Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
File: gBbMsax3x8AqTt5gbfH375c6C_k.mft (raw, json)
Hash identifier: 6AJkHa27HEZdTvd3SkRzNLIyq+igIBFMkPlwYZmnZDE=
Subject key identifier: B2:E2:45:80:08:CA:8F:41:56:53:A8:46:E6:6D:0C:01:40:A0:BB:CA
Authority key identifier: 80:16:CC:B1:AC:77:C7:C0:2A:4E:DE:60:6D:F1:F7:EF:97:3A:0B:F9
Certificate issuer: /CN=8016ccb1ac77c7c02a4ede606df1f7ef973a0bf9
Certificate serial: 019768BBF20B44C46D1DF0E0419E9471DF2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
Manifest number: 1039
Signing time: Fri 13 Jun 2025 10:00:37 +0000
Manifest this update: Fri 13 Jun 2025 10:00:37 +0000
Manifest next update: Sat 14 Jun 2025 10:00:37 +0000
Files and hashes: 1: Ax6Vm0VTZQY0FLe1VYl0Sd0_sqo.roa (hash: X5Han0rbC/tYWBQcqeDkAJUru7qclM/G19tIpVV4C6g=)
2: gBbMsax3x8AqTt5gbfH375c6C_k.crl (hash: zv1ciIVxHIIg/lIpD4czcURavPrFc0UUsK+3oFQImNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 10:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:bb:f2:0b:44:c4:6d:1d:f0:e0:41:9e:94:71:df:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8016ccb1ac77c7c02a4ede606df1f7ef973a0bf9
Validity
Not Before: Jun 13 10:00:37 2025 GMT
Not After : Jun 14 10:00:37 2025 GMT
Subject: CN=b2e2458008ca8f415653a846e66d0c0140a0bbca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c1:34:e6:14:a2:50:33:46:f5:d1:7e:8e:c7:
a2:87:4a:cb:f8:2f:d9:51:83:f8:e0:61:1b:51:a9:
19:a4:c6:7e:3b:12:89:07:34:fc:e0:54:31:69:cd:
c2:c8:12:58:11:7c:36:8a:8e:46:d1:85:f4:4b:fb:
29:7f:ce:7a:09:43:87:94:0c:b7:a2:f1:99:36:6f:
8d:d8:9d:73:59:3b:1c:3e:fb:f4:77:9c:46:c5:5f:
26:ce:46:b8:0e:4e:fb:f9:b6:60:dd:17:d0:9e:41:
6b:5f:de:8d:71:02:54:5b:7c:70:6d:33:3b:5b:ff:
0c:b7:23:09:65:99:1a:70:f0:70:fe:10:7b:03:70:
d7:9d:24:b7:d5:7f:c6:c9:92:95:40:49:22:f7:5b:
70:d6:f9:6b:f3:34:8d:4e:71:20:28:93:02:67:4a:
56:ef:d9:72:7c:7b:b5:81:52:e1:67:2b:98:0d:27:
5a:8c:eb:21:aa:6a:6a:4a:25:8e:65:b5:18:57:63:
db:95:3e:29:d0:8b:4b:50:a3:b8:b9:18:1f:b8:12:
a8:ad:59:df:8e:57:09:4c:95:3d:e9:94:e1:6d:94:
67:5b:f3:c5:54:0e:e2:5e:7a:ee:46:b3:b2:ff:83:
60:e9:1f:97:7f:ab:bf:c8:59:c1:5c:95:ee:eb:4b:
f1:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E2:45:80:08:CA:8F:41:56:53:A8:46:E6:6D:0C:01:40:A0:BB:CA
X509v3 Authority Key Identifier:
keyid:80:16:CC:B1:AC:77:C7:C0:2A:4E:DE:60:6D:F1:F7:EF:97:3A:0B:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:89:ad:f2:0f:fe:2e:91:8e:d4:18:b2:14:dd:49:f7:76:e7:
23:12:1b:fe:e9:68:6b:e2:ab:d1:e7:d1:86:c9:29:72:bf:a4:
fe:94:ef:f9:c3:9a:9b:f3:49:0d:7c:1c:2e:f3:c0:4d:1e:c0:
bd:20:6d:f1:63:f3:f8:56:2a:72:77:a3:4c:39:f0:42:5c:85:
23:f8:73:0e:7a:0b:ac:8e:46:a9:9b:a8:1d:19:45:cf:76:eb:
39:b3:e2:e0:3e:03:bb:0a:31:dc:45:b4:37:12:57:57:fe:0e:
cc:1d:c1:b8:b3:50:bf:d2:71:05:06:eb:c1:77:28:a6:a9:5d:
0b:16:59:48:b6:ff:57:e2:50:7b:0f:a8:24:2e:60:1d:32:b5:
b9:94:e5:4c:c6:af:59:06:77:df:c5:03:aa:fd:c4:6a:79:f9:
2a:ea:a9:50:3d:dc:06:05:c5:86:b1:88:42:4e:7f:22:28:da:
a0:74:78:2f:cd:c2:73:1a:28:cc:fb:d5:66:27:e9:de:70:01:
08:f0:c1:a0:94:f6:b9:80:5e:03:b8:1a:0d:77:b3:37:c5:ad:
9d:8b:6f:5a:93:a5:ef:2c:6f:52:30:26:78:b2:9c:43:c7:43:
86:fe:fd:42:dd:3c:73:b0:21:49:e9:20:ef:b9:8e:dd:5f:7b:
ae:f4:28:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdou/ILRMRtHfDgQZ6Ucd8tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwMTZjY2IxYWM3N2M3YzAyYTRlZGU2MDZkZjFmN2VmOTcz
YTBiZjkwHhcNMjUwNjEzMTAwMDM3WhcNMjUwNjE0MTAwMDM3WjAzMTEwLwYDVQQD
EyhiMmUyNDU4MDA4Y2E4ZjQxNTY1M2E4NDZlNjZkMGMwMTQwYTBiYmNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcE05hSiUDNG9dF+jseih0rL+C/Z
UYP44GEbUakZpMZ+OxKJBzT84FQxac3CyBJYEXw2io5G0YX0S/spf856CUOHlAy3
ovGZNm+N2J1zWTscPvv0d5xGxV8mzka4Dk77+bZg3RfQnkFrX96NcQJUW3xwbTM7
W/8MtyMJZZkacPBw/hB7A3DXnSS31X/GyZKVQEki91tw1vlr8zSNTnEgKJMCZ0pW
79lyfHu1gVLhZyuYDSdajOshqmpqSiWOZbUYV2PblT4p0ItLUKO4uRgfuBKorVnf
jlcJTJU96ZThbZRnW/PFVA7iXnruRrOy/4Ng6R+Xf6u/yFnBXJXu60vx4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLLiRYAIyo9BVlOoRuZtDAFAoLvKMB8GA1UdIwQY
MBaAFIAWzLGsd8fAKk7eYG3x9++XOgv5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0JiTXNheDN4OEFxVHQ1Z2JmSDM3NWM2Q19rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9hYmMwZjgtMWYxZi00YzY1LWJiODUt
YTk2NmFlODU2OTI2LzEvZ0JiTXNheDN4OEFxVHQ1Z2JmSDM3NWM2Q19rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC9hYmMwZjgtMWYxZi00YzY1LWJiODUtYTk2NmFlODU2OTI2
LzEvZ0JiTXNheDN4OEFxVHQ1Z2JmSDM3NWM2Q19rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJYmt8g/+
LpGO1BiyFN1J93bnIxIb/uloa+Kr0efRhskpcr+k/pTv+cOam/NJDXwcLvPATR7A
vSBt8WPz+FYqcnejTDnwQlyFI/hzDnoLrI5GqZuoHRlFz3brObPi4D4Duwox3EW0
NxJXV/4OzB3BuLNQv9JxBQbrwXcopqldCxZZSLb/V+JQew+oJC5gHTK1uZTlTMav
WQZ338UDqv3Eann5KuqpUD3cBgXFhrGIQk5/IijaoHR4L83CcxoozPvVZifp3nAB
CPDBoJT2uYBeA7gaDXezN8WtnYtvWpOl7yxvUjAmeLKcQ8dDhv79Qt08c7AhSekg
77mO3V97rvQoiw==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:14:47 2025 by rpki-client