Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: 8uP284NEi3kjA8diHYgy6EYMAH0YYicVNvuuUEbCh28=
Subject key identifier: 29:A6:2A:9B:E6:9B:5C:72:F9:B5:4A:36:FE:35:42:C9:4C:5B:AD:4D
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 0197B6D78604E7DFF3122F0665F62621C2FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 0208
Signing time: Sat 28 Jun 2025 14:01:07 +0000
Manifest this update: Sat 28 Jun 2025 14:01:07 +0000
Manifest next update: Sun 29 Jun 2025 14:01:07 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: l1RC6oLjwuk0K54VSoQVuhi3gd4/4vW4d0CDdQcb/oI=)
2: LL8JcAdqtBuww975zCJ3NT8wbIo.roa (hash: OazqFiciLO+01js5WnVLTxcyLBf+8JShIpJGoJGbyKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:86:04:e7:df:f3:12:2f:06:65:f6:26:21:c2:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: Jun 28 14:01:07 2025 GMT
Not After : Jun 29 14:01:07 2025 GMT
Subject: CN=29a62a9be69b5c72f9b54a36fe3542c94c5bad4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:36:80:14:31:f6:34:8f:12:f8:fd:46:59:16:
b3:1e:8e:f0:07:90:19:82:c7:33:18:52:14:a8:ed:
26:9b:69:c7:9e:83:37:cf:64:ca:e0:27:30:25:ef:
96:c6:3d:93:2e:4c:22:84:a9:b0:07:1e:06:62:34:
9c:ca:e0:ab:93:58:6a:fa:3d:d8:6f:67:99:15:a9:
3e:b8:67:46:83:d7:a0:22:a8:73:37:36:bb:a2:92:
68:78:f6:06:d1:1f:72:a2:3b:58:f4:e9:db:36:f7:
1f:a2:d1:9f:25:6b:b0:ea:01:f2:d2:d6:27:c1:bf:
26:15:c0:f0:1d:61:c9:27:ad:d4:5f:77:6c:e2:de:
42:db:af:6e:fd:9c:73:dc:29:5d:72:6f:16:79:4c:
c1:fc:1c:6e:56:8c:3e:05:49:08:52:0b:51:e8:45:
90:31:55:82:43:b8:cc:d7:24:c8:cb:7e:a5:50:03:
00:f6:de:59:13:92:88:5f:75:60:a3:0e:3c:6c:1f:
5d:30:8e:e0:bb:27:7f:e1:d3:a4:c3:39:af:d1:3c:
73:eb:63:97:dc:d4:7b:78:07:a4:43:97:6c:08:03:
d0:61:45:5b:fa:db:5c:11:14:54:89:da:97:ab:55:
ea:44:54:10:ed:58:f5:1b:1d:67:66:6a:10:b9:ec:
39:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:A6:2A:9B:E6:9B:5C:72:F9:B5:4A:36:FE:35:42:C9:4C:5B:AD:4D
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:99:86:cc:45:21:33:e6:04:f6:2e:4e:78:5b:ca:f3:72:22:
d7:1e:42:5e:03:c8:2a:75:f9:8e:ba:9a:a0:bb:70:26:67:08:
30:df:3f:fe:35:40:47:bb:9c:67:1f:83:a7:1c:d7:16:d5:25:
1d:61:3d:c6:c2:84:6d:b5:53:6e:4a:18:60:59:98:09:1a:c0:
95:d0:f0:22:58:76:26:3d:5c:d4:3c:17:85:e3:45:16:a5:84:
6a:15:2d:cc:22:42:68:e9:9c:72:0a:82:34:45:d5:14:76:4b:
f7:f6:7e:4b:87:b6:32:56:cd:71:ea:19:e0:c4:05:c2:ed:36:
4d:58:7c:75:89:14:4c:22:96:8e:e3:c2:03:c1:19:27:f6:0d:
61:aa:52:63:c5:ab:21:21:f5:9b:3b:72:e5:6e:d0:95:b8:96:
1a:18:5e:28:ab:28:3c:5c:7c:8e:1f:ea:60:27:9d:22:e4:89:
d0:cf:ec:66:a5:d5:c2:96:6d:0a:ab:d6:68:02:3b:ee:f0:20:
cf:fb:65:7f:10:19:f8:2e:77:27:b4:c7:f3:74:9d:73:c9:4a:
11:4e:79:cc:78:5c:85:67:4b:36:6c:87:5a:cc:58:a5:9f:15:
48:85:94:44:11:f6:d8:e3:01:d7:54:87:f3:e1:8c:4c:fc:44:
03:e1:ad:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe214YE59/zEi8GZfYmIcL8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyZDg5MWIwZTMyOGU3Yzg1NmFkNGI3YTA3NjRkODJkODU2
MDk2ZDYwHhcNMjUwNjI4MTQwMTA3WhcNMjUwNjI5MTQwMTA3WjAzMTEwLwYDVQQD
EygyOWE2MmE5YmU2OWI1YzcyZjliNTRhMzZmZTM1NDJjOTRjNWJhZDRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvTaAFDH2NI8S+P1GWRazHo7wB5AZ
gsczGFIUqO0mm2nHnoM3z2TK4CcwJe+Wxj2TLkwihKmwBx4GYjScyuCrk1hq+j3Y
b2eZFak+uGdGg9egIqhzNza7opJoePYG0R9yojtY9OnbNvcfotGfJWuw6gHy0tYn
wb8mFcDwHWHJJ63UX3ds4t5C269u/Zxz3Cldcm8WeUzB/BxuVow+BUkIUgtR6EWQ
MVWCQ7jM1yTIy36lUAMA9t5ZE5KIX3Vgow48bB9dMI7guyd/4dOkwzmv0Txz62OX
3NR7eAekQ5dsCAPQYUVb+ttcERRUidqXq1XqRFQQ7Vj1Gx1nZmoQuew5xwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCmmKpvmm1xy+bVKNv41QslMW61NMB8GA1UdIwQY
MBaAFNLYkbDjKOfIVq1Legdk2C2FYJbWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHRpUnNPTW81OGhXclV0NkIyVFlMWVZnbHRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83ZmQ4NWQtMDE1Mi00ZWYyLTllYmYt
MWUyNDBiOTdkMmM0LzEvMHRpUnNPTW81OGhXclV0NkIyVFlMWVZnbHRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi83ZmQ4NWQtMDE1Mi00ZWYyLTllYmYtMWUyNDBiOTdkMmM0
LzEvMHRpUnNPTW81OGhXclV0NkIyVFlMWVZnbHRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATpmGzEUh
M+YE9i5OeFvK83Ii1x5CXgPIKnX5jrqaoLtwJmcIMN8//jVAR7ucZx+DpxzXFtUl
HWE9xsKEbbVTbkoYYFmYCRrAldDwIlh2Jj1c1DwXheNFFqWEahUtzCJCaOmccgqC
NEXVFHZL9/Z+S4e2MlbNceoZ4MQFwu02TVh8dYkUTCKWjuPCA8EZJ/YNYapSY8Wr
ISH1mzty5W7QlbiWGhheKKsoPFx8jh/qYCedIuSJ0M/sZqXVwpZtCqvWaAI77vAg
z/tlfxAZ+C53J7TH83Sdc8lKEU55zHhchWdLNmyHWsxYpZ8VSIWURBH22OMB11SH
8+GMTPxEA+GtEQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:58:09 2025 by rpki-client