Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
File: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft (raw, json)
Hash identifier: ZtAby8kH45nagAVovaDe2zzGp7LBPWnKGTaKt+sxOc8=
Subject key identifier: 3A:F8:23:B8:FF:5C:38:CF:5F:5C:55:F4:ED:B2:CA:97:2F:21:DA:5E
Authority key identifier: A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
Certificate issuer: /CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Certificate serial: 0197B77CDEF1DBA91AB4B8859034F07E1649
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
Manifest number: 12B9
Signing time: Sat 28 Jun 2025 17:01:43 +0000
Manifest this update: Sat 28 Jun 2025 17:01:43 +0000
Manifest next update: Sun 29 Jun 2025 17:01:43 +0000
Files and hashes: 1: 6nka26L-7vbT-huqQ7zH80Ad2_Q.roa (hash: bi36P0sQvSkI3t0S3Th1jO23VxQKQmTqbcjBaO1g00A=)
2: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl (hash: USW0pp+htIQyZCZv4XTCX82YluH47GKn8dnLglHzM08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:de:f1:db:a9:1a:b4:b8:85:90:34:f0:7e:16:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Validity
Not Before: Jun 28 17:01:43 2025 GMT
Not After : Jun 29 17:01:43 2025 GMT
Subject: CN=3af823b8ff5c38cf5f5c55f4edb2ca972f21da5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c0:e3:c4:04:02:83:7f:33:5c:36:75:27:63:
99:7b:22:a5:d5:a5:aa:91:c9:ba:07:84:c4:9a:fa:
ce:3b:13:dd:b7:10:bf:de:a3:59:f0:05:d0:02:9c:
eb:7f:81:d3:3d:df:c3:1f:b1:6c:37:b7:cc:80:17:
a3:25:f5:d7:c9:69:27:17:10:ad:7a:bc:72:88:0d:
57:0a:61:4e:8c:e1:aa:ce:81:63:1d:b9:74:7c:47:
44:d5:cf:ae:e0:e1:9e:88:6d:0e:f3:b6:76:01:6c:
9e:a6:4a:85:5e:6c:9a:f3:e7:34:77:4a:83:4d:16:
9c:81:e4:8f:e8:a2:a1:f8:2a:31:77:3d:2f:da:49:
c2:3f:15:52:59:89:fd:1b:24:cd:71:1c:f0:01:8a:
13:26:cd:1c:68:6b:1f:98:eb:5f:56:7d:44:5a:35:
89:5f:6c:3f:c7:c5:d7:cb:f4:4f:bf:aa:1b:cb:ae:
ee:b8:27:5f:1c:64:19:58:9d:50:fb:9b:c4:b4:7a:
f9:61:f7:80:2e:49:29:c3:7b:d1:b7:ac:e1:e7:01:
ef:7d:9f:22:ec:41:3f:d2:e1:59:34:f9:a5:b0:25:
ca:f4:c3:9e:59:19:6c:98:88:5d:17:ee:77:42:0f:
60:9c:63:e7:49:f5:9f:78:a2:65:41:e9:6e:88:75:
5e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F8:23:B8:FF:5C:38:CF:5F:5C:55:F4:ED:B2:CA:97:2F:21:DA:5E
X509v3 Authority Key Identifier:
keyid:A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:44:ed:c9:83:76:41:71:1d:dd:71:8e:82:76:48:1a:f7:cb:
35:63:ee:14:53:82:17:26:d6:cf:4c:5e:68:7c:b9:36:92:12:
12:57:db:c2:7f:f9:69:73:82:70:fe:6a:35:46:59:76:cf:7d:
0d:2e:98:3d:2f:a8:34:5e:45:7a:25:e9:12:cb:97:56:eb:ca:
bf:a6:cb:79:78:0f:78:0d:4d:40:8c:2b:04:7b:5d:1e:c4:6c:
ee:13:62:eb:8c:8e:4e:60:26:9f:fb:70:a1:e2:d2:15:67:c7:
ab:4f:38:c4:cf:06:f8:d7:d5:46:02:a7:6c:1f:55:89:ca:e8:
a6:9b:b4:f0:55:a7:9c:6d:e8:2c:fd:6e:36:3e:62:07:55:5c:
c0:6a:22:a2:5d:22:8a:f9:40:a1:67:b0:fd:e9:b3:d0:a7:2c:
9e:fc:7c:24:c0:64:12:d1:6d:53:1c:a0:4a:83:c8:4b:61:5c:
b5:21:c6:b2:eb:52:02:ec:cf:26:55:f7:2d:e8:a9:e0:35:dc:
28:60:28:0c:20:48:14:d4:85:8e:fc:92:82:eb:86:8c:32:87:
d9:c4:b1:f1:92:75:52:52:70:27:d5:ae:30:e2:10:b8:e0:30:
52:87:7e:83:85:0e:4e:8a:75:4d:82:d3:17:8d:3d:9b:95:88:
cd:9b:0e:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fN7x26katLiFkDTwfhZJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3OTY3ZDc2YzJkNDY3MjBkNGNmYWMwNDU5ZmEzYzNkMjIw
MDUwNDQwHhcNMjUwNjI4MTcwMTQzWhcNMjUwNjI5MTcwMTQzWjAzMTEwLwYDVQQD
EygzYWY4MjNiOGZmNWMzOGNmNWY1YzU1ZjRlZGIyY2E5NzJmMjFkYTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcDjxAQCg38zXDZ1J2OZeyKl1aWq
kcm6B4TEmvrOOxPdtxC/3qNZ8AXQApzrf4HTPd/DH7FsN7fMgBejJfXXyWknFxCt
erxyiA1XCmFOjOGqzoFjHbl0fEdE1c+u4OGeiG0O87Z2AWyepkqFXmya8+c0d0qD
TRacgeSP6KKh+Coxdz0v2knCPxVSWYn9GyTNcRzwAYoTJs0caGsfmOtfVn1EWjWJ
X2w/x8XXy/RPv6oby67uuCdfHGQZWJ1Q+5vEtHr5YfeALkkpw3vRt6zh5wHvfZ8i
7EE/0uFZNPmlsCXK9MOeWRlsmIhdF+53Qg9gnGPnSfWfeKJlQeluiHVeWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDr4I7j/XDjPX1xV9O2yypcvIdpeMB8GA1UdIwQY
MBaAFKeWfXbC1Gcg1M+sBFn6PD0iAFBEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDVaOWRzTFVaeURVejZ3RVdmbzhQU0lBVUVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS84N2I3NjgtMTU0NS00OTRhLTg0Zjkt
MWNmNTBhNTM2MDI2LzEvcDVaOWRzTFVaeURVejZ3RVdmbzhQU0lBVUVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS84N2I3NjgtMTU0NS00OTRhLTg0ZjktMWNmNTBhNTM2MDI2
LzEvcDVaOWRzTFVaeURVejZ3RVdmbzhQU0lBVUVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMUTtyYN2
QXEd3XGOgnZIGvfLNWPuFFOCFybWz0xeaHy5NpISElfbwn/5aXOCcP5qNUZZds99
DS6YPS+oNF5FeiXpEsuXVuvKv6bLeXgPeA1NQIwrBHtdHsRs7hNi64yOTmAmn/tw
oeLSFWfHq084xM8G+NfVRgKnbB9Vicroppu08FWnnG3oLP1uNj5iB1VcwGoiol0i
ivlAoWew/emz0Kcsnvx8JMBkEtFtUxygSoPIS2FctSHGsutSAuzPJlX3Leip4DXc
KGAoDCBIFNSFjvySguuGjDKH2cSx8ZJ1UlJwJ9WuMOIQuOAwUod+g4UOTop1TYLT
F409m5WIzZsOIg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:30:01 2025 by rpki-client