Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
File: unnFAIApfLnMDMk07jifUMPnPUo.mft (raw, json)
Hash identifier: KQoRWBltrY50c/NJ5KhQMoBAw+YEtSMLkWZ9RJYk8uE=
Subject key identifier: 65:23:CF:F7:EB:CA:33:47:D6:CF:13:BE:A2:10:43:6B:75:5C:B8:A9
Authority key identifier: BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
Certificate issuer: /CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Certificate serial: 0197BA7DB197F44FB8D3CF0C0BE4B7057D7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
Manifest number: 0485
Signing time: Sun 29 Jun 2025 07:01:29 +0000
Manifest this update: Sun 29 Jun 2025 07:01:29 +0000
Manifest next update: Mon 30 Jun 2025 07:01:29 +0000
Files and hashes: 1: CpPRk_TNW4CH4jbImpFoaI2OcL4.roa (hash: eYYsy6V5aRdmdwv40uWtw/bgoED55t23eDlp8kMf818=)
2: unnFAIApfLnMDMk07jifUMPnPUo.crl (hash: fvXvHrCxg4bRrWvKVxmGD6RbCe1qElG3x2itgx5xrH4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 07:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7d:b1:97:f4:4f:b8:d3:cf:0c:0b:e4:b7:05:7d:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Validity
Not Before: Jun 29 07:01:29 2025 GMT
Not After : Jun 30 07:01:29 2025 GMT
Subject: CN=6523cff7ebca3347d6cf13bea210436b755cb8a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a4:24:88:05:3c:cb:65:4f:d7:54:53:cc:80:
8c:65:e8:9b:6f:f7:5f:73:3f:8d:89:de:52:9f:21:
e7:97:02:a4:f1:1f:89:91:f0:a6:d5:cd:bf:00:ac:
e5:2e:90:f2:9b:1a:8e:7f:cb:40:8a:7a:cd:b2:d7:
1d:a5:d5:7e:59:89:cd:bb:11:7d:49:5c:10:ab:06:
a7:c4:53:05:0d:1b:da:68:f6:c5:28:38:59:d7:7a:
f6:e8:a6:18:37:73:d5:00:d5:2f:76:a5:4a:fb:e2:
d0:c0:22:a1:0c:a3:64:d1:e1:d0:61:2e:26:ab:d5:
79:c2:27:3b:e8:80:74:e2:6d:d2:90:32:7d:a7:38:
95:e9:8a:17:94:0a:09:74:76:5f:05:40:85:d1:e9:
14:a1:b0:f6:15:62:1b:70:d6:e3:dd:28:3c:4c:e0:
81:8b:93:94:ae:21:83:c3:8d:00:e0:e3:bb:5d:f4:
51:78:49:40:3e:1e:9e:16:58:c4:23:84:a9:30:86:
05:d7:bf:00:38:9d:df:3c:aa:05:1b:a9:b0:ce:e4:
dc:55:da:08:17:0b:b7:b7:ec:44:e4:3a:b4:1e:24:
32:d6:67:1b:08:02:b5:3d:12:7a:6f:06:ba:78:51:
94:fb:c4:da:2a:e5:fe:70:f4:3a:84:ff:dd:36:ea:
df:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:23:CF:F7:EB:CA:33:47:D6:CF:13:BE:A2:10:43:6B:75:5C:B8:A9
X509v3 Authority Key Identifier:
keyid:BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:39:77:95:9d:c6:e7:3a:f3:d8:5f:e0:e7:85:c8:76:c6:bb:
d3:52:34:8c:3a:3b:64:56:4a:58:8d:22:7b:e2:9f:15:5a:a3:
3c:fc:dd:30:5a:e8:b6:b8:d0:52:9c:cf:10:79:18:21:60:5e:
0b:ea:d5:c1:20:6b:d3:c7:d3:12:bf:a7:88:e0:b8:d2:e5:40:
76:95:83:1a:40:72:9b:80:37:ce:0c:9a:f4:0e:37:81:23:26:
86:de:fa:5e:8c:9f:ce:0d:81:6c:41:ae:2a:16:fc:94:18:04:
cc:db:66:56:a7:94:c3:90:4c:77:0e:e7:6e:d6:97:86:80:3c:
3b:37:19:32:a1:f6:29:55:81:4a:05:65:93:6d:fe:93:c3:cc:
89:24:d4:8c:4d:6b:83:20:90:bd:d7:7c:1c:3f:74:7f:ed:b2:
a3:d3:d7:fe:5f:e2:8c:09:43:4b:ee:5e:08:b8:33:01:ac:7a:
47:41:d5:33:43:15:c7:54:67:27:13:74:90:3f:ba:a2:a3:99:
29:83:60:b3:bf:de:ca:2a:99:c0:0b:f7:7c:1a:ee:25:0f:bc:
3f:a8:1a:d0:c3:b9:55:73:f7:d8:4d:36:5f:58:b4:fd:9b:2d:
ac:71:bf:71:9a:da:b1:09:dd:88:8a:99:c5:fc:72:13:3f:77:
cd:81:b0:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6fbGX9E+4088MC+S3BX1/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNzljNTAwODAyOTdjYjljYzBjYzkzNGVlMzg5ZjUwYzNl
NzNkNGEwHhcNMjUwNjI5MDcwMTI5WhcNMjUwNjMwMDcwMTI5WjAzMTEwLwYDVQQD
Eyg2NTIzY2ZmN2ViY2EzMzQ3ZDZjZjEzYmVhMjEwNDM2Yjc1NWNiOGE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw6QkiAU8y2VP11RTzICMZeibb/df
cz+Nid5SnyHnlwKk8R+JkfCm1c2/AKzlLpDymxqOf8tAinrNstcdpdV+WYnNuxF9
SVwQqwanxFMFDRvaaPbFKDhZ13r26KYYN3PVANUvdqVK++LQwCKhDKNk0eHQYS4m
q9V5wic76IB04m3SkDJ9pziV6YoXlAoJdHZfBUCF0ekUobD2FWIbcNbj3Sg8TOCB
i5OUriGDw40A4OO7XfRReElAPh6eFljEI4SpMIYF178AOJ3fPKoFG6mwzuTcVdoI
Fwu3t+xE5Dq0HiQy1mcbCAK1PRJ6bwa6eFGU+8TaKuX+cPQ6hP/dNurf7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGUjz/fryjNH1s8TvqIQQ2t1XLipMB8GA1UdIwQY
MBaAFLp5xQCAKXy5zAzJNO44n1DD5z1KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW5uRkFJQXBmTG5NRE1rMDdqaWZVTVBuUFVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9hNjIxYTgtZTA3OS00YTE0LTk4YmEt
ZTM2YTk3OTNlYTZkLzEvdW5uRkFJQXBmTG5NRE1rMDdqaWZVTVBuUFVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9hNjIxYTgtZTA3OS00YTE0LTk4YmEtZTM2YTk3OTNlYTZk
LzEvdW5uRkFJQXBmTG5NRE1rMDdqaWZVTVBuUFVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbzl3lZ3G
5zrz2F/g54XIdsa701I0jDo7ZFZKWI0ie+KfFVqjPPzdMFrotrjQUpzPEHkYIWBe
C+rVwSBr08fTEr+niOC40uVAdpWDGkBym4A3zgya9A43gSMmht76Xoyfzg2BbEGu
Khb8lBgEzNtmVqeUw5BMdw7nbtaXhoA8OzcZMqH2KVWBSgVlk23+k8PMiSTUjE1r
gyCQvdd8HD90f+2yo9PX/l/ijAlDS+5eCLgzAax6R0HVM0MVx1RnJxN0kD+6oqOZ
KYNgs7/eyiqZwAv3fBruJQ+8P6ga0MO5VXP32E02X1i0/ZstrHG/cZrasQndiIqZ
xfxyEz93zYGwZg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 16:48:38 2025 by rpki-client