Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
File: pOuetVR8f18ar8CtoUCAVBlhhyY.mft (raw, json)
Hash identifier: K8o/6KNQV8wuC7d4H0CuOoeH/5L+4GVTClVW5tyOh84=
Subject key identifier: 43:40:E5:49:62:2B:06:82:AE:E6:34:77:FE:68:15:61:9E:E7:9A:22
Authority key identifier: A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
Certificate issuer: /CN=a4eb9eb5547c7f5f1aafc0ada140805419618726
Certificate serial: 0197B7B2E03D6A8596A9404468E7FA47F223
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
Manifest number: 09A6
Signing time: Sat 28 Jun 2025 18:00:42 +0000
Manifest this update: Sat 28 Jun 2025 18:00:42 +0000
Manifest next update: Sun 29 Jun 2025 18:00:42 +0000
Files and hashes: 1: J_w-klg8Fz7usxtg6f6kBplmW2Q.roa (hash: wSUiP/GQT3afkhYb4zAVk2weNrXx80BBBUvY2crSbB8=)
2: pOuetVR8f18ar8CtoUCAVBlhhyY.crl (hash: ksP91vQGZCVO7TV2wCkX//9F7Bquk4KGYzqUX0/wO7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b2:e0:3d:6a:85:96:a9:40:44:68:e7:fa:47:f2:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4eb9eb5547c7f5f1aafc0ada140805419618726
Validity
Not Before: Jun 28 18:00:42 2025 GMT
Not After : Jun 29 18:00:42 2025 GMT
Subject: CN=4340e549622b0682aee63477fe6815619ee79a22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ab:95:69:86:3c:b3:5c:c6:c6:a3:4c:d2:77:
3d:c3:d9:fe:0e:bf:a7:4e:d4:1e:63:2f:63:d5:b9:
24:18:af:5a:01:40:db:1b:87:d7:20:73:bc:9c:c4:
ca:66:a6:67:c2:37:9e:6b:da:9c:f6:8f:d8:0d:f9:
49:c5:3f:70:e8:ff:fe:64:96:fe:2c:29:5c:93:f7:
f7:72:52:64:8a:cd:98:fd:fe:c7:94:02:e7:02:8a:
0e:ed:27:5a:cd:7f:9a:3e:ed:20:a8:0e:fa:86:dc:
56:59:e0:3f:09:cc:c1:8e:93:31:74:e0:8f:24:27:
a5:d8:78:5a:60:74:b0:7a:23:f3:17:e7:eb:cd:ae:
ba:1e:ec:57:d2:ae:3b:31:e3:08:33:b8:b7:b0:86:
84:fe:58:ee:e8:7e:79:82:1b:91:6c:83:08:0f:c8:
ce:ee:c0:e9:43:80:5c:00:2b:7f:e7:a1:99:13:51:
2b:7a:82:23:26:da:99:bc:2e:55:24:c0:5f:e8:07:
6c:a4:2c:2f:7c:69:b1:1e:59:03:29:3c:28:fd:63:
bc:76:a0:e1:bc:94:0d:67:88:bf:2a:29:3c:7e:f5:
39:4d:4e:49:1a:e6:11:d8:bb:51:15:26:e5:4b:73:
71:b7:43:01:40:3e:aa:d7:38:c8:ce:1d:17:21:2d:
ee:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:40:E5:49:62:2B:06:82:AE:E6:34:77:FE:68:15:61:9E:E7:9A:22
X509v3 Authority Key Identifier:
keyid:A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:3e:53:e5:83:2c:34:b3:30:4d:6a:3e:e6:16:d7:8c:f4:15:
a6:cc:bc:87:20:d9:49:90:d0:8b:5c:33:53:ba:f7:b4:ec:b2:
2e:5c:7b:30:bc:26:a0:cd:30:4f:19:27:c0:bd:ee:e8:45:46:
65:ea:95:a2:6e:8a:32:9a:6d:fc:20:66:da:5d:fd:b1:3d:6a:
f5:f7:75:11:53:29:e7:ed:6a:79:d5:e0:4f:e6:13:5d:15:cd:
cd:35:e9:5c:38:01:2e:1d:89:7b:25:85:11:6e:dd:87:2e:1a:
02:54:21:2b:83:12:0b:99:5b:ed:fc:79:af:77:99:cb:1a:25:
ba:db:c9:27:10:b2:52:68:aa:22:ef:d9:96:fe:c9:d5:13:e5:
e0:e8:58:c9:7a:6d:4f:b6:72:ff:70:9e:d2:c5:73:ce:a9:bf:
1b:bf:b3:f9:e4:d3:f3:f1:a2:60:44:74:5d:18:bb:5b:9d:99:
f0:f0:03:a4:5d:bc:9e:7c:ef:27:fd:fe:98:a7:48:a1:de:27:
c6:ad:92:8e:62:68:f8:41:f1:f9:41:82:82:67:3f:be:f4:1b:
73:08:02:69:c4:ee:19:34:63:27:21:6e:5f:73:fa:a7:8b:0b:
d5:ed:95:9d:00:1e:4e:24:1a:d1:0e:62:ba:9e:64:ef:04:b4:
5b:9f:2c:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3suA9aoWWqUBEaOf6R/IjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0ZWI5ZWI1NTQ3YzdmNWYxYWFmYzBhZGExNDA4MDU0MTk2
MTg3MjYwHhcNMjUwNjI4MTgwMDQyWhcNMjUwNjI5MTgwMDQyWjAzMTEwLwYDVQQD
Eyg0MzQwZTU0OTYyMmIwNjgyYWVlNjM0NzdmZTY4MTU2MTllZTc5YTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6uVaYY8s1zGxqNM0nc9w9n+Dr+n
TtQeYy9j1bkkGK9aAUDbG4fXIHO8nMTKZqZnwjeea9qc9o/YDflJxT9w6P/+ZJb+
LClck/f3clJkis2Y/f7HlALnAooO7SdazX+aPu0gqA76htxWWeA/CczBjpMxdOCP
JCel2HhaYHSweiPzF+frza66HuxX0q47MeMIM7i3sIaE/lju6H55ghuRbIMID8jO
7sDpQ4BcACt/56GZE1EreoIjJtqZvC5VJMBf6AdspCwvfGmxHlkDKTwo/WO8dqDh
vJQNZ4i/Kik8fvU5TU5JGuYR2LtRFSblS3Nxt0MBQD6q1zjIzh0XIS3uoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFENA5UliKwaCruY0d/5oFWGe55oiMB8GA1UdIwQY
MBaAFKTrnrVUfH9fGq/AraFAgFQZYYcmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80Y2Q3MmQtZDhhNS00NmNlLTg2NzQt
MGQyMjIzMmMzNGEwLzEvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi80Y2Q3MmQtZDhhNS00NmNlLTg2NzQtMGQyMjIzMmMzNGEw
LzEvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiz5T5YMs
NLMwTWo+5hbXjPQVpsy8hyDZSZDQi1wzU7r3tOyyLlx7MLwmoM0wTxknwL3u6EVG
ZeqVom6KMppt/CBm2l39sT1q9fd1EVMp5+1qedXgT+YTXRXNzTXpXDgBLh2JeyWF
EW7dhy4aAlQhK4MSC5lb7fx5r3eZyxolutvJJxCyUmiqIu/Zlv7J1RPl4OhYyXpt
T7Zy/3Ce0sVzzqm/G7+z+eTT8/GiYER0XRi7W52Z8PADpF28nnzvJ/3+mKdIod4n
xq2SjmJo+EHx+UGCgmc/vvQbcwgCacTuGTRjJyFuX3P6p4sL1e2VnQAeTiQa0Q5i
up5k7wS0W58s/Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:55:54 2025 by rpki-client