ae:f2:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oW5G2hDUdyhJCvstfRFTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3YmQ4ZWFlMTY2OWRlYjNhM2ZhNDE4NjQ5MWUwNWNiMzJj
ZTA5MmEwHhcNMjUwNjI4MTMwMjAyWhcNMjUwNjI5MTMwMjAyWjAzMTEwLwYDVQQD
Eyg3NmYzYmE2OTliM2U2NWM2ZTA3OGQyNWU5ZjQ4ZWQ3ZTM5ODBhNzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7YcsHFLCgXBeIbKwUD+YlCnk5DWF
mDkyz6YY6Nsm7pN1WtcerPwj3qfJ4xXwQQxFHy+/Jq9y6MVpDwQ0sbD2zpKNBLwj
nUWsBN6KDcuNfFx9gq+lNC6MA43C1AhYo/UnMfsqWVejBBoXIYLV4YLagwiDnMXB
UX1EcbNtIzdEkcgJHucOH7bFItRHMV97w8sMSXyKCGqOMhwBNFwa4zbn9lDyiOl8
PVS8D5HvArS/C9jC1bK8iFeXVEQ9wVMsDB2hR6rTEbI+EwMrrbSNHPnPi/WvNdxk
7SlZYGEQQgg1Gp72B4sutZFDWAIEaHmFD68j0zbVQzLPUUKM42HrOvrEzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHbzummbPmXG4HjSXp9I7X45gKdRMB8GA1UdIwQY
MBaAFLe9jq4Wad6zo/pBhkkeBcsyzgkqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9iMGJkYmQtODAxYy00YjBiLTlmYmUt
YWUxNWQ1MDc1OTBlLzEvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi9iMGJkYmQtODAxYy00YjBiLTlmYmUtYWUxNWQ1MDc1OTBl
LzEvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWb36xv9D
c6pE5MZmbGagux82IsH57+AcRGDJZY4gPo8/sJ/Jp5syg9N6mDc5qJKGaQeuUxJo
m6m/Xg8GpYiXOoGoTLs9J++4lGeRr+bLVwTp41xi60QS1+wSADcivjt0eP1iOnSJ
PExBSVSDrCsgHXBCdFdBEeayA5qqJ+iD1QR3ZO28Ft7eZ0nW7gfUgMG1Jnbyx7Iu
CWjg/YV7+DYRHBO3i9xPoh8Vd0r6MapaKEKd7OTwS7BH5w6oUUKoWm72tsgb9eXd
bqgmZ9bK+5OkE2OfFvXfqWN8Ttc3ut5aDg5v62VIe5nKltvEZ/Fe6YOvPUJ1Ga73
J+5LKKs5gK7yig==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:46:47 2025 by rpki-client