Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: gJ9zDihXf2FLkcItgiliUGLYpMrF/Oad244mesYi3Lg=
Subject key identifier: 30:89:0D:EC:22:B4:27:C0:C7:8E:36:C7:26:CF:FA:90:81:03:1F:1C
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 01976FD14337A5EF2BCAB16F4A38BE7C24E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 0F98
Signing time: Sat 14 Jun 2025 19:01:14 +0000
Manifest this update: Sat 14 Jun 2025 19:01:14 +0000
Manifest next update: Sun 15 Jun 2025 19:01:14 +0000
Files and hashes: 1: DTkkXlwWhjBYM7E-LiW8oFBHJjI.roa (hash: cFY01vIGbPqfZkXvhIFJCumwHCyy8N/DU0Sq4RcHFF0=)
2: F-tWEgFXNk85dgLML3v4CjJQNJI.roa (hash: KLZ5Ryps6kGcz+Vvj/Jt1Z7hc5rWBKew1n0+/36PDXM=)
3: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: 14Kn8VvBr4xurFwugzErgPXWGR8etIGWtGOVHMTgTqw=)
4: PgYgGFElQ5q1n0LGZNZBRta_Qd4.roa (hash: 69CNmBY++9WnYAnXQ2BFsg1ecbH6Dliq6fHkpb2sLS4=)
5: c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa (hash: 6teRR+6kz/ZhchnuaFTgHT4htaDxgUNTDG0QN1bVrBA=)
6: f3EQDAp01aGz4ygf13OnfmgCiyU.roa (hash: K8CWfwsXMWBETuXajB8y0tfb/O1sIwj6IWVOuqi5a0s=)
7: fnn2PBqaEkB-G35nmktclyOEVrM.roa (hash: z4jXqUIY33n8wsiIhXSfBMidI9YSQa2N+6IYP0IxcVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:d1:43:37:a5:ef:2b:ca:b1:6f:4a:38:be:7c:24:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Jun 14 19:01:14 2025 GMT
Not After : Jun 15 19:01:14 2025 GMT
Subject: CN=30890dec22b427c0c78e36c726cffa9081031f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b6:d6:18:d8:50:f4:9f:bd:a6:99:b0:60:bd:
e9:96:57:af:63:78:0b:d6:d1:91:73:63:b1:41:1f:
a1:0a:19:46:3a:b8:f8:15:eb:43:8f:34:90:62:c3:
2e:4a:50:39:ee:93:23:19:cd:d4:30:29:4e:31:16:
4b:b7:6d:43:51:c5:80:03:f4:42:a0:76:a3:d9:7b:
5e:f0:c4:f8:7c:c0:15:de:99:50:d0:e6:ff:4e:f1:
4d:8e:fb:8f:04:74:c1:a8:17:c2:5e:2e:bc:f6:d8:
a3:d3:9d:a5:75:d3:46:fa:35:1a:cd:2c:d8:d3:0f:
66:ae:20:8c:f7:29:20:8c:98:d5:ee:76:03:cd:5a:
74:01:9f:7f:49:1a:28:31:84:98:88:1f:02:64:f1:
ce:db:bf:65:c6:37:65:89:60:f6:98:2b:33:69:29:
69:80:3d:a6:8f:f0:07:97:3f:12:14:13:51:2d:66:
16:57:d2:8a:cf:ee:58:e2:e8:fc:dd:29:16:67:85:
e5:f1:12:b1:d3:01:5e:93:2a:6c:c6:2c:0a:53:de:
a7:e3:e2:5a:49:6b:c5:5e:fe:be:7a:00:5b:83:4f:
0e:a9:c3:de:c7:24:b9:87:29:ee:5f:f1:b3:4b:5e:
b9:75:e1:e1:a3:84:d0:fb:21:d5:a5:a1:f4:82:14:
d1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:89:0D:EC:22:B4:27:C0:C7:8E:36:C7:26:CF:FA:90:81:03:1F:1C
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:25:7d:18:2c:bb:a1:50:9c:b7:7a:4c:dc:4a:ed:2c:cf:9c:
01:a3:8b:b0:d4:d4:d8:eb:43:7d:a1:e3:98:c2:93:51:17:e3:
49:bb:cd:d2:e5:bf:77:0f:f9:2f:81:3a:d0:77:0d:c7:12:01:
8c:8d:b8:e2:9e:01:d5:5d:90:1f:1a:b4:be:73:bf:5b:8b:21:
86:2e:82:25:32:66:23:e2:4c:b5:74:92:6e:5d:7d:e2:e5:58:
3f:ef:ee:b5:53:3e:23:cd:5d:57:b8:c4:6c:0a:17:28:e8:61:
70:39:67:a2:34:c9:b7:55:fe:19:be:c0:18:34:58:99:a5:bc:
ff:a9:97:1e:5d:6b:c4:8c:f7:27:a5:57:9b:2c:f3:34:86:b4:
03:f8:29:33:f8:9b:af:c2:e9:1b:9b:b9:54:17:58:a5:4a:be:
f2:20:6b:12:01:e2:44:08:3f:48:31:0e:30:37:49:8d:be:65:
29:14:4a:e0:62:0c:50:f3:d3:5c:c4:63:74:e0:4e:c7:84:f4:
f4:90:96:8d:92:b4:9a:d5:2d:89:c4:1a:3c:e6:ce:7f:81:f1:
7c:eb:d8:cd:aa:31:60:0e:5c:3a:08:d2:fd:5e:ee:df:d4:ef:
1e:b0:fc:82:77:25:ce:3f:ab:cc:e3:04:bf:d3:21:7f:c1:1e:
ac:66:9c:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdv0UM3pe8ryrFvSji+fCThMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkOGE1NTNlMDVmMDMxOWJmNDUyZmEyMDZjMTRjY2RhODcz
MDQ2NTQwHhcNMjUwNjE0MTkwMTE0WhcNMjUwNjE1MTkwMTE0WjAzMTEwLwYDVQQD
EygzMDg5MGRlYzIyYjQyN2MwYzc4ZTM2YzcyNmNmZmE5MDgxMDMxZjFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvrbWGNhQ9J+9ppmwYL3pllevY3gL
1tGRc2OxQR+hChlGOrj4FetDjzSQYsMuSlA57pMjGc3UMClOMRZLt21DUcWAA/RC
oHaj2Xte8MT4fMAV3plQ0Ob/TvFNjvuPBHTBqBfCXi689tij052lddNG+jUazSzY
0w9mriCM9ykgjJjV7nYDzVp0AZ9/SRooMYSYiB8CZPHO279lxjdliWD2mCszaSlp
gD2mj/AHlz8SFBNRLWYWV9KKz+5Y4uj83SkWZ4Xl8RKx0wFekypsxiwKU96n4+Ja
SWvFXv6+egBbg08OqcPexyS5hynuX/GzS165deHho4TQ+yHVpaH0ghTRBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDCJDewitCfAx442xybP+pCBAx8cMB8GA1UdIwQY
MBaAFD2KVT4F8DGb9FL6IGwUzNqHMEZUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1Mjct
MGZiNDgyM2Y1Yjg3LzEvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1MjctMGZiNDgyM2Y1Yjg3
LzEvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjCV9GCy7
oVCct3pM3ErtLM+cAaOLsNTU2OtDfaHjmMKTURfjSbvN0uW/dw/5L4E60HcNxxIB
jI244p4B1V2QHxq0vnO/W4shhi6CJTJmI+JMtXSSbl194uVYP+/utVM+I81dV7jE
bAoXKOhhcDlnojTJt1X+Gb7AGDRYmaW8/6mXHl1rxIz3J6VXmyzzNIa0A/gpM/ib
r8LpG5u5VBdYpUq+8iBrEgHiRAg/SDEOMDdJjb5lKRRK4GIMUPPTXMRjdOBOx4T0
9JCWjZK0mtUticQaPObOf4HxfOvYzaoxYA5cOgjS/V7u39TvHrD8gnclzj+rzOME
v9Mhf8EerGac3w==
-----END CERTIFICATE-----
Generated at Sat Jun 14 21:44:08 2025 by rpki-client