Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
File: 0mKOBpte2LRVk0O1tn9atPkiUf4.mft (raw, json)
Hash identifier: F7Qc5pJ4OTH5mLAArkw2Aoe11qEAjhPR/S1Y2O8bzfs=
Subject key identifier: 5C:1A:B4:87:50:C2:89:D0:8F:4D:6C:B3:5E:D9:86:95:03:19:DA:0F
Authority key identifier: D2:62:8E:06:9B:5E:D8:B4:55:93:43:B5:B6:7F:5A:B4:F9:22:51:FE
Certificate issuer: /CN=d2628e069b5ed8b4559343b5b67f5ab4f92251fe
Certificate serial: 0197B6D7AE99DD7DF3E4AC8D7C8BFE7681CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
Manifest number: FC
Signing time: Sat 28 Jun 2025 14:01:17 +0000
Manifest this update: Sat 28 Jun 2025 14:01:17 +0000
Manifest next update: Sun 29 Jun 2025 14:01:17 +0000
Files and hashes: 1: 0mKOBpte2LRVk0O1tn9atPkiUf4.crl (hash: G+J8BGAxhn4JcAWD0AGe7pCkffJU9TH9GHmxL0uLAnE=)
2: xrKbG2lJLOHs6NPBeftXhDf224g.roa (hash: HTfj5/noaRj4CcOjKLI4Ev9C1aqAbFFMy1QpqUl2n+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:ae:99:dd:7d:f3:e4:ac:8d:7c:8b:fe:76:81:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2628e069b5ed8b4559343b5b67f5ab4f92251fe
Validity
Not Before: Jun 28 14:01:17 2025 GMT
Not After : Jun 29 14:01:17 2025 GMT
Subject: CN=5c1ab48750c289d08f4d6cb35ed986950319da0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6b:e0:2c:fa:eb:ba:9d:9e:a4:ea:f5:36:e3:
39:c3:11:9f:06:aa:4e:2a:33:5c:e5:09:b4:5b:48:
5d:db:28:7f:e4:c1:49:00:55:05:e0:05:e5:d0:56:
d6:64:4e:1e:2f:6e:94:65:18:21:78:b0:84:b5:e2:
8c:88:bb:52:61:10:fe:e3:47:a4:9f:29:a4:ee:4b:
43:eb:c6:eb:3c:38:e6:13:f8:64:5d:f7:3f:4f:c0:
1c:58:be:aa:d3:cb:13:a9:de:a2:37:32:5c:fa:3a:
d8:25:7c:0f:32:7c:72:9a:cb:11:f2:25:6f:e7:36:
d4:a8:c3:b3:8a:f0:c9:9f:79:3f:cf:c0:91:bc:9a:
ad:fa:c1:79:bc:0b:b3:c3:bd:55:a9:38:1e:12:5d:
53:48:e2:85:08:7a:f6:d8:83:d5:d6:d7:17:78:0b:
ef:d3:f7:f2:dc:2c:bc:e0:30:aa:d9:8a:ed:ce:d3:
a5:be:08:07:97:e4:99:53:89:3e:99:b3:e6:9f:9a:
15:85:ea:3f:4a:bd:8c:e3:dd:e6:b3:1c:df:14:ff:
53:22:d9:25:39:08:62:aa:6a:0c:94:3c:30:69:2a:
d1:d9:49:6b:24:2f:3c:f8:8c:e6:27:44:14:5e:5c:
7a:5a:64:a8:9b:55:eb:f0:39:a6:d8:d2:40:7a:24:
10:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:1A:B4:87:50:C2:89:D0:8F:4D:6C:B3:5E:D9:86:95:03:19:DA:0F
X509v3 Authority Key Identifier:
keyid:D2:62:8E:06:9B:5E:D8:B4:55:93:43:B5:B6:7F:5A:B4:F9:22:51:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:2f:8f:bb:84:7b:06:2a:14:92:0f:63:b4:a8:82:40:0a:3e:
09:99:b6:7b:5a:fa:30:a8:19:34:51:00:e5:d8:0e:35:c9:64:
dc:1c:a3:4b:17:0c:6e:56:87:2c:bb:45:31:e2:ac:ba:73:28:
77:23:0b:98:4a:94:21:f2:02:5e:77:03:0c:8f:a3:50:80:e9:
88:30:d2:b6:43:cc:ef:b1:9e:30:0d:41:82:7c:fc:18:05:15:
04:b9:e2:0e:a3:90:f4:cb:0c:a2:a3:24:d9:36:fd:ee:3d:5b:
46:17:bd:3a:a3:08:2f:cd:d9:07:b5:8a:21:11:d1:84:18:2f:
55:3f:fb:b9:ed:ea:52:35:90:9f:ac:6a:c2:09:82:7e:bb:9d:
23:cd:ae:fb:e1:b8:c6:53:d2:64:4a:1b:6d:47:8b:ff:38:23:
25:8e:f3:38:2c:71:3c:3e:4f:45:40:46:2c:da:b0:2d:b6:1b:
91:73:d6:a6:7a:29:27:67:f5:f3:0c:5b:e2:77:5b:a0:5c:90:
24:78:ce:79:c0:4d:a6:5f:ad:89:d7:88:2b:dd:80:94:b5:84:
02:f7:58:05:a0:cf:b9:d5:ac:91:d0:da:89:2d:9d:9e:dc:09:
dd:0f:73:a4:b0:87:fd:39:45:83:87:6f:d3:63:14:1d:75:13:
eb:c9:7c:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2166Z3X3z5KyNfIv+doHOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNjI4ZTA2OWI1ZWQ4YjQ1NTkzNDNiNWI2N2Y1YWI0Zjky
MjUxZmUwHhcNMjUwNjI4MTQwMTE3WhcNMjUwNjI5MTQwMTE3WjAzMTEwLwYDVQQD
Eyg1YzFhYjQ4NzUwYzI4OWQwOGY0ZDZjYjM1ZWQ5ODY5NTAzMTlkYTBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGvgLPrrup2epOr1NuM5wxGfBqpO
KjNc5Qm0W0hd2yh/5MFJAFUF4AXl0FbWZE4eL26UZRgheLCEteKMiLtSYRD+40ek
nymk7ktD68brPDjmE/hkXfc/T8AcWL6q08sTqd6iNzJc+jrYJXwPMnxymssR8iVv
5zbUqMOzivDJn3k/z8CRvJqt+sF5vAuzw71VqTgeEl1TSOKFCHr22IPV1tcXeAvv
0/fy3Cy84DCq2YrtztOlvggHl+SZU4k+mbPmn5oVheo/Sr2M493msxzfFP9TItkl
OQhiqmoMlDwwaSrR2UlrJC88+IzmJ0QUXlx6WmSom1Xr8Dmm2NJAeiQQiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFwatIdQwonQj01ss17ZhpUDGdoPMB8GA1UdIwQY
MBaAFNJijgabXti0VZNDtbZ/WrT5IlH+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMG1LT0JwdGUyTFJWazBPMXRuOWF0UGtpVWY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8xZWI5N2EtODNiZC00NDQ4LWIwOWUt
YWY2NGE1N2FjOGQyLzEvMG1LT0JwdGUyTFJWazBPMXRuOWF0UGtpVWY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC8xZWI5N2EtODNiZC00NDQ4LWIwOWUtYWY2NGE1N2FjOGQy
LzEvMG1LT0JwdGUyTFJWazBPMXRuOWF0UGtpVWY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbi+Pu4R7
BioUkg9jtKiCQAo+CZm2e1r6MKgZNFEA5dgONclk3ByjSxcMblaHLLtFMeKsunMo
dyMLmEqUIfICXncDDI+jUIDpiDDStkPM77GeMA1Bgnz8GAUVBLniDqOQ9MsMoqMk
2Tb97j1bRhe9OqMIL83ZB7WKIRHRhBgvVT/7ue3qUjWQn6xqwgmCfrudI82u++G4
xlPSZEobbUeL/zgjJY7zOCxxPD5PRUBGLNqwLbYbkXPWpnopJ2f18wxb4ndboFyQ
JHjOecBNpl+tideIK92AlLWEAvdYBaDPudWskdDaiS2dntwJ3Q9zpLCH/TlFg4dv
02MUHXUT68l8uQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:23:30 2025 by rpki-client