Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
File: THGxR-uHN6vMM1-AIJUbJf8mVqY.mft (raw, json)
Hash identifier: B9ghEJWssydx2QgDVYfatp9dX5penNxrtjD2cMhmJ7A=
Subject key identifier: 74:D4:FE:95:DC:A2:FD:3C:05:96:A9:09:A2:84:45:3D:43:8B:B7:44
Authority key identifier: 4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
Certificate issuer: /CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Certificate serial: 0197B77CA5E77A5B37670E8DC0E0FB118AEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
Manifest number: 0A4F
Signing time: Sat 28 Jun 2025 17:01:28 +0000
Manifest this update: Sat 28 Jun 2025 17:01:28 +0000
Manifest next update: Sun 29 Jun 2025 17:01:28 +0000
Files and hashes: 1: THGxR-uHN6vMM1-AIJUbJf8mVqY.crl (hash: UwgthVtInh04AfGcjocxOJZwQYzeQ9CGYMoYrZDixyo=)
2: aZp_-IqiVFoAaaD08gi82AqrlBM.roa (hash: xAjdvDvJZRM8tEfeaFE3V9XsMT9Nsdi0raaN7LzCKfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:a5:e7:7a:5b:37:67:0e:8d:c0:e0:fb:11:8a:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Validity
Not Before: Jun 28 17:01:28 2025 GMT
Not After : Jun 29 17:01:28 2025 GMT
Subject: CN=74d4fe95dca2fd3c0596a909a284453d438bb744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:dd:e8:28:6f:ce:7b:48:b8:ab:04:e1:0e:44:
df:44:4f:d7:b0:3a:ea:d6:d5:ba:f3:5e:86:57:80:
d8:a3:46:5e:83:d3:89:e8:0d:6c:e5:a4:72:e8:d0:
e2:b0:ae:8c:46:12:de:99:94:3e:21:8c:0a:e4:8d:
05:bc:d8:57:9e:40:9c:9b:ec:c9:a3:0c:5f:eb:e8:
c2:7e:5d:f2:28:d0:b7:28:2d:f1:86:f6:88:b2:53:
a3:45:29:f9:3d:23:e9:38:dd:d4:c4:4a:67:f7:85:
9e:56:99:2e:33:7a:6a:1e:b4:5a:86:90:99:09:78:
52:84:69:45:c9:41:c2:41:e7:83:bd:60:b4:bf:76:
93:03:70:0a:01:a7:5b:50:97:40:c9:00:a2:52:58:
46:78:ef:92:be:6b:b7:ea:0f:8f:2e:41:aa:ea:52:
bf:3f:d4:b6:25:bc:b5:d3:63:3b:cd:2d:cd:3a:3c:
48:cb:43:5c:c4:46:5f:a2:2a:ba:df:e0:a8:e2:f2:
6f:7d:7b:45:26:d5:8a:29:35:69:32:8f:3b:ac:a5:
24:27:6e:42:4f:8c:07:23:12:5a:9a:aa:ed:e5:d5:
e6:b5:98:0b:39:2a:55:41:37:d7:f9:07:e5:4d:b9:
2a:ff:1c:c1:1c:91:36:70:c9:10:3d:66:9e:e7:52:
01:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D4:FE:95:DC:A2:FD:3C:05:96:A9:09:A2:84:45:3D:43:8B:B7:44
X509v3 Authority Key Identifier:
keyid:4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:1e:09:79:3c:0d:24:78:0a:dc:a0:17:0b:17:6f:c3:26:e1:
45:11:f2:fa:7f:54:9d:f0:37:e4:a4:52:71:6b:eb:59:36:77:
3b:7e:2b:74:e1:df:21:25:c6:fc:cd:43:7f:03:bf:fb:35:23:
8c:c0:84:5b:e6:c0:49:68:fe:b1:d1:ab:a8:6b:13:f6:93:0b:
f3:da:d5:c4:8e:89:1d:37:2c:c1:72:ff:3e:40:ee:5e:7b:1a:
17:bd:6c:59:c2:43:60:2d:21:2e:dd:46:a3:22:11:e3:64:ad:
91:e2:45:88:d6:53:78:d2:c9:83:ca:d7:db:96:4b:c2:56:94:
e6:7a:75:8f:35:d8:ea:7f:a0:24:37:8e:80:25:9e:fb:cd:a7:
74:d2:58:cc:fc:1a:12:c0:86:0f:90:47:8f:2a:95:cb:01:8d:
d6:64:47:8a:75:44:1f:62:53:e5:00:99:ad:48:b8:7a:ea:09:
5a:2b:26:5a:9b:59:b2:df:9a:e0:d8:b4:ef:2d:e9:ce:14:8c:
b2:23:43:53:43:ad:61:ee:10:5a:11:79:33:7a:fe:5d:a1:b8:
46:20:6d:c0:45:4f:39:b5:e9:40:0e:40:d3:96:02:ea:e9:ca:
ac:0c:af:5c:c5:24:80:df:16:2f:b3:c5:4e:7d:96:19:29:0f:
a9:8d:c7:3a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fKXnels3Zw6NwOD7EYrrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjNzFiMTQ3ZWI4NzM3YWJjYzMzNWY4MDIwOTUxYjI1ZmYy
NjU2YTYwHhcNMjUwNjI4MTcwMTI4WhcNMjUwNjI5MTcwMTI4WjAzMTEwLwYDVQQD
Eyg3NGQ0ZmU5NWRjYTJmZDNjMDU5NmE5MDlhMjg0NDUzZDQzOGJiNzQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvd3oKG/Oe0i4qwThDkTfRE/XsDrq
1tW6816GV4DYo0Zeg9OJ6A1s5aRy6NDisK6MRhLemZQ+IYwK5I0FvNhXnkCcm+zJ
owxf6+jCfl3yKNC3KC3xhvaIslOjRSn5PSPpON3UxEpn94WeVpkuM3pqHrRahpCZ
CXhShGlFyUHCQeeDvWC0v3aTA3AKAadbUJdAyQCiUlhGeO+Svmu36g+PLkGq6lK/
P9S2Jby102M7zS3NOjxIy0NcxEZfoiq63+Co4vJvfXtFJtWKKTVpMo87rKUkJ25C
T4wHIxJamqrt5dXmtZgLOSpVQTfX+QflTbkq/xzBHJE2cMkQPWae51IBqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHTU/pXcov08BZapCaKERT1Di7dEMB8GA1UdIwQY
MBaAFExxsUfrhzerzDNfgCCVGyX/JlamMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9mOTI4NzEtMGQzYS00ZDg3LWFmZGMt
MDcxYjk5MWFmMDFmLzEvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My9mOTI4NzEtMGQzYS00ZDg3LWFmZGMtMDcxYjk5MWFmMDFm
LzEvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnh4JeTwN
JHgK3KAXCxdvwybhRRHy+n9UnfA35KRScWvrWTZ3O34rdOHfISXG/M1DfwO/+zUj
jMCEW+bASWj+sdGrqGsT9pML89rVxI6JHTcswXL/PkDuXnsaF71sWcJDYC0hLt1G
oyIR42StkeJFiNZTeNLJg8rX25ZLwlaU5np1jzXY6n+gJDeOgCWe+82ndNJYzPwa
EsCGD5BHjyqVywGN1mRHinVEH2JT5QCZrUi4euoJWismWptZst+a4Ni07y3pzhSM
siNDU0OtYe4QWhF5M3r+XaG4RiBtwEVPObXpQA5A05YC6unKrAyvXMUkgN8WL7PF
Tn2WGSkPqY3HOg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:33:08 2025 by rpki-client