Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
File: POwGHF7VbcoHdT_ktbjAkNl60OE.mft (raw, json)
Hash identifier: bQYUDWWcugBCkzr2MpqFRfLkZjBljgSF84wUmvF5n78=
Subject key identifier: 73:E5:D6:B3:78:A4:81:92:C2:18:20:A9:3D:CD:4B:C2:64:3F:5A:14
Authority key identifier: 3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
Certificate issuer: /CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Certificate serial: 0197B6D73BC3318C5A27EAF79FABBBF2B0DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
Manifest number: 0557
Signing time: Sat 28 Jun 2025 14:00:48 +0000
Manifest this update: Sat 28 Jun 2025 14:00:48 +0000
Manifest next update: Sun 29 Jun 2025 14:00:48 +0000
Files and hashes: 1: J--9FTqyd7jwis3viXw5cnMN5-o.roa (hash: DC3T7Frr+GR57cEYLFoZVlKHfiR/SiiUWqjetZEXAWY=)
2: POwGHF7VbcoHdT_ktbjAkNl60OE.crl (hash: 1i9bV/NX0kESlYf9BlVnR4DViZZlcqhm0DTE48FaHG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:3b:c3:31:8c:5a:27:ea:f7:9f:ab:bb:f2:b0:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Validity
Not Before: Jun 28 14:00:48 2025 GMT
Not After : Jun 29 14:00:48 2025 GMT
Subject: CN=73e5d6b378a48192c21820a93dcd4bc2643f5a14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:8d:ae:69:ad:2e:c4:68:ad:12:2b:36:cc:05:
4b:4e:71:0d:3b:46:80:a5:28:0c:5d:a9:b7:1f:58:
cc:66:b6:53:13:56:a8:12:f0:5b:46:9a:89:09:a2:
24:9e:16:e9:fb:30:46:ad:53:e9:cb:fe:c2:55:4d:
49:7c:88:0a:66:3d:80:55:ac:e0:7a:9c:68:a3:59:
2e:44:31:2a:2b:8e:96:38:c5:0c:6b:6f:ce:c2:0a:
78:72:77:32:6c:9b:73:86:e8:1b:86:f3:e2:38:37:
19:0c:53:98:5c:86:49:29:4e:bf:7d:f0:2f:21:0e:
8d:6c:d7:af:89:3d:70:2d:74:2d:80:b2:3d:80:59:
2f:7e:26:44:6e:e8:3b:31:6e:07:d4:c1:11:b2:6d:
87:72:fa:d4:2b:a7:88:03:44:cf:3f:ee:b7:da:cf:
53:c5:03:6f:51:7f:6a:75:05:f9:f7:5a:3f:08:a0:
21:c9:eb:3d:92:8d:19:49:f3:97:62:b3:cb:fa:83:
c9:e6:21:b6:2c:b8:2b:32:94:ca:66:cf:5d:50:50:
9a:1c:cc:18:7a:e0:74:8a:a4:39:21:ed:e8:60:1c:
07:77:fe:bd:55:74:b3:46:8d:d0:8a:cf:05:30:94:
23:70:1d:d4:3f:f0:7d:de:ba:3a:d5:cd:48:ca:15:
bf:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:E5:D6:B3:78:A4:81:92:C2:18:20:A9:3D:CD:4B:C2:64:3F:5A:14
X509v3 Authority Key Identifier:
keyid:3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:9b:51:99:3d:da:73:12:9a:4f:ce:d1:4b:d1:51:2d:89:bf:
cb:70:0b:80:dd:4d:8c:01:9b:71:af:0e:b4:b0:50:d9:d7:fd:
eb:92:16:4e:24:a1:85:b3:39:3c:9f:27:cd:a3:1f:c1:ba:9a:
d1:c8:60:d6:4b:89:27:6d:38:83:38:c4:d4:5a:b6:29:9a:c9:
7f:91:34:1a:73:09:35:69:1a:75:8a:e1:39:ca:24:32:98:7c:
d8:ce:f2:fb:0d:1d:81:94:3c:57:12:eb:72:90:8a:ef:3f:cd:
a6:c5:d0:28:57:ad:77:a0:57:6f:63:52:55:b2:30:a6:16:a1:
03:e3:67:cd:53:bc:64:0e:d0:57:84:5a:a8:06:13:51:ba:de:
93:bc:2b:99:36:2c:31:4b:6f:0f:c7:bf:49:f3:dd:4e:74:81:
ab:bf:07:91:33:5e:f8:94:59:85:08:32:37:14:7c:ea:57:d7:
52:91:c3:55:a6:a1:55:23:ef:29:b7:e8:94:26:03:16:6a:02:
07:68:14:ae:21:35:e3:de:19:df:25:53:1b:93:5e:bd:ee:13:
dc:d1:6e:7f:73:0b:21:fa:e6:8d:a5:a0:88:47:d3:68:a9:ac:
82:f1:b2:3e:57:b8:e0:f0:0f:c0:92:33:50:15:59:26:4a:8d:
e6:c6:8c:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe21zvDMYxaJ+r3n6u78rDbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjZWMwNjFjNWVkNTZkY2EwNzc1M2ZlNGI1YjhjMDkwZDk3
YWQwZTEwHhcNMjUwNjI4MTQwMDQ4WhcNMjUwNjI5MTQwMDQ4WjAzMTEwLwYDVQQD
Eyg3M2U1ZDZiMzc4YTQ4MTkyYzIxODIwYTkzZGNkNGJjMjY0M2Y1YTE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA542uaa0uxGitEis2zAVLTnENO0aA
pSgMXam3H1jMZrZTE1aoEvBbRpqJCaIknhbp+zBGrVPpy/7CVU1JfIgKZj2AVazg
epxoo1kuRDEqK46WOMUMa2/Owgp4cncybJtzhugbhvPiODcZDFOYXIZJKU6/ffAv
IQ6NbNeviT1wLXQtgLI9gFkvfiZEbug7MW4H1MERsm2HcvrUK6eIA0TPP+632s9T
xQNvUX9qdQX591o/CKAhyes9ko0ZSfOXYrPL+oPJ5iG2LLgrMpTKZs9dUFCaHMwY
euB0iqQ5Ie3oYBwHd/69VXSzRo3Qis8FMJQjcB3UP/B93ro61c1IyhW/PwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHPl1rN4pIGSwhggqT3NS8JkP1oUMB8GA1UdIwQY
MBaAFDzsBhxe1W3KB3U/5LW4wJDZetDhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC80N2Q3ZjctYjAxOS00MmU5LWJiMDgt
ZDY5YzAxMzRmNWE4LzEvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC80N2Q3ZjctYjAxOS00MmU5LWJiMDgtZDY5YzAxMzRmNWE4
LzEvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsJtRmT3a
cxKaT87RS9FRLYm/y3ALgN1NjAGbca8OtLBQ2df965IWTiShhbM5PJ8nzaMfwbqa
0chg1kuJJ204gzjE1Fq2KZrJf5E0GnMJNWkadYrhOcokMph82M7y+w0dgZQ8VxLr
cpCK7z/NpsXQKFetd6BXb2NSVbIwphahA+NnzVO8ZA7QV4RaqAYTUbrek7wrmTYs
MUtvD8e/SfPdTnSBq78HkTNe+JRZhQgyNxR86lfXUpHDVaahVSPvKbfolCYDFmoC
B2gUriE1494Z3yVTG5Neve4T3NFuf3MLIfrmjaWgiEfTaKmsgvGyPle44PAPwJIz
UBVZJkqN5saM6A==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:20:21 2025 by rpki-client