Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
File: sICdwHvAd1GY8vMVVBUvNWqD93A.mft (raw, json)
Hash identifier: 7n2pbRlHnSzLYiwY1HowWRKm51yEC5OXiWTD4Z+MgIk=
Subject key identifier: 02:D5:2A:25:FC:33:B7:D9:10:15:B6:9D:20:53:A5:82:95:D0:35:71
Authority key identifier: B0:80:9D:C0:7B:C0:77:51:98:F2:F3:15:54:15:2F:35:6A:83:F7:70
Certificate issuer: /CN=b0809dc07bc0775198f2f31554152f356a83f770
Certificate serial: 019774528182E598A763FDD09ABC32734FB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sICdwHvAd1GY8vMVVBUvNWqD93A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
Manifest number: 1526
Signing time: Sun 15 Jun 2025 16:00:53 +0000
Manifest this update: Sun 15 Jun 2025 16:00:53 +0000
Manifest next update: Mon 16 Jun 2025 16:00:53 +0000
Files and hashes: 1: _vqUTJBaKVA__-YzImtaOgUdlPc.roa (hash: WjwzW+i6IqptZA1G2R9oYtf2Xiry6o+GVW/+RmHCnfA=)
2: sICdwHvAd1GY8vMVVBUvNWqD93A.crl (hash: HX3b+dLEaNW3JU8C6GGG22ACe4DX/fSMyH64g7dzjpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
rsync://rpki.ripe.net/repository/DEFAULT/sICdwHvAd1GY8vMVVBUvNWqD93A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 16:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:74:52:81:82:e5:98:a7:63:fd:d0:9a:bc:32:73:4f:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0809dc07bc0775198f2f31554152f356a83f770
Validity
Not Before: Jun 15 16:00:53 2025 GMT
Not After : Jun 16 16:00:53 2025 GMT
Subject: CN=02d52a25fc33b7d91015b69d2053a58295d03571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:29:da:34:5f:fd:cc:04:29:eb:af:6c:33:4e:
06:f3:b8:d3:a1:f3:c6:96:18:1f:80:87:9e:f6:e0:
2b:16:ee:00:b4:27:1b:63:1f:92:80:84:04:49:61:
91:e7:5e:ec:bb:36:4a:01:45:40:da:8a:7e:f5:2c:
af:59:f9:77:4f:e2:64:d1:ff:93:67:7e:e4:99:b1:
2e:dc:9b:2c:91:71:9e:a3:b9:55:51:a4:a1:2f:14:
50:66:5a:01:2a:0a:80:5d:d6:a8:18:3a:26:2a:ee:
c5:64:29:cf:e5:13:99:27:c0:47:f3:0d:e6:ca:9f:
99:0b:fa:73:d2:7d:8c:f2:ce:19:ba:2d:6a:eb:12:
49:92:1a:0f:7e:8b:42:ad:95:6a:76:c3:9f:ea:12:
c7:cd:49:d6:32:af:1e:95:4c:7d:9a:87:83:39:4e:
70:2b:01:3f:06:70:16:8b:bf:b5:65:b9:65:97:f3:
5b:48:14:7c:68:c2:c8:7f:d6:c1:a0:1b:df:69:28:
e5:49:c2:ba:13:3d:2d:ea:7b:d3:da:a0:00:89:a4:
4a:52:6b:d1:a8:80:0c:39:23:72:51:5b:dd:c3:87:
e2:c4:5c:e5:c2:53:ae:e7:54:88:4d:f4:67:4c:96:
27:a0:65:2a:eb:b8:19:4e:f8:8f:a0:ef:8a:00:84:
a8:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D5:2A:25:FC:33:B7:D9:10:15:B6:9D:20:53:A5:82:95:D0:35:71
X509v3 Authority Key Identifier:
keyid:B0:80:9D:C0:7B:C0:77:51:98:F2:F3:15:54:15:2F:35:6A:83:F7:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sICdwHvAd1GY8vMVVBUvNWqD93A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:83:65:4b:95:30:0d:2c:29:75:6b:44:fb:74:ef:4d:27:f3:
6a:a5:f2:e7:4e:5c:a4:9c:13:82:00:0a:81:53:3c:ca:1d:d8:
ce:8e:e3:9d:52:38:d6:92:d7:9b:9b:1b:ea:a2:fc:bd:d2:cf:
ab:a1:14:bd:ea:5e:36:10:76:1a:51:d2:a0:2e:56:dd:59:bf:
d8:90:b0:90:37:91:7f:b6:47:90:14:f0:1f:ba:77:93:21:2c:
5b:35:a7:53:77:a8:20:e2:fa:1d:3d:ec:a2:64:27:3c:2e:a1:
89:54:b1:d7:34:fb:ac:4d:24:67:5e:a6:2d:ea:9a:f6:45:98:
cc:51:57:9e:83:bf:26:19:c9:b0:38:64:40:35:23:04:67:56:
c3:f9:25:dd:3c:85:aa:be:7b:cf:94:50:08:06:1e:b6:3e:ff:
36:54:5e:4c:63:74:55:58:65:3c:08:b6:07:fb:41:62:65:a7:
6b:3d:a2:e1:fb:8c:6e:66:d6:87:53:96:18:2f:ee:be:5d:9b:
e2:33:f2:63:cb:de:e3:40:43:15:08:6b:ca:a5:3f:b7:0e:a1:
ad:d0:fa:10:9f:7c:cc:fc:b5:01:5a:54:af:aa:75:bb:bb:e7:
b3:10:33:93:3c:fc:1d:ed:08:c7:bd:93:99:51:cd:d0:30:7c:
4d:8d:3b:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd0UoGC5ZinY/3Qmrwyc0+5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwODA5ZGMwN2JjMDc3NTE5OGYyZjMxNTU0MTUyZjM1NmE4
M2Y3NzAwHhcNMjUwNjE1MTYwMDUzWhcNMjUwNjE2MTYwMDUzWjAzMTEwLwYDVQQD
EygwMmQ1MmEyNWZjMzNiN2Q5MTAxNWI2OWQyMDUzYTU4Mjk1ZDAzNTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApynaNF/9zAQp669sM04G87jTofPG
lhgfgIee9uArFu4AtCcbYx+SgIQESWGR517suzZKAUVA2op+9SyvWfl3T+Jk0f+T
Z37kmbEu3JsskXGeo7lVUaShLxRQZloBKgqAXdaoGDomKu7FZCnP5ROZJ8BH8w3m
yp+ZC/pz0n2M8s4Zui1q6xJJkhoPfotCrZVqdsOf6hLHzUnWMq8elUx9moeDOU5w
KwE/BnAWi7+1Zblll/NbSBR8aMLIf9bBoBvfaSjlScK6Ez0t6nvT2qAAiaRKUmvR
qIAMOSNyUVvdw4fixFzlwlOu51SITfRnTJYnoGUq67gZTviPoO+KAISoOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFALVKiX8M7fZEBW2nSBTpYKV0DVxMB8GA1UdIwQY
MBaAFLCAncB7wHdRmPLzFVQVLzVqg/dwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0lDZHdIdkFkMUdZOHZNVlZCVXZOV3FEOTNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9kYjcyNGEtY2JjYS00ZWQxLTliNzkt
OWExYWIxMWFiZGVkLzEvc0lDZHdIdkFkMUdZOHZNVlZCVXZOV3FEOTNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC9kYjcyNGEtY2JjYS00ZWQxLTliNzktOWExYWIxMWFiZGVk
LzEvc0lDZHdIdkFkMUdZOHZNVlZCVXZOV3FEOTNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkoNlS5Uw
DSwpdWtE+3TvTSfzaqXy505cpJwTggAKgVM8yh3Yzo7jnVI41pLXm5sb6qL8vdLP
q6EUvepeNhB2GlHSoC5W3Vm/2JCwkDeRf7ZHkBTwH7p3kyEsWzWnU3eoIOL6HT3s
omQnPC6hiVSx1zT7rE0kZ16mLeqa9kWYzFFXnoO/JhnJsDhkQDUjBGdWw/kl3TyF
qr57z5RQCAYetj7/NlReTGN0VVhlPAi2B/tBYmWnaz2i4fuMbmbWh1OWGC/uvl2b
4jPyY8ve40BDFQhryqU/tw6hrdD6EJ98zPy1AVpUr6p1u7vnsxAzkzz8He0Ix72T
mVHN0DB8TY07HA==
-----END CERTIFICATE-----
Generated at Mon Jun 16 01:25:18 2025 by rpki-client