Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
File: mSAfYJ56iT2obPDrvKS79HJ51hc.mft (raw, json)
Hash identifier: zwjkvZiGn39SgMRoXiIeJmquvfi74ysfxxlAYRmUXJ8=
Subject key identifier: 92:9A:94:1C:C9:DA:54:7A:A0:31:0F:F0:FB:66:1C:54:ED:FB:64:C5
Authority key identifier: 99:20:1F:60:9E:7A:89:3D:A8:6C:F0:EB:BC:A4:BB:F4:72:79:D6:17
Certificate issuer: /CN=99201f609e7a893da86cf0ebbca4bbf47279d617
Certificate serial: 01976C99062550768F70DE29DF038FDE6F7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
Manifest number: 0426
Signing time: Sat 14 Jun 2025 04:00:57 +0000
Manifest this update: Sat 14 Jun 2025 04:00:57 +0000
Manifest next update: Sun 15 Jun 2025 04:00:57 +0000
Files and hashes: 1: 1tSheZow3C5eA6jOu_MWtrfHmEY.roa (hash: KFhShtQvmMD0Mr4HPxFeWZgSKSgyixhc5C8a67+FVZE=)
2: mSAfYJ56iT2obPDrvKS79HJ51hc.crl (hash: avldgomjlIRaN0arepBMtj4GUa9/ZmsHoG4DxAjgqSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:99:06:25:50:76:8f:70:de:29:df:03:8f:de:6f:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99201f609e7a893da86cf0ebbca4bbf47279d617
Validity
Not Before: Jun 14 04:00:57 2025 GMT
Not After : Jun 15 04:00:57 2025 GMT
Subject: CN=929a941cc9da547aa0310ff0fb661c54edfb64c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:56:74:c2:c8:48:60:f5:e4:dc:42:c9:43:d7:
7c:79:80:05:c3:85:d5:db:0f:b1:6a:58:15:11:3e:
24:94:6c:b5:ac:f0:12:dd:a1:88:44:a8:47:da:8d:
03:2e:39:8b:82:58:a6:7c:aa:85:c2:64:c7:9d:61:
11:6c:f1:dd:e2:51:94:6d:ca:96:9f:0e:4a:6c:af:
09:73:f9:a4:6d:f6:cd:99:d3:4f:97:c2:87:23:07:
81:8b:7b:52:e1:82:04:e3:a9:65:b8:c5:6d:e5:ad:
53:0e:24:3f:b2:33:2c:ee:09:82:f0:b2:0b:ef:7e:
11:17:d8:5b:d7:87:01:4b:6a:13:42:dd:14:43:68:
9d:ab:6d:83:76:f2:01:25:3c:f0:97:5e:29:50:2f:
77:28:76:83:22:09:5f:e6:22:c1:4a:2a:e6:9c:fc:
dc:7d:8c:00:15:82:eb:08:10:29:67:86:47:0f:cd:
d3:ec:44:d1:35:6d:b2:00:71:90:5a:5c:36:b3:a4:
ef:88:35:1f:a3:60:7e:5b:05:77:1e:26:ac:c0:04:
e2:c2:ed:d0:4c:32:90:21:8b:6a:fb:6f:35:52:96:
25:e0:f1:44:0b:86:1a:91:ad:e6:8e:45:d7:31:c8:
51:2d:99:3b:39:db:26:5d:bf:bd:2a:52:02:22:6e:
a8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:9A:94:1C:C9:DA:54:7A:A0:31:0F:F0:FB:66:1C:54:ED:FB:64:C5
X509v3 Authority Key Identifier:
keyid:99:20:1F:60:9E:7A:89:3D:A8:6C:F0:EB:BC:A4:BB:F4:72:79:D6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:f1:e7:5a:b7:40:c7:c3:71:75:e5:89:a5:31:94:c6:82:c1:
68:85:4c:c9:6d:62:b9:0a:4d:ee:45:6e:ba:59:e6:7d:33:2b:
ad:a2:d0:43:92:d5:0b:0d:f1:7d:72:0d:cc:72:ae:66:22:10:
46:ca:03:17:bb:ba:c1:fb:1c:a3:ea:71:e6:2c:0c:a7:f9:4a:
64:a3:ab:6e:b5:61:81:19:be:35:3d:20:d8:18:de:3d:98:2d:
67:0c:3d:ce:da:82:69:2d:6c:ed:25:22:b7:79:9f:61:fe:a3:
37:17:28:98:4d:7d:0b:48:27:00:2d:a6:84:3c:3e:87:f0:8f:
62:a0:39:34:2f:8f:f7:22:5c:9c:87:5b:e2:ea:71:e3:fb:45:
97:fd:f7:0b:3a:e0:42:5f:e1:af:a7:05:cb:8f:7b:89:18:ca:
e1:c6:0d:cf:ff:69:09:c4:a9:55:3a:7d:9a:0b:b0:2b:c5:dd:
d2:32:cf:60:fc:67:d2:7c:43:32:84:ca:01:61:50:b3:1a:bd:
cd:94:c7:45:58:08:58:0a:2f:69:77:83:8f:f2:be:7b:a3:ea:
11:fb:c6:a3:c0:cb:e5:ac:95:d1:63:09:c8:7f:02:cb:5f:38:
69:d4:6f:94:a0:9e:5e:19:dc:9b:19:54:c4:a7:74:ec:46:b1:
0e:56:de:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsmQYlUHaPcN4p3wOP3m9/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5MjAxZjYwOWU3YTg5M2RhODZjZjBlYmJjYTRiYmY0NzI3
OWQ2MTcwHhcNMjUwNjE0MDQwMDU3WhcNMjUwNjE1MDQwMDU3WjAzMTEwLwYDVQQD
Eyg5MjlhOTQxY2M5ZGE1NDdhYTAzMTBmZjBmYjY2MWM1NGVkZmI2NGM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFZ0wshIYPXk3ELJQ9d8eYAFw4XV
2w+xalgVET4klGy1rPAS3aGIRKhH2o0DLjmLglimfKqFwmTHnWERbPHd4lGUbcqW
nw5KbK8Jc/mkbfbNmdNPl8KHIweBi3tS4YIE46lluMVt5a1TDiQ/sjMs7gmC8LIL
734RF9hb14cBS2oTQt0UQ2idq22DdvIBJTzwl14pUC93KHaDIglf5iLBSirmnPzc
fYwAFYLrCBApZ4ZHD83T7ETRNW2yAHGQWlw2s6TviDUfo2B+WwV3HiaswATiwu3Q
TDKQIYtq+281UpYl4PFEC4Yaka3mjkXXMchRLZk7OdsmXb+9KlICIm6odQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJKalBzJ2lR6oDEP8PtmHFTt+2TFMB8GA1UdIwQY
MBaAFJkgH2Ceeok9qGzw67yku/RyedYXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVNBZllKNTZpVDJvYlBEcnZLUzc5SEo1MWhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni82NTM2ZjktODdkZC00ZWRkLWIwMWMt
YjIzMTcyZWI4MWZiLzEvbVNBZllKNTZpVDJvYlBEcnZLUzc5SEo1MWhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni82NTM2ZjktODdkZC00ZWRkLWIwMWMtYjIzMTcyZWI4MWZi
LzEvbVNBZllKNTZpVDJvYlBEcnZLUzc5SEo1MWhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVfHnWrdA
x8NxdeWJpTGUxoLBaIVMyW1iuQpN7kVuulnmfTMrraLQQ5LVCw3xfXINzHKuZiIQ
RsoDF7u6wfsco+px5iwMp/lKZKOrbrVhgRm+NT0g2BjePZgtZww9ztqCaS1s7SUi
t3mfYf6jNxcomE19C0gnAC2mhDw+h/CPYqA5NC+P9yJcnIdb4upx4/tFl/33Czrg
Ql/hr6cFy497iRjK4cYNz/9pCcSpVTp9mguwK8Xd0jLPYPxn0nxDMoTKAWFQsxq9
zZTHRVgIWAovaXeDj/K+e6PqEfvGo8DL5ayV0WMJyH8Cy184adRvlKCeXhncmxlU
xKd07EaxDlbeZw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:38:47 2025 by rpki-client