Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
File: RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft (raw, json)
Hash identifier: GrFoi+dI1dJ84y0erkyVYnQx7LwsLUjiPFB/utuoHHY=
Subject key identifier: B3:09:C8:DB:6E:62:72:9A:FD:01:C1:83:39:D5:63:50:B0:7D:59:3A
Authority key identifier: 44:81:4E:A7:E8:3B:40:19:BF:D5:79:7E:BA:98:9D:A0:6D:D9:0E:33
Certificate issuer: /CN=44814ea7e83b4019bfd5797eba989da06dd90e33
Certificate serial: 0197B77CCBC9C6B907B79AC8E37D7CD2B721
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
Manifest number: 0D7C
Signing time: Sat 28 Jun 2025 17:01:38 +0000
Manifest this update: Sat 28 Jun 2025 17:01:38 +0000
Manifest next update: Sun 29 Jun 2025 17:01:38 +0000
Files and hashes: 1: RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl (hash: a0JgJWO0kfQSDyo8S20Rz3ME/I1bsY9Um0tGH4R0hRs=)
2: UjkL1yTwH0Ugfy2br2JpH0C8VqU.roa (hash: byfiFTAulr+F8qmR9o1/fYHwOTE6vMHjzS05/tD7xBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 17:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:cb:c9:c6:b9:07:b7:9a:c8:e3:7d:7c:d2:b7:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44814ea7e83b4019bfd5797eba989da06dd90e33
Validity
Not Before: Jun 28 17:01:38 2025 GMT
Not After : Jun 29 17:01:38 2025 GMT
Subject: CN=b309c8db6e62729afd01c18339d56350b07d593a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:22:8a:14:f9:15:89:1e:d7:90:bf:7d:8c:a2:
1d:2e:07:91:fd:16:a9:45:41:d3:ae:39:96:dc:8a:
a8:a9:0f:a6:44:df:93:ab:fa:8d:98:91:4a:67:39:
37:ae:70:38:ab:7e:d7:f3:e4:ca:45:df:87:a0:13:
24:c6:8d:0f:a1:f9:7c:cc:b1:8e:d3:51:4f:a5:05:
b4:0c:72:fc:d7:e5:ce:8c:f8:8a:65:9a:8c:d2:4a:
a4:b3:2a:63:d0:43:42:f7:4e:e2:5f:cd:5c:1b:a8:
42:b9:70:41:1e:62:7f:06:09:79:04:98:4f:c9:7f:
45:7b:bf:e2:d0:10:cf:0c:8e:5e:84:47:3a:cc:90:
9d:a3:3d:31:04:34:2e:f6:0e:46:29:cb:49:19:cc:
b0:ef:9a:db:21:95:11:47:21:a8:ea:56:fd:fb:4d:
cc:17:cf:e8:c8:6f:53:bb:dd:c1:ab:eb:7f:9b:5c:
2f:19:50:d7:ee:7d:92:57:5e:20:cc:73:3b:f6:d5:
6f:43:ce:2a:5f:78:ac:1c:19:4e:61:e8:29:d9:12:
99:a6:8b:d6:19:d5:51:bd:f9:d6:18:b4:13:a8:1a:
5e:f6:e9:dc:4f:da:0c:ce:f4:87:15:7e:45:ec:a5:
d3:9a:10:ae:b2:01:51:90:15:d5:27:ab:19:10:f8:
78:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:09:C8:DB:6E:62:72:9A:FD:01:C1:83:39:D5:63:50:B0:7D:59:3A
X509v3 Authority Key Identifier:
keyid:44:81:4E:A7:E8:3B:40:19:BF:D5:79:7E:BA:98:9D:A0:6D:D9:0E:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:d1:66:bd:32:f0:15:47:ad:fc:78:61:00:eb:5b:f0:c6:6c:
85:e8:a0:a4:ca:20:3e:64:a7:88:86:7f:90:a0:89:e4:28:33:
ed:be:0e:0a:c6:99:c7:dc:bc:b0:60:fc:57:1c:12:97:cf:12:
d3:d3:11:0c:36:61:73:64:af:9d:86:ba:15:ca:f8:f5:24:25:
9a:bb:ca:85:a9:ba:53:a9:31:43:13:21:b7:d0:b2:c7:dc:83:
1e:a2:a2:12:cd:5d:7b:74:64:61:7f:29:bf:13:ae:d6:ba:96:
b7:0d:0e:a2:17:bb:7f:a7:3e:b8:d8:b2:c7:1b:18:a3:16:74:
37:4e:8b:2e:81:c5:a4:6d:5b:b4:7c:ab:0e:0d:26:24:af:e8:
04:78:13:10:af:96:89:74:21:38:55:65:2c:fc:45:5c:a5:39:
ac:7f:ef:d3:c3:49:b3:6a:55:84:b9:c3:d1:b7:28:cb:18:7d:
81:03:57:d6:4d:a3:fb:f2:8c:6c:21:80:6c:1e:c3:1b:b5:9f:
b1:a9:0f:ff:05:ba:61:b4:21:49:36:42:0f:3e:8b:f6:17:69:
8a:be:cb:55:7a:a1:45:02:e3:1e:fc:39:f4:72:0c:d1:5a:14:
6a:48:83:a5:1a:79:ec:0d:0d:1d:a0:01:9d:d9:07:c5:9e:fe:
d1:66:48:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fMvJxrkHt5rI43180rchMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0ODE0ZWE3ZTgzYjQwMTliZmQ1Nzk3ZWJhOTg5ZGEwNmRk
OTBlMzMwHhcNMjUwNjI4MTcwMTM4WhcNMjUwNjI5MTcwMTM4WjAzMTEwLwYDVQQD
EyhiMzA5YzhkYjZlNjI3MjlhZmQwMWMxODMzOWQ1NjM1MGIwN2Q1OTNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwiKKFPkViR7XkL99jKIdLgeR/Rap
RUHTrjmW3IqoqQ+mRN+Tq/qNmJFKZzk3rnA4q37X8+TKRd+HoBMkxo0Pofl8zLGO
01FPpQW0DHL81+XOjPiKZZqM0kqksypj0ENC907iX81cG6hCuXBBHmJ/Bgl5BJhP
yX9Fe7/i0BDPDI5ehEc6zJCdoz0xBDQu9g5GKctJGcyw75rbIZURRyGo6lb9+03M
F8/oyG9Tu93Bq+t/m1wvGVDX7n2SV14gzHM79tVvQ84qX3isHBlOYegp2RKZpovW
GdVRvfnWGLQTqBpe9uncT9oMzvSHFX5F7KXTmhCusgFRkBXVJ6sZEPh4FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLMJyNtuYnKa/QHBgznVY1CwfVk6MB8GA1UdIwQY
MBaAFESBTqfoO0AZv9V5frqYnaBt2Q4zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUklGT3AtZzdRQm1fMVhsLXVwaWRvRzNaRGpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8zYWM0NGItNTY1YS00Mjg2LWE0MGMt
ZDdlMDFhYzAyYTc1LzEvUklGT3AtZzdRQm1fMVhsLXVwaWRvRzNaRGpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC8zYWM0NGItNTY1YS00Mjg2LWE0MGMtZDdlMDFhYzAyYTc1
LzEvUklGT3AtZzdRQm1fMVhsLXVwaWRvRzNaRGpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAftFmvTLw
FUet/HhhAOtb8MZsheigpMogPmSniIZ/kKCJ5Cgz7b4OCsaZx9y8sGD8VxwSl88S
09MRDDZhc2SvnYa6Fcr49SQlmrvKham6U6kxQxMht9Cyx9yDHqKiEs1de3RkYX8p
vxOu1rqWtw0Oohe7f6c+uNiyxxsYoxZ0N06LLoHFpG1btHyrDg0mJK/oBHgTEK+W
iXQhOFVlLPxFXKU5rH/v08NJs2pVhLnD0bcoyxh9gQNX1k2j+/KMbCGAbB7DG7Wf
sakP/wW6YbQhSTZCDz6L9hdpir7LVXqhRQLjHvw59HIM0VoUakiDpRp57A0NHaAB
ndkHxZ7+0WZIwg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 01:29:46 2025 by rpki-client