Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: bkUt8Z2waj6pDzOnjybj9g8fNHgUM651mIkQy6Y64fw=
Subject key identifier: 5D:1B:9C:9A:6A:5A:57:87:36:50:5E:3A:89:BD:06:6F:73:B0:B6:93
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 01976997EA76B12CB1B5860FEE06AD10648B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 158E
Signing time: Fri 13 Jun 2025 14:00:52 +0000
Manifest this update: Fri 13 Jun 2025 14:00:52 +0000
Manifest next update: Sat 14 Jun 2025 14:00:52 +0000
Files and hashes: 1: qZsU012FOT7iNKmn0Q6fmLHg-jY.roa (hash: t+/X1ob1d2V1rnzYvMBrQBRc/+JtrsZ+AHNltw325kg=)
2: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: s4H6Gx1Pn5f8BQ3A/dzf774teHz3XB9p7O3jDB3QTGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:97:ea:76:b1:2c:b1:b5:86:0f:ee:06:ad:10:64:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Jun 13 14:00:52 2025 GMT
Not After : Jun 14 14:00:52 2025 GMT
Subject: CN=5d1b9c9a6a5a578736505e3a89bd066f73b0b693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:4e:c7:75:79:4e:21:f6:e6:0a:9b:de:0b:d0:
1b:b0:f1:4d:ee:6c:cd:46:8d:bd:b5:8f:81:c7:b1:
61:a9:8d:78:eb:68:99:21:68:f1:d9:70:a8:61:9e:
06:c5:98:d1:3e:b1:ed:29:a5:34:a7:9c:eb:ad:53:
1b:8e:eb:03:9d:12:18:ba:2d:a2:81:35:10:a4:49:
fc:c6:00:72:d2:f7:e5:67:47:3a:46:d7:d4:ca:f2:
df:26:36:91:17:7c:ad:72:c5:83:ad:33:2f:6b:6c:
5a:7f:21:99:5b:b9:8f:15:31:c5:57:39:e9:99:fa:
c6:d9:4b:56:38:73:6d:3f:b6:5a:9f:98:84:be:43:
19:b8:25:22:c0:16:86:c9:6d:9d:15:06:9b:89:d3:
e7:1e:63:77:a3:c0:ee:5f:49:ac:68:75:96:4f:9a:
34:50:01:f9:8d:6e:23:e2:6f:5d:62:01:2c:f0:02:
4d:4d:11:bf:ee:57:1d:88:76:71:eb:e6:11:82:30:
99:8c:06:00:ed:8a:75:24:61:b6:1b:3b:48:e1:86:
b3:31:39:45:10:7c:be:8c:06:1a:8e:37:7d:c2:3a:
28:f2:f5:bc:c4:2f:1b:6d:01:48:b2:1c:71:ec:f4:
04:fa:7d:ef:ee:3e:8b:72:d2:a1:54:0f:c9:62:58:
c0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:1B:9C:9A:6A:5A:57:87:36:50:5E:3A:89:BD:06:6F:73:B0:B6:93
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:c5:cf:96:02:3f:ce:21:72:20:a1:64:35:e6:c6:f2:d6:5d:
13:49:59:17:7c:7b:27:2e:20:ed:be:af:19:24:95:e1:df:9c:
cc:59:07:08:29:16:4d:be:62:e0:67:6c:28:d9:82:2a:8e:cf:
39:c3:5f:7c:d4:5a:39:4e:d3:59:7a:12:64:6e:9b:cc:1c:75:
45:27:f6:53:e9:24:38:97:56:63:a8:e0:69:8c:fb:d0:35:fb:
8b:eb:1c:de:2c:96:e8:0e:b8:8a:c2:f8:7d:8f:9b:55:94:c3:
96:b0:41:83:13:7b:31:83:e1:9a:af:8c:da:a6:46:cf:7e:65:
59:55:33:c4:a3:62:9e:56:92:b6:10:33:bc:1c:95:c2:cc:89:
df:e7:92:0d:99:2c:a9:48:06:37:3e:58:42:17:72:e8:0d:3a:
42:55:bc:61:00:75:c3:d2:35:b2:d1:c7:df:f7:55:1f:55:14:
a8:25:5e:c4:7b:f6:20:1d:03:64:76:48:c8:a8:71:f3:72:09:
43:a6:1c:e6:c6:27:a2:c6:2f:8e:39:89:e9:ac:55:94:0a:2f:
e7:86:34:84:0c:d9:de:fc:58:89:ac:4f:e2:0e:ff:a9:24:7b:
80:ef:03:01:b9:ac:19:72:2b:4d:0a:e5:06:0d:29:37:9e:aa:
43:2f:f0:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpl+p2sSyxtYYP7gatEGSLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNzgxYzg0NTMzOTkwMGY3ZTZiMjAzM2U2Mzg4OGI1M2Fl
NTc4NzUwHhcNMjUwNjEzMTQwMDUyWhcNMjUwNjE0MTQwMDUyWjAzMTEwLwYDVQQD
Eyg1ZDFiOWM5YTZhNWE1Nzg3MzY1MDVlM2E4OWJkMDY2ZjczYjBiNjkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1U7HdXlOIfbmCpveC9AbsPFN7mzN
Ro29tY+Bx7FhqY1462iZIWjx2XCoYZ4GxZjRPrHtKaU0p5zrrVMbjusDnRIYui2i
gTUQpEn8xgBy0vflZ0c6RtfUyvLfJjaRF3ytcsWDrTMva2xafyGZW7mPFTHFVznp
mfrG2UtWOHNtP7Zan5iEvkMZuCUiwBaGyW2dFQabidPnHmN3o8DuX0msaHWWT5o0
UAH5jW4j4m9dYgEs8AJNTRG/7lcdiHZx6+YRgjCZjAYA7Yp1JGG2GztI4YazMTlF
EHy+jAYajjd9wjoo8vW8xC8bbQFIshxx7PQE+n3v7j6LctKhVA/JYljATwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF0bnJpqWleHNlBeOom9Bm9zsLaTMB8GA1UdIwQY
MBaAFK94HIRTOZAPfmsgM+Y4iLU65Xh1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kMWM3MWQtYWE1MC00ZDc4LThlNTIt
NWNmMzdhMzQ4MzBkLzEvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9kMWM3MWQtYWE1MC00ZDc4LThlNTItNWNmMzdhMzQ4MzBk
LzEvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlMXPlgI/
ziFyIKFkNebG8tZdE0lZF3x7Jy4g7b6vGSSV4d+czFkHCCkWTb5i4GdsKNmCKo7P
OcNffNRaOU7TWXoSZG6bzBx1RSf2U+kkOJdWY6jgaYz70DX7i+sc3iyW6A64isL4
fY+bVZTDlrBBgxN7MYPhmq+M2qZGz35lWVUzxKNinlaSthAzvByVwsyJ3+eSDZks
qUgGNz5YQhdy6A06QlW8YQB1w9I1stHH3/dVH1UUqCVexHv2IB0DZHZIyKhx83IJ
Q6Yc5sYnosYvjjmJ6axVlAov54Y0hAzZ3vxYiaxP4g7/qSR7gO8DAbmsGXIrTQrl
Bg0pN56qQy/wcQ==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:00:58 2025 by rpki-client