Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
File: rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft (raw, json)
Hash identifier: NJiGN81b3KLAHttf1p03+bsqcq6oUZRr9XBRaYPN978=
Subject key identifier: 10:99:95:ED:B7:E2:0E:02:78:81:C5:CF:5F:59:1B:5D:F4:C7:95:60
Authority key identifier: AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
Certificate issuer: /CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Certificate serial: 0197B6A1B9E70390F548C431499B90C87A71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
Manifest number: 15BC
Signing time: Sat 28 Jun 2025 13:02:21 +0000
Manifest this update: Sat 28 Jun 2025 13:02:21 +0000
Manifest next update: Sun 29 Jun 2025 13:02:21 +0000
Files and hashes: 1: BAFnA8E_-fRHFvJR66V5dNg4Xzc.roa (hash: zli04q+UUFDZ6LvNlKF4wEZntdZy+cQL9il9Oh4rSZo=)
2: rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl (hash: JLFlvI5hTerzWSz5n+xGoztwX64fSGprbtedAWL2ePg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:b9:e7:03:90:f5:48:c4:31:49:9b:90:c8:7a:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Validity
Not Before: Jun 28 13:02:21 2025 GMT
Not After : Jun 29 13:02:21 2025 GMT
Subject: CN=109995edb7e20e027881c5cf5f591b5df4c79560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:25:48:c7:8f:2b:4b:0c:3d:0a:4b:27:cd:cd:
9f:72:77:fb:66:87:52:79:53:e0:09:13:1c:e8:ac:
6a:df:04:b6:8e:4a:58:2a:99:ab:c1:5e:d4:07:6c:
50:40:40:7d:75:24:c3:69:83:d0:f7:9e:e1:89:2c:
bb:1b:9b:da:0c:15:f3:e6:c2:ab:f3:db:07:2a:33:
0c:89:00:2a:51:b6:05:bc:ef:7d:2c:39:34:ce:df:
f8:7a:80:b8:c6:b3:03:8c:72:6d:ea:55:27:99:7d:
37:a8:44:c9:c7:6a:6b:60:98:08:81:4c:cc:d7:a1:
4f:a2:98:cd:11:b2:f9:ce:dc:33:04:0c:c0:f3:e5:
a9:e3:f1:6b:cc:cf:a7:06:fc:17:0b:26:28:f0:ae:
05:d9:4b:e5:31:29:6f:b0:03:d2:83:8d:0d:dc:1a:
b6:94:c6:5a:2a:6b:5f:16:87:99:a3:4b:05:f3:3a:
29:fd:5f:25:b7:ed:0d:a5:70:23:fa:51:fa:06:dd:
28:fb:be:a0:4e:c5:cb:25:ca:22:1c:23:81:a1:d4:
96:08:d6:7d:b5:70:46:b2:a5:21:35:a4:87:ae:9e:
74:33:69:d7:56:cc:aa:e0:0d:36:f6:9e:e1:50:29:
01:df:61:c6:62:6b:c8:64:9d:b7:bb:4e:0c:cf:0c:
a6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:99:95:ED:B7:E2:0E:02:78:81:C5:CF:5F:59:1B:5D:F4:C7:95:60
X509v3 Authority Key Identifier:
keyid:AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:14:43:20:47:64:71:4e:99:f5:54:ee:af:3c:e2:1f:7a:43:
19:9b:82:83:29:d5:c5:d3:03:fa:d9:f9:60:d0:a6:2f:d2:e9:
bd:3b:40:00:9b:42:8d:43:e9:b4:c5:81:15:88:68:e9:59:20:
d5:4b:bc:de:c0:b0:31:dd:64:8b:d6:01:79:09:93:21:19:00:
b5:2f:d2:0d:52:9b:5f:91:77:4c:8a:82:25:58:10:78:fa:48:
f0:a8:d1:71:8a:2b:bf:45:e8:bc:19:20:88:c2:6d:ea:a6:7d:
2a:fe:a2:24:12:81:93:93:dd:bc:7f:37:71:ae:65:99:64:24:
09:d7:b8:3b:da:aa:61:7a:72:85:fd:8e:6a:37:cd:02:f1:c1:
d0:e4:20:2e:44:ec:bd:79:93:ae:63:f4:25:a4:a9:f2:6e:86:
f9:4a:70:f6:61:d4:3f:32:36:e7:99:f1:31:e0:bc:80:14:da:
ca:f5:02:e3:ea:e3:46:ca:cf:c0:cf:ee:63:64:a8:da:fd:10:
49:8b:60:60:ee:0e:a6:f6:11:8e:b5:58:d7:52:b1:59:20:f0:
9e:29:88:ec:17:9d:ad:cd:e4:c9:78:9c:cd:b2:ab:33:8c:6f:
29:d3:83:a3:81:40:62:30:6e:ef:9d:9e:91:d1:25:29:5c:01:
bc:14:09:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2obnnA5D1SMQxSZuQyHpxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjOGEwZTBiMWIyMWYwOTMzMzNjMDc0ODE0NWIxNjI4NDE4
Y2YyYjUwHhcNMjUwNjI4MTMwMjIxWhcNMjUwNjI5MTMwMjIxWjAzMTEwLwYDVQQD
EygxMDk5OTVlZGI3ZTIwZTAyNzg4MWM1Y2Y1ZjU5MWI1ZGY0Yzc5NTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5yVIx48rSww9Cksnzc2fcnf7ZodS
eVPgCRMc6Kxq3wS2jkpYKpmrwV7UB2xQQEB9dSTDaYPQ957hiSy7G5vaDBXz5sKr
89sHKjMMiQAqUbYFvO99LDk0zt/4eoC4xrMDjHJt6lUnmX03qETJx2prYJgIgUzM
16FPopjNEbL5ztwzBAzA8+Wp4/FrzM+nBvwXCyYo8K4F2UvlMSlvsAPSg40N3Bq2
lMZaKmtfFoeZo0sF8zop/V8lt+0NpXAj+lH6Bt0o+76gTsXLJcoiHCOBodSWCNZ9
tXBGsqUhNaSHrp50M2nXVsyq4A029p7hUCkB32HGYmvIZJ23u04MzwymewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBCZle234g4CeIHFz19ZG130x5VgMB8GA1UdIwQY
MBaAFKyKDgsbIfCTMzwHSBRbFihBjPK1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcklvT0N4c2g4Sk16UEFkSUZGc1dLRUdNOHJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84Y2U2YTEtMTMwYy00ODBlLWE5MDMt
ZGI4ZWZmMWIxMWEwLzEvcklvT0N4c2g4Sk16UEFkSUZGc1dLRUdNOHJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84Y2U2YTEtMTMwYy00ODBlLWE5MDMtZGI4ZWZmMWIxMWEw
LzEvcklvT0N4c2g4Sk16UEFkSUZGc1dLRUdNOHJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZhRDIEdk
cU6Z9VTurzziH3pDGZuCgynVxdMD+tn5YNCmL9LpvTtAAJtCjUPptMWBFYho6Vkg
1Uu83sCwMd1ki9YBeQmTIRkAtS/SDVKbX5F3TIqCJVgQePpI8KjRcYorv0XovBkg
iMJt6qZ9Kv6iJBKBk5PdvH83ca5lmWQkCde4O9qqYXpyhf2OajfNAvHB0OQgLkTs
vXmTrmP0JaSp8m6G+Upw9mHUPzI255nxMeC8gBTayvUC4+rjRsrPwM/uY2So2v0Q
SYtgYO4OpvYRjrVY11KxWSDwnimI7Bedrc3kyXiczbKrM4xvKdODo4FAYjBu752e
kdElKVwBvBQJhA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:22:40 2025 by rpki-client