Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: zpZSPqXgZzjZlpFphF06n9bqTUTIkF2rikycZIME6rI=
Subject key identifier: AD:18:A7:B1:A7:C6:AF:CF:7D:AD:6B:BF:BC:CE:13:E9:10:B2:B7:0C
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 01978B7EFDE43561D3D3CE069ED3B1D59562
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 02BA
Signing time: Fri 20 Jun 2025 04:00:44 +0000
Manifest this update: Fri 20 Jun 2025 04:00:44 +0000
Manifest next update: Sat 21 Jun 2025 04:00:44 +0000
Files and hashes: 1: 9jS2v21J95xARBtQOtdTT0EtYBQ.roa (hash: BeiYvaVP67aUM+eVkzjpflxlaHwkNmiJmUTQZAVqkOQ=)
2: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: HYKtTaJOJYCYY/ehUj6Di//QPleJ7/g3ddcjbgBivAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Jun 2025 04:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:8b:7e:fd:e4:35:61:d3:d3:ce:06:9e:d3:b1:d5:95:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: Jun 20 04:00:44 2025 GMT
Not After : Jun 21 04:00:44 2025 GMT
Subject: CN=ad18a7b1a7c6afcf7dad6bbfbcce13e910b2b70c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:53:82:c7:f5:bd:58:ca:12:1d:bc:e7:e5:5f:
90:81:33:67:14:ac:38:9d:c2:1c:98:76:88:85:f9:
57:5a:93:b9:f2:b3:23:fe:fd:ff:3a:62:57:b6:65:
e3:0b:12:35:ab:d7:14:85:4f:ab:40:c2:52:42:9b:
1a:ce:44:1e:58:0e:28:c5:fb:4c:b9:60:65:2b:3d:
0d:3e:ac:1b:ed:ee:a8:20:f3:47:37:41:40:ba:b8:
cc:06:1a:5b:ca:ad:47:39:30:55:fa:10:b7:0c:5e:
c7:32:bc:ee:a2:35:10:80:46:04:4d:7b:65:fd:90:
78:53:54:c9:64:35:cc:57:d3:04:ab:34:ab:be:b5:
25:e5:5d:12:28:bb:64:9e:b5:e6:c2:5b:3a:a5:e4:
87:56:bb:07:c1:56:54:49:3c:e5:34:8b:ea:31:a5:
53:28:5a:ff:61:c6:98:d9:68:d6:d4:d0:54:9c:65:
47:b3:9c:25:79:74:ff:6c:f8:72:2a:2c:f5:32:4b:
5c:9a:39:0d:f8:93:af:05:50:79:48:c8:72:5f:dc:
10:5d:71:84:87:09:25:d9:95:18:6e:1a:95:dc:f6:
42:03:18:1f:7e:c1:6b:38:02:c1:94:c6:75:79:e7:
29:d4:1e:22:7f:cd:d3:e5:8c:20:ad:b1:67:ea:4f:
33:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:18:A7:B1:A7:C6:AF:CF:7D:AD:6B:BF:BC:CE:13:E9:10:B2:B7:0C
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:03:9f:40:9a:c0:ff:f4:19:73:7a:32:6c:96:03:d5:58:48:
14:53:f5:70:2c:0c:f7:f7:3f:ed:5f:5c:e2:46:db:37:f1:9d:
f2:ef:c2:c1:3b:90:c2:fa:4e:0c:82:f9:48:37:d9:19:cb:60:
3b:0d:e8:9f:d0:c2:12:5e:ae:c5:e8:1b:72:8c:a8:2a:d4:23:
dc:fa:a4:4c:ee:5f:17:b4:83:1a:0b:e9:11:35:60:ce:37:5d:
85:23:06:ec:be:27:04:4d:d7:47:53:4c:da:15:88:76:7e:b6:
76:52:8e:7c:54:55:22:e5:04:d9:ea:a9:45:99:72:5c:7c:90:
f6:e9:9d:48:27:26:e1:b4:f2:a7:ae:93:8e:47:5f:83:47:cb:
4c:50:4d:3e:ca:62:13:51:1a:4f:2f:5e:f8:b9:f4:46:d8:ed:
bf:09:63:bf:2a:19:3f:f2:54:dc:27:da:f2:03:af:57:54:60:
73:83:f0:2e:29:a0:b3:9e:82:3d:6e:94:e2:17:30:4b:06:87:
44:98:6a:0e:80:5c:03:f4:c0:67:68:ed:41:48:cb:a8:f0:9a:
92:51:93:92:98:76:3f:e4:25:57:fd:6f:e2:fd:4e:63:db:a8:
dd:26:08:9b:66:ac:f5:82:49:39:9a:82:bc:5f:93:fb:7b:ee:
4f:a5:b2:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeLfv3kNWHT084GntOx1ZViMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3MmY3MDM1YzI4OTNiMjhjZDA0ZmQxYTliM2NhY2QyNDI4
YzhkZmQwHhcNMjUwNjIwMDQwMDQ0WhcNMjUwNjIxMDQwMDQ0WjAzMTEwLwYDVQQD
EyhhZDE4YTdiMWE3YzZhZmNmN2RhZDZiYmZiY2NlMTNlOTEwYjJiNzBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4lOCx/W9WMoSHbzn5V+QgTNnFKw4
ncIcmHaIhflXWpO58rMj/v3/OmJXtmXjCxI1q9cUhU+rQMJSQpsazkQeWA4oxftM
uWBlKz0NPqwb7e6oIPNHN0FAurjMBhpbyq1HOTBV+hC3DF7HMrzuojUQgEYETXtl
/ZB4U1TJZDXMV9MEqzSrvrUl5V0SKLtknrXmwls6peSHVrsHwVZUSTzlNIvqMaVT
KFr/YcaY2WjW1NBUnGVHs5wleXT/bPhyKiz1MktcmjkN+JOvBVB5SMhyX9wQXXGE
hwkl2ZUYbhqV3PZCAxgffsFrOALBlMZ1eecp1B4if83T5YwgrbFn6k8zVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK0Yp7Gnxq/Pfa1rv7zOE+kQsrcMMB8GA1UdIwQY
MBaAFHcvcDXCiTsozQT9Gps8rNJCjI39MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi80MWVhZTAtNmI3Mi00NjI0LTljMjQt
ODMwMzVhZmU0YTM3LzEvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi80MWVhZTAtNmI3Mi00NjI0LTljMjQtODMwMzVhZmU0YTM3
LzEvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdwOfQJrA
//QZc3oybJYD1VhIFFP1cCwM9/c/7V9c4kbbN/Gd8u/CwTuQwvpODIL5SDfZGctg
Ow3on9DCEl6uxegbcoyoKtQj3PqkTO5fF7SDGgvpETVgzjddhSMG7L4nBE3XR1NM
2hWIdn62dlKOfFRVIuUE2eqpRZlyXHyQ9umdSCcm4bTyp66Tjkdfg0fLTFBNPspi
E1EaTy9e+Ln0RtjtvwljvyoZP/JU3Cfa8gOvV1Rgc4PwLimgs56CPW6U4hcwSwaH
RJhqDoBcA/TAZ2jtQUjLqPCaklGTkph2P+QlV/1v4v1OY9uo3SYIm2as9YJJOZqC
vF+T+3vuT6WyFA==
-----END CERTIFICATE-----
Generated at Fri Jun 20 13:17:06 2025 by rpki-client