Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
File: 0f00NtehmnND-oANh6Aa8YPaMYs.mft (raw, json)
Hash identifier: zwDq77WtGrUDA1yP7LnMc3bhXoVI2OKUezXLcxrqtrQ=
Subject key identifier: CB:A1:3E:36:D7:A1:6C:19:30:5B:AD:CB:C7:1A:81:91:5D:90:7C:2E
Authority key identifier: D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
Certificate issuer: /CN=d1fd3436d7a19a7343fa800d87a01af183da318b
Certificate serial: 0197B7EA8F1AEE7551A3FCA86F73293B5132
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
Manifest number: 0BC2
Signing time: Sat 28 Jun 2025 19:01:31 +0000
Manifest this update: Sat 28 Jun 2025 19:01:31 +0000
Manifest next update: Sun 29 Jun 2025 19:01:31 +0000
Files and hashes: 1: 0f00NtehmnND-oANh6Aa8YPaMYs.crl (hash: g3vSstFxXXexY84YOGRgLP0pILalOK0oDDiCKCTruyM=)
2: 289E-Jj1-_NHnfIspmJ6dDyJHMo.roa (hash: WdW5apU9mzQj50OlelJWc6bz8hGD+pm8qBunEBj3yw4=)
3: Cs1qBn4VjrBIRHmPJXLiE1xFxCY.roa (hash: MWgCuKpBS+l+AyVioTFlRoxqt43GEYXQ/PHcMYuFOog=)
4: h6nXa6s8OWHMrQG1DSMZKlfJDE8.roa (hash: oPs+na6jf/GLFYpEpQKvloInu3ZuLoam22sOPdiiyEs=)
5: iW93Iii_wpRaBJx4UitIZE8Hirs.roa (hash: nFhRjV7MRzVZ4mQI/ZjUoZj1OD4mh/1+uDWJfZv9Rc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:8f:1a:ee:75:51:a3:fc:a8:6f:73:29:3b:51:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1fd3436d7a19a7343fa800d87a01af183da318b
Validity
Not Before: Jun 28 19:01:31 2025 GMT
Not After : Jun 29 19:01:31 2025 GMT
Subject: CN=cba13e36d7a16c19305badcbc71a81915d907c2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:62:e8:f0:86:7d:70:ab:9b:31:7d:69:8b:a5:
4d:0d:f6:1a:d2:c1:68:5d:f9:d7:e3:78:dc:27:c9:
c6:40:de:89:57:ae:e2:45:99:66:33:8c:a8:61:40:
84:b5:53:57:e9:4f:f3:92:b8:c1:c5:1a:8c:9a:ab:
3c:f6:9b:11:c6:54:30:5a:f3:94:b3:dc:03:66:7c:
61:77:73:a4:fe:97:e0:c4:02:15:87:1a:e5:08:c3:
a6:9f:c7:20:52:6a:ba:dd:fc:6c:10:24:ba:cd:1b:
f5:3e:61:bb:c4:1c:cf:47:79:4d:64:9a:18:52:60:
cc:87:28:cd:5e:f9:9c:0f:ae:df:0f:22:60:b1:14:
89:9c:1a:14:28:d7:b9:65:4a:a3:28:c5:59:22:b1:
06:f9:31:0d:9f:b9:01:42:34:0e:fd:a7:3f:a3:e2:
57:97:83:f2:26:9c:dd:0a:e2:cb:13:b3:a1:fd:41:
fd:dc:1a:e3:19:b2:e7:8f:03:5b:74:46:42:c9:dd:
5c:16:89:87:46:5d:26:af:75:e8:54:6f:db:8c:38:
6b:e2:bd:5d:4d:c7:d0:1a:6c:98:20:4d:ae:2f:91:
51:96:c3:65:b8:4f:39:c8:5c:81:f6:6e:6b:64:34:
73:f1:a9:d2:0b:6b:bd:ea:73:e0:d0:ca:92:cd:55:
47:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:A1:3E:36:D7:A1:6C:19:30:5B:AD:CB:C7:1A:81:91:5D:90:7C:2E
X509v3 Authority Key Identifier:
keyid:D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:e7:3b:90:5c:b1:3f:e8:9a:80:af:3f:77:3e:86:3f:6d:48:
49:79:c7:e1:6e:cc:e6:33:02:ae:bd:5d:34:f8:6c:44:24:b5:
03:d3:33:a2:7a:7f:4e:9a:f4:02:a1:09:95:69:10:cf:27:ac:
8d:18:26:30:51:fb:bc:c9:86:35:e3:7c:13:9a:fa:0d:bd:eb:
81:2f:0e:d4:16:2c:51:a0:2a:69:eb:d9:92:7d:f7:93:9d:75:
2f:2f:15:4b:23:eb:11:c4:18:56:49:c6:ff:98:c2:45:0b:a9:
b9:fa:41:3a:89:d5:07:4e:ac:ad:a3:6e:69:31:b0:d2:63:75:
f0:3e:42:fe:c8:50:a6:b4:ae:09:91:a3:1a:83:6e:c1:0b:65:
80:77:f3:1a:fd:40:2f:44:fe:d2:d0:a9:47:69:ee:e0:32:04:
6b:c6:95:43:4a:30:4b:ab:45:05:3a:78:2e:6f:50:ae:69:79:
53:8e:2f:f2:66:5d:08:83:ab:55:3b:8b:6d:62:25:c5:3e:bb:
52:86:0b:28:6a:27:1d:5e:7a:90:5d:08:b2:61:49:2a:4c:18:
87:3b:eb:c6:eb:7b:e2:27:eb:89:73:f4:0c:a9:c3:ce:02:1c:
dd:b6:ed:66:71:e8:70:64:b9:0a:11:4a:aa:d8:49:b2:a2:ff:
95:84:2b:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36o8a7nVRo/yob3MpO1EyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxZmQzNDM2ZDdhMTlhNzM0M2ZhODAwZDg3YTAxYWYxODNk
YTMxOGIwHhcNMjUwNjI4MTkwMTMxWhcNMjUwNjI5MTkwMTMxWjAzMTEwLwYDVQQD
EyhjYmExM2UzNmQ3YTE2YzE5MzA1YmFkY2JjNzFhODE5MTVkOTA3YzJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp2Lo8IZ9cKubMX1pi6VNDfYa0sFo
XfnX43jcJ8nGQN6JV67iRZlmM4yoYUCEtVNX6U/zkrjBxRqMmqs89psRxlQwWvOU
s9wDZnxhd3Ok/pfgxAIVhxrlCMOmn8cgUmq63fxsECS6zRv1PmG7xBzPR3lNZJoY
UmDMhyjNXvmcD67fDyJgsRSJnBoUKNe5ZUqjKMVZIrEG+TENn7kBQjQO/ac/o+JX
l4PyJpzdCuLLE7Oh/UH93BrjGbLnjwNbdEZCyd1cFomHRl0mr3XoVG/bjDhr4r1d
TcfQGmyYIE2uL5FRlsNluE85yFyB9m5rZDRz8anSC2u96nPg0MqSzVVHgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMuhPjbXoWwZMFuty8cagZFdkHwuMB8GA1UdIwQY
MBaAFNH9NDbXoZpzQ/qADYegGvGD2jGLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9iY2Q1ZTgtNWQxZi00NmIxLTk2YmMt
MzlhNjZjYmUxZTRkLzEvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy9iY2Q1ZTgtNWQxZi00NmIxLTk2YmMtMzlhNjZjYmUxZTRk
LzEvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABuc7kFyx
P+iagK8/dz6GP21ISXnH4W7M5jMCrr1dNPhsRCS1A9Mzonp/Tpr0AqEJlWkQzyes
jRgmMFH7vMmGNeN8E5r6Db3rgS8O1BYsUaAqaevZkn33k511Ly8VSyPrEcQYVknG
/5jCRQupufpBOonVB06sraNuaTGw0mN18D5C/shQprSuCZGjGoNuwQtlgHfzGv1A
L0T+0tCpR2nu4DIEa8aVQ0owS6tFBTp4Lm9Qrml5U44v8mZdCIOrVTuLbWIlxT67
UoYLKGonHV56kF0IsmFJKkwYhzvrxut74ifriXP0DKnDzgIc3bbtZnHocGS5ChFK
qthJsqL/lYQr6A==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:19:02 2025 by rpki-client