Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: LlGAIrGQY29TeG5PpePOUMzBtFUJU/O+6Sd+Z9CcIYM=
Subject key identifier: 5B:93:D4:78:28:89:1E:1E:06:6B:D6:5E:85:50:75:01:00:1E:D7:BA
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 0197B6D7BD66584679B8D569B14C7950A130
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 14:01:21 +0000
Manifest this update: Sat 28 Jun 2025 14:01:21 +0000
Manifest next update: Sun 29 Jun 2025 14:01:21 +0000
Files and hashes: 1: qZsU012FOT7iNKmn0Q6fmLHg-jY.roa (hash: t+/X1ob1d2V1rnzYvMBrQBRc/+JtrsZ+AHNltw325kg=)
2: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: lTXFtqfv4g1WL8/+5iImAMCHleDRjDc+6Zwh+k8BlEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:bd:66:58:46:79:b8:d5:69:b1:4c:79:50:a1:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Jun 28 14:01:21 2025 GMT
Not After : Jun 29 14:01:21 2025 GMT
Subject: CN=5b93d47828891e1e066bd65e85507501001ed7ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2c:1e:8c:82:57:69:c7:ff:78:ab:47:4e:26:
c8:d4:86:c7:41:0e:67:4e:6c:a4:79:84:59:09:b4:
39:23:d0:55:18:1c:cc:bb:2f:c5:8f:51:b6:70:6e:
2e:ba:1b:42:a0:ce:a6:fe:4c:fc:3c:0a:ed:06:1c:
81:8b:1a:2e:39:c6:7a:8d:4e:2d:22:82:d7:8a:12:
ff:9f:56:7c:78:5b:00:d2:9b:b5:c3:2b:9b:24:b7:
f5:c1:c2:c1:71:34:2f:47:36:9e:93:bd:2b:34:ff:
dd:44:ed:56:1d:48:1c:5e:59:72:02:d5:36:98:34:
db:7a:ce:64:8a:b4:c6:89:2c:2e:97:1c:06:89:56:
96:76:4c:cf:1c:bf:ff:83:5f:7f:27:a5:ee:17:7e:
2a:62:dc:62:c6:99:b5:a0:d0:ee:b9:ca:ff:69:f3:
69:13:c8:97:1e:f1:84:ee:12:f2:46:f4:04:e2:65:
02:8f:eb:d6:37:b4:e2:ff:d4:48:1c:69:7d:33:fa:
0f:d9:62:69:41:55:40:ff:8d:00:55:ef:94:c4:80:
5e:26:27:9a:1e:f4:7a:40:ea:56:18:95:dd:99:98:
e6:37:3c:83:58:81:7f:36:67:e3:cd:ad:c1:06:5c:
5c:56:87:49:86:75:ea:ae:18:96:b1:85:47:17:9d:
35:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:93:D4:78:28:89:1E:1E:06:6B:D6:5E:85:50:75:01:00:1E:D7:BA
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:ae:f0:56:f6:18:2f:bd:45:1f:df:50:a1:da:3b:25:f2:25:
29:69:d0:9c:44:30:23:39:38:5b:79:c4:71:19:ee:f5:35:a9:
f2:24:cf:c7:b6:aa:31:46:5e:ca:3a:f3:f3:f3:56:83:ce:b4:
80:36:26:c3:d6:b8:a8:72:f4:f0:6e:07:57:50:e2:3f:44:a7:
e8:04:5d:b7:0c:55:5e:02:46:52:b1:06:b7:3a:7f:b5:39:b3:
a0:9e:02:45:c8:bb:32:4f:00:a2:85:3c:57:18:d7:56:4c:9a:
76:10:fd:ac:c2:9d:01:74:17:8b:3a:24:75:0f:e5:d5:de:45:
33:8f:ee:1f:68:3d:6b:f1:77:be:6c:78:f8:00:50:4f:b4:87:
d0:60:02:f8:9f:3f:a4:ae:93:c6:75:2e:2a:33:8d:dc:25:56:
57:21:9a:f8:10:4b:ac:d5:06:10:aa:21:0d:e2:f0:d0:bb:da:
0b:82:fb:9b:c5:04:37:cc:d2:18:6b:82:63:10:99:0e:d3:5d:
1e:0b:69:0f:2d:30:fb:48:b6:f6:b1:ba:08:55:03:86:e5:76:
03:95:4e:7d:57:59:0b:28:af:3a:7c:1c:2b:ea:72:b6:c1:e3:
df:31:7b:81:1d:74:37:2b:6e:e6:82:59:41:ff:b7:d9:89:80:
ba:4d:3f:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2171mWEZ5uNVpsUx5UKEwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNzgxYzg0NTMzOTkwMGY3ZTZiMjAzM2U2Mzg4OGI1M2Fl
NTc4NzUwHhcNMjUwNjI4MTQwMTIxWhcNMjUwNjI5MTQwMTIxWjAzMTEwLwYDVQQD
Eyg1YjkzZDQ3ODI4ODkxZTFlMDY2YmQ2NWU4NTUwNzUwMTAwMWVkN2JhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSwejIJXacf/eKtHTibI1IbHQQ5n
TmykeYRZCbQ5I9BVGBzMuy/Fj1G2cG4uuhtCoM6m/kz8PArtBhyBixouOcZ6jU4t
IoLXihL/n1Z8eFsA0pu1wyubJLf1wcLBcTQvRzaek70rNP/dRO1WHUgcXllyAtU2
mDTbes5kirTGiSwulxwGiVaWdkzPHL//g19/J6XuF34qYtxixpm1oNDuucr/afNp
E8iXHvGE7hLyRvQE4mUCj+vWN7Ti/9RIHGl9M/oP2WJpQVVA/40AVe+UxIBeJiea
HvR6QOpWGJXdmZjmNzyDWIF/Nmfjza3BBlxcVodJhnXqrhiWsYVHF501UQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFuT1HgoiR4eBmvWXoVQdQEAHte6MB8GA1UdIwQY
MBaAFK94HIRTOZAPfmsgM+Y4iLU65Xh1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kMWM3MWQtYWE1MC00ZDc4LThlNTIt
NWNmMzdhMzQ4MzBkLzEvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9kMWM3MWQtYWE1MC00ZDc4LThlNTItNWNmMzdhMzQ4MzBk
LzEvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjK7wVvYY
L71FH99Qodo7JfIlKWnQnEQwIzk4W3nEcRnu9TWp8iTPx7aqMUZeyjrz8/NWg860
gDYmw9a4qHL08G4HV1DiP0Sn6ARdtwxVXgJGUrEGtzp/tTmzoJ4CRci7Mk8AooU8
VxjXVkyadhD9rMKdAXQXizokdQ/l1d5FM4/uH2g9a/F3vmx4+ABQT7SH0GAC+J8/
pK6TxnUuKjON3CVWVyGa+BBLrNUGEKohDeLw0LvaC4L7m8UEN8zSGGuCYxCZDtNd
HgtpDy0w+0i29rG6CFUDhuV2A5VOfVdZCyivOnwcK+pytsHj3zF7gR10Nytu5oJZ
Qf+32YmAuk0/Gg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:39:34 2025 by rpki-client