Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
File: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft (raw, json)
Hash identifier: 1/Ux6MZGD/st570MDhUnwERbyBge9XhDaHOVcGNAUKE=
Subject key identifier: E7:00:71:21:B2:6A:46:97:91:AA:0A:98:4E:DC:86:8C:3B:03:29:E5
Authority key identifier: D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
Certificate issuer: /CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Certificate serial: 0197B6D7B20799FAD202520F0972DA88139F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
Manifest number: 12F9
Signing time: Sat 28 Jun 2025 14:01:18 +0000
Manifest this update: Sat 28 Jun 2025 14:01:18 +0000
Manifest next update: Sun 29 Jun 2025 14:01:18 +0000
Files and hashes: 1: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl (hash: c2xm7iab4wJy8+ZyBjHoFJHIE3nvlOH0CgIZSRDb+5U=)
2: 5tz1cuLC3Spal7LSIEjI-Qlcl6U.roa (hash: XSoR4/ODhnGd0USG7NRxHx6V9kNwJuT3OUfa19EcNCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:b2:07:99:fa:d2:02:52:0f:09:72:da:88:13:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Validity
Not Before: Jun 28 14:01:18 2025 GMT
Not After : Jun 29 14:01:18 2025 GMT
Subject: CN=e7007121b26a469791aa0a984edc868c3b0329e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:10:5f:5b:22:1f:ef:02:56:d6:3f:c9:83:fd:
f1:d7:77:eb:de:40:79:7a:85:8a:2c:e2:90:65:8b:
bc:99:66:3b:2e:7b:1d:59:37:b7:53:79:29:fb:05:
80:50:51:05:da:90:b7:4c:14:50:c6:47:dc:d5:12:
84:f3:ca:2b:d2:10:b4:03:65:92:4c:94:48:ae:8f:
ad:32:4d:dd:c8:7e:b5:f4:ad:7e:b7:38:93:47:dc:
d5:f8:2c:10:6d:99:17:83:01:08:3f:b3:cf:5c:07:
93:a0:12:17:7a:ea:3e:03:7e:ad:42:9e:d8:13:de:
0f:5c:67:cb:27:44:6c:40:30:03:05:dc:8f:87:e8:
79:54:fb:d4:af:25:a1:94:3c:4e:c7:05:b7:26:54:
52:10:cd:09:06:55:8a:a0:4c:57:fb:1f:78:1f:97:
5b:bd:84:cb:0f:84:1d:91:19:82:3f:fe:46:ec:8e:
bc:dc:cc:bc:e5:aa:8a:db:b6:18:9a:1d:94:e1:2e:
57:03:cf:fa:14:d0:42:a8:28:95:7a:fc:a0:8c:52:
e0:04:6b:b8:e8:52:18:62:44:71:cc:86:e4:28:6c:
62:e6:03:97:4e:4f:b6:30:92:3a:1e:c5:75:e3:d1:
bf:56:a4:74:8f:db:67:e9:94:b0:ac:08:34:34:73:
cc:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:00:71:21:B2:6A:46:97:91:AA:0A:98:4E:DC:86:8C:3B:03:29:E5
X509v3 Authority Key Identifier:
keyid:D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:a1:4b:91:45:b8:b5:d7:d6:be:34:24:b1:2d:60:ff:22:01:
83:c3:0b:0f:13:7f:c8:8f:49:0d:00:5e:21:62:37:3a:3a:e8:
70:b5:63:07:6e:32:ae:07:bb:1d:48:c2:70:97:53:11:b1:c3:
9d:43:39:42:fc:9b:6a:fa:91:c0:4a:ae:45:39:2b:60:3a:9a:
35:65:df:e5:60:3f:b4:af:1f:2e:e8:2c:ce:47:2c:c6:5e:4d:
4e:7b:f8:f1:16:c5:07:37:8e:b2:04:91:70:77:21:b7:b7:64:
ae:6a:86:53:d2:f4:9b:07:8f:f6:9d:57:0c:85:f1:d6:80:2e:
f6:bc:fd:fb:16:37:99:a5:01:27:6a:7e:54:d2:78:92:88:a4:
de:77:1d:3a:8c:12:8a:68:9f:db:d7:16:63:25:1a:e6:cb:50:
f7:e3:fe:61:ce:28:6d:e5:3e:7d:c3:1e:fd:f5:cf:9b:3a:5d:
82:49:47:73:cd:90:90:ee:8b:03:33:0d:09:19:ee:02:67:d3:
79:bb:fb:04:ce:eb:2d:b7:be:79:30:ad:5e:08:a1:ef:f0:eb:
0f:73:94:7c:c9:87:08:03:79:1b:f7:71:b6:99:93:0d:51:c0:
23:a6:16:91:f7:aa:74:69:72:6c:46:f9:62:d9:78:ba:61:f9:
93:4c:41:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe217IHmfrSAlIPCXLaiBOfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyYjM2YWQyOGU1MjFlZGFiNGI0ZGVhMzQ5YTI3NzcyZDRi
MmE3YmUwHhcNMjUwNjI4MTQwMTE4WhcNMjUwNjI5MTQwMTE4WjAzMTEwLwYDVQQD
EyhlNzAwNzEyMWIyNmE0Njk3OTFhYTBhOTg0ZWRjODY4YzNiMDMyOWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxBfWyIf7wJW1j/Jg/3x13fr3kB5
eoWKLOKQZYu8mWY7LnsdWTe3U3kp+wWAUFEF2pC3TBRQxkfc1RKE88or0hC0A2WS
TJRIro+tMk3dyH619K1+tziTR9zV+CwQbZkXgwEIP7PPXAeToBIXeuo+A36tQp7Y
E94PXGfLJ0RsQDADBdyPh+h5VPvUryWhlDxOxwW3JlRSEM0JBlWKoExX+x94H5db
vYTLD4QdkRmCP/5G7I683My85aqK27YYmh2U4S5XA8/6FNBCqCiVevygjFLgBGu4
6FIYYkRxzIbkKGxi5gOXTk+2MJI6HsV149G/VqR0j9tn6ZSwrAg0NHPMawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOcAcSGyakaXkaoKmE7chow7AynlMB8GA1UdIwQY
MBaAFNKzatKOUh7atLTeo0mid3LUsqe+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHJOcTBvNVNIdHEwdE42alNhSjNjdFN5cDc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8zYTlhMGItZDQyNC00ZWNhLWE5Mzgt
OTJhODc3YmIxOWY3LzEvMHJOcTBvNVNIdHEwdE42alNhSjNjdFN5cDc0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8zYTlhMGItZDQyNC00ZWNhLWE5MzgtOTJhODc3YmIxOWY3
LzEvMHJOcTBvNVNIdHEwdE42alNhSjNjdFN5cDc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADqFLkUW4
tdfWvjQksS1g/yIBg8MLDxN/yI9JDQBeIWI3OjrocLVjB24yrge7HUjCcJdTEbHD
nUM5QvybavqRwEquRTkrYDqaNWXf5WA/tK8fLugszkcsxl5NTnv48RbFBzeOsgSR
cHcht7dkrmqGU9L0mweP9p1XDIXx1oAu9rz9+xY3maUBJ2p+VNJ4koik3ncdOowS
imif29cWYyUa5stQ9+P+Yc4obeU+fcMe/fXPmzpdgklHc82QkO6LAzMNCRnuAmfT
ebv7BM7rLbe+eTCtXgih7/DrD3OUfMmHCAN5G/dxtpmTDVHAI6YWkfeqdGlybEb5
Ytl4umH5k0xB3g==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:01:51 2025 by rpki-client