Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
File: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft (raw, json)
Hash identifier: +96YVxO4tANMiUlWSBaP77EzduziP0UbrFKXZyyEfSg=
Subject key identifier: 1A:D3:CB:C4:F9:FC:2F:B8:63:E1:B0:D6:29:69:4B:14:07:17:60:E4
Authority key identifier: D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
Certificate issuer: /CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Certificate serial: 01977007ADDD8D984F1244390A45128FA2FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
Manifest number: 0E42
Signing time: Sat 14 Jun 2025 20:00:40 +0000
Manifest this update: Sat 14 Jun 2025 20:00:40 +0000
Manifest next update: Sun 15 Jun 2025 20:00:40 +0000
Files and hashes: 1: 0E7XqwXvQw8zGg6cfEDvAxEUfw4.roa (hash: GEurlnwNp4FPEWbJDU+gHsQep+536ZgKzEj3iyCeYrM=)
2: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl (hash: 3VyUvJglxf3iWY7l167BtMUrUvuYPjf0B7HmxvcjOIQ=)
3: 5YRtqk6Jp7Zam_D7fc_X7XfH8s4.roa (hash: X5F/YiS9H2WE1ZFG9REO1WI3BKWNsouj5lZWL1J+hoo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:07:ad:dd:8d:98:4f:12:44:39:0a:45:12:8f:a2:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Validity
Not Before: Jun 14 20:00:40 2025 GMT
Not After : Jun 15 20:00:40 2025 GMT
Subject: CN=1ad3cbc4f9fc2fb863e1b0d629694b14071760e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:af:5c:ac:bb:5a:c5:43:db:2c:71:51:2b:38:
22:fd:56:71:f6:b9:12:5a:fd:31:36:14:21:98:b4:
c0:14:38:2d:69:76:72:4e:bf:85:cc:91:2d:a1:b5:
9b:2b:07:05:dc:42:4e:35:25:a5:9d:dd:94:17:68:
ba:48:9e:37:e1:69:9e:f8:b1:be:a0:dc:71:2e:40:
1d:28:0a:ac:97:e1:15:30:89:e5:93:6f:aa:83:05:
16:df:82:27:9c:82:ae:c6:0b:a4:f5:6a:46:27:c7:
f9:e8:2c:a3:28:92:f8:87:91:bf:81:93:a6:ce:88:
43:20:ff:1f:94:70:7a:5e:c4:b0:7f:c8:9d:78:cd:
61:7f:55:2d:77:f7:7c:80:d6:3a:dc:bd:bb:b7:d7:
39:d2:5c:96:03:0e:e2:5f:91:59:5e:25:69:f2:07:
45:5b:8f:c4:24:6e:56:ee:5f:62:69:06:a3:0d:e1:
21:d5:9d:50:a6:a5:01:83:49:8d:d8:6c:ec:cf:bd:
d3:c4:7f:62:ce:1b:1b:9d:16:04:10:1c:17:3f:b8:
f6:b9:02:7f:3f:e4:44:b0:b4:29:85:13:82:05:f0:
6c:b4:c6:54:7e:4d:17:34:32:02:41:49:f7:81:d2:
6c:05:97:b2:02:13:de:f2:a8:14:a1:4a:1d:90:cf:
ff:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:D3:CB:C4:F9:FC:2F:B8:63:E1:B0:D6:29:69:4B:14:07:17:60:E4
X509v3 Authority Key Identifier:
keyid:D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:84:12:55:a7:a4:d2:ae:25:89:60:60:80:be:13:4e:c2:0b:
c6:af:b6:75:3b:86:25:21:bf:e1:32:32:a0:2a:45:cf:8a:e3:
13:d5:07:04:c2:c9:3c:44:10:f1:97:24:ec:b9:cb:c2:00:40:
92:c3:57:9b:39:ba:32:1e:0b:37:a1:44:7d:60:97:a9:58:40:
ec:90:c7:c6:25:c0:e0:13:ab:e6:74:b4:a5:11:c6:eb:79:0b:
8d:9f:fc:d0:80:fe:be:f6:bf:c6:37:a7:fa:7e:5c:22:c7:0e:
15:79:41:73:03:3f:a5:88:ff:27:26:c6:5b:8c:a9:62:2b:b3:
71:98:1f:07:38:e5:cd:d0:a5:d8:c3:bf:fb:05:7c:63:0b:5e:
dd:83:69:f0:6a:3e:a3:2e:2c:35:ab:34:b8:43:9d:c7:c5:b9:
df:ac:68:fc:97:42:a6:e7:e5:e6:0a:33:1c:9f:0e:49:dc:99:
44:51:f0:69:af:9c:a7:fd:f9:33:ec:fa:13:07:bb:f8:1c:00:
16:b1:b0:d4:2a:cc:35:40:8b:56:af:31:37:a5:68:4c:bf:a1:
8b:c1:0c:84:dc:7e:ff:a9:89:56:bb:ba:68:72:e9:ee:4b:82:
fd:ec:48:df:c3:91:e6:4b:65:34:23:e3:6e:3b:c7:ef:6a:a6:
6d:2c:7a:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdwB63djZhPEkQ5CkUSj6L+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwNDY4N2EzZWU2MzIyYjc1N2RlODFlN2Y1M2M1ZDMyZWVi
ZTMzYTYwHhcNMjUwNjE0MjAwMDQwWhcNMjUwNjE1MjAwMDQwWjAzMTEwLwYDVQQD
EygxYWQzY2JjNGY5ZmMyZmI4NjNlMWIwZDYyOTY5NGIxNDA3MTc2MGU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoK9crLtaxUPbLHFRKzgi/VZx9rkS
Wv0xNhQhmLTAFDgtaXZyTr+FzJEtobWbKwcF3EJONSWlnd2UF2i6SJ434Wme+LG+
oNxxLkAdKAqsl+EVMInlk2+qgwUW34InnIKuxguk9WpGJ8f56CyjKJL4h5G/gZOm
zohDIP8flHB6XsSwf8ideM1hf1Utd/d8gNY63L27t9c50lyWAw7iX5FZXiVp8gdF
W4/EJG5W7l9iaQajDeEh1Z1QpqUBg0mN2Gzsz73TxH9izhsbnRYEEBwXP7j2uQJ/
P+REsLQphROCBfBstMZUfk0XNDICQUn3gdJsBZeyAhPe8qgUoUodkM//OwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBrTy8T5/C+4Y+Gw1ilpSxQHF2DkMB8GA1UdIwQY
MBaAFNBGh6PuYyK3V96B5/U8XTLuvjOmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEVhSG8tNWpJcmRYM29IbjlUeGRNdTYtTTZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9iZmRkMTktNmJiYS00ZGM5LWFmYzYt
OTdiZTQyNmEyMzM0LzEvMEVhSG8tNWpJcmRYM29IbjlUeGRNdTYtTTZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9iZmRkMTktNmJiYS00ZGM5LWFmYzYtOTdiZTQyNmEyMzM0
LzEvMEVhSG8tNWpJcmRYM29IbjlUeGRNdTYtTTZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjIQSVaek
0q4liWBggL4TTsILxq+2dTuGJSG/4TIyoCpFz4rjE9UHBMLJPEQQ8Zck7LnLwgBA
ksNXmzm6Mh4LN6FEfWCXqVhA7JDHxiXA4BOr5nS0pRHG63kLjZ/80ID+vva/xjen
+n5cIscOFXlBcwM/pYj/JybGW4ypYiuzcZgfBzjlzdCl2MO/+wV8Ywte3YNp8Go+
oy4sNas0uEOdx8W536xo/JdCpufl5gozHJ8OSdyZRFHwaa+cp/35M+z6Ewe7+BwA
FrGw1CrMNUCLVq8xN6VoTL+hi8EMhNx+/6mJVru6aHLp7kuC/exI38OR5ktlNCPj
bjvH72qmbSx6JA==
-----END CERTIFICATE-----
Generated at Sun Jun 15 04:00:44 2025 by rpki-client