Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
File: 7FNfTIaAzg26SgPZXmZck8yZzrk.mft (raw, json)
Hash identifier: lnIqsUBLLJ1QpykYml0XXW2uf5As9crejxNvYpnOd3k=
Subject key identifier: 3E:D3:DE:FE:1A:8A:C1:35:AC:CA:CC:18:07:35:A3:93:68:A1:E8:81
Authority key identifier: EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9
Certificate issuer: /CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9
Certificate serial: 0197B6A23D73D25AC06E558CE8A56BB926C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
Manifest number: 0128
Signing time: Sat 28 Jun 2025 13:02:55 +0000
Manifest this update: Sat 28 Jun 2025 13:02:55 +0000
Manifest next update: Sun 29 Jun 2025 13:02:55 +0000
Files and hashes: 1: 7FNfTIaAzg26SgPZXmZck8yZzrk.crl (hash: DM99cgIUcxVJ8bLdRurTlqVQ4XDeDVV6XdO60rLcuck=)
2: xmQ5skD8YtPqUxW5yzoA6bHhREg.roa (hash: JOTsRiuQWzCXcl+Wr2hE6xVJO7LXDTormwzqqmVX6eE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:3d:73:d2:5a:c0:6e:55:8c:e8:a5:6b:b9:26:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9
Validity
Not Before: Jun 28 13:02:55 2025 GMT
Not After : Jun 29 13:02:55 2025 GMT
Subject: CN=3ed3defe1a8ac135accacc180735a39368a1e881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:00:7a:e3:f1:08:e0:28:c5:f9:fb:b0:aa:73:
79:8e:5c:4f:c8:44:1c:66:5e:47:c2:e9:18:98:84:
61:b6:c0:b7:28:4a:1e:4a:39:6b:0f:8f:3f:f1:16:
81:a1:7e:05:9a:4c:15:84:bc:5c:7f:bf:68:80:f7:
19:58:48:75:fc:ee:d9:e9:cb:e7:3e:98:85:ba:a5:
ae:b1:ff:ca:cb:fe:5b:32:89:15:c0:7e:f2:b3:88:
1e:1d:47:a2:8e:bf:23:26:0b:8f:e5:c7:b6:b5:89:
6a:26:33:f6:27:9b:2d:27:ac:04:51:a5:3e:c8:aa:
53:a1:0f:9f:a3:7a:e6:0c:ea:25:57:c6:54:50:8c:
eb:07:6f:4b:f8:79:59:82:8b:7a:41:c8:2f:8f:ab:
54:21:2e:8c:7c:51:b8:bf:5b:80:e4:b8:0b:a5:d5:
b9:6d:ab:60:73:86:d3:5f:b3:11:76:7b:03:0f:28:
83:34:4e:3b:53:d0:f7:df:2e:09:77:7f:5d:5f:89:
98:a2:12:05:14:76:06:0b:04:13:8a:52:bc:06:b4:
93:31:66:37:1b:2c:83:c2:56:01:97:8e:81:5d:e2:
1d:b2:20:6f:09:c0:9c:66:89:5a:55:ba:5e:3c:85:
31:11:8b:09:64:96:7b:10:97:c1:50:90:66:6a:38:
de:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D3:DE:FE:1A:8A:C1:35:AC:CA:CC:18:07:35:A3:93:68:A1:E8:81
X509v3 Authority Key Identifier:
keyid:EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:e5:32:ab:69:d0:4c:e7:e7:07:c5:d9:c2:70:13:4c:0c:de:
9b:86:79:8a:1c:d4:94:92:01:0d:9a:17:c5:ed:11:68:f1:33:
8e:de:86:63:27:b4:ab:51:aa:59:30:3b:a1:e4:ea:22:56:2a:
a9:4d:94:08:e3:b2:2a:7c:e5:06:db:75:98:b9:f5:d3:95:fd:
a6:34:0f:b6:2a:0a:73:01:39:08:b3:2c:34:ae:f4:7c:45:3e:
6a:b9:ae:09:d5:62:28:6f:02:9a:0f:13:88:73:f7:7d:19:de:
23:81:6f:3c:6d:c2:17:ed:31:1f:ca:2b:40:d2:b9:8d:24:76:
72:91:a5:5b:d6:b3:4f:ef:01:91:5d:16:80:9d:8f:26:9c:8c:
68:6c:85:73:a1:06:16:24:f5:5a:04:f5:f9:8f:9c:d9:80:b5:
cd:18:cc:ec:81:4e:af:5d:62:33:3d:2e:74:44:db:59:60:1b:
5e:91:71:99:d9:31:5d:46:dc:8e:93:17:25:de:e3:3e:ac:aa:
a7:7f:98:3d:68:3f:5d:74:2a:d1:b8:80:88:2b:68:17:1b:8c:
44:ad:f1:81:55:70:da:98:4e:00:f3:7f:29:92:84:64:38:6b:
2f:92:89:d1:e6:7f:b8:fd:e9:6f:02:a3:dd:8c:fc:1c:8d:b7:
2d:53:f3:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oj1z0lrAblWM6KVruSbDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVjNTM1ZjRjODY4MGNlMGRiYTRhMDNkOTVlNjY1YzkzY2M5
OWNlYjkwHhcNMjUwNjI4MTMwMjU1WhcNMjUwNjI5MTMwMjU1WjAzMTEwLwYDVQQD
EygzZWQzZGVmZTFhOGFjMTM1YWNjYWNjMTgwNzM1YTM5MzY4YTFlODgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2wB64/EI4CjF+fuwqnN5jlxPyEQc
Zl5HwukYmIRhtsC3KEoeSjlrD48/8RaBoX4FmkwVhLxcf79ogPcZWEh1/O7Z6cvn
PpiFuqWusf/Ky/5bMokVwH7ys4geHUeijr8jJguP5ce2tYlqJjP2J5stJ6wEUaU+
yKpToQ+fo3rmDOolV8ZUUIzrB29L+HlZgot6Qcgvj6tUIS6MfFG4v1uA5LgLpdW5
batgc4bTX7MRdnsDDyiDNE47U9D33y4Jd39dX4mYohIFFHYGCwQTilK8BrSTMWY3
GyyDwlYBl46BXeIdsiBvCcCcZolaVbpePIUxEYsJZJZ7EJfBUJBmajjeawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD7T3v4aisE1rMrMGAc1o5NooeiBMB8GA1UdIwQY
MBaAFOxTX0yGgM4NukoD2V5mXJPMmc65MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN0ZOZlRJYUF6ZzI2U2dQWlhtWmNrOHlaenJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZDAwMjktZjMzMC00YTY2LWJlZGMt
NDJmMmZmODU5MzczLzEvN0ZOZlRJYUF6ZzI2U2dQWlhtWmNrOHlaenJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS83ZDAwMjktZjMzMC00YTY2LWJlZGMtNDJmMmZmODU5Mzcz
LzEvN0ZOZlRJYUF6ZzI2U2dQWlhtWmNrOHlaenJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXeUyq2nQ
TOfnB8XZwnATTAzem4Z5ihzUlJIBDZoXxe0RaPEzjt6GYye0q1GqWTA7oeTqIlYq
qU2UCOOyKnzlBtt1mLn105X9pjQPtioKcwE5CLMsNK70fEU+armuCdViKG8Cmg8T
iHP3fRneI4FvPG3CF+0xH8orQNK5jSR2cpGlW9azT+8BkV0WgJ2PJpyMaGyFc6EG
FiT1WgT1+Y+c2YC1zRjM7IFOr11iMz0udETbWWAbXpFxmdkxXUbcjpMXJd7jPqyq
p3+YPWg/XXQq0biAiCtoFxuMRK3xgVVw2phOAPN/KZKEZDhrL5KJ0eZ/uP3pbwKj
3Yz8HI23LVPzZA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:32:52 2025 by rpki-client