Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
File: rwMNO0xYnpSj72Hd1UAajz_3m20.mft (raw, json)
Hash identifier: PbR6/kufGV2j7b0bJ834LMMi4CEG40iFPYFFk0VU3/o=
Subject key identifier: 24:FB:C3:FF:B3:DE:83:96:65:E9:3C:88:8C:DD:B6:4C:5A:30:E4:88
Authority key identifier: AF:03:0D:3B:4C:58:9E:94:A3:EF:61:DD:D5:40:1A:8F:3F:F7:9B:6D
Certificate issuer: /CN=af030d3b4c589e94a3ef61ddd5401a8f3ff79b6d
Certificate serial: 01977188D39B6C9FE33B3A59011F01A1538E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
Manifest number: 03C7
Signing time: Sun 15 Jun 2025 03:01:21 +0000
Manifest this update: Sun 15 Jun 2025 03:01:21 +0000
Manifest next update: Mon 16 Jun 2025 03:01:21 +0000
Files and hashes: 1: lhPT8Z32dm5HBnSDBqDW1qERmiA.roa (hash: 0NqD/8/FwQf4n6Nk71zoiew6bzyeCyV72ogP7Shiesg=)
2: rwMNO0xYnpSj72Hd1UAajz_3m20.crl (hash: qYr8eNYZdHQBqRitLiN4sUHRD5/lHJhARx57oFdjdfc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 03:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:88:d3:9b:6c:9f:e3:3b:3a:59:01:1f:01:a1:53:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af030d3b4c589e94a3ef61ddd5401a8f3ff79b6d
Validity
Not Before: Jun 15 03:01:21 2025 GMT
Not After : Jun 16 03:01:21 2025 GMT
Subject: CN=24fbc3ffb3de839665e93c888cddb64c5a30e488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:30:63:a1:5b:6f:07:9c:74:eb:cb:3a:f0:7c:
89:0b:f3:33:bc:c0:ee:ab:1c:00:86:55:5b:d2:da:
02:a1:ce:94:85:7a:ee:e1:c9:be:c6:f0:0c:17:73:
05:e0:d3:38:4e:eb:d3:fe:de:c8:18:a2:92:85:49:
43:a7:6f:f3:26:5c:33:cc:c4:74:ab:a5:75:c3:0b:
f8:ed:b1:26:a5:34:2e:e8:ba:79:76:fa:d6:18:90:
5a:14:39:5a:1b:d6:45:a5:a0:b0:01:d4:a3:ed:19:
ce:9d:4b:74:d5:91:f2:58:e6:ce:5e:c9:7c:ff:c9:
71:6d:34:47:77:23:28:21:83:68:b5:56:b5:e3:ea:
63:d2:21:44:d5:3c:39:49:bb:c9:2f:56:55:ec:57:
31:66:e8:6e:7b:4f:0e:b3:95:b1:4d:2f:21:b0:eb:
6b:b6:af:6f:a7:e5:e0:dc:66:77:5a:b3:6e:86:31:
92:55:f3:69:a3:86:37:d9:81:23:c6:4e:81:a6:16:
90:12:61:57:b0:bd:ca:da:a0:20:09:d0:b5:22:ce:
2f:ab:82:08:22:d2:4b:9b:e1:0d:91:9f:f6:07:72:
ea:a7:a2:13:63:b0:03:50:d5:cc:65:7e:d0:6c:a0:
95:57:d6:73:35:9b:aa:7f:af:61:23:97:2e:d6:b0:
3a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:FB:C3:FF:B3:DE:83:96:65:E9:3C:88:8C:DD:B6:4C:5A:30:E4:88
X509v3 Authority Key Identifier:
keyid:AF:03:0D:3B:4C:58:9E:94:A3:EF:61:DD:D5:40:1A:8F:3F:F7:9B:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:b1:31:30:a6:49:4e:46:3b:49:19:0d:42:9c:75:8e:9d:46:
77:28:ec:e8:a9:4b:d2:6f:5c:65:a7:4e:9d:3c:10:c5:7a:da:
33:2b:91:87:69:ef:e4:cf:a4:14:27:19:b7:e6:6b:3c:b5:0b:
69:21:7f:81:d6:e1:12:a9:f0:a5:1f:8f:8b:ba:a9:87:71:ae:
36:3d:f5:df:28:c3:3b:b2:33:b6:1d:7f:b6:ba:4e:cf:04:43:
53:82:9b:3d:07:72:56:9f:a6:fa:30:2f:04:6d:f1:37:5d:93:
0a:b8:de:51:36:a1:80:72:91:e8:b7:39:9f:6b:46:b8:9b:c0:
96:fe:ce:65:9b:cf:ec:c6:34:16:c9:a1:d9:e3:ac:fe:ae:bc:
13:5b:c2:f2:3c:7b:33:56:91:04:a7:6e:c1:7b:4e:d3:c7:f2:
27:3f:b9:59:8a:37:6b:4d:ea:40:31:7a:a2:a6:97:7c:73:26:
66:1d:86:d4:fe:8a:4c:18:f7:27:f5:91:d2:3a:06:e4:b4:25:
97:89:fc:e0:91:58:21:93:38:64:83:d2:3b:2d:0d:ed:96:23:
63:63:4a:a0:33:97:e3:eb:2a:ac:8e:94:b6:69:98:09:6b:99:
b5:2c:75:f2:19:cd:4d:94:69:7d:5a:ba:66:aa:be:8d:ca:7f:
5a:63:d9:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdxiNObbJ/jOzpZAR8BoVOOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMDMwZDNiNGM1ODllOTRhM2VmNjFkZGQ1NDAxYThmM2Zm
NzliNmQwHhcNMjUwNjE1MDMwMTIxWhcNMjUwNjE2MDMwMTIxWjAzMTEwLwYDVQQD
EygyNGZiYzNmZmIzZGU4Mzk2NjVlOTNjODg4Y2RkYjY0YzVhMzBlNDg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1TBjoVtvB5x068s68HyJC/MzvMDu
qxwAhlVb0toCoc6UhXru4cm+xvAMF3MF4NM4TuvT/t7IGKKShUlDp2/zJlwzzMR0
q6V1wwv47bEmpTQu6Lp5dvrWGJBaFDlaG9ZFpaCwAdSj7RnOnUt01ZHyWObOXsl8
/8lxbTRHdyMoIYNotVa14+pj0iFE1Tw5SbvJL1ZV7FcxZuhue08Os5WxTS8hsOtr
tq9vp+Xg3GZ3WrNuhjGSVfNpo4Y32YEjxk6BphaQEmFXsL3K2qAgCdC1Is4vq4II
ItJLm+ENkZ/2B3Lqp6ITY7ADUNXMZX7QbKCVV9ZzNZuqf69hI5cu1rA6EQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCT7w/+z3oOWZek8iIzdtkxaMOSIMB8GA1UdIwQY
MBaAFK8DDTtMWJ6Uo+9h3dVAGo8/95ttMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcndNTk8weFlucFNqNzJIZDFVQWFqel8zbTIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8wZGE4NDctMWFlOS00OTZjLTg5ZmEt
OTI0NWE5YWI5NzhiLzEvcndNTk8weFlucFNqNzJIZDFVQWFqel8zbTIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi8wZGE4NDctMWFlOS00OTZjLTg5ZmEtOTI0NWE5YWI5Nzhi
LzEvcndNTk8weFlucFNqNzJIZDFVQWFqel8zbTIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZLExMKZJ
TkY7SRkNQpx1jp1Gdyjs6KlL0m9cZadOnTwQxXraMyuRh2nv5M+kFCcZt+ZrPLUL
aSF/gdbhEqnwpR+Pi7qph3GuNj313yjDO7Izth1/trpOzwRDU4KbPQdyVp+m+jAv
BG3xN12TCrjeUTahgHKR6Lc5n2tGuJvAlv7OZZvP7MY0Fsmh2eOs/q68E1vC8jx7
M1aRBKduwXtO08fyJz+5WYo3a03qQDF6oqaXfHMmZh2G1P6KTBj3J/WR0joG5LQl
l4n84JFYIZM4ZIPSOy0N7ZYjY2NKoDOX4+sqrI6UtmmYCWuZtSx18hnNTZRpfVq6
Zqq+jcp/WmPZkg==
-----END CERTIFICATE-----
Generated at Sun Jun 15 11:43:33 2025 by rpki-client