Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
File: it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft (raw, json)
Hash identifier: yPY/nBPi0hRy9Nz0k3Ow4dmfaYq1WDybja8L9y25NPQ=
Subject key identifier: BF:0F:8E:F7:0B:6B:DA:7F:25:22:F3:99:0B:AB:50:C4:DE:19:11:7E
Authority key identifier: 8A:DE:07:87:CF:98:81:A1:FC:59:55:6C:A1:54:2D:77:79:F2:87:65
Certificate issuer: /CN=8ade0787cf9881a1fc59556ca1542d7779f28765
Certificate serial: 0197B7EAAF9C10EEBFB6D1D278E0742C4DFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
Manifest number: 12B2
Signing time: Sat 28 Jun 2025 19:01:40 +0000
Manifest this update: Sat 28 Jun 2025 19:01:40 +0000
Manifest next update: Sun 29 Jun 2025 19:01:40 +0000
Files and hashes: 1: 5v7duN9Ge8yGISXqxG3qUzWZAS0.roa (hash: 1SA0Oa41y733C6WZxDupsHaqhvUOZQl7E3vDY0FiKPY=)
2: it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl (hash: osjtEEHfBNpreOl4/1/GBD6d6rTUmXK6GAt6Yqd3isA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:af:9c:10:ee:bf:b6:d1:d2:78:e0:74:2c:4d:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ade0787cf9881a1fc59556ca1542d7779f28765
Validity
Not Before: Jun 28 19:01:40 2025 GMT
Not After : Jun 29 19:01:40 2025 GMT
Subject: CN=bf0f8ef70b6bda7f2522f3990bab50c4de19117e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3d:c8:f5:b7:b8:4d:87:6f:61:84:49:7e:ca:
b5:cd:02:e0:c9:ee:8b:d2:dc:5e:78:17:ff:87:58:
ff:9b:68:9a:62:36:4d:f5:ea:c0:a1:16:90:90:b3:
8c:c0:5f:21:01:57:d5:24:89:b8:c8:be:50:30:49:
d4:1e:e0:1d:b4:ea:07:8c:9b:9d:72:df:9d:1a:79:
d1:35:cb:47:95:41:56:13:be:b7:25:a7:84:ef:a6:
91:03:07:ad:45:65:e1:11:c4:c8:38:57:ca:75:91:
3a:c4:0c:74:58:47:24:b5:f9:e2:ee:be:24:f4:4a:
02:fc:15:25:ca:9e:95:69:ee:f2:d1:ba:c9:ad:f0:
90:84:5e:a4:76:dd:e2:18:a1:97:88:88:8d:9a:52:
2e:cb:0a:cc:7e:8a:e2:60:b4:98:18:6e:82:05:19:
5a:15:11:a0:da:a7:5d:47:47:2d:b8:76:c2:93:82:
bd:a4:b6:e5:42:e4:8e:a0:94:08:9c:f3:40:9a:22:
fc:26:f7:98:76:a2:3d:0e:a0:2b:04:10:bf:d5:40:
4a:97:25:c6:93:0f:1e:f5:a3:ad:c2:a8:2b:6e:9e:
8b:ed:6a:38:91:7e:c4:a6:34:7f:e8:4f:a7:98:8d:
e5:78:4c:79:63:c8:d2:6d:80:ff:af:23:5a:7f:cf:
79:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:0F:8E:F7:0B:6B:DA:7F:25:22:F3:99:0B:AB:50:C4:DE:19:11:7E
X509v3 Authority Key Identifier:
keyid:8A:DE:07:87:CF:98:81:A1:FC:59:55:6C:A1:54:2D:77:79:F2:87:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:cf:9c:47:77:cb:91:0f:1a:c4:3b:95:19:31:3c:26:fb:09:
84:83:b9:98:93:09:bf:67:b9:56:e1:c3:9b:92:47:5a:4a:5f:
6f:c5:73:b0:48:ce:ce:b1:4a:ce:d9:37:28:7d:17:42:4a:0e:
3f:eb:4a:71:0e:34:b6:3a:98:23:63:1a:df:78:a5:3a:e8:0d:
d9:d9:a4:f1:62:cb:d7:fd:a5:b8:bd:8f:a7:97:c9:9c:17:65:
76:5e:1a:c4:c9:fc:65:40:2b:13:b0:65:f1:60:8c:9e:9d:94:
91:45:5f:d8:9c:20:91:2e:ab:b2:5f:4b:eb:85:2c:5a:8d:38:
c7:f9:f9:3d:b5:dd:3d:ad:b1:49:5d:d7:d8:d0:33:32:27:81:
0b:d0:33:a3:0e:79:f4:eb:92:b7:ee:fb:13:76:60:ea:1a:52:
92:eb:a1:d3:68:89:2c:d4:e0:a9:5d:3a:6c:65:79:13:eb:ce:
84:81:e1:dc:dc:44:8d:da:65:3d:43:ad:c8:40:67:ee:8c:e2:
4f:10:69:af:26:46:e9:2a:9f:f8:73:21:c4:38:eb:40:6e:97:
7c:e3:a0:b7:69:ed:3e:98:95:f2:f8:95:f7:94:37:82:c1:a0:
1d:a6:35:87:25:68:58:ab:d5:db:ef:5e:de:df:18:19:c4:32:
ef:0e:28:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36q+cEO6/ttHSeOB0LE37MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhZGUwNzg3Y2Y5ODgxYTFmYzU5NTU2Y2ExNTQyZDc3Nzlm
Mjg3NjUwHhcNMjUwNjI4MTkwMTQwWhcNMjUwNjI5MTkwMTQwWjAzMTEwLwYDVQQD
EyhiZjBmOGVmNzBiNmJkYTdmMjUyMmYzOTkwYmFiNTBjNGRlMTkxMTdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3D3I9be4TYdvYYRJfsq1zQLgye6L
0txeeBf/h1j/m2iaYjZN9erAoRaQkLOMwF8hAVfVJIm4yL5QMEnUHuAdtOoHjJud
ct+dGnnRNctHlUFWE763JaeE76aRAwetRWXhEcTIOFfKdZE6xAx0WEcktfni7r4k
9EoC/BUlyp6Vae7y0brJrfCQhF6kdt3iGKGXiIiNmlIuywrMforiYLSYGG6CBRla
FRGg2qddR0ctuHbCk4K9pLblQuSOoJQInPNAmiL8JveYdqI9DqArBBC/1UBKlyXG
kw8e9aOtwqgrbp6L7Wo4kX7EpjR/6E+nmI3leEx5Y8jSbYD/ryNaf895pwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL8PjvcLa9p/JSLzmQurUMTeGRF+MB8GA1UdIwQY
MBaAFIreB4fPmIGh/FlVbKFULXd58odlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXQ0SGg4LVlnYUg4V1ZWc29WUXRkM255aDJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC9iYzE5MTUtZGJmZS00NDgxLWIzMWIt
NTY5N2M3YjFjNWMxLzEvaXQ0SGg4LVlnYUg4V1ZWc29WUXRkM255aDJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC9iYzE5MTUtZGJmZS00NDgxLWIzMWItNTY5N2M3YjFjNWMx
LzEvaXQ0SGg4LVlnYUg4V1ZWc29WUXRkM255aDJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPc+cR3fL
kQ8axDuVGTE8JvsJhIO5mJMJv2e5VuHDm5JHWkpfb8VzsEjOzrFKztk3KH0XQkoO
P+tKcQ40tjqYI2Ma33ilOugN2dmk8WLL1/2luL2Pp5fJnBdldl4axMn8ZUArE7Bl
8WCMnp2UkUVf2JwgkS6rsl9L64UsWo04x/n5PbXdPa2xSV3X2NAzMieBC9Azow55
9OuSt+77E3Zg6hpSkuuh02iJLNTgqV06bGV5E+vOhIHh3NxEjdplPUOtyEBn7ozi
TxBpryZG6Sqf+HMhxDjrQG6XfOOgt2ntPpiV8viV95Q3gsGgHaY1hyVoWKvV2+9e
3t8YGcQy7w4oJA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:19:17 2025 by rpki-client