Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft
File: u41koNwhmWscmeaMyVFpTik-3v4.mft (raw, json)
Hash identifier: N92zak3+8pYXQt1/UyfVXlc1D3nmd5Tfl4f4tOCqz9U=
Subject key identifier: 2E:E7:9B:0D:B9:23:77:76:87:D5:9D:21:A9:A5:0A:9B:A4:5D:55:1C
Authority key identifier: BB:8D:64:A0:DC:21:99:6B:1C:99:E6:8C:C9:51:69:4E:29:3E:DE:FE
Certificate issuer: /CN=bb8d64a0dc21996b1c99e68cc951694e293edefe
Certificate serial: 0197B7EA7C1D31FBC30EB68B9B9914A3C01E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft
Manifest number: 15BF
Signing time: Sat 28 Jun 2025 19:01:27 +0000
Manifest this update: Sat 28 Jun 2025 19:01:27 +0000
Manifest next update: Sun 29 Jun 2025 19:01:27 +0000
Files and hashes: 1: C_0ORiP6GTff8xYOZ4mMicSAww8.roa (hash: HUAyzCwf6jl6lX3eg8riTN4+Y+lTTc8+dOFl1EBg7WI=)
2: YWaaNJeo7smBlwI_T0SxJ5KX4-g.roa (hash: QZs858olOtlmGTBOleulDcnrJGCjiCkhUKDy6SCkdvE=)
3: u41koNwhmWscmeaMyVFpTik-3v4.crl (hash: 7vhN3/C/Pt6j31fXF+TL67Q9QsjZ3eWe9spyIHfhKPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft
rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:7c:1d:31:fb:c3:0e:b6:8b:9b:99:14:a3:c0:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8d64a0dc21996b1c99e68cc951694e293edefe
Validity
Not Before: Jun 28 19:01:27 2025 GMT
Not After : Jun 29 19:01:27 2025 GMT
Subject: CN=2ee79b0db923777687d59d21a9a50a9ba45d551c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:27:27:9e:6e:1d:8b:60:95:0c:28:54:32:58:
67:dd:03:cc:c1:92:da:a4:62:24:b5:cf:eb:24:32:
9b:a0:62:9f:50:6b:26:4b:48:86:fd:de:7b:95:29:
c1:f4:e4:13:70:3d:a8:26:05:93:d9:c4:b2:14:6e:
10:1d:0b:2a:a4:66:2e:57:bb:d9:db:d6:bc:6d:7b:
ff:16:06:63:88:19:8c:ad:d1:7f:36:5e:ea:bb:d5:
c2:cc:97:f9:13:f8:a0:16:b1:36:f6:bd:0b:05:5d:
9f:07:bf:f4:10:04:fb:0f:2e:de:62:63:2b:1a:06:
f0:8e:ed:35:2d:8a:4a:f8:74:49:d7:da:78:c4:e5:
66:ff:53:3a:4d:01:14:55:86:e0:69:ee:c0:55:4f:
e7:4f:18:4d:58:78:7a:60:71:7b:fd:19:ef:10:ca:
6b:88:0c:a5:92:00:94:97:19:5c:f9:fc:fa:d5:85:
1b:2c:27:56:6f:a0:e2:84:09:fa:51:09:af:0b:b9:
22:23:21:2f:ca:b5:87:02:2c:9e:a9:13:23:73:e4:
5b:09:94:6f:3e:7b:71:ad:ce:a8:a0:ae:99:44:b5:
6e:b4:c7:73:63:a0:0d:05:62:ed:65:c9:84:13:22:
aa:49:58:fd:7b:4d:31:09:6b:c4:ac:2a:5d:03:e0:
8a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E7:9B:0D:B9:23:77:76:87:D5:9D:21:A9:A5:0A:9B:A4:5D:55:1C
X509v3 Authority Key Identifier:
keyid:BB:8D:64:A0:DC:21:99:6B:1C:99:E6:8C:C9:51:69:4E:29:3E:DE:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:32:56:9a:64:e0:b2:ad:1c:18:97:f4:cd:3e:3c:6e:5e:a8:
dc:8e:24:87:e2:df:f8:b9:f5:86:3b:3e:be:90:5b:9f:ed:ad:
93:34:60:d1:1b:20:d4:60:74:0f:0e:a1:0b:37:c6:63:1b:37:
4f:2f:eb:37:c9:5a:55:af:37:ea:7b:74:e6:bd:a9:04:75:0f:
c0:82:55:26:27:5c:6d:be:67:fd:28:0e:91:b9:86:98:62:a0:
76:b5:fc:a9:d2:f4:e4:c6:51:51:3e:46:75:77:2e:ec:0b:d8:
8c:fc:f4:87:18:7d:cf:75:df:02:36:8f:24:6f:e9:0d:55:82:
4f:31:b8:ee:f4:6b:ba:a9:eb:a9:f2:03:40:97:c3:20:ce:9f:
a2:e9:d3:a9:28:3a:ed:0d:5c:6f:4a:77:17:11:78:22:e0:47:
05:18:52:45:5e:b1:e6:52:0b:95:ef:a2:e6:40:ed:7c:e5:78:
06:2a:25:dd:8a:9e:36:6e:68:e1:c6:3d:8a:2a:a3:82:d5:af:
b3:bf:05:af:39:b0:73:7c:68:4e:e8:51:3f:c6:aa:a0:4d:b1:
76:9b:b3:5d:92:c8:e4:f0:52:6c:86:67:13:d8:9c:7c:df:1e:
83:cd:10:1c:98:bb:43:b7:b3:9b:88:b6:14:2b:69:22:5e:7d:
be:52:dd:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36nwdMfvDDraLm5kUo8AeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiOGQ2NGEwZGMyMTk5NmIxYzk5ZTY4Y2M5NTE2OTRlMjkz
ZWRlZmUwHhcNMjUwNjI4MTkwMTI3WhcNMjUwNjI5MTkwMTI3WjAzMTEwLwYDVQQD
EygyZWU3OWIwZGI5MjM3Nzc2ODdkNTlkMjFhOWE1MGE5YmE0NWQ1NTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0icnnm4di2CVDChUMlhn3QPMwZLa
pGIktc/rJDKboGKfUGsmS0iG/d57lSnB9OQTcD2oJgWT2cSyFG4QHQsqpGYuV7vZ
29a8bXv/FgZjiBmMrdF/Nl7qu9XCzJf5E/igFrE29r0LBV2fB7/0EAT7Dy7eYmMr
Ggbwju01LYpK+HRJ19p4xOVm/1M6TQEUVYbgae7AVU/nTxhNWHh6YHF7/RnvEMpr
iAylkgCUlxlc+fz61YUbLCdWb6DihAn6UQmvC7kiIyEvyrWHAiyeqRMjc+RbCZRv
Pntxrc6ooK6ZRLVutMdzY6ANBWLtZcmEEyKqSVj9e00xCWvErCpdA+CKZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC7nmw25I3d2h9WdIamlCpukXVUcMB8GA1UdIwQY
MBaAFLuNZKDcIZlrHJnmjMlRaU4pPt7+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTQxa29Od2htV3NjbWVhTXlWRnBUaWstM3Y0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8yMjAzMTgtNDZmMS00ZWJmLWE3OTUt
ZGQ0YTIxN2Q2MDZiLzEvdTQxa29Od2htV3NjbWVhTXlWRnBUaWstM3Y0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC8yMjAzMTgtNDZmMS00ZWJmLWE3OTUtZGQ0YTIxN2Q2MDZi
LzEvdTQxa29Od2htV3NjbWVhTXlWRnBUaWstM3Y0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKTJWmmTg
sq0cGJf0zT48bl6o3I4kh+Lf+Ln1hjs+vpBbn+2tkzRg0Rsg1GB0Dw6hCzfGYxs3
Ty/rN8laVa836nt05r2pBHUPwIJVJidcbb5n/SgOkbmGmGKgdrX8qdL05MZRUT5G
dXcu7AvYjPz0hxh9z3XfAjaPJG/pDVWCTzG47vRruqnrqfIDQJfDIM6founTqSg6
7Q1cb0p3FxF4IuBHBRhSRV6x5lILle+i5kDtfOV4Biol3YqeNm5o4cY9iiqjgtWv
s78Frzmwc3xoTuhRP8aqoE2xdpuzXZLI5PBSbIZnE9icfN8eg80QHJi7Q7ezm4i2
FCtpIl59vlLd0Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:52:27 2025 by rpki-client