Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
File: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft (raw, json)
Hash identifier: xSlav75Hebj5INey0CRAZIQXnzs962SWe2I/SvhRIdA=
Subject key identifier: 2A:5E:AB:6F:81:14:41:70:7C:A2:46:90:39:61:26:B6:FB:47:03:68
Authority key identifier: B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9
Certificate issuer: /CN=b393df877bf2f0cf01a9718973eaeee87b0697d9
Certificate serial: 01977B9E65A9380D155AAAD5E24C6BB8830C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
Manifest number: 0F72
Signing time: Tue 17 Jun 2025 02:01:07 +0000
Manifest this update: Tue 17 Jun 2025 02:01:07 +0000
Manifest next update: Wed 18 Jun 2025 02:01:07 +0000
Files and hashes: 1: GhdbZGuzA1z36-UUonZ5zaCX38Q.roa (hash: gEgIQ1ixFSRgI4FI7VMbdhgtgY8jLC1wmNutDGTQS80=)
2: NItMcfmuUtS9SnSR4ZKm4r93TXs.roa (hash: F3sutapYp582NIFvW6vfwf2KF7d5dSaqH83k0FhwJoc=)
3: QCQJObKakvoo4ygnw5Fh20FS0Ts.roa (hash: pr5RHo/glhDEkjitYcq1TogKj+NW5j/LUqIM2EWPEaw=)
4: UVdJ6rkBr4eKgNxEkOLstufV6r8.roa (hash: +gXeK3tudL2I9QvUvgp4q5Jq/oJHp1PYKMtr+laCpNs=)
5: VtsYZXVJAZoFqneDgMrcdY1ZLqo.roa (hash: iydD1kql5GaDH+9KnMFCTe4zA6F46avj8WklVHWfoCY=)
6: YaM_6GNAfAUY1a7EBWWPiZdkY80.roa (hash: imYp4kHblD7OJu3xkBBiybF6gSfL+pAE8EuXrkCO7Ws=)
7: eulbDis-0B0z9GbHcqEo9NdV9rU.roa (hash: r5N8Yg0+954vST6YgvvV4VsOdx/dWOgqxmrlpu8jwtw=)
8: peZQPUG6EREQXk9fJ6XL9FgtEhs.roa (hash: dkv5IIQlSg33elfikzY5ije40KJ3f2E2+53gSCvVzhE=)
9: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl (hash: IbpjkgJBV2VaNAFm7QrXR/OE7FCJOPKhMmk5D49lFjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 23:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7b:9e:65:a9:38:0d:15:5a:aa:d5:e2:4c:6b:b8:83:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b393df877bf2f0cf01a9718973eaeee87b0697d9
Validity
Not Before: Jun 17 02:01:07 2025 GMT
Not After : Jun 18 02:01:07 2025 GMT
Subject: CN=2a5eab6f811441707ca24690396126b6fb470368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7a:14:cc:82:7e:fd:f0:df:b8:d7:c0:0e:b9:
ac:64:98:fd:92:bb:b8:ee:21:1a:b3:8a:0f:b9:0a:
ed:87:56:28:5b:67:05:fa:7d:82:db:40:24:6a:1b:
ce:f4:57:5c:af:50:72:dc:7f:cc:77:2d:52:4e:c6:
99:55:73:b6:05:63:15:85:ab:c9:2a:01:68:14:6d:
66:fb:3a:e7:ba:22:20:d9:bb:4b:42:92:55:16:01:
21:48:8f:5a:4a:75:5f:f4:80:35:9d:29:f5:39:83:
9c:0d:04:e7:a3:ff:7e:b9:0b:6b:43:a8:0f:97:c0:
5b:75:62:9b:f9:a9:19:98:86:cb:7d:db:ca:49:10:
3f:90:66:3b:3c:9a:e7:b7:73:d0:88:57:f6:3a:f0:
cd:1d:21:7a:62:e0:a1:00:d8:e3:5b:92:a4:4a:11:
d4:e1:44:66:84:44:ac:2f:56:08:0f:ba:c3:1e:4d:
1f:c4:73:c2:f8:09:da:cb:d3:6a:af:01:a8:e3:18:
ab:5a:d6:4d:56:5f:e1:08:b4:28:21:92:76:d8:66:
80:98:be:d8:b2:4b:26:ed:57:79:2a:53:94:d8:dd:
5a:b4:11:04:77:29:e4:8e:8e:8d:e7:c3:a6:82:cc:
9d:b1:75:05:53:b9:0c:39:67:62:cc:8c:50:e8:ab:
e4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:5E:AB:6F:81:14:41:70:7C:A2:46:90:39:61:26:B6:FB:47:03:68
X509v3 Authority Key Identifier:
keyid:B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:af:6d:df:df:57:52:9b:16:71:4c:1f:e6:79:dc:f6:70:0c:
8e:63:b7:e9:14:1c:c1:c9:dc:fd:9a:80:02:4c:fc:80:46:6d:
d8:37:5f:84:42:9e:73:8d:9e:21:05:31:c3:1e:f7:8a:f8:43:
20:6a:a5:76:c4:9a:29:23:a3:77:42:fc:8d:66:a4:b8:f3:43:
cd:61:50:42:78:d1:fb:53:e6:dd:d8:51:ca:94:b2:5d:b8:0d:
2f:38:64:9a:61:60:9c:5f:56:7c:c1:fe:4a:0f:2b:f6:3b:c2:
f1:67:ae:f2:33:b4:7b:af:7d:15:dd:50:0c:58:35:10:50:d0:
92:65:92:35:6a:35:72:10:33:e9:77:2d:01:ce:75:ba:35:f7:
2d:21:71:af:17:1d:c5:7a:a4:59:cd:53:01:48:76:51:23:a5:
46:54:c2:7d:01:07:cf:31:79:b0:9a:f5:10:60:56:41:6f:bf:
a6:14:a1:40:8f:8e:c1:d4:f5:93:04:a7:07:2f:51:a5:c0:81:
f9:82:95:36:dc:ff:a9:f8:2e:4e:a3:ff:5d:b9:60:5d:8d:b3:
58:62:5b:d1:3d:f5:95:b6:aa:76:cd:c7:8d:58:c6:92:97:07:
fe:28:46:c5:b6:97:22:09:3f:1a:42:2c:b3:23:30:06:78:c7:
e6:cb:4d:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd7nmWpOA0VWqrV4kxruIMMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzOTNkZjg3N2JmMmYwY2YwMWE5NzE4OTczZWFlZWU4N2Iw
Njk3ZDkwHhcNMjUwNjE3MDIwMTA3WhcNMjUwNjE4MDIwMTA3WjAzMTEwLwYDVQQD
EygyYTVlYWI2ZjgxMTQ0MTcwN2NhMjQ2OTAzOTYxMjZiNmZiNDcwMzY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArnoUzIJ+/fDfuNfADrmsZJj9kru4
7iEas4oPuQrth1YoW2cF+n2C20AkahvO9Fdcr1By3H/Mdy1STsaZVXO2BWMVhavJ
KgFoFG1m+zrnuiIg2btLQpJVFgEhSI9aSnVf9IA1nSn1OYOcDQTno/9+uQtrQ6gP
l8BbdWKb+akZmIbLfdvKSRA/kGY7PJrnt3PQiFf2OvDNHSF6YuChANjjW5KkShHU
4URmhESsL1YID7rDHk0fxHPC+Anay9NqrwGo4xirWtZNVl/hCLQoIZJ22GaAmL7Y
sksm7Vd5KlOU2N1atBEEdynkjo6N58OmgsydsXUFU7kMOWdizIxQ6Kvk+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCpeq2+BFEFwfKJGkDlhJrb7RwNoMB8GA1UdIwQY
MBaAFLOT34d78vDPAalxiXPq7uh7BpfZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczVQZmgzdnk4TThCcVhHSmMtcnU2SHNHbDlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi85Mzc1ZTMtMzc3ZS00YjcwLWJhMzYt
Mzk2YmM3MjBlMmI0LzEvczVQZmgzdnk4TThCcVhHSmMtcnU2SHNHbDlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi85Mzc1ZTMtMzc3ZS00YjcwLWJhMzYtMzk2YmM3MjBlMmI0
LzEvczVQZmgzdnk4TThCcVhHSmMtcnU2SHNHbDlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAna9t399X
UpsWcUwf5nnc9nAMjmO36RQcwcnc/ZqAAkz8gEZt2DdfhEKec42eIQUxwx73ivhD
IGqldsSaKSOjd0L8jWakuPNDzWFQQnjR+1Pm3dhRypSyXbgNLzhkmmFgnF9WfMH+
Sg8r9jvC8Weu8jO0e699Fd1QDFg1EFDQkmWSNWo1chAz6XctAc51ujX3LSFxrxcd
xXqkWc1TAUh2USOlRlTCfQEHzzF5sJr1EGBWQW+/phShQI+OwdT1kwSnBy9RpcCB
+YKVNtz/qfguTqP/XblgXY2zWGJb0T31lbaqds3HjVjGkpcH/ihGxbaXIgk/GkIs
syMwBnjH5stNcQ==
-----END CERTIFICATE-----
Generated at Tue Jun 17 07:52:50 2025 by rpki-client