Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
File: iP4ZBc16825jraY2bBR7Ydhcnys.mft (raw, json)
Hash identifier: vD27Ej0CumzxjiV0MPvxd9cY6aLatpuOGWY1ie+DPA0=
Subject key identifier: 26:35:4A:8D:BB:E3:83:4B:5A:74:B6:5F:5D:0B:E1:30:F0:26:F8:D0
Authority key identifier: 88:FE:19:05:CD:7A:F3:6E:63:AD:A6:36:6C:14:7B:61:D8:5C:9F:2B
Certificate issuer: /CN=88fe1905cd7af36e63ada6366c147b61d85c9f2b
Certificate serial: 0197B6D797A7888E29E4CFA50F812127D0D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
Manifest number: 06F7
Signing time: Sat 28 Jun 2025 14:01:11 +0000
Manifest this update: Sat 28 Jun 2025 14:01:11 +0000
Manifest next update: Sun 29 Jun 2025 14:01:11 +0000
Files and hashes: 1: DSjiByReVAFtGenTha4D-8dSQJA.roa (hash: LTaqsJLmNorNuR9w6MCAPY47C39e6eSxiN8KzBSficg=)
2: N3Ms1tO5Rc3q58ZodMbwcW3QRxA.roa (hash: QeEjLFu1bfyi8L5wOE2F/BxSn3Wihpq/1jEicr1OiIU=)
3: iP4ZBc16825jraY2bBR7Ydhcnys.crl (hash: K6eyp/Gx1QP4y79RQwWI2XtURqanEiddPaLxajvy4dw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:97:a7:88:8e:29:e4:cf:a5:0f:81:21:27:d0:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88fe1905cd7af36e63ada6366c147b61d85c9f2b
Validity
Not Before: Jun 28 14:01:11 2025 GMT
Not After : Jun 29 14:01:11 2025 GMT
Subject: CN=26354a8dbbe3834b5a74b65f5d0be130f026f8d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9c:97:f6:0f:38:da:57:47:35:ab:63:56:b6:
84:5f:65:55:96:f3:88:0b:4e:b7:6b:6d:20:af:c9:
59:45:7a:7e:f4:56:b2:a5:85:20:c4:75:bd:4d:39:
97:ce:47:ec:75:5b:ff:37:86:99:91:fd:1f:b1:76:
70:ce:1d:48:26:7e:23:6f:6d:17:55:2e:4b:72:e1:
57:c8:0b:09:da:ce:cc:48:91:e8:72:88:60:45:a3:
78:f9:25:46:63:44:6f:a4:dd:08:d9:d5:3a:f3:23:
0a:f6:4c:a7:32:8b:2a:bc:9a:3e:9d:f8:97:ca:63:
b5:aa:cd:9d:bd:3d:dd:f5:e2:7f:5a:97:1c:a8:a4:
f1:62:27:c7:16:56:40:55:89:2d:0f:ab:7e:56:70:
6b:76:54:b6:7c:45:62:8c:a1:c8:a5:5d:1a:c7:11:
74:5b:6c:90:fc:7d:81:e0:a7:ac:9a:8c:36:a1:39:
71:73:d1:ed:05:09:a8:36:ce:e3:5d:cf:91:45:9e:
30:e5:a9:b2:14:af:af:62:51:67:a1:8e:cb:20:63:
c1:72:ea:c7:8f:f5:4f:fd:79:b7:c8:23:16:f3:a4:
dc:5b:a7:1b:93:a6:53:f9:87:4e:ee:bf:37:4a:7d:
17:6a:fc:1b:f0:f1:dc:71:7d:e5:32:e9:2c:40:4b:
50:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:35:4A:8D:BB:E3:83:4B:5A:74:B6:5F:5D:0B:E1:30:F0:26:F8:D0
X509v3 Authority Key Identifier:
keyid:88:FE:19:05:CD:7A:F3:6E:63:AD:A6:36:6C:14:7B:61:D8:5C:9F:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:39:d9:e3:ce:9d:ca:b3:e0:e9:60:37:d7:24:0d:a3:d8:40:
0c:42:70:c4:00:17:4c:05:d9:ae:a1:c6:f7:fd:ce:a4:65:cf:
36:6f:fd:98:2c:95:d6:b3:3f:af:99:96:d3:dd:4a:30:33:a2:
a5:9f:54:26:7d:66:22:92:e8:64:c2:6b:67:c0:53:8d:73:ce:
7c:e6:72:29:e1:01:a2:11:92:7e:c0:28:50:de:d3:48:d1:02:
78:de:e1:55:42:35:b6:8d:f4:23:f8:90:c2:47:da:44:46:37:
e6:e8:39:16:84:17:f8:34:f0:98:68:5e:7b:66:94:21:7a:6c:
3b:4e:a6:5c:b2:2b:c3:de:31:84:12:bf:56:0b:6e:6c:0c:bb:
0f:d5:90:95:25:2b:43:8c:f3:8f:ff:1f:73:28:51:ac:15:74:
1c:bc:85:44:38:5c:80:db:a9:e5:07:c4:21:c4:ea:ee:d2:9a:
b7:c7:c4:24:79:b6:ac:48:d3:3f:7a:61:e0:fb:62:c0:76:f3:
a0:00:5e:d4:7f:aa:75:34:24:c9:60:0c:b0:d6:ca:19:06:ce:
48:29:27:9e:48:d7:23:a2:e8:b4:16:ff:f1:e2:e8:0f:4e:69:
63:6b:16:1a:3a:6b:d2:90:09:48:bc:b9:6c:92:d9:9b:38:a6:
40:2b:c3:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe215eniI4p5M+lD4EhJ9DRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ZmUxOTA1Y2Q3YWYzNmU2M2FkYTYzNjZjMTQ3YjYxZDg1
YzlmMmIwHhcNMjUwNjI4MTQwMTExWhcNMjUwNjI5MTQwMTExWjAzMTEwLwYDVQQD
EygyNjM1NGE4ZGJiZTM4MzRiNWE3NGI2NWY1ZDBiZTEzMGYwMjZmOGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5yX9g842ldHNatjVraEX2VVlvOI
C063a20gr8lZRXp+9FaypYUgxHW9TTmXzkfsdVv/N4aZkf0fsXZwzh1IJn4jb20X
VS5LcuFXyAsJ2s7MSJHocohgRaN4+SVGY0RvpN0I2dU68yMK9kynMosqvJo+nfiX
ymO1qs2dvT3d9eJ/WpccqKTxYifHFlZAVYktD6t+VnBrdlS2fEVijKHIpV0axxF0
W2yQ/H2B4Kesmow2oTlxc9HtBQmoNs7jXc+RRZ4w5amyFK+vYlFnoY7LIGPBcurH
j/VP/Xm3yCMW86TcW6cbk6ZT+YdO7r83Sn0Xavwb8PHccX3lMuksQEtQawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCY1So2744NLWnS2X10L4TDwJvjQMB8GA1UdIwQY
MBaAFIj+GQXNevNuY62mNmwUe2HYXJ8rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVA0WkJjMTY4MjVqcmFZMmJCUjdZZGhjbnlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8zMTk1MmEtNjA4Yy00NjhlLWEwMGUt
ZDYzM2FhNzBkZDY2LzEvaVA0WkJjMTY4MjVqcmFZMmJCUjdZZGhjbnlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy8zMTk1MmEtNjA4Yy00NjhlLWEwMGUtZDYzM2FhNzBkZDY2
LzEvaVA0WkJjMTY4MjVqcmFZMmJCUjdZZGhjbnlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlDnZ486d
yrPg6WA31yQNo9hADEJwxAAXTAXZrqHG9/3OpGXPNm/9mCyV1rM/r5mW091KMDOi
pZ9UJn1mIpLoZMJrZ8BTjXPOfOZyKeEBohGSfsAoUN7TSNECeN7hVUI1to30I/iQ
wkfaREY35ug5FoQX+DTwmGhee2aUIXpsO06mXLIrw94xhBK/VgtubAy7D9WQlSUr
Q4zzj/8fcyhRrBV0HLyFRDhcgNup5QfEIcTq7tKat8fEJHm2rEjTP3ph4PtiwHbz
oABe1H+qdTQkyWAMsNbKGQbOSCknnkjXI6LotBb/8eLoD05pY2sWGjpr0pAJSLy5
bJLZmzimQCvDQw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:51:19 2025 by rpki-client