Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
File: 0bS-sKan4ShKv0OFNIz0hhALn4A.mft (raw, json)
Hash identifier: D5O9pKmPT6MhGyFljPRIK/AeDzWuvlCAfLWampfRtxQ=
Subject key identifier: 9B:E0:4D:F2:F6:80:C5:DC:1E:EA:BF:E4:2D:4B:93:F7:4B:89:B7:64
Authority key identifier: D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
Certificate issuer: /CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Certificate serial: 0197B6A0C500D53DAB955293844745AF5FE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
Manifest number: 0DB5
Signing time: Sat 28 Jun 2025 13:01:18 +0000
Manifest this update: Sat 28 Jun 2025 13:01:18 +0000
Manifest next update: Sun 29 Jun 2025 13:01:18 +0000
Files and hashes: 1: 0bS-sKan4ShKv0OFNIz0hhALn4A.crl (hash: sVxe3CFFGUM232ga9rTyeRcdhAnLqtLpQtx+6cnVvew=)
2: c4vhQn8zi1dmhfuFlEzS457ekqY.roa (hash: K0d7LR2NOcizL+J6fo8ZUFPUHzj1ReR3yGovArPpqzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:c5:00:d5:3d:ab:95:52:93:84:47:45:af:5f:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Validity
Not Before: Jun 28 13:01:18 2025 GMT
Not After : Jun 29 13:01:18 2025 GMT
Subject: CN=9be04df2f680c5dc1eeabfe42d4b93f74b89b764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:bd:bc:b8:16:58:4f:bc:2a:34:4c:ef:c1:0a:
6e:93:e6:2c:b7:d4:a4:cf:fe:7f:76:5b:c3:45:b5:
a3:5e:52:6b:a3:2a:b7:c8:0a:f8:70:83:83:4d:e9:
31:9a:8b:47:24:dd:30:a5:da:c5:5b:94:22:68:ff:
56:a8:cb:40:a5:43:d8:04:e5:41:61:a5:c6:fd:ca:
28:60:a6:ac:0a:cb:ea:5a:ea:c0:f5:eb:6a:a0:2a:
4a:60:54:91:18:b9:30:9e:75:04:fd:9b:25:5e:36:
b1:78:0a:d3:0e:cf:a3:e7:32:f4:a9:cf:b4:37:d5:
e1:bd:d1:0b:8d:8f:ac:02:98:b1:55:1a:6d:30:6a:
01:7f:f3:6f:64:00:54:7f:e9:25:f3:80:13:88:fd:
64:8a:99:ca:57:63:ef:64:a6:17:02:75:c4:9e:9e:
62:1d:3d:d7:53:36:8a:66:a1:0f:ef:9f:a6:9e:ba:
d2:08:60:ed:a9:f8:ed:6d:d0:33:31:ea:7f:d4:25:
9f:75:72:e2:e2:dc:0a:3a:aa:75:a8:d9:2b:04:5c:
b3:55:c5:02:f7:9a:d0:2c:85:fc:65:4a:84:01:c6:
71:f0:ed:17:70:2b:d7:df:61:d2:bb:08:5c:98:c8:
78:c0:f6:27:db:61:07:99:85:3f:ee:19:9b:f3:6b:
99:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E0:4D:F2:F6:80:C5:DC:1E:EA:BF:E4:2D:4B:93:F7:4B:89:B7:64
X509v3 Authority Key Identifier:
keyid:D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:77:c9:5f:de:53:6c:b5:2d:3f:69:d7:fa:ab:bb:1d:4c:b5:
73:41:32:ea:cd:8e:ea:90:e9:cf:27:8a:f4:c5:7b:6c:40:66:
7d:d8:1b:14:1f:af:db:ea:42:82:10:45:72:d5:57:a7:ef:9d:
f7:59:7e:d2:7a:90:2d:7f:bc:54:46:e7:db:f3:24:bd:90:c2:
09:ad:3f:11:e6:57:68:ac:5d:84:18:8c:5b:d2:1a:d2:59:38:
a6:eb:5f:33:ab:5d:aa:c6:d4:ea:2f:63:4c:b7:06:64:9c:cc:
80:30:81:3b:62:32:f4:ee:bf:64:d0:48:8c:a3:62:3f:26:62:
79:13:04:89:12:ba:b8:69:49:43:27:ce:58:a2:30:89:ed:e0:
42:8d:56:fc:01:9f:2b:da:86:e2:88:b9:04:08:d8:0b:d8:d7:
27:2d:59:73:dc:f5:a8:d8:ab:19:41:6c:ef:cb:eb:dd:3a:40:
74:ad:04:60:f9:a9:ce:da:ec:74:bd:1a:11:77:65:e9:c5:e8:
80:b5:d3:e3:69:70:e9:ea:7e:72:e5:c2:51:57:c5:11:fe:16:
41:fd:e2:6d:15:fa:c9:4c:65:22:84:fb:b9:e7:e5:cc:6a:f7:
f4:79:57:2f:93:0b:9c:b6:7b:43:73:49:c5:7d:a0:de:3c:ab:
c7:76:76:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oMUA1T2rlVKThEdFr1/oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxYjRiZWIwYTZhN2UxMjg0YWJmNDM4NTM0OGNmNDg2MTAw
YjlmODAwHhcNMjUwNjI4MTMwMTE4WhcNMjUwNjI5MTMwMTE4WjAzMTEwLwYDVQQD
Eyg5YmUwNGRmMmY2ODBjNWRjMWVlYWJmZTQyZDRiOTNmNzRiODliNzY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApr28uBZYT7wqNEzvwQpuk+Yst9Sk
z/5/dlvDRbWjXlJroyq3yAr4cIODTekxmotHJN0wpdrFW5QiaP9WqMtApUPYBOVB
YaXG/cooYKasCsvqWurA9etqoCpKYFSRGLkwnnUE/ZslXjaxeArTDs+j5zL0qc+0
N9XhvdELjY+sApixVRptMGoBf/NvZABUf+kl84ATiP1kipnKV2PvZKYXAnXEnp5i
HT3XUzaKZqEP75+mnrrSCGDtqfjtbdAzMep/1CWfdXLi4twKOqp1qNkrBFyzVcUC
95rQLIX8ZUqEAcZx8O0XcCvX32HSuwhcmMh4wPYn22EHmYU/7hmb82uZ1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJvgTfL2gMXcHuq/5C1Lk/dLibdkMB8GA1UdIwQY
MBaAFNG0vrCmp+EoSr9DhTSM9IYQC5+AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGJTLXNLYW40U2hLdjBPRk5JejBoaEFMbjRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9mOGQ5OGQtMWZmZS00NjM5LWIzNzMt
OWJhMTE3MmE2OGMwLzEvMGJTLXNLYW40U2hLdjBPRk5JejBoaEFMbjRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9mOGQ5OGQtMWZmZS00NjM5LWIzNzMtOWJhMTE3MmE2OGMw
LzEvMGJTLXNLYW40U2hLdjBPRk5JejBoaEFMbjRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeXfJX95T
bLUtP2nX+qu7HUy1c0Ey6s2O6pDpzyeK9MV7bEBmfdgbFB+v2+pCghBFctVXp++d
91l+0nqQLX+8VEbn2/MkvZDCCa0/EeZXaKxdhBiMW9Ia0lk4putfM6tdqsbU6i9j
TLcGZJzMgDCBO2Iy9O6/ZNBIjKNiPyZieRMEiRK6uGlJQyfOWKIwie3gQo1W/AGf
K9qG4oi5BAjYC9jXJy1Zc9z1qNirGUFs78vr3TpAdK0EYPmpztrsdL0aEXdl6cXo
gLXT42lw6ep+cuXCUVfFEf4WQf3ibRX6yUxlIoT7ueflzGr39HlXL5MLnLZ7Q3NJ
xX2g3jyrx3Z2TA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:11:30 2025 by rpki-client