Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.mft
File: r433xPeRM3MP4-aJR3enlgSly3k.mft (raw, json)
Hash identifier: fbRhMHHwXgveSmRh6nEZ++xWJT704j9bev65PMFsZtU=
Subject key identifier: 23:A6:C7:A5:F6:26:B2:30:8F:89:7A:0D:FE:2A:77:A3:02:B4:31:A2
Authority key identifier: AF:8D:F7:C4:F7:91:33:73:0F:E3:E6:89:47:77:A7:96:04:A5:CB:79
Certificate issuer: /CN=af8df7c4f79133730fe3e6894777a79604a5cb79
Certificate serial: 01977609DAB9FB149A1E6555DDDF391E41A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r433xPeRM3MP4-aJR3enlgSly3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.mft
Manifest number: 1593
Signing time: Mon 16 Jun 2025 00:00:46 +0000
Manifest this update: Mon 16 Jun 2025 00:00:46 +0000
Manifest next update: Tue 17 Jun 2025 00:00:46 +0000
Files and hashes: 1: Sj0PB6C71UQWy93CM-Vpj4pjoBg.roa (hash: StQmSXi8WTjztpX70qdwwtDI4sB0dsxFMynA07YhLgY=)
2: r433xPeRM3MP4-aJR3enlgSly3k.crl (hash: Fy18/iofPrqCbdBnR8YxFG779TWfeBhLv8aKuwfmvgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/r433xPeRM3MP4-aJR3enlgSly3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 00:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:09:da:b9:fb:14:9a:1e:65:55:dd:df:39:1e:41:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af8df7c4f79133730fe3e6894777a79604a5cb79
Validity
Not Before: Jun 16 00:00:46 2025 GMT
Not After : Jun 17 00:00:46 2025 GMT
Subject: CN=23a6c7a5f626b2308f897a0dfe2a77a302b431a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a4:11:74:8a:16:75:d8:32:bc:e9:97:8b:7a:
c1:b6:e4:f4:cb:28:ce:c1:04:4a:b8:ab:eb:47:9b:
b6:82:5c:5b:c0:7b:75:c7:51:9d:e8:3d:c2:d7:a2:
fc:99:06:22:59:6d:b9:3d:03:52:66:96:46:da:41:
71:19:16:a8:d9:eb:33:33:a3:45:97:43:42:67:56:
46:9d:05:a8:12:8e:e8:75:30:36:b8:ca:bf:7e:9b:
9a:9f:0b:76:24:25:12:61:5b:34:ec:f3:e1:c0:e8:
f0:81:c7:e3:07:1a:34:99:e6:1b:ac:9f:82:e6:30:
94:7b:29:18:d5:42:3e:cb:9c:e8:8f:b9:72:c9:46:
cb:0b:6b:0d:90:1d:83:10:ba:31:35:fb:00:13:7f:
99:87:fa:8d:54:d1:47:4d:fc:0c:b0:1c:b3:4a:6b:
70:fa:38:e8:b1:7d:2a:51:8b:87:aa:cb:f3:70:dd:
19:7e:68:e2:f5:26:b0:0d:3f:92:d9:64:3d:30:30:
4b:17:dc:33:e9:cd:8b:8a:07:56:b5:13:55:19:e4:
84:fc:d4:02:52:3e:36:7e:7f:da:c5:66:8b:19:dc:
11:ed:24:4a:46:9f:92:26:3d:21:88:8e:71:50:76:
51:d1:18:41:f8:ff:d8:7d:1a:61:70:66:22:72:9b:
9d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:A6:C7:A5:F6:26:B2:30:8F:89:7A:0D:FE:2A:77:A3:02:B4:31:A2
X509v3 Authority Key Identifier:
keyid:AF:8D:F7:C4:F7:91:33:73:0F:E3:E6:89:47:77:A7:96:04:A5:CB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r433xPeRM3MP4-aJR3enlgSly3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:50:91:a0:cf:10:b4:26:91:9c:e0:0b:3f:d4:51:30:4a:00:
44:c1:60:75:fb:8b:6d:96:72:2b:5a:6c:62:3d:e4:f5:b3:5b:
6d:81:46:84:73:45:4a:28:39:0e:22:81:6d:23:71:d4:df:6a:
99:d3:ad:ea:53:15:87:81:6a:25:2c:5f:32:9b:ec:30:9c:36:
fe:a2:68:42:99:6c:76:dd:e4:a7:7a:78:fa:dd:88:a8:ad:08:
64:35:84:70:02:d9:8b:21:24:cc:f8:87:3b:6c:ad:6a:cd:00:
be:5c:af:eb:12:d3:a8:c1:56:d2:4b:5d:7a:52:32:e3:fa:96:
33:ef:04:aa:22:53:fd:cb:a7:f6:3f:c8:e3:8b:0a:46:24:85:
46:1b:06:94:86:a7:57:15:3a:d7:26:fa:36:15:c2:e7:47:c9:
96:b4:0e:78:b2:77:cb:4f:30:30:ba:21:54:93:58:69:61:95:
68:b6:77:ae:ef:26:d6:ec:d4:79:3a:ed:02:e3:c4:66:ea:50:
d0:e6:66:0d:79:8e:58:d4:a1:fa:0e:e2:f5:48:1d:35:83:0d:
d9:fc:cf:fd:0c:a5:07:f1:06:96:cb:5e:74:01:db:e7:91:91:
25:0b:4b:df:ee:15:a4:3e:8e:8c:3a:4d:ff:9f:56:f3:7d:fd:
57:f1:07:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd2Cdq5+xSaHmVV3d85HkGkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmOGRmN2M0Zjc5MTMzNzMwZmUzZTY4OTQ3NzdhNzk2MDRh
NWNiNzkwHhcNMjUwNjE2MDAwMDQ2WhcNMjUwNjE3MDAwMDQ2WjAzMTEwLwYDVQQD
EygyM2E2YzdhNWY2MjZiMjMwOGY4OTdhMGRmZTJhNzdhMzAyYjQzMWEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwKQRdIoWddgyvOmXi3rBtuT0yyjO
wQRKuKvrR5u2glxbwHt1x1Gd6D3C16L8mQYiWW25PQNSZpZG2kFxGRao2eszM6NF
l0NCZ1ZGnQWoEo7odTA2uMq/fpuanwt2JCUSYVs07PPhwOjwgcfjBxo0meYbrJ+C
5jCUeykY1UI+y5zoj7lyyUbLC2sNkB2DELoxNfsAE3+Zh/qNVNFHTfwMsByzSmtw
+jjosX0qUYuHqsvzcN0Zfmji9SawDT+S2WQ9MDBLF9wz6c2LigdWtRNVGeSE/NQC
Uj42fn/axWaLGdwR7SRKRp+SJj0hiI5xUHZR0RhB+P/YfRphcGYicpud8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCOmx6X2JrIwj4l6Df4qd6MCtDGiMB8GA1UdIwQY
MBaAFK+N98T3kTNzD+PmiUd3p5YEpct5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjQzM3hQZVJNM01QNC1hSlIzZW5sZ1NseTNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC81MGZmMDAtNzc3YS00MTFkLTkzOGIt
ZjRkNjBlY2RmMmIyLzEvcjQzM3hQZVJNM01QNC1hSlIzZW5sZ1NseTNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC81MGZmMDAtNzc3YS00MTFkLTkzOGItZjRkNjBlY2RmMmIy
LzEvcjQzM3hQZVJNM01QNC1hSlIzZW5sZ1NseTNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAklCRoM8Q
tCaRnOALP9RRMEoARMFgdfuLbZZyK1psYj3k9bNbbYFGhHNFSig5DiKBbSNx1N9q
mdOt6lMVh4FqJSxfMpvsMJw2/qJoQplsdt3kp3p4+t2IqK0IZDWEcALZiyEkzPiH
O2ytas0Avlyv6xLTqMFW0ktdelIy4/qWM+8EqiJT/cun9j/I44sKRiSFRhsGlIan
VxU61yb6NhXC50fJlrQOeLJ3y08wMLohVJNYaWGVaLZ3ru8m1uzUeTrtAuPEZupQ
0OZmDXmOWNSh+g7i9UgdNYMN2fzP/QylB/EGlstedAHb55GRJQtL3+4VpD6OjDpN
/59W8339V/EHIA==
-----END CERTIFICATE-----
Generated at Mon Jun 16 09:24:21 2025 by rpki-client