Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
File: byDBquA8J08ClCjuoKRCQgjU8-0.mft (raw, json)
Hash identifier: xN7JtZmlnJoYRHsulMwWa5iDziPfCnZh3WQtJhDEAuY=
Subject key identifier: 43:93:1F:E0:71:BD:FA:A8:16:3C:07:48:38:7E:1C:C1:6D:01:7E:DB
Authority key identifier: 6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED
Certificate issuer: /CN=6f20c1aae03c274f029428eea0a4424208d4f3ed
Certificate serial: 0197B8211F98E9C1A7880229091FD4528615
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 20:01:07 +0000
Manifest this update: Sat 28 Jun 2025 20:01:07 +0000
Manifest next update: Sun 29 Jun 2025 20:01:07 +0000
Files and hashes: 1: QR-XfIkw00mD51XnwCvsG-9T89w.roa (hash: a0XDBbD/tQURYMLpVooHaNMf9NXfcD/rGt0gapo+gwA=)
2: byDBquA8J08ClCjuoKRCQgjU8-0.crl (hash: 2wkrcfGp0GpaNJkuk/pX50PrVDi2FxoXdtqmQgQdmwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:1f:98:e9:c1:a7:88:02:29:09:1f:d4:52:86:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f20c1aae03c274f029428eea0a4424208d4f3ed
Validity
Not Before: Jun 28 20:01:07 2025 GMT
Not After : Jun 29 20:01:07 2025 GMT
Subject: CN=43931fe071bdfaa8163c0748387e1cc16d017edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:d8:c9:97:66:42:c3:f3:b7:a6:3b:cf:97:37:
1d:e4:fb:d1:28:5e:24:0f:2c:dc:22:2f:5f:50:a9:
2e:9e:16:9d:76:68:39:e1:3a:b4:1c:8d:95:87:51:
17:93:18:0c:62:10:5b:12:45:67:ce:ea:ae:b4:f5:
fb:88:b9:64:3b:a1:17:9a:46:2f:1d:64:bd:41:52:
28:b2:23:e6:21:26:cf:e2:e9:77:d5:db:7b:e8:9d:
1d:8a:ad:d5:4d:83:d4:fc:80:08:b9:61:68:48:70:
5f:45:7b:9a:b0:b4:dd:10:90:1f:df:0b:92:b6:23:
40:ad:93:30:21:8e:29:13:94:db:81:e9:1f:40:4a:
02:ca:09:a3:9d:28:7c:14:e6:24:8c:1f:42:5c:c0:
72:09:32:33:cb:bb:cd:25:91:a4:21:d7:70:4b:f2:
ad:f0:d8:58:ce:58:ec:41:06:50:3b:ab:98:e8:9d:
1b:de:10:a1:6a:e9:02:aa:1a:9c:f7:0f:ef:11:62:
ea:2d:45:64:b4:f2:f6:f7:a3:c9:59:12:9d:93:d6:
4d:9e:ad:6b:37:78:b6:ec:22:83:3c:59:c7:e2:4a:
59:0b:b0:8d:a4:2e:9c:c8:8b:aa:44:24:82:76:33:
04:b5:f9:d3:93:50:48:e8:ec:2c:a6:d3:fa:6f:f9:
ae:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:93:1F:E0:71:BD:FA:A8:16:3C:07:48:38:7E:1C:C1:6D:01:7E:DB
X509v3 Authority Key Identifier:
keyid:6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:1f:c0:8a:18:c6:cb:c3:bc:ea:4a:0b:70:17:10:3e:cf:f0:
51:c9:35:a6:00:20:80:fd:51:6e:91:4c:c7:40:2f:ba:63:93:
d7:2d:4f:5d:9d:8e:05:ba:82:d7:ab:d1:12:bf:45:6d:d9:f5:
a1:a4:d9:38:9a:1b:86:56:3e:44:40:10:75:c1:19:0e:34:eb:
32:84:81:83:bd:91:be:3c:86:dc:b3:da:07:5a:78:d9:a1:1b:
75:d3:e8:06:03:0d:c2:91:5c:9f:77:24:40:51:f9:37:b9:38:
03:d8:49:af:8d:a4:bc:36:0f:f3:d8:01:40:ec:13:46:8a:b0:
38:83:d2:61:39:b9:ea:98:ee:6b:7d:41:de:5a:fd:ce:8b:73:
cc:31:7b:62:1b:6d:d2:0a:ec:91:bf:89:3a:c2:7f:a1:8b:12:
86:a5:08:57:95:3c:e6:23:d2:88:60:23:16:b3:5e:92:57:b2:
dc:f1:02:07:2f:a0:ff:b0:01:e1:dd:94:b5:10:5b:71:1f:e4:
79:89:41:ad:b6:28:72:84:b0:84:39:20:8a:4d:69:a6:f0:e9:
e7:5b:61:43:3c:07:c7:6b:f6:32:52:ae:ca:c3:5d:bc:9b:96:
bc:5e:da:22:08:29:3d:da:87:31:81:34:da:4e:57:a9:d6:0b:
e6:09:aa:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4IR+Y6cGniAIpCR/UUoYVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMjBjMWFhZTAzYzI3NGYwMjk0MjhlZWEwYTQ0MjQyMDhk
NGYzZWQwHhcNMjUwNjI4MjAwMTA3WhcNMjUwNjI5MjAwMTA3WjAzMTEwLwYDVQQD
Eyg0MzkzMWZlMDcxYmRmYWE4MTYzYzA3NDgzODdlMWNjMTZkMDE3ZWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/djJl2ZCw/O3pjvPlzcd5PvRKF4k
DyzcIi9fUKkunhaddmg54Tq0HI2Vh1EXkxgMYhBbEkVnzuqutPX7iLlkO6EXmkYv
HWS9QVIosiPmISbP4ul31dt76J0diq3VTYPU/IAIuWFoSHBfRXuasLTdEJAf3wuS
tiNArZMwIY4pE5TbgekfQEoCygmjnSh8FOYkjB9CXMByCTIzy7vNJZGkIddwS/Kt
8NhYzljsQQZQO6uY6J0b3hChaukCqhqc9w/vEWLqLUVktPL296PJWRKdk9ZNnq1r
N3i27CKDPFnH4kpZC7CNpC6cyIuqRCSCdjMEtfnTk1BI6OwsptP6b/muAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEOTH+BxvfqoFjwHSDh+HMFtAX7bMB8GA1UdIwQY
MBaAFG8gwargPCdPApQo7qCkQkII1PPtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS83ZTRiYTctZjU5Mi00ZWVjLWJjYWUt
MDk1ZDBiZDI1NTVmLzEvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS83ZTRiYTctZjU5Mi00ZWVjLWJjYWUtMDk1ZDBiZDI1NTVm
LzEvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASx/AihjG
y8O86koLcBcQPs/wUck1pgAggP1RbpFMx0AvumOT1y1PXZ2OBbqC16vREr9Fbdn1
oaTZOJobhlY+REAQdcEZDjTrMoSBg72RvjyG3LPaB1p42aEbddPoBgMNwpFcn3ck
QFH5N7k4A9hJr42kvDYP89gBQOwTRoqwOIPSYTm56pjua31B3lr9zotzzDF7Yhtt
0grskb+JOsJ/oYsShqUIV5U85iPSiGAjFrNekley3PECBy+g/7AB4d2UtRBbcR/k
eYlBrbYocoSwhDkgik1ppvDp51thQzwHx2v2MlKuysNdvJuWvF7aIggpPdqHMYE0
2k5XqdYL5gmqcg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:32:35 2025 by rpki-client