Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
File: i70nOhRTYWFVEmDYSNdvomRGzUY.mft (raw, json)
Hash identifier: HcBiSZ4/maKZ7rPhcNeVFcaXIwlL5nv+sXO3+FYTUL0=
Subject key identifier: 2B:5F:A9:F4:30:7A:34:69:9A:D1:3A:11:53:0E:25:94:8B:67:A4:8F
Authority key identifier: 8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
Certificate issuer: /CN=8bbd273a14536161551260d848d76fa26446cd46
Certificate serial: 01976F62A075F087D14BB271D3D0DA98F5E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
Manifest number: 0168
Signing time: Sat 14 Jun 2025 17:00:23 +0000
Manifest this update: Sat 14 Jun 2025 17:00:23 +0000
Manifest next update: Sun 15 Jun 2025 17:00:23 +0000
Files and hashes: 1: i70nOhRTYWFVEmDYSNdvomRGzUY.crl (hash: A9VAWEzHeqP/HvfFAjPQbMDERxgbAJlYVzkZZy6ZBQo=)
2: iW3M8w8EnOfRKmq5UL0Jzk_nXrc.roa (hash: vQxUQ/gQ4diOyDGNSgt4mcIRpvqTprh0PY77byZ05KY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 17:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:62:a0:75:f0:87:d1:4b:b2:71:d3:d0:da:98:f5:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bbd273a14536161551260d848d76fa26446cd46
Validity
Not Before: Jun 14 17:00:23 2025 GMT
Not After : Jun 15 17:00:23 2025 GMT
Subject: CN=2b5fa9f4307a34699ad13a11530e25948b67a48f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:40:b3:5d:22:e0:8e:33:1a:4b:5c:3a:e7:32:
38:79:c2:1a:f5:75:38:10:69:70:fe:d3:8c:5a:5d:
19:ec:bc:60:8f:e0:07:63:d0:06:b8:67:5c:ad:f7:
28:ba:3f:f1:e3:a5:a1:6c:f4:cc:94:0c:68:18:c3:
2d:bb:f9:bf:5b:1d:af:de:25:26:ee:b8:aa:b6:4c:
b9:fb:f5:b6:5a:e1:4f:c9:86:6f:e4:a2:71:27:33:
f1:e2:0a:99:1a:c0:90:33:f3:9d:fe:5f:db:31:a7:
e7:e6:68:62:64:ab:f1:b9:98:e9:d8:c4:6d:f6:f2:
de:88:4f:45:42:1f:b0:df:53:2b:ef:c1:61:d2:2d:
be:b9:e3:a1:45:a8:ae:f3:41:bf:3d:fb:94:8b:87:
e5:d5:b8:2e:ba:94:ac:f4:e0:d3:3d:e6:49:f8:82:
ba:d1:75:94:4e:4f:9a:c1:76:59:ce:c5:91:56:3a:
59:5d:ea:3b:06:9d:de:c2:2a:f2:a8:ab:02:67:f8:
4f:3b:89:29:24:ad:dd:17:0c:c0:58:f7:f7:2b:57:
95:bb:f0:41:f2:c6:b0:c1:bb:62:35:11:24:0c:93:
7b:1a:68:6f:fa:9e:e2:bd:92:e3:67:2a:04:59:9d:
b3:4b:4d:f3:ca:33:32:7d:46:69:99:eb:07:58:ad:
4f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:5F:A9:F4:30:7A:34:69:9A:D1:3A:11:53:0E:25:94:8B:67:A4:8F
X509v3 Authority Key Identifier:
keyid:8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:bc:f7:12:6b:6f:96:57:08:e5:44:ad:4b:b9:33:4d:1d:d8:
0e:9a:4c:23:b7:71:f9:c8:d9:c8:e4:f6:c7:54:73:b8:99:a2:
44:5f:b2:1f:43:d8:93:9c:d9:41:62:f8:8b:dc:60:31:50:f7:
c6:c8:52:17:77:ba:bb:e0:b7:0c:8b:d0:a3:73:df:4a:05:49:
fb:16:ff:20:94:19:32:e1:f0:37:c1:e0:af:a0:50:7a:7c:90:
b7:c5:c2:b3:2d:06:00:c9:1f:9b:2d:58:79:fd:35:0e:17:9e:
44:a3:ed:60:19:8c:36:6a:5b:66:8e:60:c9:d2:0f:b1:a3:9d:
5d:6b:fa:f7:5e:2d:a0:0b:d9:ff:f9:18:30:8d:3b:86:ff:9a:
17:5a:1f:4e:b8:f9:80:a4:23:4e:4d:12:13:85:26:9e:16:e4:
5a:a2:32:fe:28:70:f1:9a:5a:02:f0:d1:6e:a9:5c:a8:df:0c:
af:09:a9:38:68:16:dd:68:7d:3b:ea:37:8b:f4:3d:5d:cd:98:
f8:d3:03:ba:e0:2c:1c:56:1f:48:6a:a3:4c:29:ff:42:da:d9:
5b:d0:01:b8:56:cd:1a:50:60:17:f1:bd:97:44:39:ef:ba:65:
ca:a1:de:e3:5d:0c:a7:98:c9:a1:a6:54:18:f0:6c:90:4e:1f:
5d:88:87:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvYqB18IfRS7Jx09DamPXjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYmQyNzNhMTQ1MzYxNjE1NTEyNjBkODQ4ZDc2ZmEyNjQ0
NmNkNDYwHhcNMjUwNjE0MTcwMDIzWhcNMjUwNjE1MTcwMDIzWjAzMTEwLwYDVQQD
EygyYjVmYTlmNDMwN2EzNDY5OWFkMTNhMTE1MzBlMjU5NDhiNjdhNDhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0CzXSLgjjMaS1w65zI4ecIa9XU4
EGlw/tOMWl0Z7Lxgj+AHY9AGuGdcrfcouj/x46WhbPTMlAxoGMMtu/m/Wx2v3iUm
7riqtky5+/W2WuFPyYZv5KJxJzPx4gqZGsCQM/Od/l/bMafn5mhiZKvxuZjp2MRt
9vLeiE9FQh+w31Mr78Fh0i2+ueOhRaiu80G/PfuUi4fl1bguupSs9ODTPeZJ+IK6
0XWUTk+awXZZzsWRVjpZXeo7Bp3ewiryqKsCZ/hPO4kpJK3dFwzAWPf3K1eVu/BB
8sawwbtiNREkDJN7Gmhv+p7ivZLjZyoEWZ2zS03zyjMyfUZpmesHWK1PeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCtfqfQwejRpmtE6EVMOJZSLZ6SPMB8GA1UdIwQY
MBaAFIu9JzoUU2FhVRJg2EjXb6JkRs1GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTcwbk9oUlRZV0ZWRW1EWVNOZHZvbVJHelVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9hNzMzZjYtMDlhZC00ZjFhLWEzNTct
ZTE2MjIwMzI5NmJiLzEvaTcwbk9oUlRZV0ZWRW1EWVNOZHZvbVJHelVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC9hNzMzZjYtMDlhZC00ZjFhLWEzNTctZTE2MjIwMzI5NmJi
LzEvaTcwbk9oUlRZV0ZWRW1EWVNOZHZvbVJHelVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXbz3Emtv
llcI5UStS7kzTR3YDppMI7dx+cjZyOT2x1RzuJmiRF+yH0PYk5zZQWL4i9xgMVD3
xshSF3e6u+C3DIvQo3PfSgVJ+xb/IJQZMuHwN8Hgr6BQenyQt8XCsy0GAMkfmy1Y
ef01DheeRKPtYBmMNmpbZo5gydIPsaOdXWv6914toAvZ//kYMI07hv+aF1ofTrj5
gKQjTk0SE4UmnhbkWqIy/ihw8ZpaAvDRbqlcqN8MrwmpOGgW3Wh9O+o3i/Q9Xc2Y
+NMDuuAsHFYfSGqjTCn/QtrZW9ABuFbNGlBgF/G9l0Q577plyqHe410Mp5jJoaZU
GPBskE4fXYiHMQ==
-----END CERTIFICATE-----
Generated at Sun Jun 15 03:13:46 2025 by rpki-client