Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
File: tF5iJw0g-UZ6avx4lj28-4D79So.mft (raw, json)
Hash identifier: BkbPUQW1cHgxmgemdJwa+przQGZDGfdZS1+HJC8X/Us=
Subject key identifier: E8:A1:D5:80:78:47:2D:92:13:74:FF:94:58:89:BE:C7:09:FD:6A:9D
Authority key identifier: B4:5E:62:27:0D:20:F9:46:7A:6A:FC:78:96:3D:BC:FB:80:FB:F5:2A
Certificate issuer: /CN=b45e62270d20f9467a6afc78963dbcfb80fbf52a
Certificate serial: 0197BA7E7DEB806BC5B7AB633525D8EBB52E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tF5iJw0g-UZ6avx4lj28-4D79So.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
Manifest number: 0D36
Signing time: Sun 29 Jun 2025 07:02:21 +0000
Manifest this update: Sun 29 Jun 2025 07:02:21 +0000
Manifest next update: Mon 30 Jun 2025 07:02:21 +0000
Files and hashes: 1: tF5iJw0g-UZ6avx4lj28-4D79So.crl (hash: oTZnqvaVgQynvJGTO2xlQbh++E2hdPQIiasDQlOwq5I=)
2: uvCFX9itk7RPxPZl6lvvghFjg1E.roa (hash: P3N8o135VPbcqFaS3kCnXkMSVi3GCBY96T9QuQyMyig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
rsync://rpki.ripe.net/repository/DEFAULT/tF5iJw0g-UZ6avx4lj28-4D79So.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7e:7d:eb:80:6b:c5:b7:ab:63:35:25:d8:eb:b5:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45e62270d20f9467a6afc78963dbcfb80fbf52a
Validity
Not Before: Jun 29 07:02:21 2025 GMT
Not After : Jun 30 07:02:21 2025 GMT
Subject: CN=e8a1d58078472d921374ff945889bec709fd6a9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3a:b4:d6:7a:ec:88:b0:89:74:57:71:5f:58:
19:6d:b1:c7:a8:00:0b:a7:a0:78:04:9c:79:9f:57:
6a:81:70:3b:0a:2f:a6:97:95:4c:52:0e:c9:6a:fa:
39:b4:88:20:14:88:75:c2:95:cc:ed:1c:67:2e:3c:
4c:ce:59:62:e6:2c:9a:e5:db:a8:87:73:e4:5c:e4:
96:a3:3c:e1:12:86:2a:2c:68:eb:2c:95:0a:41:a1:
f8:af:9a:30:9b:22:92:0d:45:02:a4:e7:2b:ec:9b:
f8:66:30:e5:3b:39:03:09:99:79:93:c3:ed:7b:4d:
70:be:4c:9f:c1:52:3f:61:ab:be:e7:4f:fd:86:3e:
18:e7:71:80:1d:3d:87:36:27:58:93:1e:73:3f:62:
92:e0:46:a2:44:c7:3c:dd:27:3a:e4:6b:76:45:08:
e0:95:b0:01:a0:dc:1b:df:85:df:2d:47:31:29:b4:
1e:78:81:d4:00:62:6c:7c:19:a2:df:28:e9:88:3a:
36:60:bd:d3:4c:ac:04:93:ce:f7:33:ac:bf:2b:ef:
4a:70:e0:93:9e:b7:d1:44:6e:12:5e:ec:a2:62:12:
b5:f0:4e:8a:a4:29:c6:80:97:d4:39:9c:bb:18:85:
ae:69:17:34:af:b2:3a:df:03:64:de:9a:e6:38:75:
d2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A1:D5:80:78:47:2D:92:13:74:FF:94:58:89:BE:C7:09:FD:6A:9D
X509v3 Authority Key Identifier:
keyid:B4:5E:62:27:0D:20:F9:46:7A:6A:FC:78:96:3D:BC:FB:80:FB:F5:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tF5iJw0g-UZ6avx4lj28-4D79So.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:94:4f:47:c7:ad:9f:e4:b3:ae:6f:3d:7c:73:c6:d1:7b:66:
49:7a:cb:75:b4:4a:92:9f:74:6f:d2:5c:40:d3:2f:0c:89:5d:
22:da:01:0a:ea:4d:09:d7:9f:f1:09:0d:4a:b8:e2:60:b5:4a:
ae:be:1e:3e:4c:4e:93:58:a2:3d:3d:e1:52:8c:e3:96:fd:57:
98:fa:ee:a5:36:fe:79:bf:fb:2a:f8:b5:05:12:ce:11:6a:68:
18:bb:2e:20:0a:45:bd:62:76:93:9e:8e:83:bf:1c:db:ea:5a:
66:82:e1:4b:6d:b9:ab:78:d6:10:59:12:c1:14:29:64:dd:fc:
a6:78:63:f0:60:c5:4f:b1:83:66:c5:cd:fe:4d:3c:ca:1b:0b:
d5:29:d6:2f:cc:9b:9f:ce:77:e2:20:cb:07:af:66:85:0b:c9:
ca:3d:cd:1c:69:55:c8:10:13:a6:41:4b:bc:5b:c1:b3:70:30:
3f:db:7d:3e:ec:0b:d9:26:9e:14:9d:2d:d3:fc:0d:b6:cc:55:
01:60:3b:cb:3f:23:ee:df:16:1a:de:f1:eb:fb:11:1b:d5:3b:
4f:cc:ce:21:8d:29:ab:20:e9:53:bb:6c:34:ee:92:63:37:c7:
8c:8b:ca:8e:e1:fa:65:3f:9b:6d:4e:93:14:29:48:e1:77:80:
32:bd:17:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6fn3rgGvFt6tjNSXY67UuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0NWU2MjI3MGQyMGY5NDY3YTZhZmM3ODk2M2RiY2ZiODBm
YmY1MmEwHhcNMjUwNjI5MDcwMjIxWhcNMjUwNjMwMDcwMjIxWjAzMTEwLwYDVQQD
EyhlOGExZDU4MDc4NDcyZDkyMTM3NGZmOTQ1ODg5YmVjNzA5ZmQ2YTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTq01nrsiLCJdFdxX1gZbbHHqAAL
p6B4BJx5n1dqgXA7Ci+ml5VMUg7Javo5tIggFIh1wpXM7RxnLjxMzlli5iya5duo
h3PkXOSWozzhEoYqLGjrLJUKQaH4r5owmyKSDUUCpOcr7Jv4ZjDlOzkDCZl5k8Pt
e01wvkyfwVI/Yau+50/9hj4Y53GAHT2HNidYkx5zP2KS4EaiRMc83Sc65Gt2RQjg
lbABoNwb34XfLUcxKbQeeIHUAGJsfBmi3yjpiDo2YL3TTKwEk873M6y/K+9KcOCT
nrfRRG4SXuyiYhK18E6KpCnGgJfUOZy7GIWuaRc0r7I63wNk3prmOHXSGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOih1YB4Ry2SE3T/lFiJvscJ/WqdMB8GA1UdIwQY
MBaAFLReYicNIPlGemr8eJY9vPuA+/UqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEY1aUp3MGctVVo2YXZ4NGxqMjgtNEQ3OVNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9lY2I0NWUtMmRiNi00YjU0LWJjOTEt
MDU5NjI5NmYxMmRlLzEvdEY1aUp3MGctVVo2YXZ4NGxqMjgtNEQ3OVNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9lY2I0NWUtMmRiNi00YjU0LWJjOTEtMDU5NjI5NmYxMmRl
LzEvdEY1aUp3MGctVVo2YXZ4NGxqMjgtNEQ3OVNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwZRPR8et
n+Szrm89fHPG0XtmSXrLdbRKkp90b9JcQNMvDIldItoBCupNCdef8QkNSrjiYLVK
rr4ePkxOk1iiPT3hUozjlv1XmPrupTb+eb/7Kvi1BRLOEWpoGLsuIApFvWJ2k56O
g78c2+paZoLhS225q3jWEFkSwRQpZN38pnhj8GDFT7GDZsXN/k08yhsL1SnWL8yb
n8534iDLB69mhQvJyj3NHGlVyBATpkFLvFvBs3AwP9t9PuwL2SaeFJ0t0/wNtsxV
AWA7yz8j7t8WGt7x6/sRG9U7T8zOIY0pqyDpU7tsNO6SYzfHjIvKjuH6ZT+bbU6T
FClI4XeAMr0Xnw==
-----END CERTIFICATE-----
Generated at Sun Jun 29 08:50:12 2025 by rpki-client