Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
File: rfDfdxFHQeE6F9chPmlWv5YntVg.mft (raw, json)
Hash identifier: psWuhkm+VhQRJxac71wAIl0rVXZ5RJBt10sCgZpYXMU=
Subject key identifier: 51:8F:F1:83:8E:0D:F2:BD:D4:5D:97:74:03:47:ED:FA:CC:A8:80:2B
Authority key identifier: AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
Certificate issuer: /CN=adf0df77114741e13a17d7213e6956bf9627b558
Certificate serial: 01976C2ABE8BD052840C5649119AA738404C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
Manifest number: 1442
Signing time: Sat 14 Jun 2025 02:00:29 +0000
Manifest this update: Sat 14 Jun 2025 02:00:29 +0000
Manifest next update: Sun 15 Jun 2025 02:00:29 +0000
Files and hashes: 1: 53yfdczv1so3h7m6p_kJKapwYb0.roa (hash: 8fm3UETmOMmwp3oE4jpSkcDNkIYvAEXotF2eKRsyjLw=)
2: rfDfdxFHQeE6F9chPmlWv5YntVg.crl (hash: sfowhps5RB0Fix+MHUEAEB76Y6VKvxLqhpjQ08RavWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:be:8b:d0:52:84:0c:56:49:11:9a:a7:38:40:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf0df77114741e13a17d7213e6956bf9627b558
Validity
Not Before: Jun 14 02:00:29 2025 GMT
Not After : Jun 15 02:00:29 2025 GMT
Subject: CN=518ff1838e0df2bdd45d97740347edfacca8802b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7f:c6:17:1a:de:e2:a3:2f:f7:e1:bd:81:ae:
32:91:ff:ac:1a:6a:de:ec:b8:d4:48:55:ce:05:eb:
48:f6:cc:22:c6:34:6c:60:17:23:67:06:5d:2b:02:
3d:0c:96:f7:ff:c8:6d:7e:67:47:a0:4f:d8:2b:77:
bd:52:25:47:89:2b:98:21:ac:76:ca:78:cb:43:e1:
ef:88:a9:c7:61:c5:08:fd:27:33:5a:87:16:b4:2f:
31:af:8e:8a:ce:da:41:43:7f:f1:1d:ee:07:63:59:
d2:79:3e:4c:2e:f4:37:b1:14:ce:2a:a1:37:cc:53:
e3:eb:90:bf:7f:1e:91:fa:9f:ee:aa:51:6d:b4:07:
02:17:f4:fc:10:3b:8c:de:ac:45:dd:f3:0f:66:3b:
92:aa:68:00:16:c8:78:45:6f:4f:31:8b:e5:9d:75:
ce:fc:30:b9:9e:7c:a0:d9:8c:25:5d:5e:c8:04:51:
7c:c0:c3:0e:e0:d2:cd:a6:dd:6b:15:69:43:67:06:
4b:33:d0:0f:cf:52:97:d1:52:2e:e0:72:2d:60:8d:
a3:bc:fb:a5:ad:90:cb:e9:64:c3:17:94:7c:b5:1f:
d5:d4:37:b6:3f:33:e4:c5:8c:31:c2:1b:3f:ad:75:
8e:aa:bb:60:70:7b:7e:66:54:12:bc:ce:29:14:ff:
3c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:8F:F1:83:8E:0D:F2:BD:D4:5D:97:74:03:47:ED:FA:CC:A8:80:2B
X509v3 Authority Key Identifier:
keyid:AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:9f:4c:61:8a:3e:89:a1:aa:3b:ba:a4:ac:da:d3:8a:82:b3:
d2:7f:a1:9b:f4:ae:de:30:2d:8d:fd:8b:82:69:76:b1:78:bd:
19:85:8b:d8:7f:7f:b6:f4:fa:73:8b:f2:df:94:ee:42:54:21:
20:0b:e0:b5:89:3a:cc:7c:11:65:05:12:50:7c:ad:ca:c6:20:
3a:6a:68:3d:c3:28:46:73:23:64:bc:30:51:3b:28:96:6e:61:
47:7d:85:44:ef:59:46:87:25:7a:7a:5d:90:4f:16:d6:bd:05:
7d:11:61:17:dd:13:6a:26:63:65:34:d3:3a:af:8e:8a:ad:f3:
11:f7:e5:97:72:12:89:2f:24:e4:da:9d:a9:a3:69:9d:39:37:
72:fa:b2:04:e1:63:f8:a0:3b:c9:8d:c9:0a:89:69:f4:71:c8:
c7:33:31:97:e4:f1:0e:9b:e7:82:7b:d7:a7:a7:85:0d:7b:01:
81:13:37:29:53:80:be:a7:f0:e5:e2:4f:03:ba:04:b5:9a:95:
06:f5:75:b2:d1:69:bd:9d:01:93:5a:4e:32:74:04:84:cd:be:
c8:57:45:65:5d:21:8c:54:b2:93:5a:fd:1b:bd:8d:72:5e:69:
c0:27:3c:eb:2d:10:1d:db:24:c9:fd:98:7b:b3:1a:34:94:e8:
10:0a:1d:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsKr6L0FKEDFZJEZqnOEBMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkZjBkZjc3MTE0NzQxZTEzYTE3ZDcyMTNlNjk1NmJmOTYy
N2I1NTgwHhcNMjUwNjE0MDIwMDI5WhcNMjUwNjE1MDIwMDI5WjAzMTEwLwYDVQQD
Eyg1MThmZjE4MzhlMGRmMmJkZDQ1ZDk3NzQwMzQ3ZWRmYWNjYTg4MDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuX/GFxre4qMv9+G9ga4ykf+sGmre
7LjUSFXOBetI9swixjRsYBcjZwZdKwI9DJb3/8htfmdHoE/YK3e9UiVHiSuYIax2
ynjLQ+HviKnHYcUI/SczWocWtC8xr46KztpBQ3/xHe4HY1nSeT5MLvQ3sRTOKqE3
zFPj65C/fx6R+p/uqlFttAcCF/T8EDuM3qxF3fMPZjuSqmgAFsh4RW9PMYvlnXXO
/DC5nnyg2YwlXV7IBFF8wMMO4NLNpt1rFWlDZwZLM9APz1KX0VIu4HItYI2jvPul
rZDL6WTDF5R8tR/V1De2PzPkxYwxwhs/rXWOqrtgcHt+ZlQSvM4pFP88tQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFGP8YOODfK91F2XdANH7frMqIArMB8GA1UdIwQY
MBaAFK3w33cRR0HhOhfXIT5pVr+WJ7VYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9hMzBiZWEtOWU5My00MDkxLWI2ZTEt
ZTFlZjI3NzcyZWFmLzEvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9hMzBiZWEtOWU5My00MDkxLWI2ZTEtZTFlZjI3NzcyZWFm
LzEvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWZ9MYYo+
iaGqO7qkrNrTioKz0n+hm/Su3jAtjf2Lgml2sXi9GYWL2H9/tvT6c4vy35TuQlQh
IAvgtYk6zHwRZQUSUHytysYgOmpoPcMoRnMjZLwwUTsolm5hR32FRO9ZRoclenpd
kE8W1r0FfRFhF90TaiZjZTTTOq+Oiq3zEffll3ISiS8k5NqdqaNpnTk3cvqyBOFj
+KA7yY3JColp9HHIxzMxl+TxDpvngnvXp6eFDXsBgRM3KVOAvqfw5eJPA7oEtZqV
BvV1stFpvZ0Bk1pOMnQEhM2+yFdFZV0hjFSyk1r9G72Ncl5pwCc86y0QHdskyf2Y
e7MaNJToEAodIw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:48:55 2025 by rpki-client