Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
File: dr5GHrn3AE8poX_d3-8uLqBeua8.mft (raw, json)
Hash identifier: olNT/c+EEidDiL8GJ2xTeqYirJo6sIEbpaoiWDhdjDo=
Subject key identifier: 53:8D:14:00:49:95:40:F6:03:94:9D:38:4A:E0:AD:B1:ED:D8:5A:72
Authority key identifier: 76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF
Certificate issuer: /CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af
Certificate serial: 0197B9A1AF2D9D9911ED4C94FA6C4AD56C66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
Manifest number: 154B
Signing time: Sun 29 Jun 2025 03:01:10 +0000
Manifest this update: Sun 29 Jun 2025 03:01:10 +0000
Manifest next update: Mon 30 Jun 2025 03:01:10 +0000
Files and hashes: 1: SmenFq2eO29wVInO8xQQnEozH4M.roa (hash: NLqfCsW+19ubwmofae6n/UEN1RfOh4ZI/s4/YAFk4k4=)
2: dr5GHrn3AE8poX_d3-8uLqBeua8.crl (hash: ljU+tZaLc8wl9CDLVcEyuwmVxEiPMUQggrFaLyauFd8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:af:2d:9d:99:11:ed:4c:94:fa:6c:4a:d5:6c:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af
Validity
Not Before: Jun 29 03:01:10 2025 GMT
Not After : Jun 30 03:01:10 2025 GMT
Subject: CN=538d1400499540f603949d384ae0adb1edd85a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:b9:02:43:95:cc:6d:3f:86:9b:65:4e:f6:77:
66:ae:de:de:5e:10:a5:b3:0e:b5:dd:79:2c:e4:b5:
b0:53:1a:d4:38:ac:64:05:3a:e6:0d:74:61:0a:f7:
ef:2b:60:99:44:89:95:5d:d4:25:b2:e7:e6:b6:83:
cd:63:fe:b0:99:4e:db:a9:a1:d4:f2:72:b8:fc:86:
93:88:23:2c:b1:09:2b:55:58:25:64:a7:a9:cb:82:
ad:74:41:3b:da:fb:3e:bb:2f:33:b6:1a:f0:31:32:
23:17:0c:3a:67:ed:4e:28:85:f7:e8:12:02:c4:9e:
eb:b3:cf:31:31:f2:dd:7f:7a:9c:34:40:59:a7:51:
96:f7:94:4f:64:06:90:15:13:89:71:19:e4:91:7c:
c2:0d:fc:aa:60:62:93:99:d7:ba:9d:b2:ad:c0:56:
ac:bd:a4:67:1c:5e:8c:b9:35:4c:43:d6:36:a1:59:
30:7a:f7:fe:47:8a:3b:18:82:75:70:43:d2:7d:45:
36:6c:6e:ad:f8:b2:d7:4a:a0:79:ae:93:c8:ca:53:
46:fb:b2:de:12:ab:84:1a:4a:3f:aa:a2:26:4d:2d:
93:13:57:1a:ff:fa:79:e1:0c:7c:b4:ef:c9:1d:01:
68:14:92:5b:c4:14:a4:2c:59:db:bd:b5:7f:73:e7:
c0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:8D:14:00:49:95:40:F6:03:94:9D:38:4A:E0:AD:B1:ED:D8:5A:72
X509v3 Authority Key Identifier:
keyid:76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:71:1d:b0:f5:3d:9b:3c:8e:14:e4:bb:4a:7c:c9:ec:96:bc:
27:2f:b1:ce:11:50:b2:33:45:6b:73:37:97:27:ff:0b:5d:14:
d5:f1:45:ed:57:7f:57:12:69:81:ac:e8:74:cb:b6:f4:fc:9b:
c5:db:60:a9:69:ba:2e:1b:65:76:65:2c:47:25:21:76:08:96:
3d:3c:52:08:c3:f6:55:3a:73:30:e8:d4:ed:e9:bf:84:02:e2:
96:35:1c:fc:4b:3c:e7:c2:7c:ab:00:d4:28:2f:51:26:6b:00:
c2:fe:cc:b6:0a:84:60:24:f4:83:68:89:99:5c:7d:ae:db:46:
22:ab:42:83:7e:24:c7:bb:bc:92:d7:f5:64:47:df:3d:d6:e8:
c9:26:ef:20:dd:82:68:13:a8:03:c8:36:ca:b2:65:e6:d3:21:
a5:df:d4:04:42:e7:d9:5c:04:cf:56:f9:be:92:5d:f7:9b:61:
50:a8:2a:e8:03:14:57:0a:1d:bb:63:c2:f1:8c:32:64:d6:3d:
05:44:43:16:5c:3c:2e:b0:0a:7c:15:7e:6f:4a:75:79:e3:f6:
47:7f:0a:14:c1:44:8b:28:a3:62:7e:22:7c:f2:64:f5:27:73:
79:5b:18:2f:a7:59:ea:da:a1:8a:cf:22:50:35:4a:c7:0b:e9:
e9:39:6c:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe5oa8tnZkR7UyU+mxK1WxmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2YmU0NjFlYjlmNzAwNGYyOWExN2ZkZGRmZWYyZTJlYTA1
ZWI5YWYwHhcNMjUwNjI5MDMwMTEwWhcNMjUwNjMwMDMwMTEwWjAzMTEwLwYDVQQD
Eyg1MzhkMTQwMDQ5OTU0MGY2MDM5NDlkMzg0YWUwYWRiMWVkZDg1YTcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8rkCQ5XMbT+Gm2VO9ndmrt7eXhCl
sw613Xks5LWwUxrUOKxkBTrmDXRhCvfvK2CZRImVXdQlsufmtoPNY/6wmU7bqaHU
8nK4/IaTiCMssQkrVVglZKepy4KtdEE72vs+uy8zthrwMTIjFww6Z+1OKIX36BIC
xJ7rs88xMfLdf3qcNEBZp1GW95RPZAaQFROJcRnkkXzCDfyqYGKTmde6nbKtwFas
vaRnHF6MuTVMQ9Y2oVkwevf+R4o7GIJ1cEPSfUU2bG6t+LLXSqB5rpPIylNG+7Le
EquEGko/qqImTS2TE1ca//p54Qx8tO/JHQFoFJJbxBSkLFnbvbV/c+fAcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFONFABJlUD2A5SdOErgrbHt2FpyMB8GA1UdIwQY
MBaAFHa+Rh659wBPKaF/3d/vLi6gXrmvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHI1R0hybjNBRThwb1hfZDMtOHVMcUJldWE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9jNjgwYmYtOWI2Yy00NGQzLTgzN2Yt
ODhjZmEzZGNhNmRlLzEvZHI1R0hybjNBRThwb1hfZDMtOHVMcUJldWE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi9jNjgwYmYtOWI2Yy00NGQzLTgzN2YtODhjZmEzZGNhNmRl
LzEvZHI1R0hybjNBRThwb1hfZDMtOHVMcUJldWE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZXEdsPU9
mzyOFOS7SnzJ7Ja8Jy+xzhFQsjNFa3M3lyf/C10U1fFF7Vd/VxJpgazodMu29Pyb
xdtgqWm6LhtldmUsRyUhdgiWPTxSCMP2VTpzMOjU7em/hALiljUc/Es858J8qwDU
KC9RJmsAwv7MtgqEYCT0g2iJmVx9rttGIqtCg34kx7u8ktf1ZEffPdboySbvIN2C
aBOoA8g2yrJl5tMhpd/UBELn2VwEz1b5vpJd95thUKgq6AMUVwodu2PC8YwyZNY9
BURDFlw8LrAKfBV+b0p1eeP2R38KFMFEiyijYn4ifPJk9SdzeVsYL6dZ6tqhis8i
UDVKxwvp6TlsTQ==
-----END CERTIFICATE-----
Generated at Sun Jun 29 06:03:58 2025 by rpki-client