Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
File: U170D69INDOz4zaY5NHulfPJS-w.mft (raw, json)
Hash identifier: 6zzGwEyKFab7L73Rj0tvFj2KE0wjDi56hool7xOSzlY=
Subject key identifier: 08:17:FC:12:77:D2:54:D2:3B:AA:1E:1F:8B:20:11:1F:BD:85:15:1E
Authority key identifier: 53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
Certificate issuer: /CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Certificate serial: 01976D3D768E105B4CDE8B0420CE586736E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
Manifest number: 158E
Signing time: Sat 14 Jun 2025 07:00:33 +0000
Manifest this update: Sat 14 Jun 2025 07:00:33 +0000
Manifest next update: Sun 15 Jun 2025 07:00:33 +0000
Files and hashes: 1: U170D69INDOz4zaY5NHulfPJS-w.crl (hash: pik1E2dg1wB9jcbePcsYGuswDXWqFKw74iSNk38RbwE=)
2: a9R4a72Ce3HtrFyUZj2Jrpn9DLE.roa (hash: lEQCssDpqykyZtTNm3b2/t+M2Xlx2R2hbaDbanTEKE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:76:8e:10:5b:4c:de:8b:04:20:ce:58:67:36:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Validity
Not Before: Jun 14 07:00:33 2025 GMT
Not After : Jun 15 07:00:33 2025 GMT
Subject: CN=0817fc1277d254d23baa1e1f8b20111fbd85151e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:13:2d:6c:f4:93:ee:49:d8:fc:a5:79:6c:a9:
4c:ab:b3:2b:dc:ca:9a:37:6c:3e:ee:bf:88:0b:80:
73:bb:f9:11:a1:66:b9:fc:69:7b:a8:bc:88:35:f3:
bb:ef:a3:99:95:4d:2e:89:f6:32:e8:86:7c:1c:10:
1e:8e:14:8a:c8:17:21:8b:04:61:96:6b:15:0a:95:
af:b4:57:cc:d5:92:cc:7a:1a:ab:bc:70:45:f3:42:
79:93:21:3e:fb:c2:f2:0d:b0:36:ee:1b:1f:3a:d1:
92:46:41:8a:99:12:3b:c8:e9:66:59:69:5d:ae:ad:
5c:27:ff:c5:f1:0b:79:e9:d3:a6:2e:38:28:69:74:
2e:e4:8e:8e:25:27:de:31:ac:b1:6b:ab:3f:36:fa:
4f:26:35:b2:dd:1d:fb:53:94:fd:8b:1a:5b:44:bd:
61:c4:c6:61:0b:81:73:1e:05:d3:9c:6e:55:07:92:
c9:44:40:b7:22:dc:d1:55:9f:c9:03:47:ae:fa:ca:
b6:9b:5a:a9:3a:b5:73:4c:53:48:8b:e5:b8:34:dc:
59:0b:28:f8:4b:98:84:69:58:78:06:82:0f:d9:f5:
81:5b:44:a5:d5:90:3a:58:ed:ca:4c:ae:ca:25:17:
14:27:52:aa:fc:13:bf:27:19:6a:8b:6e:94:23:55:
5c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:17:FC:12:77:D2:54:D2:3B:AA:1E:1F:8B:20:11:1F:BD:85:15:1E
X509v3 Authority Key Identifier:
keyid:53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:11:2a:5b:2f:18:2b:98:a6:46:b9:f4:b0:1e:77:92:d3:ef:
8c:40:17:d3:1b:cc:c1:4a:07:3a:92:39:42:16:fb:42:65:0f:
bc:51:3e:59:3e:db:63:38:95:65:ef:81:c1:fa:73:93:4a:78:
ae:7e:21:0b:b4:2d:03:08:33:c7:fd:53:e9:57:d3:02:3a:d3:
76:76:0e:ab:5c:41:99:d6:78:12:b7:42:7a:37:12:d2:99:02:
76:8b:1e:1e:35:bb:53:50:26:0f:80:89:06:4c:c7:80:8f:e2:
17:0b:02:dc:d8:47:f7:ef:1d:fe:a1:35:6d:c5:23:76:99:49:
35:2b:e6:20:8b:90:96:46:c2:7a:42:2b:62:02:d0:01:e8:ab:
c7:40:80:38:1d:68:c9:f1:75:9f:b0:64:95:40:70:a5:94:57:
b6:ca:94:5e:fa:71:50:f1:ce:4e:4c:0c:1f:d2:13:c7:20:1b:
eb:17:b5:ee:11:38:d7:df:0f:ea:59:11:92:ec:1f:33:aa:80:
2e:24:08:d2:f1:26:7d:e9:4b:04:bf:b5:ff:4c:35:47:d0:21:
17:a9:37:1b:ff:90:ab:2c:8d:f3:d1:77:bf:15:56:b2:9a:d1:
11:09:5f:ae:d2:7e:c2:dc:15:17:ab:04:b5:fa:94:c1:e6:7f:
c8:e5:80:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtPXaOEFtM3osEIM5YZzbiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzNWVmNDBmYWY0ODM0MzNiM2UzMzY5OGU0ZDFlZTk1ZjNj
OTRiZWMwHhcNMjUwNjE0MDcwMDMzWhcNMjUwNjE1MDcwMDMzWjAzMTEwLwYDVQQD
EygwODE3ZmMxMjc3ZDI1NGQyM2JhYTFlMWY4YjIwMTExZmJkODUxNTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6xMtbPST7knY/KV5bKlMq7Mr3Mqa
N2w+7r+IC4Bzu/kRoWa5/Gl7qLyINfO776OZlU0uifYy6IZ8HBAejhSKyBchiwRh
lmsVCpWvtFfM1ZLMehqrvHBF80J5kyE++8LyDbA27hsfOtGSRkGKmRI7yOlmWWld
rq1cJ//F8Qt56dOmLjgoaXQu5I6OJSfeMayxa6s/NvpPJjWy3R37U5T9ixpbRL1h
xMZhC4FzHgXTnG5VB5LJREC3ItzRVZ/JA0eu+sq2m1qpOrVzTFNIi+W4NNxZCyj4
S5iEaVh4BoIP2fWBW0Sl1ZA6WO3KTK7KJRcUJ1Kq/BO/Jxlqi26UI1VcowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAgX/BJ30lTSO6oeH4sgER+9hRUeMB8GA1UdIwQY
MBaAFFNe9A+vSDQzs+M2mOTR7pXzyUvsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTE3MEQ2OUlORE96NHphWTVOSHVsZlBKUy13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy83N2E5ZjEtZjFmYi00ODVmLTkyM2Yt
N2MzNzg5NDA1YmQ2LzEvVTE3MEQ2OUlORE96NHphWTVOSHVsZlBKUy13Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy83N2E5ZjEtZjFmYi00ODVmLTkyM2YtN2MzNzg5NDA1YmQ2
LzEvVTE3MEQ2OUlORE96NHphWTVOSHVsZlBKUy13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwBEqWy8Y
K5imRrn0sB53ktPvjEAX0xvMwUoHOpI5Qhb7QmUPvFE+WT7bYziVZe+Bwfpzk0p4
rn4hC7QtAwgzx/1T6VfTAjrTdnYOq1xBmdZ4ErdCejcS0pkCdoseHjW7U1AmD4CJ
BkzHgI/iFwsC3NhH9+8d/qE1bcUjdplJNSvmIIuQlkbCekIrYgLQAeirx0CAOB1o
yfF1n7BklUBwpZRXtsqUXvpxUPHOTkwMH9ITxyAb6xe17hE4198P6lkRkuwfM6qA
LiQI0vEmfelLBL+1/0w1R9AhF6k3G/+QqyyN89F3vxVWsprREQlfrtJ+wtwVF6sE
tfqUweZ/yOWAUA==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:10:54 2025 by rpki-client