Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
File: gNZ6hECc7boCLusDW9itYg1oPqc.mft (raw, json)
Hash identifier: 3yoRomjqoCeGuayI5YT+9zFY40fmcW1NGKgzR4MQVCw=
Subject key identifier: 4C:BD:31:2B:FC:89:B5:E6:51:6D:00:D6:4C:22:37:AF:96:3D:28:06
Authority key identifier: 80:D6:7A:84:40:9C:ED:BA:02:2E:EB:03:5B:D8:AD:62:0D:68:3E:A7
Certificate issuer: /CN=80d67a84409cedba022eeb035bd8ad620d683ea7
Certificate serial: 019774F7C34864CF240AD983732A1C130AB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
Manifest number: 1528
Signing time: Sun 15 Jun 2025 19:01:23 +0000
Manifest this update: Sun 15 Jun 2025 19:01:23 +0000
Manifest next update: Mon 16 Jun 2025 19:01:23 +0000
Files and hashes: 1: HckIWldHWwqX0CJ7X-XU88JAoY8.roa (hash: 0kYehz1g3idStzqPQ6DNbC0IwoRnTc8QtqRoQ8JJZs8=)
2: gNZ6hECc7boCLusDW9itYg1oPqc.crl (hash: EiHnIb6Bo/2JosilF2X7wscUlbxYVC1ekuaNyH2ItU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 19:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:74:f7:c3:48:64:cf:24:0a:d9:83:73:2a:1c:13:0a:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80d67a84409cedba022eeb035bd8ad620d683ea7
Validity
Not Before: Jun 15 19:01:23 2025 GMT
Not After : Jun 16 19:01:23 2025 GMT
Subject: CN=4cbd312bfc89b5e6516d00d64c2237af963d2806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7a:02:40:33:f4:85:d2:c5:ef:4b:81:bf:8a:
a1:ce:a8:be:59:c2:f3:b5:cf:a0:fe:ae:18:de:e6:
82:bc:a8:d2:de:ea:8a:58:36:0a:f2:81:1a:e2:fc:
b0:c6:de:fd:29:20:a1:01:cb:c8:d6:89:99:8b:27:
47:1b:71:fa:6c:b5:d9:57:4c:6a:53:48:89:a7:7f:
d7:d6:d1:67:b3:57:42:54:ad:d9:c0:5c:e1:1b:9c:
b4:21:af:63:9f:34:58:dd:84:ad:ce:ba:b2:42:ef:
43:a1:92:65:49:1b:e4:11:8c:39:f6:ef:ea:8e:f1:
ac:b0:e5:ad:3f:03:6b:27:f5:b8:b8:2e:ba:de:f8:
2b:31:06:e6:08:6c:6f:df:1f:0c:ad:29:b6:8a:c2:
4a:00:ba:62:0c:00:f3:6d:9c:dd:a8:cc:f4:2d:a3:
63:13:06:14:a8:95:e4:7e:72:21:a2:21:7b:fe:fe:
3e:06:ba:5e:fd:77:ff:2b:71:e9:ea:a5:61:d3:b5:
1d:86:8e:12:98:2f:4b:ed:d2:c6:7b:e5:aa:6b:5c:
22:e4:a8:ae:ac:26:d5:6d:1b:8a:2c:6c:5e:c9:68:
3f:8e:69:5c:13:59:a8:31:28:9e:1c:b4:fd:e7:09:
20:93:bd:7d:7e:74:56:3f:1e:29:1e:60:a5:e3:35:
49:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:BD:31:2B:FC:89:B5:E6:51:6D:00:D6:4C:22:37:AF:96:3D:28:06
X509v3 Authority Key Identifier:
keyid:80:D6:7A:84:40:9C:ED:BA:02:2E:EB:03:5B:D8:AD:62:0D:68:3E:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:a5:0a:93:8c:45:b0:3e:da:d0:90:1e:08:22:39:82:a4:f1:
dd:99:13:4e:f2:ea:06:ad:b9:5f:a2:db:92:c0:d7:84:74:22:
b8:c9:7e:0e:bb:49:f6:1b:9b:e9:fa:e5:59:59:84:29:4b:cb:
d7:44:80:01:35:ec:c0:94:7d:9a:d7:eb:c9:35:dd:ad:ae:ba:
90:c3:8a:4c:65:80:f6:97:cd:b4:d1:7b:14:5f:c6:fd:90:62:
fe:a7:42:2b:73:a5:ad:48:14:f0:0a:4a:91:19:17:c2:fe:8e:
3a:d7:ed:2e:b6:e5:3f:a5:51:4f:9f:cb:8d:9a:c4:9f:6f:af:
b1:e3:26:3f:10:bf:08:83:26:a6:c0:f3:82:a8:70:0b:d8:31:
6f:9f:e7:ae:cc:15:8a:f0:69:1c:73:c1:99:b1:b8:e3:d3:bb:
5e:f0:ac:ec:05:e0:eb:10:a0:31:05:c0:4f:45:3a:3a:0d:84:
70:f4:3e:6f:62:5b:0a:d1:40:0e:95:1d:6c:90:f2:ad:17:c4:
ab:fe:16:2c:42:7f:53:41:f4:61:ee:5d:ca:cd:a8:d5:b5:a7:
a3:41:f0:81:1a:8b:d0:2a:00:83:08:62:ee:23:98:2e:2e:c5:
9a:ba:0b:03:9e:95:08:03:3c:d3:f9:03:2e:ab:c4:e0:9e:71:
8a:9c:25:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd098NIZM8kCtmDcyocEwq2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwZDY3YTg0NDA5Y2VkYmEwMjJlZWIwMzViZDhhZDYyMGQ2
ODNlYTcwHhcNMjUwNjE1MTkwMTIzWhcNMjUwNjE2MTkwMTIzWjAzMTEwLwYDVQQD
Eyg0Y2JkMzEyYmZjODliNWU2NTE2ZDAwZDY0YzIyMzdhZjk2M2QyODA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3oCQDP0hdLF70uBv4qhzqi+WcLz
tc+g/q4Y3uaCvKjS3uqKWDYK8oEa4vywxt79KSChAcvI1omZiydHG3H6bLXZV0xq
U0iJp3/X1tFns1dCVK3ZwFzhG5y0Ia9jnzRY3YStzrqyQu9DoZJlSRvkEYw59u/q
jvGssOWtPwNrJ/W4uC663vgrMQbmCGxv3x8MrSm2isJKALpiDADzbZzdqMz0LaNj
EwYUqJXkfnIhoiF7/v4+Brpe/Xf/K3Hp6qVh07Udho4SmC9L7dLGe+Wqa1wi5Kiu
rCbVbRuKLGxeyWg/jmlcE1moMSieHLT95wkgk719fnRWPx4pHmCl4zVJywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEy9MSv8ibXmUW0A1kwiN6+WPSgGMB8GA1UdIwQY
MBaAFIDWeoRAnO26Ai7rA1vYrWINaD6nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ05aNmhFQ2M3Ym9DTHVzRFc5aXRZZzFvUHFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8xM2Q1MGItN2RiMy00ZDEwLThhNGUt
NmViM2FhNmEyMWFmLzEvZ05aNmhFQ2M3Ym9DTHVzRFc5aXRZZzFvUHFjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC8xM2Q1MGItN2RiMy00ZDEwLThhNGUtNmViM2FhNmEyMWFm
LzEvZ05aNmhFQ2M3Ym9DTHVzRFc5aXRZZzFvUHFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkaUKk4xF
sD7a0JAeCCI5gqTx3ZkTTvLqBq25X6LbksDXhHQiuMl+DrtJ9hub6frlWVmEKUvL
10SAATXswJR9mtfryTXdra66kMOKTGWA9pfNtNF7FF/G/ZBi/qdCK3OlrUgU8ApK
kRkXwv6OOtftLrblP6VRT5/LjZrEn2+vseMmPxC/CIMmpsDzgqhwC9gxb5/nrswV
ivBpHHPBmbG449O7XvCs7AXg6xCgMQXAT0U6Og2EcPQ+b2JbCtFADpUdbJDyrRfE
q/4WLEJ/U0H0Ye5dys2o1bWno0HwgRqL0CoAgwhi7iOYLi7FmroLA56VCAM80/kD
LqvE4J5xipwlSQ==
-----END CERTIFICATE-----
Generated at Mon Jun 16 00:41:26 2025 by rpki-client