Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json)
Hash identifier: +aV3rT7DpQJyDe7QT1+hrHYw8I3UMSrgsuL5WeXpkT0=
Subject key identifier: E9:84:3C:DF:BB:16:96:44:0C:58:1C:17:00:D5:11:85:5C:7B:91:90
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 0197B82129297E82723C9371D307526C718F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
Manifest number: 0A5D
Signing time: Sat 28 Jun 2025 20:01:10 +0000
Manifest this update: Sat 28 Jun 2025 20:01:10 +0000
Manifest next update: Sun 29 Jun 2025 20:01:10 +0000
Files and hashes: 1: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: AwMw1XLDaTWYYC47T/P7e/aWg/fY0NEdqSW7O08A200=)
2: tKwKl17jXwIeAtAZEyALLLwTexA.roa (hash: E9CmZ9NzF2HrbXjpDzFF0Gs0klh/PHaYx1PKsYvWrwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:29:29:7e:82:72:3c:93:71:d3:07:52:6c:71:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: Jun 28 20:01:10 2025 GMT
Not After : Jun 29 20:01:10 2025 GMT
Subject: CN=e9843cdfbb1696440c581c1700d511855c7b9190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:17:a6:cb:6e:c3:c5:5b:3b:38:c5:1e:06:45:
4f:4d:44:e3:e4:a4:90:39:22:fc:f0:50:ba:f0:bc:
35:7f:da:a4:9d:c1:66:4d:5e:6f:5d:16:3f:68:d5:
89:a3:38:5a:c4:c6:1e:79:6c:9d:a1:d5:5d:2e:d1:
74:95:a9:6e:ff:28:7a:5d:cf:d7:26:e7:d7:ed:88:
1f:ca:1f:c9:52:d5:fb:2a:e0:48:28:48:31:c5:cf:
1e:19:b6:8b:f8:8d:c5:28:b3:88:a7:e1:fe:1d:a9:
e2:39:67:ee:4c:b7:35:98:08:e2:bd:bd:3b:f2:07:
10:0e:96:0e:11:e4:94:8e:db:5f:46:fe:10:aa:b4:
ce:c8:46:a6:5a:79:ec:71:76:f5:21:de:d2:95:0e:
be:6b:79:63:d9:0a:89:47:54:e4:a5:9a:f2:73:95:
bf:c8:f3:dd:a9:83:ae:3a:d5:74:56:35:4a:0a:9b:
49:85:8a:55:83:4b:c4:ad:45:9f:37:9a:49:a3:3f:
34:4b:c2:7d:4f:97:94:a4:34:27:e6:31:5f:0e:dd:
33:b3:66:fe:8e:81:ea:bf:2b:1a:73:f5:d6:2d:c6:
71:b8:b0:6d:97:d0:b2:51:24:90:c6:37:85:08:8e:
c1:80:8c:74:a5:d8:19:8e:bb:59:0a:21:65:39:30:
fd:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:84:3C:DF:BB:16:96:44:0C:58:1C:17:00:D5:11:85:5C:7B:91:90
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:32:ab:2c:d9:84:b3:42:1d:9a:94:2d:e4:39:44:0e:b1:6d:
45:ed:9d:1b:9f:65:98:04:1b:3f:c9:ec:f9:96:65:70:9e:93:
08:1d:a0:e8:37:0f:9c:08:7f:b1:98:d7:f2:6c:14:82:9e:96:
97:62:fe:41:19:d2:ab:c2:8d:b9:5a:27:0e:79:8e:b0:95:a2:
a8:37:32:fd:33:ce:c4:fc:81:a0:cd:ef:70:5b:ab:81:e9:b3:
ed:c5:04:04:5c:fd:63:80:c5:db:72:12:aa:c5:69:04:ff:95:
68:4b:3f:85:5c:28:35:4e:36:d6:9f:90:0f:34:59:3f:59:9f:
43:9f:b6:25:35:44:c6:b2:f8:07:0f:83:c3:31:76:2c:30:b1:
dd:c8:50:3b:0b:d6:d8:af:86:3f:41:71:ff:61:4d:80:12:09:
ce:9a:e4:a7:82:a0:af:55:41:80:b1:36:16:bb:ec:c1:0f:76:
41:4e:b2:07:4e:00:44:72:09:77:8f:72:b6:f3:0f:21:7f:5b:
7c:56:6b:16:21:a0:e5:43:cc:a7:40:82:2e:33:9f:e8:cb:d4:
52:b3:6d:cd:4f:3a:62:e6:ae:7a:80:52:dd:75:2c:e7:4f:00:
4e:c5:fe:44:4f:8f:7f:59:cf:57:56:f9:9c:9f:35:38:3d:8a:
2b:7c:58:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4ISkpfoJyPJNx0wdSbHGPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmIwZTIxN2EzNTE2ODM5MjIwNmJkYTczY2U2MTk1MzVh
MDJmMzUwHhcNMjUwNjI4MjAwMTEwWhcNMjUwNjI5MjAwMTEwWjAzMTEwLwYDVQQD
EyhlOTg0M2NkZmJiMTY5NjQ0MGM1ODFjMTcwMGQ1MTE4NTVjN2I5MTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthemy27DxVs7OMUeBkVPTUTj5KSQ
OSL88FC68Lw1f9qkncFmTV5vXRY/aNWJozhaxMYeeWydodVdLtF0lalu/yh6Xc/X
JufX7Ygfyh/JUtX7KuBIKEgxxc8eGbaL+I3FKLOIp+H+HaniOWfuTLc1mAjivb07
8gcQDpYOEeSUjttfRv4QqrTOyEamWnnscXb1Id7SlQ6+a3lj2QqJR1TkpZryc5W/
yPPdqYOuOtV0VjVKCptJhYpVg0vErUWfN5pJoz80S8J9T5eUpDQn5jFfDt0zs2b+
joHqvysac/XWLcZxuLBtl9CyUSSQxjeFCI7BgIx0pdgZjrtZCiFlOTD9KQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOmEPN+7FpZEDFgcFwDVEYVce5GQMB8GA1UdIwQY
MBaAFK8rDiF6NRaDkiBr2nPOYZU1oC81MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnlzT0lYbzFGb09TSUd2YWM4NWhsVFdnTHpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9kMjU0MWUtNzU5Ny00ODIwLWJlZDct
ZjBkMTk4MDk4NzRhLzEvcnlzT0lYbzFGb09TSUd2YWM4NWhsVFdnTHpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9kMjU0MWUtNzU5Ny00ODIwLWJlZDctZjBkMTk4MDk4NzRh
LzEvcnlzT0lYbzFGb09TSUd2YWM4NWhsVFdnTHpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUTKrLNmE
s0IdmpQt5DlEDrFtRe2dG59lmAQbP8ns+ZZlcJ6TCB2g6DcPnAh/sZjX8mwUgp6W
l2L+QRnSq8KNuVonDnmOsJWiqDcy/TPOxPyBoM3vcFurgemz7cUEBFz9Y4DF23IS
qsVpBP+VaEs/hVwoNU421p+QDzRZP1mfQ5+2JTVExrL4Bw+DwzF2LDCx3chQOwvW
2K+GP0Fx/2FNgBIJzprkp4Kgr1VBgLE2FrvswQ92QU6yB04ARHIJd49ytvMPIX9b
fFZrFiGg5UPMp0CCLjOf6MvUUrNtzU86YuaueoBS3XUs508ATsX+RE+Pf1nPV1b5
nJ81OD2KK3xYOA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:16:30 2025 by rpki-client