Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
File: Pt7grog0cFCIgFBEvnXHQDsdx-I.mft (raw, json)
Hash identifier: O1nJF8CTVEAa+OxvgQLBS+C+YNp3OdGDIsnnOwclzqk=
Subject key identifier: 43:DA:71:B1:F2:E0:BC:09:11:8A:40:78:4F:BC:7C:7D:35:09:E9:E1
Authority key identifier: 3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
Certificate issuer: /CN=3edee0ae8834705088805044be75c7403b1dc7e2
Certificate serial: 01978662123ED193249D8EB3649BE1A3FA8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
Manifest number: 1231
Signing time: Thu 19 Jun 2025 04:11:03 +0000
Manifest this update: Thu 19 Jun 2025 04:11:03 +0000
Manifest next update: Fri 20 Jun 2025 04:11:03 +0000
Files and hashes: 1: Pt7grog0cFCIgFBEvnXHQDsdx-I.crl (hash: 7z2p2ZKcORDdS6lyfguYV9eI+wB3j6CJeoEEsVMcdOc=)
2: f4uXUqTz6EMLfxnYPkQ3ht2dRz0.roa (hash: WwKae4E8mCPYphGvXV9B/QCbohcENp4wZ1ekmYvPPps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Jun 2025 04:11:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:86:62:12:3e:d1:93:24:9d:8e:b3:64:9b:e1:a3:fa:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3edee0ae8834705088805044be75c7403b1dc7e2
Validity
Not Before: Jun 19 04:11:03 2025 GMT
Not After : Jun 20 04:11:03 2025 GMT
Subject: CN=43da71b1f2e0bc09118a40784fbc7c7d3509e9e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:54:18:89:59:17:c2:5e:a9:ac:9d:e1:f9:13:
ce:8e:89:32:1e:ff:ae:c0:13:0f:d4:3c:c3:b6:f1:
8a:75:9c:1f:bd:d5:44:24:80:49:76:9c:67:62:59:
c6:41:d1:5e:10:b8:b8:75:58:4e:64:ec:72:bf:bc:
a6:75:92:de:1f:43:9d:e1:04:d5:24:99:5e:6b:b6:
67:8f:de:00:2c:e0:1a:bf:2e:ca:1a:95:ae:a4:30:
88:bd:e5:24:68:2b:c4:09:64:32:92:10:10:49:72:
cf:52:2a:30:5b:8a:0c:b7:b6:3e:c0:6c:96:26:ba:
38:09:82:39:60:4d:bd:f0:6d:06:ba:c3:77:5d:4d:
32:b6:59:4d:e3:be:f2:ea:eb:5e:5c:d9:da:95:37:
ec:e3:92:0d:8b:f8:e5:15:43:a6:c9:88:95:37:7c:
85:f1:18:95:bd:da:ea:86:13:99:60:d0:22:c8:c7:
52:63:3e:f1:27:1d:7b:13:50:b2:00:88:0b:6e:f3:
6b:f6:41:3a:ef:4d:2b:c8:00:9d:8e:4e:85:41:88:
60:72:b7:4b:07:fe:87:02:de:09:19:00:9a:15:23:
83:61:3e:f1:85:28:cb:2e:f3:51:d7:0c:90:ba:5d:
06:18:de:e7:60:a2:1e:9e:6c:31:67:7a:85:5c:b2:
9d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:DA:71:B1:F2:E0:BC:09:11:8A:40:78:4F:BC:7C:7D:35:09:E9:E1
X509v3 Authority Key Identifier:
keyid:3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:e3:81:98:0a:3c:a9:4e:2f:65:39:64:2e:cb:05:62:e2:6a:
91:0f:6b:04:26:d3:cb:a6:b1:3b:d1:67:3b:69:5c:f4:04:eb:
af:65:89:cb:c0:8f:57:b2:7f:38:27:5a:fd:0c:cb:99:85:80:
c2:3e:1b:06:3a:f6:60:eb:75:e1:58:89:42:53:83:e4:9a:5d:
e8:e9:4c:38:9e:db:96:12:bf:e9:46:af:31:5a:1e:af:2a:77:
f6:54:dd:bb:c2:87:09:4c:75:a5:f8:40:aa:47:c8:ca:97:7b:
5b:86:b7:ed:49:a1:60:10:82:ec:d2:fc:b6:1c:27:91:74:c7:
9b:9e:97:87:85:cc:4a:f3:e9:52:57:bd:90:5c:2e:a2:ca:f9:
3c:7a:d2:19:dc:b0:a0:19:20:73:12:15:38:e6:fd:0f:7a:c8:
0b:1b:23:c6:b7:98:51:1c:9e:3e:a6:94:cc:62:34:ce:e8:aa:
57:d4:75:10:69:65:03:ee:1e:86:b6:b1:8c:5f:ec:dd:a2:3d:
1d:df:29:f9:65:40:57:8d:9b:e8:f8:0f:33:e8:26:f2:4a:d9:
bf:fd:57:17:b0:b3:1d:3e:c8:02:9f:a2:66:c1:82:37:bf:e4:
a9:86:70:b4:89:08:56:cc:d5:b7:1b:d5:63:ce:59:24:58:6c:
e6:fc:3f:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeGYhI+0ZMknY6zZJvho/qPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlZGVlMGFlODgzNDcwNTA4ODgwNTA0NGJlNzVjNzQwM2Ix
ZGM3ZTIwHhcNMjUwNjE5MDQxMTAzWhcNMjUwNjIwMDQxMTAzWjAzMTEwLwYDVQQD
Eyg0M2RhNzFiMWYyZTBiYzA5MTE4YTQwNzg0ZmJjN2M3ZDM1MDllOWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFQYiVkXwl6prJ3h+RPOjokyHv+u
wBMP1DzDtvGKdZwfvdVEJIBJdpxnYlnGQdFeELi4dVhOZOxyv7ymdZLeH0Od4QTV
JJlea7Znj94ALOAavy7KGpWupDCIveUkaCvECWQykhAQSXLPUiowW4oMt7Y+wGyW
Jro4CYI5YE298G0GusN3XU0ytllN477y6uteXNnalTfs45INi/jlFUOmyYiVN3yF
8RiVvdrqhhOZYNAiyMdSYz7xJx17E1CyAIgLbvNr9kE6700ryACdjk6FQYhgcrdL
B/6HAt4JGQCaFSODYT7xhSjLLvNR1wyQul0GGN7nYKIenmwxZ3qFXLKdjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEPacbHy4LwJEYpAeE+8fH01CenhMB8GA1UdIwQY
MBaAFD7e4K6INHBQiIBQRL51x0A7HcfiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHQ3Z3JvZzBjRkNJZ0ZCRXZuWEhRRHNkeC1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny81MTRjZjQtMTI2Yi00Y2M1LWI0ZDUt
NzlhYjQ4ZDgzYmFiLzEvUHQ3Z3JvZzBjRkNJZ0ZCRXZuWEhRRHNkeC1JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny81MTRjZjQtMTI2Yi00Y2M1LWI0ZDUtNzlhYjQ4ZDgzYmFi
LzEvUHQ3Z3JvZzBjRkNJZ0ZCRXZuWEhRRHNkeC1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAquOBmAo8
qU4vZTlkLssFYuJqkQ9rBCbTy6axO9FnO2lc9ATrr2WJy8CPV7J/OCda/QzLmYWA
wj4bBjr2YOt14ViJQlOD5Jpd6OlMOJ7blhK/6UavMVoeryp39lTdu8KHCUx1pfhA
qkfIypd7W4a37UmhYBCC7NL8thwnkXTHm56Xh4XMSvPpUle9kFwuosr5PHrSGdyw
oBkgcxIVOOb9D3rICxsjxreYURyePqaUzGI0zuiqV9R1EGllA+4ehraxjF/s3aI9
Hd8p+WVAV42b6PgPM+gm8krZv/1XF7CzHT7IAp+iZsGCN7/kqYZwtIkIVszVtxvV
Y85ZJFhs5vw/LQ==
-----END CERTIFICATE-----
Generated at Thu Jun 19 12:45:39 2025 by rpki-client