Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
File: x0at2Nr-mfan14fUR5VFpkb23tg.mft (raw, json)
Hash identifier: L7YuX94j53U5ii7HAIKti3djb0Vm8UgXELHImWStcqY=
Subject key identifier: 37:1C:5D:4D:80:50:FF:7B:A9:5F:D0:BF:B2:B8:1A:C2:10:F9:FC:A5
Authority key identifier: C7:46:AD:D8:DA:FE:99:F6:A7:D7:87:D4:47:95:45:A6:46:F6:DE:D8
Certificate issuer: /CN=c746add8dafe99f6a7d787d4479545a646f6ded8
Certificate serial: 0197B77CE236B5FA84B026403FCC18A06DC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 17:01:44 +0000
Manifest this update: Sat 28 Jun 2025 17:01:44 +0000
Manifest next update: Sun 29 Jun 2025 17:01:44 +0000
Files and hashes: 1: 5ew0AHvlVZKk-XGMQ-7_VQCyPko.roa (hash: r01XfwbxbtnFEz4LgMmHMoPfMeBX2hjKhEb9/b2NI+4=)
2: x0at2Nr-mfan14fUR5VFpkb23tg.crl (hash: 2nXjbvmulmUcM09r5XEnTxLuv5LkrnWkHFJD1nl203c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:e2:36:b5:fa:84:b0:26:40:3f:cc:18:a0:6d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c746add8dafe99f6a7d787d4479545a646f6ded8
Validity
Not Before: Jun 28 17:01:44 2025 GMT
Not After : Jun 29 17:01:44 2025 GMT
Subject: CN=371c5d4d8050ff7ba95fd0bfb2b81ac210f9fca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:17:ce:ab:a1:1e:e2:67:2c:3b:29:34:7a:5e:
ae:ae:9d:de:32:15:c0:7d:de:76:d3:c8:2b:8f:81:
f5:61:c2:78:5f:60:3b:85:9b:7f:82:9a:b3:8a:bc:
20:ff:e4:bb:85:cd:74:20:37:6a:2d:8c:27:6c:f3:
31:db:98:27:da:a6:c0:29:c8:2a:93:da:f8:d6:60:
73:be:e6:60:df:b9:52:19:67:b3:a5:e0:fb:20:e6:
cb:9e:2f:7e:30:3e:22:41:36:0a:d4:6d:58:4d:cd:
e1:83:f3:ce:b6:02:d1:6a:c0:9e:b6:42:26:cd:ca:
46:ea:13:40:cc:75:a2:e3:bd:67:f4:a3:a9:40:70:
07:73:c5:ff:bf:75:d8:08:6a:5a:b3:a2:41:e0:f1:
2a:74:c2:14:bb:ae:61:e2:6d:da:74:b4:c2:bc:e8:
a0:dd:5a:3c:03:15:36:82:99:93:bb:e6:64:9b:8d:
f2:21:6c:80:6b:e3:51:9f:53:6b:e5:1a:66:eb:31:
ca:e4:c4:de:dd:e2:df:5c:59:04:a0:59:a0:76:85:
08:e4:6c:c7:ab:69:99:d9:43:fc:ac:23:3e:d7:a8:
98:92:be:d6:c7:5d:6a:be:89:1a:2f:9e:4d:fe:ae:
50:9e:da:7e:31:d7:b2:2b:c4:40:4c:32:77:ca:89:
36:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:1C:5D:4D:80:50:FF:7B:A9:5F:D0:BF:B2:B8:1A:C2:10:F9:FC:A5
X509v3 Authority Key Identifier:
keyid:C7:46:AD:D8:DA:FE:99:F6:A7:D7:87:D4:47:95:45:A6:46:F6:DE:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:ce:b9:ea:55:2f:f2:26:46:29:94:5f:fc:d5:27:f4:cc:cc:
bf:1b:c7:2d:14:4b:c9:37:d9:b7:8f:b8:a0:65:0a:47:9f:44:
94:50:66:3c:ba:b1:9d:ef:57:90:cb:51:12:0e:16:76:3a:11:
7b:4a:22:77:1d:58:e9:59:88:aa:99:2f:fd:47:59:b2:ac:e6:
3a:af:31:bf:bd:6e:4e:01:c7:96:07:28:fd:fb:3a:3e:1b:6d:
27:c1:d2:4a:1b:2c:18:5d:ca:cf:59:a1:17:1d:e7:cd:80:40:
6a:af:26:64:db:04:27:a9:51:f7:f2:4c:1d:8b:86:7c:5a:b7:
27:35:1d:67:ce:9a:ab:f0:ad:89:4e:16:99:83:3a:06:4b:7d:
1d:aa:68:cb:61:1d:c7:52:54:f2:0f:01:d9:31:6b:e9:8f:c0:
76:ed:33:98:a7:23:00:46:19:40:e5:0a:2c:db:f5:1a:fa:a1:
d9:c8:2d:14:1d:10:5d:0a:a3:91:ba:bc:ec:57:07:aa:9a:9b:
92:3d:e3:6e:0e:fc:39:aa:21:0b:4d:b3:d0:3d:ac:2a:31:8c:
11:0a:da:9f:93:3a:b9:69:f0:5e:bc:ad:8b:bd:7f:84:aa:93:
a1:b8:d0:ad:37:31:8d:08:1b:ca:20:ff:c4:8c:0e:75:6a:29:
46:de:35:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fOI2tfqEsCZAP8wYoG3IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3NDZhZGQ4ZGFmZTk5ZjZhN2Q3ODdkNDQ3OTU0NWE2NDZm
NmRlZDgwHhcNMjUwNjI4MTcwMTQ0WhcNMjUwNjI5MTcwMTQ0WjAzMTEwLwYDVQQD
EygzNzFjNWQ0ZDgwNTBmZjdiYTk1ZmQwYmZiMmI4MWFjMjEwZjlmY2E1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xfOq6Ee4mcsOyk0el6urp3eMhXA
fd5208grj4H1YcJ4X2A7hZt/gpqzirwg/+S7hc10IDdqLYwnbPMx25gn2qbAKcgq
k9r41mBzvuZg37lSGWezpeD7IObLni9+MD4iQTYK1G1YTc3hg/POtgLRasCetkIm
zcpG6hNAzHWi471n9KOpQHAHc8X/v3XYCGpas6JB4PEqdMIUu65h4m3adLTCvOig
3Vo8AxU2gpmTu+Zkm43yIWyAa+NRn1Nr5Rpm6zHK5MTe3eLfXFkEoFmgdoUI5GzH
q2mZ2UP8rCM+16iYkr7Wx11qvokaL55N/q5Qntp+MdeyK8RATDJ3yok2MwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDccXU2AUP97qV/Qv7K4GsIQ+fylMB8GA1UdIwQY
MBaAFMdGrdja/pn2p9eH1EeVRaZG9t7YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDBhdDJOci1tZmFuMTRmVVI1VkZwa2IyM3RnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC8zNzJhYWYtNTA2Mi00MTQ3LTg3N2It
N2NiZmU3MzdhODI3LzEveDBhdDJOci1tZmFuMTRmVVI1VkZwa2IyM3RnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC8zNzJhYWYtNTA2Mi00MTQ3LTg3N2ItN2NiZmU3MzdhODI3
LzEveDBhdDJOci1tZmFuMTRmVVI1VkZwa2IyM3RnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzc656lUv
8iZGKZRf/NUn9MzMvxvHLRRLyTfZt4+4oGUKR59ElFBmPLqxne9XkMtREg4WdjoR
e0oidx1Y6VmIqpkv/UdZsqzmOq8xv71uTgHHlgco/fs6PhttJ8HSShssGF3Kz1mh
Fx3nzYBAaq8mZNsEJ6lR9/JMHYuGfFq3JzUdZ86aq/CtiU4WmYM6Bkt9Hapoy2Ed
x1JU8g8B2TFr6Y/Adu0zmKcjAEYZQOUKLNv1Gvqh2cgtFB0QXQqjkbq87FcHqpqb
kj3jbg78OaohC02z0D2sKjGMEQran5M6uWnwXryti71/hKqTobjQrTcxjQgbyiD/
xIwOdWopRt41Vw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:30:02 2025 by rpki-client