Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
File: tRhBzcn2NZTd3CulmkATMYK1efo.mft (raw, json)
Hash identifier: BFos5kSK5n2ZRprxBMF4mfM/85+uv3BYtFcL7MuWlxE=
Subject key identifier: EC:65:9A:EF:39:30:6B:C5:44:03:93:AD:93:E2:B7:FF:74:07:D9:73
Authority key identifier: B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
Certificate issuer: /CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Certificate serial: 0197B70EACB864DEE8D412F753F0B2DFCD0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 15:01:21 +0000
Manifest this update: Sat 28 Jun 2025 15:01:21 +0000
Manifest next update: Sun 29 Jun 2025 15:01:21 +0000
Files and hashes: 1: iQxCTqJc23IztH0qMtXGhii78xc.roa (hash: b/32KuHdgss/tEEpqliyL9nGxIGy3IsYTip4QREYlPc=)
2: tRhBzcn2NZTd3CulmkATMYK1efo.crl (hash: Y06MMk8YMUZM/boDJpm8nMyS+Z2whneng5Rl2eda5as=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:ac:b8:64:de:e8:d4:12:f7:53:f0:b2:df:cd:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Validity
Not Before: Jun 28 15:01:21 2025 GMT
Not After : Jun 29 15:01:21 2025 GMT
Subject: CN=ec659aef39306bc5440393ad93e2b7ff7407d973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:58:9d:8d:69:b7:42:b1:8d:b9:ce:b8:c5:30:
29:21:f4:c2:a2:0a:0c:59:9d:80:67:da:1b:a2:52:
47:fb:9a:97:57:28:49:d8:f2:cf:77:53:03:56:7d:
6a:ad:c0:78:83:f4:d7:a6:ad:3e:74:29:22:9f:18:
b2:d4:a9:d1:b9:8f:27:f1:c8:12:d0:75:3c:51:98:
61:a9:a5:f6:a4:09:65:da:2e:60:8a:9d:e2:dc:70:
98:78:50:1d:44:b1:81:94:3b:dd:cd:31:dc:e2:98:
fd:a8:1c:31:c1:65:0e:cf:fb:84:a3:f3:8f:0d:0e:
e5:96:ae:0e:02:55:44:9d:b7:87:58:f6:e2:ae:9a:
77:bc:f3:3d:b0:a3:c3:25:9e:2a:7b:1f:ce:38:89:
ee:e5:27:de:17:6e:24:7f:fe:1a:a6:97:e1:ad:6e:
3b:7d:d5:a9:f3:82:a4:e0:17:1c:83:f1:c9:ea:be:
55:d5:64:18:59:91:dc:13:d8:14:2a:bb:a2:6a:6f:
d6:2c:a0:7a:45:8a:9d:d9:51:41:71:21:d3:8b:08:
10:04:ef:73:55:20:98:03:21:b3:6e:78:9e:a4:a1:
82:eb:7e:a6:a4:8a:bb:ac:d5:f1:9a:dd:3d:73:0a:
38:b6:61:bd:90:27:f7:8f:0b:fb:37:77:33:92:fd:
85:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:65:9A:EF:39:30:6B:C5:44:03:93:AD:93:E2:B7:FF:74:07:D9:73
X509v3 Authority Key Identifier:
keyid:B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:cd:1f:db:a8:1e:54:50:13:df:df:07:71:d2:93:8d:ca:bc:
1a:87:c7:e1:e4:e0:07:f9:18:df:f8:d3:09:9b:b9:29:57:49:
2a:35:b0:79:51:eb:33:74:e7:86:ef:49:4b:94:41:73:28:1d:
ef:f2:2d:dc:a8:cf:5d:a6:d2:25:47:34:bd:ee:c1:fa:46:55:
81:8c:3f:da:a5:1d:8b:05:ba:95:e7:34:e1:1b:68:7e:46:63:
08:11:51:32:90:42:b4:64:1c:73:39:3a:cc:2a:56:a4:32:d8:
8a:58:cf:f2:8c:90:07:73:38:98:24:3e:3d:d5:52:e8:54:26:
24:db:bd:fb:dc:61:dd:6e:a7:8e:37:24:78:2e:c5:ae:96:98:
38:67:d2:50:66:49:66:e7:d4:5b:a8:d3:6a:7d:64:d7:1d:91:
50:34:b7:74:a3:3f:6e:29:0f:85:f7:29:39:a9:6e:fb:7e:1b:
8d:1f:ad:d0:10:98:07:1a:67:bf:5f:4f:66:0a:05:95:13:a3:
99:a7:86:2c:89:dd:62:b5:97:0a:52:23:46:54:35:74:7e:b7:
cf:40:b6:8d:e0:80:c9:87:2c:ac:c6:16:d5:b5:ac:87:57:be:
7c:06:3f:8f:a4:e4:42:c3:51:94:92:e6:e5:ed:69:18:27:b1:
f2:f6:bb:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3Dqy4ZN7o1BL3U/Cy380NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1MTg0MWNkYzlmNjM1OTRkZGRjMmJhNTlhNDAxMzMxODJi
NTc5ZmEwHhcNMjUwNjI4MTUwMTIxWhcNMjUwNjI5MTUwMTIxWjAzMTEwLwYDVQQD
EyhlYzY1OWFlZjM5MzA2YmM1NDQwMzkzYWQ5M2UyYjdmZjc0MDdkOTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwVidjWm3QrGNuc64xTApIfTCogoM
WZ2AZ9obolJH+5qXVyhJ2PLPd1MDVn1qrcB4g/TXpq0+dCkinxiy1KnRuY8n8cgS
0HU8UZhhqaX2pAll2i5gip3i3HCYeFAdRLGBlDvdzTHc4pj9qBwxwWUOz/uEo/OP
DQ7llq4OAlVEnbeHWPbirpp3vPM9sKPDJZ4qex/OOInu5SfeF24kf/4appfhrW47
fdWp84Kk4Bccg/HJ6r5V1WQYWZHcE9gUKruiam/WLKB6RYqd2VFBcSHTiwgQBO9z
VSCYAyGzbniepKGC636mpIq7rNXxmt09cwo4tmG9kCf3jwv7N3czkv2FBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOxlmu85MGvFRAOTrZPit/90B9lzMB8GA1UdIwQY
MBaAFLUYQc3J9jWU3dwrpZpAEzGCtXn6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFJoQnpjbjJOWlRkM0N1bG1rQVRNWUsxZWZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9mMGFmNjEtOGNjYy00YTNiLTkwMTAt
NjkxMGYzOTlkMzhmLzEvdFJoQnpjbjJOWlRkM0N1bG1rQVRNWUsxZWZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9mMGFmNjEtOGNjYy00YTNiLTkwMTAtNjkxMGYzOTlkMzhm
LzEvdFJoQnpjbjJOWlRkM0N1bG1rQVRNWUsxZWZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq80f26ge
VFAT398HcdKTjcq8GofH4eTgB/kY3/jTCZu5KVdJKjWweVHrM3Tnhu9JS5RBcygd
7/It3KjPXabSJUc0ve7B+kZVgYw/2qUdiwW6lec04RtofkZjCBFRMpBCtGQcczk6
zCpWpDLYiljP8oyQB3M4mCQ+PdVS6FQmJNu9+9xh3W6njjckeC7FrpaYOGfSUGZJ
ZufUW6jTan1k1x2RUDS3dKM/bikPhfcpOalu+34bjR+t0BCYBxpnv19PZgoFlROj
maeGLIndYrWXClIjRlQ1dH63z0C2jeCAyYcsrMYW1bWsh1e+fAY/j6TkQsNRlJLm
5e1pGCex8va71Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:39:24 2025 by rpki-client