Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
File: 0mHPvAfsMGN33LFql6EWDHptgsw.mft (raw, json)
Hash identifier: pL55AE8n0VxlFvJT+eqO0Act+uEH7RHTUMWay19XBX8=
Subject key identifier: B5:56:CD:5B:B4:C0:D6:E9:E2:7F:5C:53:F9:41:AA:29:3F:38:D4:B0
Authority key identifier: D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC
Certificate issuer: /CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc
Certificate serial: 0197B77C06BF1356B9FD9D43848E62F9994C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
Manifest number: 01F6
Signing time: Sat 28 Jun 2025 17:00:48 +0000
Manifest this update: Sat 28 Jun 2025 17:00:48 +0000
Manifest next update: Sun 29 Jun 2025 17:00:48 +0000
Files and hashes: 1: 0mHPvAfsMGN33LFql6EWDHptgsw.crl (hash: ukWl1KPeTdr3woEgl+q+/ryQx9UbuPYuxY5APo1WeTY=)
2: 1-242YNLxFtHiZKrZjOTCTUI_hX4.roa (hash: Zl/0hNDNG1rQGa8HsGyytZ4/ZO9Krs9kfipHSTu8iZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:06:bf:13:56:b9:fd:9d:43:84:8e:62:f9:99:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc
Validity
Not Before: Jun 28 17:00:48 2025 GMT
Not After : Jun 29 17:00:48 2025 GMT
Subject: CN=b556cd5bb4c0d6e9e27f5c53f941aa293f38d4b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:aa:78:a7:a5:1c:dd:80:36:c9:e8:c8:5b:d0:
61:e0:70:c7:ed:8e:84:7c:9e:0e:69:ee:19:f0:1a:
56:5d:7c:c6:5c:87:99:59:f1:63:d0:dc:83:06:42:
20:2d:d1:e4:d8:a7:2f:97:57:04:e9:33:16:62:dd:
02:6d:27:53:54:91:f9:22:fb:6e:f0:0e:17:46:11:
61:50:3b:21:dc:3d:65:21:7d:0e:96:a7:2a:17:11:
25:49:b8:24:86:08:f1:0c:4b:33:74:04:50:ed:83:
b3:92:d1:cc:d8:e5:e2:15:cd:08:02:55:b2:01:b2:
e6:fa:a0:70:c2:6c:b6:38:f3:51:05:f3:9d:95:b6:
b1:8d:8c:7d:14:b9:af:9d:c6:a9:26:1f:e4:68:ab:
85:8f:73:b2:9b:70:08:12:1f:bc:1b:af:80:73:3b:
63:91:55:85:76:72:ce:ef:f4:18:d8:0d:11:a5:3a:
2a:82:22:b8:7a:5b:c6:51:e5:a9:7b:fb:2d:80:95:
70:a8:e4:d0:a4:0f:31:38:59:30:6e:98:f3:6a:db:
df:2f:8f:af:b0:c0:bb:6a:c9:cc:f1:7f:8d:55:ac:
27:c4:2f:9e:81:c4:e6:dd:f7:13:d7:ba:51:5d:df:
47:0e:72:3e:32:e0:90:81:10:4c:db:cf:25:64:8e:
9a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:56:CD:5B:B4:C0:D6:E9:E2:7F:5C:53:F9:41:AA:29:3F:38:D4:B0
X509v3 Authority Key Identifier:
keyid:D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:b3:3e:bb:09:15:8c:bf:53:fc:43:ef:c3:e9:3c:2e:16:c3:
eb:79:95:26:ff:0d:ef:38:a4:0c:ad:65:89:41:59:53:b1:ff:
d5:bc:7d:95:cb:be:4f:2b:cc:2a:59:dc:d7:14:1a:57:a4:3b:
21:2b:2b:a4:53:98:b8:9e:b3:da:a0:76:94:21:b7:c5:2d:4f:
22:9c:bb:98:8e:a8:1f:13:28:60:17:b7:0a:6d:e6:f7:90:7c:
fb:45:d4:87:b8:bd:93:aa:32:31:76:80:d0:26:2a:56:b4:78:
ff:cf:3d:44:0c:d0:d3:64:00:f4:e4:39:10:9d:77:92:48:5e:
ca:93:cf:99:b4:74:c7:f4:c6:de:ec:d7:8a:07:61:23:3c:41:
ed:3a:94:52:3f:ad:6e:79:ad:29:cf:50:92:38:a6:9b:8d:a4:
34:15:35:b8:ab:33:66:59:34:2b:20:b0:17:d6:01:07:4c:61:
76:7f:b2:f2:f1:8b:6c:5b:ef:73:33:8d:95:fb:08:a4:46:e9:
53:61:c9:cb:f7:8a:82:49:c4:8f:4d:09:ce:88:aa:3a:12:9c:
22:5c:ef:82:88:57:7e:46:19:fa:94:b3:de:45:54:d7:dc:8c:
92:4a:6d:8a:4f:3b:3d:35:2a:c4:6f:7f:e2:ec:7e:da:8e:09:
99:43:6d:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fAa/E1a5/Z1DhI5i+ZlMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNjFjZmJjMDdlYzMwNjM3N2RjYjE2YTk3YTExNjBjN2E2
ZDgyY2MwHhcNMjUwNjI4MTcwMDQ4WhcNMjUwNjI5MTcwMDQ4WjAzMTEwLwYDVQQD
EyhiNTU2Y2Q1YmI0YzBkNmU5ZTI3ZjVjNTNmOTQxYWEyOTNmMzhkNGIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtap4p6Uc3YA2yejIW9Bh4HDH7Y6E
fJ4Oae4Z8BpWXXzGXIeZWfFj0NyDBkIgLdHk2Kcvl1cE6TMWYt0CbSdTVJH5Ivtu
8A4XRhFhUDsh3D1lIX0OlqcqFxElSbgkhgjxDEszdARQ7YOzktHM2OXiFc0IAlWy
AbLm+qBwwmy2OPNRBfOdlbaxjYx9FLmvncapJh/kaKuFj3Oym3AIEh+8G6+Acztj
kVWFdnLO7/QY2A0RpToqgiK4elvGUeWpe/stgJVwqOTQpA8xOFkwbpjzatvfL4+v
sMC7asnM8X+NVawnxC+egcTm3fcT17pRXd9HDnI+MuCQgRBM288lZI6a/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLVWzVu0wNbp4n9cU/lBqik/ONSwMB8GA1UdIwQY
MBaAFNJhz7wH7DBjd9yxapehFgx6bYLMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMG1IUHZBZnNNR04zM0xGcWw2RVdESHB0Z3N3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS80ZWFmYzktNTQ3My00NjAyLWExNDkt
OTIyYTE2ZDExN2RkLzEvMG1IUHZBZnNNR04zM0xGcWw2RVdESHB0Z3N3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS80ZWFmYzktNTQ3My00NjAyLWExNDktOTIyYTE2ZDExN2Rk
LzEvMG1IUHZBZnNNR04zM0xGcWw2RVdESHB0Z3N3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH7M+uwkV
jL9T/EPvw+k8LhbD63mVJv8N7zikDK1liUFZU7H/1bx9lcu+TyvMKlnc1xQaV6Q7
ISsrpFOYuJ6z2qB2lCG3xS1PIpy7mI6oHxMoYBe3Cm3m95B8+0XUh7i9k6oyMXaA
0CYqVrR4/889RAzQ02QA9OQ5EJ13kkheypPPmbR0x/TG3uzXigdhIzxB7TqUUj+t
bnmtKc9Qkjimm42kNBU1uKszZlk0KyCwF9YBB0xhdn+y8vGLbFvvczONlfsIpEbp
U2HJy/eKgknEj00JzoiqOhKcIlzvgohXfkYZ+pSz3kVU19yMkkptik87PTUqxG9/
4ux+2o4JmUNtgQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:03:22 2025 by rpki-client