Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json)
Hash identifier: slyxL4yEZIKhefPPWAOeGRvUa5s9h/fdQ7twu2+TLO4=
Subject key identifier: 9E:9A:EE:4A:92:C5:93:B6:5D:05:CB:C4:A1:65:6C:91:03:BC:65:C3
Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Certificate serial: 0197B77C44E416EB3D8DDE09566F37F7F733
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
Manifest number: 02E6
Signing time: Sat 28 Jun 2025 17:01:03 +0000
Manifest this update: Sat 28 Jun 2025 17:01:03 +0000
Manifest next update: Sun 29 Jun 2025 17:01:03 +0000
Files and hashes: 1: kdQZ4QS0sUqXnywKZ8M79hUmfTA.roa (hash: xGG3G4XfdVhcDuFzw8EOPzLUi5vn/b3D8pkyEY9PSkc=)
2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: WCsZN+KiYBx/zyEGC2dp0b+0MM8+qZ1lpNs8UKR+FfM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:44:e4:16:eb:3d:8d:de:09:56:6f:37:f7:f7:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Validity
Not Before: Jun 28 17:01:03 2025 GMT
Not After : Jun 29 17:01:03 2025 GMT
Subject: CN=9e9aee4a92c593b65d05cbc4a1656c9103bc65c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e6:8c:65:ea:95:f3:5e:7a:d5:9c:cb:a6:48:
6d:4f:ca:45:cb:ec:7f:6f:1c:15:00:6b:99:17:01:
1e:f5:f1:85:ba:89:ed:54:c3:0a:54:c6:1e:99:68:
67:88:a0:e5:57:bc:95:05:b4:f2:b0:09:84:bf:b1:
5e:7e:ae:5c:34:f7:18:ac:bb:4d:bd:22:7e:40:5c:
a1:15:42:27:c0:99:c0:94:34:9e:8b:a2:8c:44:e4:
db:97:32:80:54:ef:1e:b1:30:fd:31:d1:3d:c9:f5:
62:2f:ec:b2:d9:95:32:44:9e:4e:8b:2a:d5:c3:18:
18:d5:44:5a:2b:bc:7b:6c:30:e9:3c:5d:9d:2f:01:
a1:d0:9d:cd:5e:51:b7:16:e4:e7:e4:38:d2:d4:49:
29:67:63:38:e1:a6:b6:b3:e1:4f:12:23:b0:57:64:
54:43:29:af:e3:44:43:a6:c8:3c:ef:58:5d:a1:d7:
84:a5:fb:3d:83:0d:71:09:1a:16:ff:67:d6:48:ef:
49:f9:0b:71:21:04:07:50:a2:a0:1d:56:fc:a3:63:
d6:5b:c4:07:af:15:fa:2e:c6:27:3a:76:33:8d:3d:
a5:20:dc:29:b4:5f:46:71:6a:5f:c8:5b:a1:51:d2:
6c:5b:9a:79:62:fd:52:8b:bb:28:4e:44:5f:b1:6d:
37:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:9A:EE:4A:92:C5:93:B6:5D:05:CB:C4:A1:65:6C:91:03:BC:65:C3
X509v3 Authority Key Identifier:
keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:43:fb:2c:d0:68:ed:10:77:3a:18:09:ef:e3:86:b1:12:e8:
61:f3:b0:10:fc:9f:22:af:0d:08:1a:35:b1:05:cc:fd:06:5f:
9e:47:e0:8e:d9:cf:41:e0:9f:22:df:20:f3:4c:67:d8:ff:8a:
60:fc:5e:d7:1b:39:e4:60:01:e2:45:e3:c0:6f:02:0c:81:68:
c6:54:97:fc:c1:ea:49:76:2e:67:62:fa:b1:4b:b1:81:e2:99:
89:94:5f:d6:17:3d:d0:54:78:fc:ea:f4:6f:25:78:4b:53:ea:
7d:4c:07:32:be:4f:0d:ab:74:8e:eb:2c:6e:62:6d:27:1d:fb:
a0:5e:e1:e4:d3:6d:e9:f5:b2:ff:6e:27:86:f9:8c:f4:8e:2e:
f2:25:17:1a:33:39:5e:3e:71:ee:4f:34:7f:12:27:78:32:61:
14:6f:58:51:3b:5b:b5:b2:a5:81:96:d6:33:62:70:43:a9:3c:
63:3b:ac:56:13:4f:47:9c:14:bd:87:fc:1c:79:c9:cf:ae:d0:
ca:05:4e:de:23:7c:ae:bd:c4:b2:0f:68:d5:b4:48:3b:da:b2:
b1:8b:4c:91:89:5e:90:a5:90:83:0f:54:42:44:8d:06:f0:17:
eb:3a:86:ee:5e:2e:b2:ba:b4:24:20:6e:4c:fe:7b:22:d8:75:
08:78:0c:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fETkFus9jd4JVm839/czMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MzZjMGYwZWM4YmJlZGYwZjYwODQ0ZGZlNGZlOTM5MzY5
YTRiNDAwHhcNMjUwNjI4MTcwMTAzWhcNMjUwNjI5MTcwMTAzWjAzMTEwLwYDVQQD
Eyg5ZTlhZWU0YTkyYzU5M2I2NWQwNWNiYzRhMTY1NmM5MTAzYmM2NWMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2OaMZeqV81561ZzLpkhtT8pFy+x/
bxwVAGuZFwEe9fGFuontVMMKVMYemWhniKDlV7yVBbTysAmEv7Fefq5cNPcYrLtN
vSJ+QFyhFUInwJnAlDSei6KMROTblzKAVO8esTD9MdE9yfViL+yy2ZUyRJ5OiyrV
wxgY1URaK7x7bDDpPF2dLwGh0J3NXlG3FuTn5DjS1EkpZ2M44aa2s+FPEiOwV2RU
Qymv40RDpsg871hdodeEpfs9gw1xCRoW/2fWSO9J+QtxIQQHUKKgHVb8o2PWW8QH
rxX6LsYnOnYzjT2lINwptF9GcWpfyFuhUdJsW5p5Yv1Si7soTkRfsW03ZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ6a7kqSxZO2XQXLxKFlbJEDvGXDMB8GA1UdIwQY
MBaAFLQ2wPDsi77fD2CETf5P6Tk2mktAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kYjY2YWItNzBhYy00MWFkLTk5NTgt
ZGQ4YjVhZmNlZTNiLzEvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9kYjY2YWItNzBhYy00MWFkLTk5NTgtZGQ4YjVhZmNlZTNi
LzEvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsUP7LNBo
7RB3OhgJ7+OGsRLoYfOwEPyfIq8NCBo1sQXM/QZfnkfgjtnPQeCfIt8g80xn2P+K
YPxe1xs55GAB4kXjwG8CDIFoxlSX/MHqSXYuZ2L6sUuxgeKZiZRf1hc90FR4/Or0
byV4S1PqfUwHMr5PDat0jussbmJtJx37oF7h5NNt6fWy/24nhvmM9I4u8iUXGjM5
Xj5x7k80fxIneDJhFG9YUTtbtbKlgZbWM2JwQ6k8YzusVhNPR5wUvYf8HHnJz67Q
ygVO3iN8rr3Esg9o1bRIO9qysYtMkYlekKWQgw9UQkSNBvAX6zqG7l4usrq0JCBu
TP57Ith1CHgMRw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:46:05 2025 by rpki-client