Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
File: 0-2n3wX226CeOefUvex7rg7_urA.mft (raw, json)
Hash identifier: XBSCR0uRONjAvLBoJyrp0YyH7tSgSmudMOGIKg00TrM=
Subject key identifier: A5:CC:D6:26:57:52:77:2B:B8:33:F6:9A:2F:F9:78:EE:F9:7B:60:FF
Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Certificate serial: 0197B77CC9D794439A1E7ED1077562738F96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
Manifest number: 02BE
Signing time: Sat 28 Jun 2025 17:01:37 +0000
Manifest this update: Sat 28 Jun 2025 17:01:37 +0000
Manifest next update: Sun 29 Jun 2025 17:01:37 +0000
Files and hashes: 1: 0-2n3wX226CeOefUvex7rg7_urA.crl (hash: EoZqs7fzBwZLv2G4TBiLOOkkqlbcXvSJvwVc+d3a2Vc=)
2: mFUkKUV2j8Fct1DGbVQJTzcA0ig.roa (hash: bNr/zF64vk+SVTrKPbIdCfqu6Sowa5lS9V4LG/Ns2g0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:c9:d7:94:43:9a:1e:7e:d1:07:75:62:73:8f:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Validity
Not Before: Jun 28 17:01:37 2025 GMT
Not After : Jun 29 17:01:37 2025 GMT
Subject: CN=a5ccd6265752772bb833f69a2ff978eef97b60ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:dc:72:c1:ab:1f:33:32:41:7f:26:07:1c:af:
b2:d2:d0:98:5a:f7:f7:53:78:ed:40:c3:12:97:d8:
04:9e:05:61:65:f8:07:59:1e:02:34:2e:3b:20:5c:
f5:7e:b6:52:ac:44:3d:2e:1d:79:f9:e3:ee:a8:ed:
91:7e:50:f5:5a:54:5c:5f:c5:5f:f5:01:75:5d:5b:
bf:1d:92:14:27:40:94:d3:eb:85:a6:cb:98:28:4b:
dd:cf:e5:36:52:2d:f4:18:c7:75:b5:2b:e0:9d:50:
e9:ce:a9:66:be:72:56:d4:9d:9d:5b:a3:a5:f7:90:
63:10:0a:75:04:2b:26:6d:04:85:bb:a2:ae:f0:7a:
8f:50:e1:31:28:11:1c:7b:69:39:6d:2a:30:c9:18:
fa:8e:26:be:4d:be:50:0d:af:39:66:91:ac:b6:d7:
9c:ec:12:af:ce:ca:5d:6f:32:3c:bd:11:10:ca:4d:
11:e3:17:91:3f:16:d1:a3:6c:33:fa:42:36:a7:f6:
7b:73:a4:45:8e:f7:ca:d8:81:8e:55:b9:db:03:5b:
bd:b8:0d:4d:ec:f1:e7:ec:9a:ed:49:28:40:91:f9:
3c:19:9c:49:9b:5b:8a:3f:7e:8d:cb:b7:de:07:68:
42:5f:21:31:ea:8a:72:a3:66:f8:8f:7c:53:3b:f8:
8e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:CC:D6:26:57:52:77:2B:B8:33:F6:9A:2F:F9:78:EE:F9:7B:60:FF
X509v3 Authority Key Identifier:
keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:ae:30:81:0f:19:ab:80:be:da:8d:67:ef:4d:9a:00:e7:28:
b8:42:2b:3d:76:86:25:64:18:ba:be:11:ef:07:81:03:ea:a6:
ff:a9:13:12:5a:23:5c:87:91:5b:c8:5e:c6:ce:54:41:d6:56:
16:d0:3b:1f:1a:7f:2b:a1:26:27:c0:28:87:d4:28:d4:5c:c4:
7a:35:b2:41:5d:65:f9:b4:6a:25:3f:9b:ce:2d:38:ba:1a:6b:
4b:00:d9:0e:cf:e5:46:56:37:53:91:db:3b:65:55:7b:c2:3e:
a0:6c:81:a7:50:8b:72:04:cc:48:b7:b9:bb:76:5d:ad:54:09:
b4:75:47:db:5f:b4:24:84:22:10:11:c2:d7:bb:24:9c:7a:60:
f1:cc:8d:99:ac:3b:fa:f1:f1:e3:4e:3a:59:e5:d0:dd:62:b5:
cb:2b:94:5f:1f:2d:4f:fd:ec:83:07:d0:3a:78:4a:fc:10:a4:
b3:40:2a:4f:db:7d:fe:67:a3:e5:af:e0:16:70:52:d5:ec:26:
83:13:32:93:6c:4d:35:57:a2:19:87:f4:14:0f:f9:b7:27:46:
22:59:e2:84:ff:58:05:0d:94:ac:0e:59:33:61:cd:a2:db:7a:
6c:73:79:19:87:f6:a3:2d:10:d0:6a:8d:60:ce:16:7f:8d:bc:
53:eb:e4:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fMnXlEOaHn7RB3Vic4+WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzZWRhN2RmMDVmNmRiYTA5ZTM5ZTdkNGJkZWM3YmFlMGVm
ZmJhYjAwHhcNMjUwNjI4MTcwMTM3WhcNMjUwNjI5MTcwMTM3WjAzMTEwLwYDVQQD
EyhhNWNjZDYyNjU3NTI3NzJiYjgzM2Y2OWEyZmY5NzhlZWY5N2I2MGZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNxywasfMzJBfyYHHK+y0tCYWvf3
U3jtQMMSl9gEngVhZfgHWR4CNC47IFz1frZSrEQ9Lh15+ePuqO2RflD1WlRcX8Vf
9QF1XVu/HZIUJ0CU0+uFpsuYKEvdz+U2Ui30GMd1tSvgnVDpzqlmvnJW1J2dW6Ol
95BjEAp1BCsmbQSFu6Ku8HqPUOExKBEce2k5bSowyRj6jia+Tb5QDa85ZpGsttec
7BKvzspdbzI8vREQyk0R4xeRPxbRo2wz+kI2p/Z7c6RFjvfK2IGOVbnbA1u9uA1N
7PHn7JrtSShAkfk8GZxJm1uKP36Ny7feB2hCXyEx6opyo2b4j3xTO/iODwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKXM1iZXUncruDP2mi/5eO75e2D/MB8GA1UdIwQY
MBaAFNPtp98F9tugnjnn1L3se64O/7qwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMC0ybjN3WDIyNkNlT2VmVXZleDdyZzdfdXJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9kYzY0ZjQtY2ZiYS00ZWZkLWI0ZWQt
Njc2YmVkYjE3NDczLzEvMC0ybjN3WDIyNkNlT2VmVXZleDdyZzdfdXJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC9kYzY0ZjQtY2ZiYS00ZWZkLWI0ZWQtNjc2YmVkYjE3NDcz
LzEvMC0ybjN3WDIyNkNlT2VmVXZleDdyZzdfdXJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb64wgQ8Z
q4C+2o1n702aAOcouEIrPXaGJWQYur4R7weBA+qm/6kTElojXIeRW8hexs5UQdZW
FtA7Hxp/K6EmJ8Aoh9Qo1FzEejWyQV1l+bRqJT+bzi04uhprSwDZDs/lRlY3U5Hb
O2VVe8I+oGyBp1CLcgTMSLe5u3ZdrVQJtHVH21+0JIQiEBHC17sknHpg8cyNmaw7
+vHx4046WeXQ3WK1yyuUXx8tT/3sgwfQOnhK/BCks0AqT9t9/mej5a/gFnBS1ewm
gxMyk2xNNVeiGYf0FA/5tydGIlnihP9YBQ2UrA5ZM2HNott6bHN5GYf2oy0Q0GqN
YM4Wf428U+vkaw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:24:00 2025 by rpki-client