Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
File: 7sMTGXauon0XHGwmepjT84KmGio.mft (raw, json)
Hash identifier: qR8j8uaDeZ/J1NJimWlpxffKlg0tK+ftwrwsut9TX1I=
Subject key identifier: AB:DF:52:76:70:BD:44:73:EC:0D:51:76:6A:81:A6:34:8E:1C:3C:44
Authority key identifier: EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
Certificate issuer: /CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Certificate serial: 0197B70E680C9AB4A35A3D90BB89EDE3F367
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
Manifest number: 0FAC
Signing time: Sat 28 Jun 2025 15:01:04 +0000
Manifest this update: Sat 28 Jun 2025 15:01:04 +0000
Manifest next update: Sun 29 Jun 2025 15:01:04 +0000
Files and hashes: 1: 7sMTGXauon0XHGwmepjT84KmGio.crl (hash: 7JpNR9Et1VYY2eL3JjcjaSOq/8SbscGxNPS5c/L2WQo=)
2: qvDSjgW1rEvWcrU4jpSi6rsDCpM.roa (hash: T8Hf/3k6CSkU6S1AK65rkEFSmvPdWLsEssJ2od+QI9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:68:0c:9a:b4:a3:5a:3d:90:bb:89:ed:e3:f3:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Validity
Not Before: Jun 28 15:01:04 2025 GMT
Not After : Jun 29 15:01:04 2025 GMT
Subject: CN=abdf527670bd4473ec0d51766a81a6348e1c3c44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:50:54:29:e3:2d:ac:d1:ed:87:95:4b:a0:e6:
3d:ee:fc:ae:7a:80:4a:d1:42:1a:79:3e:65:60:b5:
77:47:69:cb:34:90:6d:54:18:03:41:b2:c3:86:06:
b3:cd:22:c0:43:87:5e:d1:f0:b3:e4:06:89:52:cb:
85:a8:55:b7:5e:68:a2:d5:85:95:01:4a:fb:10:00:
76:ed:a0:a6:1c:49:6d:b6:8a:ff:2c:90:db:b0:75:
bb:de:03:e3:fa:4c:61:1d:fa:cb:58:a7:80:59:0e:
28:e3:7c:89:e8:cc:b0:7b:ad:8f:45:60:f6:eb:61:
de:81:92:2c:4d:0a:c8:3f:50:62:ba:1c:ae:03:3d:
11:0b:ce:4d:56:d2:b7:c5:ae:ba:f9:a4:e9:8a:35:
17:38:28:ba:58:49:58:d8:10:b1:a5:46:36:5c:2a:
63:79:38:aa:ff:95:50:05:91:6e:06:5f:03:c4:3d:
a7:74:b8:1e:60:13:4a:c1:0d:b0:4f:ff:0a:58:e9:
57:96:7d:10:30:f0:78:6c:8f:73:aa:11:a2:78:f3:
31:68:27:9f:ce:35:76:14:24:45:ee:4d:a9:6e:eb:
ab:d9:f2:da:80:5d:a9:6a:7c:71:86:cd:6d:3d:e8:
3c:f8:88:73:f1:9c:48:d0:07:db:82:bf:e4:e2:ba:
ef:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DF:52:76:70:BD:44:73:EC:0D:51:76:6A:81:A6:34:8E:1C:3C:44
X509v3 Authority Key Identifier:
keyid:EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:1f:4d:1c:d5:68:9a:66:5d:1c:23:31:4b:95:f3:3e:57:43:
f0:89:ba:20:2b:75:26:89:1e:cb:e8:20:d1:eb:89:b8:35:92:
3d:06:92:cb:13:91:b1:41:8f:ec:a0:65:c8:21:c3:d0:a7:25:
ab:64:6c:44:7f:5c:a4:ee:4e:14:2b:2e:3a:fd:48:cf:ed:62:
0c:77:5f:71:da:13:f9:7d:dc:e6:ca:5c:0b:d1:1e:39:12:84:
3a:05:0b:4a:c5:b6:87:76:fc:ba:85:5a:5f:cf:d0:53:33:c3:
f4:33:36:f6:78:3d:06:06:b9:35:9a:3e:9d:33:6e:c7:56:f5:
0b:e9:72:38:cb:e5:74:13:0d:7a:f7:bc:c2:89:f6:4c:ae:27:
d0:36:60:6e:70:3e:6f:e9:35:c1:b4:ce:ff:e9:a7:27:e0:42:
c4:de:7b:59:87:cc:b2:39:07:92:b7:48:47:7c:17:84:16:12:
c2:b6:1f:77:83:3c:83:c0:56:82:29:09:3b:66:5c:c3:13:e6:
e0:d0:d3:d2:0a:98:f2:eb:c1:e1:e1:cf:e0:ba:57:a0:d8:2e:
2f:86:c2:84:0f:b9:f4:ac:46:ef:dc:19:f5:08:c9:2b:ad:bc:
9e:d7:f0:bd:bf:6a:94:31:73:88:e8:68:d9:c6:49:39:38:91:
46:06:50:ec
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DmgMmrSjWj2Qu4nt4/NnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYzMxMzE5NzZhZWEyN2QxNzFjNmMyNjdhOThkM2YzODJh
NjFhMmEwHhcNMjUwNjI4MTUwMTA0WhcNMjUwNjI5MTUwMTA0WjAzMTEwLwYDVQQD
EyhhYmRmNTI3NjcwYmQ0NDczZWMwZDUxNzY2YTgxYTYzNDhlMWMzYzQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklBUKeMtrNHth5VLoOY97vyueoBK
0UIaeT5lYLV3R2nLNJBtVBgDQbLDhgazzSLAQ4de0fCz5AaJUsuFqFW3Xmii1YWV
AUr7EAB27aCmHElttor/LJDbsHW73gPj+kxhHfrLWKeAWQ4o43yJ6Mywe62PRWD2
62HegZIsTQrIP1BiuhyuAz0RC85NVtK3xa66+aTpijUXOCi6WElY2BCxpUY2XCpj
eTiq/5VQBZFuBl8DxD2ndLgeYBNKwQ2wT/8KWOlXln0QMPB4bI9zqhGiePMxaCef
zjV2FCRF7k2pbuur2fLagF2panxxhs1tPeg8+Ihz8ZxI0Afbgr/k4rrvfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKvfUnZwvURz7A1RdmqBpjSOHDxEMB8GA1UdIwQY
MBaAFO7DExl2rqJ9FxxsJnqY0/OCphoqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84ZTBlZmQtZTVkZS00ZGY1LWE1NTEt
NGNkM2U3MzIxNmYxLzEvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC84ZTBlZmQtZTVkZS00ZGY1LWE1NTEtNGNkM2U3MzIxNmYx
LzEvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADh9NHNVo
mmZdHCMxS5XzPldD8Im6ICt1Jokey+gg0euJuDWSPQaSyxORsUGP7KBlyCHD0Kcl
q2RsRH9cpO5OFCsuOv1Iz+1iDHdfcdoT+X3c5spcC9EeORKEOgULSsW2h3b8uoVa
X8/QUzPD9DM29ng9Bga5NZo+nTNux1b1C+lyOMvldBMNeve8won2TK4n0DZgbnA+
b+k1wbTO/+mnJ+BCxN57WYfMsjkHkrdIR3wXhBYSwrYfd4M8g8BWgikJO2ZcwxPm
4NDT0gqY8uvB4eHP4LpXoNguL4bChA+59KxG79wZ9QjJK628ntfwvb9qlDFziOho
2cZJOTiRRgZQ7A==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:07:10 2025 by rpki-client