Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
File: vX2BeM7FzTdlSKkEkRf0acCnQxw.mft (raw, json)
Hash identifier: Lxr8BBi8c87xR+9aMSWh1gnVt1xvo/ubfUGm7x++OCU=
Subject key identifier: BA:2C:A0:8D:19:0D:87:A5:F2:50:38:77:D5:70:E4:15:0D:AB:5F:F4
Authority key identifier: BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
Certificate issuer: /CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Certificate serial: 0197C3499418E0371A4F77963C8C319E7474
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
Manifest number: 15C7
Signing time: Tue 01 Jul 2025 00:01:08 +0000
Manifest this update: Tue 01 Jul 2025 00:01:08 +0000
Manifest next update: Wed 02 Jul 2025 00:01:08 +0000
Files and hashes: 1: Ndw7HVDtjP0mKBQVp0z9A-CbAvY.roa (hash: Gvsu5qwW/HZfnE/HXNRfeWRnDFzMBicoBm7giJXuEbI=)
2: QPWAwQFNqSZZic2_WlAPH58qqA4.roa (hash: skiFt149qEZ92Md1xg5hAbPh0VVNiYKSR7UbnADB92E=)
3: fHkoAZxOrb4jS9uptQ9di3MomH4.roa (hash: OuL9G7DUjjtpe04g3KNS/iW0YgxTMwqsjJxCgrATRoE=)
4: vX2BeM7FzTdlSKkEkRf0acCnQxw.crl (hash: C8lp3PCo5LSb/H+L5C4F2mygZqljXNbAxYtU6Q50iXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 00:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c3:49:94:18:e0:37:1a:4f:77:96:3c:8c:31:9e:74:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Validity
Not Before: Jul 1 00:01:08 2025 GMT
Not After : Jul 2 00:01:08 2025 GMT
Subject: CN=ba2ca08d190d87a5f2503877d570e4150dab5ff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:26:db:bc:65:ca:b5:74:32:ba:85:6d:b0:35:
c9:bd:f4:54:f5:cf:09:1d:c6:84:5f:a9:92:0b:fc:
20:53:2b:2c:a3:a4:fe:85:9e:2a:e0:a3:80:f7:c4:
05:9b:96:b0:67:3d:e6:ce:33:87:36:91:75:5b:e3:
fe:d9:74:3a:6d:9f:d1:d1:84:8b:b3:73:24:fb:1c:
8d:81:da:b4:d8:56:d5:d0:1f:d7:1b:a9:aa:32:46:
42:66:08:fe:86:a0:aa:cd:d0:82:0b:e8:ee:6d:de:
57:f1:30:b4:f6:88:d5:10:c6:60:3b:d9:13:7d:11:
73:36:4c:9e:84:c7:b1:b2:dc:41:4e:20:04:d5:ca:
76:42:3f:23:01:6f:55:cd:ce:30:01:50:19:d1:b2:
d7:a7:77:e8:0c:3c:0a:d1:40:b0:75:5f:18:7d:f6:
ad:be:27:98:82:1a:36:1d:f8:9f:da:16:ca:1a:10:
ae:25:88:b5:6b:40:e9:dd:bd:3a:af:b4:5c:a7:4e:
8f:9e:20:87:bc:d4:3c:22:f2:81:6b:62:e2:06:95:
85:1b:11:6f:33:17:c7:70:a7:4e:7a:67:e5:0f:62:
21:5b:07:65:a9:ce:79:a9:34:20:33:96:5d:43:91:
25:a7:e4:ee:9d:87:e6:fb:2c:66:69:12:a1:21:f4:
c8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:2C:A0:8D:19:0D:87:A5:F2:50:38:77:D5:70:E4:15:0D:AB:5F:F4
X509v3 Authority Key Identifier:
keyid:BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:28:61:3f:6d:33:57:e6:04:25:e9:52:bf:a0:7e:28:69:02:
a1:8c:bd:30:a2:6a:82:42:07:ca:83:79:94:bc:21:15:cf:9c:
b2:ed:99:26:4a:8d:b7:cd:33:a1:b9:b0:3d:74:9b:2d:46:72:
b1:a2:60:6d:ef:f9:e2:6c:65:11:a2:53:9b:f1:08:c8:fc:af:
38:12:31:6e:42:f5:d6:ce:d6:dd:09:2c:7c:e3:0a:7a:68:6e:
e8:f3:b7:96:86:b9:cb:25:4f:ec:33:75:4b:46:a9:4c:ef:25:
31:08:93:35:28:86:79:57:cd:f9:5c:b4:d2:73:72:e0:e9:ff:
17:00:13:67:b6:84:49:59:a3:c0:89:41:3f:1e:e6:d9:de:23:
8a:6f:29:35:29:8d:b7:10:b6:d3:2b:80:a9:bd:ac:97:23:64:
0c:48:00:20:7b:03:4b:45:37:5f:c4:84:0f:51:bb:78:0f:80:
59:2b:0b:1f:9d:c8:aa:77:24:2b:51:36:b5:10:be:0d:ca:90:
56:e1:88:ae:c4:41:8d:52:f4:83:aa:9a:de:e9:0b:06:3c:f7:
37:d6:56:23:d2:35:77:c4:bf:24:03:bf:d7:0d:0b:c4:84:87:
3a:8d:57:f1:2b:ba:6d:df:28:fe:36:56:de:bc:0b:44:53:70:
ed:62:2e:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfDSZQY4DcaT3eWPIwxnnR0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkN2Q4MTc4Y2VjNWNkMzc2NTQ4YTkwNDkxMTdmNDY5YzBh
NzQzMWMwHhcNMjUwNzAxMDAwMTA4WhcNMjUwNzAyMDAwMTA4WjAzMTEwLwYDVQQD
EyhiYTJjYTA4ZDE5MGQ4N2E1ZjI1MDM4NzdkNTcwZTQxNTBkYWI1ZmY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSbbvGXKtXQyuoVtsDXJvfRU9c8J
HcaEX6mSC/wgUysso6T+hZ4q4KOA98QFm5awZz3mzjOHNpF1W+P+2XQ6bZ/R0YSL
s3Mk+xyNgdq02FbV0B/XG6mqMkZCZgj+hqCqzdCCC+jubd5X8TC09ojVEMZgO9kT
fRFzNkyehMexstxBTiAE1cp2Qj8jAW9Vzc4wAVAZ0bLXp3foDDwK0UCwdV8Yffat
vieYgho2Hfif2hbKGhCuJYi1a0Dp3b06r7Rcp06PniCHvNQ8IvKBa2LiBpWFGxFv
MxfHcKdOemflD2IhWwdlqc55qTQgM5ZdQ5Elp+TunYfm+yxmaRKhIfTIbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLosoI0ZDYel8lA4d9Vw5BUNq1/0MB8GA1UdIwQY
MBaAFL19gXjOxc03ZUipBJEX9GnAp0McMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlgyQmVNN0Z6VGRsU0trRWtSZjBhY0NuUXh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9mMzE3YjMtMDY2OC00ZTA0LTliNmQt
NjE1YWNhNTFlMmY2LzEvdlgyQmVNN0Z6VGRsU0trRWtSZjBhY0NuUXh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9mMzE3YjMtMDY2OC00ZTA0LTliNmQtNjE1YWNhNTFlMmY2
LzEvdlgyQmVNN0Z6VGRsU0trRWtSZjBhY0NuUXh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjChhP20z
V+YEJelSv6B+KGkCoYy9MKJqgkIHyoN5lLwhFc+csu2ZJkqNt80zobmwPXSbLUZy
saJgbe/54mxlEaJTm/EIyPyvOBIxbkL11s7W3QksfOMKemhu6PO3loa5yyVP7DN1
S0apTO8lMQiTNSiGeVfN+Vy00nNy4On/FwATZ7aESVmjwIlBPx7m2d4jim8pNSmN
txC20yuAqb2slyNkDEgAIHsDS0U3X8SED1G7eA+AWSsLH53IqnckK1E2tRC+DcqQ
VuGIrsRBjVL0g6qa3ukLBjz3N9ZWI9I1d8S/JAO/1w0LxISHOo1X8Su6bd8o/jZW
3rwLRFNw7WIunA==
-----END CERTIFICATE-----
Generated at Tue Jul 1 09:34:03 2025 by rpki-client