Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
File: 9a2pAdQIv39blDWSHkgAqPgtvas.mft (raw, json)
Hash identifier: X8VlNJqiViEYjOiB3I8IMJ92VNlgFDAp34kbffiCxUQ=
Subject key identifier: 3A:7C:4D:87:72:11:99:51:F8:79:AB:80:4E:58:46:3D:49:E4:68:48
Authority key identifier: F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
Certificate issuer: /CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Certificate serial: 0197B6A18708FB9769A362445F8020A7A7F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 13:02:08 +0000
Manifest this update: Sat 28 Jun 2025 13:02:08 +0000
Manifest next update: Sun 29 Jun 2025 13:02:08 +0000
Files and hashes: 1: 9a2pAdQIv39blDWSHkgAqPgtvas.crl (hash: XLpy91ugKhegIpnxxYabaDUFCHjvJR02MmZ8ryt7i6k=)
2: ExJyPjo5EWZQUpwxSS0T7A3Tclg.roa (hash: n7Rzh1zK0MckYzOS9a8lwv/AGXV+Jr0CvxhzGO4UHW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:87:08:fb:97:69:a3:62:44:5f:80:20:a7:a7:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Validity
Not Before: Jun 28 13:02:08 2025 GMT
Not After : Jun 29 13:02:08 2025 GMT
Subject: CN=3a7c4d8772119951f879ab804e58463d49e46848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ac:f7:7b:93:2e:89:e5:74:43:fc:20:c4:ee:
99:cf:4b:4c:cd:1e:43:ee:52:c2:7b:04:8b:d8:60:
35:ba:23:d7:6e:3b:cf:1e:ea:43:7b:54:cb:80:5d:
30:b3:13:c7:f9:dd:43:e9:72:b9:7d:df:96:8d:c8:
09:de:05:a6:5e:07:50:7d:f5:48:a4:c4:60:04:9e:
b7:59:c4:f5:10:89:45:c7:43:28:ec:f1:e2:a0:09:
25:6c:8c:6d:03:94:45:0d:9f:6d:45:2a:1e:13:7b:
ee:0e:a4:07:16:7b:bf:c4:28:b3:8c:ce:b1:99:79:
a2:b8:08:87:42:60:78:1c:0e:1f:5a:6a:b7:d2:bd:
cd:d7:7e:d4:5d:94:d8:d6:17:01:92:5c:3f:87:f9:
96:2a:0f:d0:28:bf:52:d2:5b:3d:b6:f5:a7:c0:4e:
1c:2d:d2:e6:bf:2a:a7:56:08:2f:b3:33:8e:dd:ba:
e8:e6:13:b1:80:50:22:50:7c:dc:2f:c4:53:fa:a2:
d2:84:2b:f7:1d:3b:f3:5f:73:0a:01:ac:53:52:96:
22:2b:f5:5c:7d:9e:8c:ba:3a:50:4d:c2:aa:3e:b5:
d2:6a:26:9b:7f:fa:e7:42:a7:3e:66:03:7d:95:70:
32:9a:33:07:a4:75:20:be:e2:ba:36:a5:7f:81:d3:
b7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:7C:4D:87:72:11:99:51:F8:79:AB:80:4E:58:46:3D:49:E4:68:48
X509v3 Authority Key Identifier:
keyid:F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:2b:ea:f3:34:16:76:c5:e1:49:a6:2a:de:d4:bf:c4:bc:cf:
01:3f:fb:f5:0f:bf:1e:ff:31:23:5d:7b:3e:c7:d9:51:7a:5d:
7e:83:31:0a:bc:df:f1:ca:1a:d1:69:f1:45:f9:ee:8d:34:71:
d8:6e:0b:47:72:17:8e:a8:a3:d6:40:e8:f7:c4:49:6f:4a:80:
e4:79:78:38:7f:20:0e:04:fb:2f:b6:34:09:3e:fc:a5:1c:cb:
38:2b:04:42:9e:07:3a:64:4a:6a:45:45:21:23:dd:25:3e:e0:
f9:cb:8c:9b:89:98:59:7a:34:7d:2e:cc:3e:52:78:76:e8:95:
5b:f4:67:e0:af:3a:cf:d9:19:ed:5e:54:20:b8:da:c6:72:24:
d7:73:82:4f:5d:db:3d:fd:18:53:44:40:d5:0e:c1:16:66:fc:
f7:bb:7b:7e:07:0a:7f:b7:4b:fd:07:b7:d4:91:4e:e0:25:70:
d5:4a:d9:2c:99:94:50:4a:44:70:da:70:1e:52:93:24:76:31:
3f:43:b4:15:00:c9:6b:a4:ed:3a:e3:f3:74:c0:f6:a3:0f:45:
9f:d2:11:ff:74:a3:a3:fe:cb:91:71:04:d9:e2:e0:4c:d6:66:
4f:84:f9:e1:e4:70:d5:24:10:17:68:40:c6:16:3a:03:6b:af:
a5:d9:8d:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oYcI+5dpo2JEX4Agp6f1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1YWRhOTAxZDQwOGJmN2Y1Yjk0MzU5MjFlNDgwMGE4Zjgy
ZGJkYWIwHhcNMjUwNjI4MTMwMjA4WhcNMjUwNjI5MTMwMjA4WjAzMTEwLwYDVQQD
EygzYTdjNGQ4NzcyMTE5OTUxZjg3OWFiODA0ZTU4NDYzZDQ5ZTQ2ODQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxqz3e5MuieV0Q/wgxO6Zz0tMzR5D
7lLCewSL2GA1uiPXbjvPHupDe1TLgF0wsxPH+d1D6XK5fd+WjcgJ3gWmXgdQffVI
pMRgBJ63WcT1EIlFx0Mo7PHioAklbIxtA5RFDZ9tRSoeE3vuDqQHFnu/xCizjM6x
mXmiuAiHQmB4HA4fWmq30r3N137UXZTY1hcBklw/h/mWKg/QKL9S0ls9tvWnwE4c
LdLmvyqnVggvszOO3bro5hOxgFAiUHzcL8RT+qLShCv3HTvzX3MKAaxTUpYiK/Vc
fZ6MujpQTcKqPrXSaiabf/rnQqc+ZgN9lXAymjMHpHUgvuK6NqV/gdO3ewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDp8TYdyEZlR+HmrgE5YRj1J5GhIMB8GA1UdIwQY
MBaAFPWtqQHUCL9/W5Q1kh5IAKj4Lb2rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWEycEFkUUl2MzlibERXU0hrZ0FxUGd0dmFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9hZmE2ZDYtNTBmOS00MWQ0LWI3Y2Yt
YTMzNjQ5ZTNlMmM1LzEvOWEycEFkUUl2MzlibERXU0hrZ0FxUGd0dmFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS9hZmE2ZDYtNTBmOS00MWQ0LWI3Y2YtYTMzNjQ5ZTNlMmM1
LzEvOWEycEFkUUl2MzlibERXU0hrZ0FxUGd0dmFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxCvq8zQW
dsXhSaYq3tS/xLzPAT/79Q+/Hv8xI117PsfZUXpdfoMxCrzf8coa0WnxRfnujTRx
2G4LR3IXjqij1kDo98RJb0qA5Hl4OH8gDgT7L7Y0CT78pRzLOCsEQp4HOmRKakVF
ISPdJT7g+cuMm4mYWXo0fS7MPlJ4duiVW/Rn4K86z9kZ7V5UILjaxnIk13OCT13b
Pf0YU0RA1Q7BFmb897t7fgcKf7dL/Qe31JFO4CVw1UrZLJmUUEpEcNpwHlKTJHYx
P0O0FQDJa6TtOuPzdMD2ow9Fn9IR/3Sjo/7LkXEE2eLgTNZmT4T54eRw1SQQF2hA
xhY6A2uvpdmNgg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:09:33 2025 by rpki-client