Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft
File: RHxS2B7cEklkSteUvgKK-Q4CShY.mft (raw, json)
Hash identifier: 7ysdRqovAIIGexorEpWH0lVExGosSCWtBu1N6o1Imj8=
Subject key identifier: 2D:9F:1D:23:82:42:AB:4B:B9:C7:12:B5:F1:9E:F5:BB:19:4B:F6:25
Authority key identifier: 44:7C:52:D8:1E:DC:12:49:64:4A:D7:94:BE:02:8A:F9:0E:02:4A:16
Certificate issuer: /CN=447c52d81edc1249644ad794be028af90e024a16
Certificate serial: 0197B74518F7BB757371C7A197BB053CCEE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHxS2B7cEklkSteUvgKK-Q4CShY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft
Manifest number: 0961
Signing time: Sat 28 Jun 2025 16:00:48 +0000
Manifest this update: Sat 28 Jun 2025 16:00:48 +0000
Manifest next update: Sun 29 Jun 2025 16:00:48 +0000
Files and hashes: 1: 0RTmTUPTdqVwMU5i8iRqJZA86F0.roa (hash: eIjsDcha7FolfU5e8Eelou/OO0UBzir5atE5Gevb/B4=)
2: RHxS2B7cEklkSteUvgKK-Q4CShY.crl (hash: Tvy4lx1aqE3PadqFK6HHib26NHIa1jSe2aVaELHjg/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft
rsync://rpki.ripe.net/repository/DEFAULT/RHxS2B7cEklkSteUvgKK-Q4CShY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:18:f7:bb:75:73:71:c7:a1:97:bb:05:3c:ce:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=447c52d81edc1249644ad794be028af90e024a16
Validity
Not Before: Jun 28 16:00:48 2025 GMT
Not After : Jun 29 16:00:48 2025 GMT
Subject: CN=2d9f1d238242ab4bb9c712b5f19ef5bb194bf625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:98:8a:e3:59:26:af:be:c4:2b:11:63:f0:06:
0e:a7:e4:61:45:98:98:e9:ac:bd:ea:47:e8:00:95:
c0:1a:ea:23:d0:9d:b6:4b:77:1c:e7:0e:2f:47:15:
29:2a:02:52:a0:40:05:b9:fc:59:b9:e8:3f:f4:68:
6e:13:f4:57:e6:f6:7c:69:60:37:72:b6:b6:c5:14:
b2:9e:1e:bd:6e:39:57:4d:b5:36:28:51:8b:68:a2:
a9:2b:41:2b:69:ab:72:94:da:43:47:f2:67:7d:64:
16:50:d8:a5:dc:6b:3b:28:ed:4e:15:fa:f1:15:0e:
ab:bd:32:77:32:79:3e:6e:8f:1b:99:f2:9b:8c:e0:
4e:aa:5a:a4:21:5f:b4:41:de:8f:1d:c9:b5:55:c9:
7f:47:bf:73:f7:04:80:45:d7:ce:93:48:d7:88:ea:
a9:73:b7:7f:38:50:b4:7d:9c:40:71:41:43:d3:a6:
59:06:ee:c1:d8:b3:2a:0c:75:e8:fe:61:24:d2:c9:
4b:d3:50:59:fa:aa:30:81:5e:4e:16:2a:8d:a3:ea:
f5:52:fa:e8:d5:6e:38:b2:35:6d:b2:11:3f:8c:eb:
e1:fd:16:ec:e8:be:cb:a9:f0:61:47:31:fb:aa:78:
49:19:b3:c2:95:18:2c:76:2b:6b:86:9a:ca:00:6d:
55:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:9F:1D:23:82:42:AB:4B:B9:C7:12:B5:F1:9E:F5:BB:19:4B:F6:25
X509v3 Authority Key Identifier:
keyid:44:7C:52:D8:1E:DC:12:49:64:4A:D7:94:BE:02:8A:F9:0E:02:4A:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHxS2B7cEklkSteUvgKK-Q4CShY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:6d:5d:09:55:4e:22:1d:32:23:fb:d5:03:01:29:74:ce:49:
d6:d5:ee:83:ac:a7:79:3f:77:0f:9d:f5:f4:01:a3:35:58:25:
11:dd:c6:4b:eb:bd:e6:3b:70:ec:4f:ac:91:de:13:c0:92:e2:
9e:e2:de:59:64:23:2b:2e:dd:09:6a:d1:21:8a:8c:d4:5b:9f:
04:d9:81:23:27:a3:0f:09:85:5a:65:1e:65:14:b9:93:bb:c8:
ad:f1:77:d0:d9:3b:5a:f4:d2:e4:34:37:31:8a:d0:73:8e:30:
c8:80:fe:38:e3:89:d8:f9:e6:9f:42:db:ad:7d:4e:d9:b3:7b:
e8:71:32:2f:d4:b1:7c:fe:a2:4d:6f:c4:76:05:5e:09:d5:1a:
12:2d:ca:88:29:7b:dd:a6:9f:34:d1:27:88:c4:db:a1:00:85:
09:15:5d:a4:9d:f1:bb:b2:5c:db:ff:b0:38:aa:c4:af:da:25:
9e:ca:96:b7:72:c0:b9:ff:15:93:c3:da:a7:35:b6:27:03:af:
78:9d:8a:f1:9d:b2:f2:b1:b9:16:34:2e:1e:45:91:8e:7f:d0:
22:5f:2b:9f:d0:11:4b:be:bf:cf:b4:5f:30:be:40:f9:b5:18:
dc:f5:ac:4f:7d:b0:4f:0e:55:d4:68:2b:11:14:e5:f7:62:2b:
e3:fc:e8:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RRj3u3Vzccehl7sFPM7kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0N2M1MmQ4MWVkYzEyNDk2NDRhZDc5NGJlMDI4YWY5MGUw
MjRhMTYwHhcNMjUwNjI4MTYwMDQ4WhcNMjUwNjI5MTYwMDQ4WjAzMTEwLwYDVQQD
EygyZDlmMWQyMzgyNDJhYjRiYjljNzEyYjVmMTllZjViYjE5NGJmNjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJiK41kmr77EKxFj8AYOp+RhRZiY
6ay96kfoAJXAGuoj0J22S3cc5w4vRxUpKgJSoEAFufxZueg/9GhuE/RX5vZ8aWA3
cra2xRSynh69bjlXTbU2KFGLaKKpK0EraatylNpDR/JnfWQWUNil3Gs7KO1OFfrx
FQ6rvTJ3Mnk+bo8bmfKbjOBOqlqkIV+0Qd6PHcm1Vcl/R79z9wSARdfOk0jXiOqp
c7d/OFC0fZxAcUFD06ZZBu7B2LMqDHXo/mEk0slL01BZ+qowgV5OFiqNo+r1Uvro
1W44sjVtshE/jOvh/Rbs6L7LqfBhRzH7qnhJGbPClRgsditrhprKAG1V/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC2fHSOCQqtLuccStfGe9bsZS/YlMB8GA1UdIwQY
MBaAFER8Utge3BJJZErXlL4CivkOAkoWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkh4UzJCN2NFa2xrU3RlVXZnS0stUTRDU2hZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC83NjFiMTctNmNiNS00N2ZkLThjNGYt
ZWZhNjc4OWZkOTcyLzEvUkh4UzJCN2NFa2xrU3RlVXZnS0stUTRDU2hZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC83NjFiMTctNmNiNS00N2ZkLThjNGYtZWZhNjc4OWZkOTcy
LzEvUkh4UzJCN2NFa2xrU3RlVXZnS0stUTRDU2hZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ21dCVVO
Ih0yI/vVAwEpdM5J1tXug6yneT93D5319AGjNVglEd3GS+u95jtw7E+skd4TwJLi
nuLeWWQjKy7dCWrRIYqM1FufBNmBIyejDwmFWmUeZRS5k7vIrfF30Nk7WvTS5DQ3
MYrQc44wyID+OOOJ2Pnmn0LbrX1O2bN76HEyL9SxfP6iTW/EdgVeCdUaEi3KiCl7
3aafNNEniMTboQCFCRVdpJ3xu7Jc2/+wOKrEr9olnsqWt3LAuf8Vk8PapzW2JwOv
eJ2K8Z2y8rG5FjQuHkWRjn/QIl8rn9ARS76/z7RfML5A+bUY3PWsT32wTw5V1Ggr
ERTl92Ir4/zoqg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:55:53 2025 by rpki-client