Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
File: tF9VYNefBKktehUPPtjaQwir6jM.mft (raw, json)
Hash identifier: mvQ68WuiTedk3Za3HSDmk3oj+y22NBtj/wCdsUJgjsM=
Subject key identifier: F0:0E:8E:CA:FA:7E:AD:9F:8F:35:5D:25:5C:73:CE:62:EF:E3:F4:F2
Authority key identifier: B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
Certificate issuer: /CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Certificate serial: 0197C64AB1FF635CD614333B9F9AF3430D97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
Manifest number: 1145
Signing time: Tue 01 Jul 2025 14:01:13 +0000
Manifest this update: Tue 01 Jul 2025 14:01:13 +0000
Manifest next update: Wed 02 Jul 2025 14:01:13 +0000
Files and hashes: 1: rFHksT2fJAQ7epdh-sMDgGR2SM4.roa (hash: Z/iFpAzmqAm2KrlQVqRFy4X3KTo7SXYWoBA5a7g2HG4=)
2: tF9VYNefBKktehUPPtjaQwir6jM.crl (hash: kpWIgS0BrsDSJLBjNzrWbp+K9r+6epuruJqL7/QHOLY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:4a:b1:ff:63:5c:d6:14:33:3b:9f:9a:f3:43:0d:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Validity
Not Before: Jul 1 14:01:13 2025 GMT
Not After : Jul 2 14:01:13 2025 GMT
Subject: CN=f00e8ecafa7ead9f8f355d255c73ce62efe3f4f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ec:af:a5:4f:8d:88:75:f3:ef:8f:7f:7e:f7:
92:f3:2b:6f:a3:cd:d0:da:cb:5b:0a:2c:c3:07:65:
c5:69:0b:8e:9a:db:9d:c7:89:9a:ac:d6:8c:0d:95:
26:36:06:5e:71:ea:a4:8d:c3:e8:70:75:a0:e9:2c:
2a:f0:3e:7c:17:09:45:11:4e:a4:0c:9a:da:9f:c9:
20:fe:22:1e:a3:f1:f1:86:46:b8:d6:e4:f8:17:c2:
bb:c0:08:55:aa:b3:47:e3:f9:44:91:de:1d:f0:d5:
5a:09:4c:5e:7c:08:e1:47:91:c7:87:8b:f9:d4:c4:
95:7f:77:6c:8f:2b:66:cf:be:db:af:35:c8:a8:1f:
2b:c8:ec:e7:5b:32:94:f1:88:6d:10:4e:55:36:13:
f6:7c:b3:2d:48:b5:34:c6:1f:ef:45:b5:b6:3d:2d:
27:b2:15:33:3d:4b:db:20:48:7b:da:9e:fe:51:4f:
f9:ea:1b:f6:42:80:71:a9:2c:a6:7e:a4:23:49:13:
a9:0b:b0:fb:03:23:55:d2:a6:2c:cd:f2:c4:e8:ea:
4e:54:38:c7:ee:69:d5:b0:79:2d:18:cd:bb:ff:17:
d4:21:3b:db:c4:8c:24:3d:ed:50:54:b4:14:8f:0a:
a4:68:30:00:d2:c1:4d:60:2f:b1:92:ef:77:d2:75:
d6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:0E:8E:CA:FA:7E:AD:9F:8F:35:5D:25:5C:73:CE:62:EF:E3:F4:F2
X509v3 Authority Key Identifier:
keyid:B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:13:89:65:15:46:ef:dc:10:60:00:e4:36:5d:c3:47:ec:40:
dd:39:38:12:5e:cd:f4:bb:36:c2:d9:9b:1c:d4:9c:a8:9c:4c:
68:9d:89:23:4e:38:07:89:e5:f0:d5:bb:36:66:7a:45:3c:98:
91:30:bd:cb:c3:6b:ec:5b:e2:d6:12:04:36:e7:57:dc:a4:9b:
8e:a6:76:d8:07:f5:32:05:79:15:b5:c1:87:06:4b:83:72:66:
dd:78:55:d7:78:64:93:68:77:11:d5:92:5d:f0:b7:70:eb:4f:
c4:de:f4:47:78:ce:04:90:5f:7f:92:97:0f:9f:ad:fa:b5:d5:
94:76:90:72:19:8b:95:9e:cb:3c:a6:73:da:22:94:1d:de:5b:
7e:03:4b:ed:b1:38:59:40:66:7b:f2:b7:72:71:ba:cd:02:e2:
60:83:a7:0c:7c:62:b7:76:29:a0:7b:aa:11:cb:bb:35:9a:95:
13:c5:52:a2:a2:5d:d2:19:34:00:e2:a3:16:39:60:e1:d7:3e:
bd:25:48:91:70:de:39:f4:36:35:87:dd:d5:e6:16:b2:14:01:
0d:2a:87:41:06:2b:97:2d:06:ae:6c:24:87:81:a3:22:eb:08:
d9:e8:90:fc:2a:e7:7f:58:08:c7:35:76:83:e2:f1:95:7e:a8:
17:00:49:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfGSrH/Y1zWFDM7n5rzQw2XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0NWY1NTYwZDc5ZjA0YTkyZDdhMTUwZjNlZDhkYTQzMDhh
YmVhMzMwHhcNMjUwNzAxMTQwMTEzWhcNMjUwNzAyMTQwMTEzWjAzMTEwLwYDVQQD
EyhmMDBlOGVjYWZhN2VhZDlmOGYzNTVkMjU1YzczY2U2MmVmZTNmNGYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOyvpU+NiHXz749/fveS8ytvo83Q
2stbCizDB2XFaQuOmtudx4marNaMDZUmNgZeceqkjcPocHWg6Swq8D58FwlFEU6k
DJran8kg/iIeo/Hxhka41uT4F8K7wAhVqrNH4/lEkd4d8NVaCUxefAjhR5HHh4v5
1MSVf3dsjytmz77brzXIqB8ryOznWzKU8YhtEE5VNhP2fLMtSLU0xh/vRbW2PS0n
shUzPUvbIEh72p7+UU/56hv2QoBxqSymfqQjSROpC7D7AyNV0qYszfLE6OpOVDjH
7mnVsHktGM27/xfUITvbxIwkPe1QVLQUjwqkaDAA0sFNYC+xku930nXWIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPAOjsr6fq2fjzVdJVxzzmLv4/TyMB8GA1UdIwQY
MBaAFLRfVWDXnwSpLXoVDz7Y2kMIq+ozMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEY5VllOZWZCS2t0ZWhVUFB0amFRd2lyNmpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy83YjE2OWQtZmMwOS00OWJiLTk2Njkt
YzMyMjI0NzRlZWYxLzEvdEY5VllOZWZCS2t0ZWhVUFB0amFRd2lyNmpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy83YjE2OWQtZmMwOS00OWJiLTk2NjktYzMyMjI0NzRlZWYx
LzEvdEY5VllOZWZCS2t0ZWhVUFB0amFRd2lyNmpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmxOJZRVG
79wQYADkNl3DR+xA3Tk4El7N9Ls2wtmbHNScqJxMaJ2JI044B4nl8NW7NmZ6RTyY
kTC9y8Nr7Fvi1hIENudX3KSbjqZ22Af1MgV5FbXBhwZLg3Jm3XhV13hkk2h3EdWS
XfC3cOtPxN70R3jOBJBff5KXD5+t+rXVlHaQchmLlZ7LPKZz2iKUHd5bfgNL7bE4
WUBme/K3cnG6zQLiYIOnDHxit3YpoHuqEcu7NZqVE8VSoqJd0hk0AOKjFjlg4dc+
vSVIkXDeOfQ2NYfd1eYWshQBDSqHQQYrly0Grmwkh4GjIusI2eiQ/Crnf1gIxzV2
g+LxlX6oFwBJdw==
-----END CERTIFICATE-----
Generated at Tue Jul 1 18:13:58 2025 by rpki-client