Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
File: vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft (raw, json)
Hash identifier: tGFVEn6jesCN3zyJxvzTGf3hA++SR/DPPoey7VH4M04=
Subject key identifier: EC:EC:99:CB:4D:44:3B:C4:AE:5B:6B:AB:DD:67:CA:C0:5B:86:75:5B
Authority key identifier: BD:68:C1:DA:D9:1A:41:01:C7:15:3C:0F:6D:01:56:23:8A:D7:46:BB
Certificate issuer: /CN=bd68c1dad91a4101c7153c0f6d0156238ad746bb
Certificate serial: 01977DFA4A7E190FF2AB7CEADB16396EC7F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
Manifest number: 1528
Signing time: Tue 17 Jun 2025 13:00:44 +0000
Manifest this update: Tue 17 Jun 2025 13:00:44 +0000
Manifest next update: Wed 18 Jun 2025 13:00:44 +0000
Files and hashes: 1: T6mhvGgjsjqSjSFXAxAChHn88ic.roa (hash: FPbExUKvK5N7b1i2EWlflqO6OJIjL5/osRySrLfPqFk=)
2: vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl (hash: 0Ye9sM+m8rlWu9X89YYUTqjAL0CsUBCPYKSOGm0VVDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:fa:4a:7e:19:0f:f2:ab:7c:ea:db:16:39:6e:c7:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd68c1dad91a4101c7153c0f6d0156238ad746bb
Validity
Not Before: Jun 17 13:00:44 2025 GMT
Not After : Jun 18 13:00:44 2025 GMT
Subject: CN=ecec99cb4d443bc4ae5b6babdd67cac05b86755b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:07:65:11:23:5b:9d:eb:9c:34:f2:fe:42:37:
a6:05:61:2b:9c:e2:82:ba:1a:7f:ea:9b:00:37:34:
3d:4e:6d:07:3b:f7:7c:60:15:74:79:a7:b4:a5:ba:
23:7b:f7:e7:2f:65:2a:1a:85:09:54:76:70:7e:a4:
67:fc:f2:b3:d0:ed:d8:64:db:ac:dc:3d:f3:e5:83:
29:2b:18:f0:b2:69:4b:73:25:85:4b:69:aa:55:7b:
ab:6c:4d:50:bb:c7:b7:06:39:8c:74:8d:cf:4f:32:
29:89:51:7c:57:5d:d4:df:5d:84:0f:6f:ad:51:90:
1a:d5:0a:03:50:c3:e1:42:86:44:f1:4d:16:e0:fa:
0d:1b:d6:cd:a0:24:51:44:80:ab:57:8f:d6:c0:c7:
bd:a9:60:f2:ed:d2:f3:46:dc:b6:eb:ea:32:88:07:
09:c1:35:89:39:82:d5:dc:cf:14:3c:fa:76:07:b7:
a1:b3:be:24:20:8a:71:dc:44:09:9b:c8:92:b2:61:
36:ac:bd:2f:23:1e:d8:a1:07:08:e5:f4:15:4c:f6:
93:18:42:74:3b:8b:7d:69:69:e0:17:48:d7:7e:2b:
0c:7b:5b:a0:a8:6a:fd:50:f8:17:a9:c2:c4:15:9a:
54:e9:1f:72:05:3c:88:46:8f:9e:28:bc:20:b7:94:
a6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:EC:99:CB:4D:44:3B:C4:AE:5B:6B:AB:DD:67:CA:C0:5B:86:75:5B
X509v3 Authority Key Identifier:
keyid:BD:68:C1:DA:D9:1A:41:01:C7:15:3C:0F:6D:01:56:23:8A:D7:46:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:2b:da:ab:cb:48:69:80:72:58:0b:d1:30:d2:09:bd:96:4c:
fe:3a:2c:f6:c4:80:75:dc:c2:f5:17:40:f5:1d:5e:16:c4:65:
2b:85:3d:0d:0f:fe:d1:d5:79:18:1f:cc:ba:31:8d:b2:70:ad:
d8:a6:b7:6f:af:d5:8d:30:fe:1d:83:28:90:c7:3b:04:e9:74:
e3:53:ac:bb:29:87:3c:8e:6c:6b:27:78:cf:e4:7c:a4:80:eb:
1b:a1:d3:58:63:ff:fe:81:73:1d:50:6f:16:67:3e:03:ce:a8:
c2:0b:00:db:23:15:f9:29:6e:68:e8:93:42:22:ab:11:cd:85:
d5:1e:a5:a8:42:4b:db:71:72:d0:df:03:3b:3e:29:cc:11:4c:
2d:5b:46:ea:c6:3c:9d:e9:b0:a5:ef:ae:79:17:7f:ef:14:e5:
c8:07:4b:8f:3a:2e:6d:84:32:fb:05:69:cf:4e:f8:b8:e4:4d:
03:14:ed:1b:80:14:9b:f3:5d:f2:ac:78:5c:16:a2:56:c1:5e:
f8:73:b4:87:9a:cf:e7:ca:d1:6a:39:83:b0:f1:49:23:9b:c7:
22:3e:4b:7d:f3:1f:67:a9:73:d5:47:cc:d6:c0:04:38:85:1f:
47:58:34:98:0c:a0:be:1c:b2:f6:ad:82:ce:70:cd:7a:f7:0c:
94:37:a3:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd9+kp+GQ/yq3zq2xY5bsf2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkNjhjMWRhZDkxYTQxMDFjNzE1M2MwZjZkMDE1NjIzOGFk
NzQ2YmIwHhcNMjUwNjE3MTMwMDQ0WhcNMjUwNjE4MTMwMDQ0WjAzMTEwLwYDVQQD
EyhlY2VjOTljYjRkNDQzYmM0YWU1YjZiYWJkZDY3Y2FjMDViODY3NTViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgdlESNbneucNPL+QjemBWErnOKC
uhp/6psANzQ9Tm0HO/d8YBV0eae0pboje/fnL2UqGoUJVHZwfqRn/PKz0O3YZNus
3D3z5YMpKxjwsmlLcyWFS2mqVXurbE1Qu8e3BjmMdI3PTzIpiVF8V13U312ED2+t
UZAa1QoDUMPhQoZE8U0W4PoNG9bNoCRRRICrV4/WwMe9qWDy7dLzRty26+oyiAcJ
wTWJOYLV3M8UPPp2B7ehs74kIIpx3EQJm8iSsmE2rL0vIx7YoQcI5fQVTPaTGEJ0
O4t9aWngF0jXfisMe1ugqGr9UPgXqcLEFZpU6R9yBTyIRo+eKLwgt5SmywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOzsmctNRDvErltrq91nysBbhnVbMB8GA1UdIwQY
MBaAFL1owdrZGkEBxxU8D20BViOK10a7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdldqQjJ0a2FRUUhIRlR3UGJRRldJNHJYUnJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi80ZjRlZmYtYWY1NC00ZGIwLTkxY2Qt
MTM2OWNlZjdhNGNhLzEvdldqQjJ0a2FRUUhIRlR3UGJRRldJNHJYUnJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi80ZjRlZmYtYWY1NC00ZGIwLTkxY2QtMTM2OWNlZjdhNGNh
LzEvdldqQjJ0a2FRUUhIRlR3UGJRRldJNHJYUnJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbSvaq8tI
aYByWAvRMNIJvZZM/jos9sSAddzC9RdA9R1eFsRlK4U9DQ/+0dV5GB/MujGNsnCt
2Ka3b6/VjTD+HYMokMc7BOl041OsuymHPI5sayd4z+R8pIDrG6HTWGP//oFzHVBv
Fmc+A86owgsA2yMV+SluaOiTQiKrEc2F1R6lqEJL23Fy0N8DOz4pzBFMLVtG6sY8
nemwpe+ueRd/7xTlyAdLjzoubYQy+wVpz074uORNAxTtG4AUm/Nd8qx4XBaiVsFe
+HO0h5rP58rRajmDsPFJI5vHIj5LffMfZ6lz1UfM1sAEOIUfR1g0mAygvhyy9q2C
znDNevcMlDejFg==
-----END CERTIFICATE-----
Generated at Tue Jun 17 18:27:42 2025 by rpki-client