Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
File: rmRaywIXx0oP004XpT297lbwEeU.mft (raw, json)
Hash identifier: nTIPFU2gt4ur1BdMAt821Q+VYM6ZpqK9xL9HQmztgyU=
Subject key identifier: F5:D8:64:B8:AC:19:DC:F3:99:90:C4:2D:D4:00:88:94:CF:58:E8:6F
Authority key identifier: AE:64:5A:CB:02:17:C7:4A:0F:D3:4E:17:A5:3D:BD:EE:56:F0:11:E5
Certificate issuer: /CN=ae645acb0217c74a0fd34e17a53dbdee56f011e5
Certificate serial: 0197CACC3C0E0D68EB4E69F4F94604FE88AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
Manifest number: 0FB7
Signing time: Wed 02 Jul 2025 11:01:11 +0000
Manifest this update: Wed 02 Jul 2025 11:01:11 +0000
Manifest next update: Thu 03 Jul 2025 11:01:11 +0000
Files and hashes: 1: 9gPdnlu8pzrUW3Ji0sxUHZw4ZQ4.roa (hash: tZpT15jv998HP7FRsRavbx2dzEDkME8mtW6HPMKG8Zg=)
2: rmRaywIXx0oP004XpT297lbwEeU.crl (hash: FjLCKMCbND3iAE+v6iMjhoovgcKMOQN4ZAil5FxXNRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:cc:3c:0e:0d:68:eb:4e:69:f4:f9:46:04:fe:88:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae645acb0217c74a0fd34e17a53dbdee56f011e5
Validity
Not Before: Jul 2 11:01:11 2025 GMT
Not After : Jul 3 11:01:11 2025 GMT
Subject: CN=f5d864b8ac19dcf39990c42dd4008894cf58e86f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5b:58:0b:61:47:a3:6d:29:74:37:b9:8a:68:
2a:fa:24:ea:ff:bc:cf:86:79:ee:84:d0:85:4f:de:
90:b5:b5:43:d4:4d:18:e9:dd:23:ed:a7:e8:21:8a:
8b:d6:b9:89:1a:3a:2b:27:16:2a:68:7a:02:61:6d:
b1:9a:52:8f:4a:01:c3:42:1a:b7:0d:e3:b7:15:0f:
4f:e0:da:a4:c8:a0:d8:aa:c3:96:ca:5a:9d:5d:35:
03:25:f3:cb:c8:70:bf:a2:c6:0d:a9:cc:c3:02:34:
7f:5b:00:94:e5:f9:ce:5a:8c:ee:0a:63:45:fd:73:
c3:55:42:3a:38:83:90:a6:ec:28:04:d7:52:e1:d8:
72:93:42:04:8b:82:f1:a4:26:34:c8:5a:18:7b:cc:
28:42:9f:b7:7c:9c:23:fb:3d:ce:f8:45:ca:27:0b:
2a:aa:b8:e5:ed:2f:3b:b9:4e:c6:1d:8a:9b:ac:09:
80:e1:ba:ce:bb:06:5e:02:4e:15:5a:7f:b9:55:b6:
c5:12:ee:f9:0c:3c:dd:e4:6a:15:67:42:df:9e:da:
1e:a4:ed:d1:11:65:53:4e:59:89:73:b2:9c:28:0c:
e6:3a:5f:e1:14:34:ca:7d:56:fd:65:96:3d:f9:9d:
fa:61:48:4e:04:a6:19:e9:89:ed:d0:77:09:fe:e6:
39:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D8:64:B8:AC:19:DC:F3:99:90:C4:2D:D4:00:88:94:CF:58:E8:6F
X509v3 Authority Key Identifier:
keyid:AE:64:5A:CB:02:17:C7:4A:0F:D3:4E:17:A5:3D:BD:EE:56:F0:11:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:da:20:ee:1b:4e:e9:cc:5e:fb:c4:8e:6c:82:5a:84:19:0f:
c7:cd:31:2a:d6:5c:9f:bf:df:30:27:0d:fa:5a:fa:44:d1:76:
43:d0:af:4e:5e:c1:70:04:ce:c2:18:1d:de:48:79:49:87:a9:
48:82:c9:61:a0:93:a7:4d:ad:37:b1:29:10:9c:bd:d4:e6:62:
9d:bc:f8:c6:ca:bb:32:80:75:de:bf:b5:ee:2d:6d:52:e7:20:
cb:5e:f2:4c:be:3a:23:3b:1a:d5:49:2c:25:c4:97:b3:1e:34:
8c:f6:73:bc:5e:12:91:45:a4:08:09:7d:f6:a3:b0:a1:5f:30:
d3:02:d5:18:80:1a:9f:02:44:d3:67:18:6d:77:7c:97:d4:1c:
11:d4:e5:5e:12:06:14:52:b4:c1:82:84:c0:c3:c7:e2:f8:c7:
7c:b8:be:cc:9d:c0:43:8c:b7:9d:2c:4d:40:6f:8a:44:85:d9:
27:14:a5:88:a3:2b:10:93:23:89:d8:ee:ad:86:d2:2f:4b:87:
a0:35:2a:0c:09:8f:43:63:0f:ae:b8:4c:7d:1d:cc:c7:94:d1:
dd:66:b8:c9:87:84:c1:8c:78:e2:a0:da:aa:93:39:cc:c2:4b:
b8:a9:70:a8:46:6d:25:c5:f1:5e:6c:55:19:06:3e:63:9a:b5:
30:1a:ab:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfKzDwODWjrTmn0+UYE/oirMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlNjQ1YWNiMDIxN2M3NGEwZmQzNGUxN2E1M2RiZGVlNTZm
MDExZTUwHhcNMjUwNzAyMTEwMTExWhcNMjUwNzAzMTEwMTExWjAzMTEwLwYDVQQD
EyhmNWQ4NjRiOGFjMTlkY2YzOTk5MGM0MmRkNDAwODg5NGNmNThlODZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFtYC2FHo20pdDe5imgq+iTq/7zP
hnnuhNCFT96QtbVD1E0Y6d0j7afoIYqL1rmJGjorJxYqaHoCYW2xmlKPSgHDQhq3
DeO3FQ9P4NqkyKDYqsOWylqdXTUDJfPLyHC/osYNqczDAjR/WwCU5fnOWozuCmNF
/XPDVUI6OIOQpuwoBNdS4dhyk0IEi4LxpCY0yFoYe8woQp+3fJwj+z3O+EXKJwsq
qrjl7S87uU7GHYqbrAmA4brOuwZeAk4VWn+5VbbFEu75DDzd5GoVZ0LfntoepO3R
EWVTTlmJc7KcKAzmOl/hFDTKfVb9ZZY9+Z36YUhOBKYZ6Ynt0HcJ/uY5mwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPXYZLisGdzzmZDELdQAiJTPWOhvMB8GA1UdIwQY
MBaAFK5kWssCF8dKD9NOF6U9ve5W8BHlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm1SYXl3SVh4MG9QMDA0WHBUMjk3bGJ3RWVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8wZWQzM2EtMWYxZC00MjgxLWFiMzkt
NDA4OTAxMzBkZDE4LzEvcm1SYXl3SVh4MG9QMDA0WHBUMjk3bGJ3RWVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC8wZWQzM2EtMWYxZC00MjgxLWFiMzktNDA4OTAxMzBkZDE4
LzEvcm1SYXl3SVh4MG9QMDA0WHBUMjk3bGJ3RWVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK9og7htO
6cxe+8SObIJahBkPx80xKtZcn7/fMCcN+lr6RNF2Q9CvTl7BcATOwhgd3kh5SYep
SILJYaCTp02tN7EpEJy91OZinbz4xsq7MoB13r+17i1tUucgy17yTL46Izsa1Uks
JcSXsx40jPZzvF4SkUWkCAl99qOwoV8w0wLVGIAanwJE02cYbXd8l9QcEdTlXhIG
FFK0wYKEwMPH4vjHfLi+zJ3AQ4y3nSxNQG+KRIXZJxSliKMrEJMjidjurYbSL0uH
oDUqDAmPQ2MPrrhMfR3Mx5TR3Wa4yYeEwYx44qDaqpM5zMJLuKlwqEZtJcXxXmxV
GQY+Y5q1MBqrDg==
-----END CERTIFICATE-----
Generated at Wed Jul 2 13:28:43 2025 by rpki-client