Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
File: wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft (raw, json)
Hash identifier: qDhnWQ4DBt7cV9aZ6VXpT0WXE3Nk3SpL5GaSmx03+e0=
Subject key identifier: 42:8D:7A:3D:FB:B7:A1:A6:B1:5B:04:78:47:C6:69:C6:75:59:E1:21
Authority key identifier: C2:1E:32:D0:47:C5:D1:B9:E2:67:70:C3:84:03:04:CF:69:71:DE:1C
Certificate issuer: /CN=c21e32d047c5d1b9e26770c3840304cf6971de1c
Certificate serial: 0197B7EA42A7E79BCD8F25F846C98B95871C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
Manifest number: 08D8
Signing time: Sat 28 Jun 2025 19:01:12 +0000
Manifest this update: Sat 28 Jun 2025 19:01:12 +0000
Manifest next update: Sun 29 Jun 2025 19:01:12 +0000
Files and hashes: 1: 0YAlpXVId3LHx7bUr5xQcDkFv50.roa (hash: TFSQN0O8fIRBDFY4jZJFLp3OndkfiZIj1gXdcop7ZBU=)
2: wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl (hash: F5bVM37pZxMHaYgas9BxLQxeycDWSmGVl1RKkg0tvkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:42:a7:e7:9b:cd:8f:25:f8:46:c9:8b:95:87:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c21e32d047c5d1b9e26770c3840304cf6971de1c
Validity
Not Before: Jun 28 19:01:12 2025 GMT
Not After : Jun 29 19:01:12 2025 GMT
Subject: CN=428d7a3dfbb7a1a6b15b047847c669c67559e121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:bb:b6:ae:8c:75:21:64:ea:37:f3:46:4e:21:
15:cb:ce:60:82:4f:75:b7:46:7b:22:de:9b:45:d9:
c7:d4:f0:b2:3b:86:97:13:61:9f:99:a8:bc:98:c9:
ec:88:0d:50:d6:69:77:62:99:87:03:31:ac:79:cc:
5d:45:51:7b:9b:01:5b:a0:84:d8:91:4f:b2:52:8f:
1b:0d:96:9b:f2:a0:dd:67:4f:20:86:dc:8b:bd:8d:
29:7b:2c:87:54:34:da:f8:78:f2:4c:0a:86:a2:6b:
61:f7:32:0b:45:6f:16:27:93:72:3e:e3:90:a0:e2:
91:51:e9:c3:73:28:bd:b8:b7:5c:31:d8:05:af:2b:
6c:27:19:61:33:a6:f1:c1:0e:15:76:43:3b:6f:78:
82:6d:01:8a:d5:2f:10:77:bf:a3:be:ee:fe:ab:47:
96:81:cc:e3:28:a8:8f:c5:6b:ff:03:86:12:5d:bf:
4f:6a:30:e0:7c:f4:f5:ea:b7:64:7c:e7:7a:39:78:
08:ef:31:4b:eb:68:97:0a:e0:e8:66:16:2a:19:1c:
43:e1:f4:4e:89:da:d0:e7:f2:c3:c7:67:d0:88:ae:
7f:5d:d3:e0:10:6c:2a:aa:b5:a8:1e:4d:2a:67:5c:
4b:6f:10:ab:dd:56:86:9e:84:d3:ae:c4:d8:2b:1b:
02:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:8D:7A:3D:FB:B7:A1:A6:B1:5B:04:78:47:C6:69:C6:75:59:E1:21
X509v3 Authority Key Identifier:
keyid:C2:1E:32:D0:47:C5:D1:B9:E2:67:70:C3:84:03:04:CF:69:71:DE:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:6d:96:4b:96:76:b3:de:40:f2:e2:0b:82:45:18:2c:20:02:
d0:43:1d:cd:ab:c9:86:02:cd:09:cf:08:d1:f9:ef:98:34:28:
c8:92:17:14:33:59:35:d2:dd:f8:f4:d5:9e:0f:e0:7d:21:9d:
d4:51:26:d5:ac:61:c2:24:54:36:52:d4:00:e8:c6:8e:c4:c9:
54:96:33:7f:3c:b8:ab:96:b6:f1:2c:85:e4:4e:64:b8:07:ce:
03:35:12:b0:d1:af:d8:61:bf:38:56:48:55:90:a6:e0:e6:4a:
84:fa:7d:8b:55:c0:88:fe:1a:5a:10:8a:33:32:e3:c5:34:9f:
b3:df:ea:d8:4d:cc:af:8a:c2:0f:75:bc:7d:ac:b7:dc:9f:61:
89:20:6d:c7:d1:69:3d:8a:d0:b5:7b:3c:a4:dd:aa:25:21:5f:
06:67:dc:87:98:ee:9e:f8:65:7d:fd:ab:4a:c8:d7:d7:24:90:
4b:5e:36:01:77:06:42:b4:3e:e0:26:c8:ea:77:ee:71:6d:ba:
81:5d:14:7c:39:a4:1c:1b:73:d9:b8:50:4f:d6:be:80:d8:2e:
9f:b8:22:2a:ad:6d:d0:bf:6e:0f:65:0a:8b:ff:87:7b:b8:e6:
81:8f:ab:67:ae:42:06:83:70:9d:85:9e:a4:49:17:31:b5:f6:
f7:c9:76:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36kKn55vNjyX4RsmLlYccMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyMWUzMmQwNDdjNWQxYjllMjY3NzBjMzg0MDMwNGNmNjk3
MWRlMWMwHhcNMjUwNjI4MTkwMTEyWhcNMjUwNjI5MTkwMTEyWjAzMTEwLwYDVQQD
Eyg0MjhkN2EzZGZiYjdhMWE2YjE1YjA0Nzg0N2M2NjljNjc1NTllMTIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ru2rox1IWTqN/NGTiEVy85ggk91
t0Z7It6bRdnH1PCyO4aXE2Gfmai8mMnsiA1Q1ml3YpmHAzGsecxdRVF7mwFboITY
kU+yUo8bDZab8qDdZ08ghtyLvY0peyyHVDTa+HjyTAqGomth9zILRW8WJ5NyPuOQ
oOKRUenDcyi9uLdcMdgFrytsJxlhM6bxwQ4VdkM7b3iCbQGK1S8Qd7+jvu7+q0eW
gczjKKiPxWv/A4YSXb9PajDgfPT16rdkfOd6OXgI7zFL62iXCuDoZhYqGRxD4fRO
idrQ5/LDx2fQiK5/XdPgEGwqqrWoHk0qZ1xLbxCr3VaGnoTTrsTYKxsCmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEKNej37t6GmsVsEeEfGacZ1WeEhMB8GA1UdIwQY
MBaAFMIeMtBHxdG54mdww4QDBM9pcd4cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd2g0eTBFZkYwYm5pWjNERGhBTUV6Mmx4M2h3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8zMDBiZDQtMDM1Ni00YzQ0LTgzY2Yt
MzhlZmNmZGM0MTdiLzEvd2g0eTBFZkYwYm5pWjNERGhBTUV6Mmx4M2h3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8zMDBiZDQtMDM1Ni00YzQ0LTgzY2YtMzhlZmNmZGM0MTdi
LzEvd2g0eTBFZkYwYm5pWjNERGhBTUV6Mmx4M2h3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHG2WS5Z2
s95A8uILgkUYLCAC0EMdzavJhgLNCc8I0fnvmDQoyJIXFDNZNdLd+PTVng/gfSGd
1FEm1axhwiRUNlLUAOjGjsTJVJYzfzy4q5a28SyF5E5kuAfOAzUSsNGv2GG/OFZI
VZCm4OZKhPp9i1XAiP4aWhCKMzLjxTSfs9/q2E3Mr4rCD3W8fay33J9hiSBtx9Fp
PYrQtXs8pN2qJSFfBmfch5junvhlff2rSsjX1ySQS142AXcGQrQ+4CbI6nfucW26
gV0UfDmkHBtz2bhQT9a+gNgun7giKq1t0L9uD2UKi/+He7jmgY+rZ65CBoNwnYWe
pEkXMbX298l27w==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:56:57 2025 by rpki-client