Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
File: goiQPZDAHi1c4YeIBa1KktKK7ck.mft (raw, json)
Hash identifier: /IfeDLnezIPtfBAipIfe0t2dvkJf3bnjECplm3CZQG8=
Subject key identifier: 3B:EF:43:21:D4:D9:74:ED:BE:DC:31:AC:FB:E6:B9:58:7C:F5:DD:F9
Authority key identifier: 82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
Certificate issuer: /CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Certificate serial: 01977677A084D47F9C9EFB24E2EB1B1A4570
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
Manifest number: 0CE6
Signing time: Mon 16 Jun 2025 02:00:40 +0000
Manifest this update: Mon 16 Jun 2025 02:00:40 +0000
Manifest next update: Tue 17 Jun 2025 02:00:40 +0000
Files and hashes: 1: goiQPZDAHi1c4YeIBa1KktKK7ck.crl (hash: z3fEr+cfjjSHqIagrBReRjxYjXHeKuaqL7eCDxRmAzU=)
2: xs7enPVeNIMyt7yLlWdZQsBjc6E.roa (hash: Hl7Zc5f4P4RuVLf0+lM7s4f9NcFGJ5Df6CUhJF0dl6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 02:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:77:a0:84:d4:7f:9c:9e:fb:24:e2:eb:1b:1a:45:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Validity
Not Before: Jun 16 02:00:40 2025 GMT
Not After : Jun 17 02:00:40 2025 GMT
Subject: CN=3bef4321d4d974edbedc31acfbe6b9587cf5ddf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a5:e3:9d:7a:38:e1:40:a5:62:b3:78:17:7c:
f4:21:40:2f:07:90:1b:1a:7a:a3:98:58:77:7d:4a:
6f:b6:b4:80:f1:4b:a3:ef:2c:45:a4:c7:52:6e:d0:
1c:7c:03:eb:d1:99:fa:4e:6c:e1:32:23:65:2e:ac:
a5:f7:eb:16:a9:cb:46:1d:8d:dc:65:8c:d9:6c:24:
09:d5:47:9f:3f:7e:be:35:2f:e6:35:e3:11:62:a8:
9d:6c:e1:93:d7:42:15:db:48:8a:68:2a:7e:46:eb:
2b:ee:67:fc:f7:0c:a6:f5:31:02:b8:94:20:e4:c7:
3f:36:16:7b:85:79:50:50:a1:df:67:71:00:26:5e:
bb:8a:3b:6f:66:ce:5d:b4:85:31:b1:cb:94:ea:cc:
a7:2e:03:73:05:71:8a:11:38:f0:1f:5d:0b:3a:f7:
31:f7:5d:d8:95:40:21:42:65:2e:88:4f:2b:4b:ad:
82:7f:65:7b:bb:59:ce:d3:d4:a2:97:0d:92:78:3f:
0a:eb:53:09:73:8b:2d:79:1a:47:56:dc:0b:a7:ae:
00:5a:a7:aa:8d:94:cf:2e:4f:de:14:71:63:ac:05:
35:83:04:e3:94:3c:43:31:67:d4:5f:7c:f6:8e:30:
af:09:2b:d3:63:25:c3:7c:d9:5c:63:a4:e8:3d:72:
b2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:EF:43:21:D4:D9:74:ED:BE:DC:31:AC:FB:E6:B9:58:7C:F5:DD:F9
X509v3 Authority Key Identifier:
keyid:82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:bd:16:99:21:f0:dc:21:76:76:86:80:e6:04:2c:6c:cf:49:
c6:3d:71:b3:8c:8c:ac:84:41:74:71:86:87:41:1f:d2:d7:d4:
28:fe:2f:c0:d1:d6:db:38:26:b4:50:0a:83:51:d8:cc:5d:a7:
2d:07:47:3f:a6:ea:d5:10:6c:3e:4b:b3:e5:4f:b8:12:45:71:
0d:39:6a:01:ac:59:3d:53:e2:42:fe:6f:ef:1e:46:1c:f7:42:
e2:64:1c:e2:15:6e:ca:eb:73:df:98:27:41:bc:e9:89:34:24:
25:7d:29:87:e6:60:31:54:5b:25:e6:9b:2f:3a:db:58:cc:eb:
b9:7f:5c:8c:f2:ea:54:bf:fd:62:46:be:c0:bf:14:ae:42:5c:
09:c2:bc:cc:39:38:63:a3:12:9e:89:0a:e5:31:98:85:42:8a:
73:01:38:b4:89:d8:bf:88:37:0f:e8:06:a1:1d:8a:7d:21:68:
07:f2:b9:f3:9e:10:4f:a6:d8:33:0d:8b:a1:34:ef:d0:19:53:
71:c8:83:f1:8e:6c:bf:21:01:3d:83:58:84:86:c7:f9:04:d1:
f6:cd:6e:ea:f2:26:a6:54:dd:4c:c1:0b:c8:1f:87:0d:d4:2b:
ec:4b:0d:78:0b:52:e8:42:01:7a:24:a5:fb:ae:ae:24:03:87:
37:89:b4:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd2d6CE1H+cnvsk4usbGkVwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyODg5MDNkOTBjMDFlMmQ1Y2UxODc4ODA1YWQ0YTkyZDI4
YWVkYzkwHhcNMjUwNjE2MDIwMDQwWhcNMjUwNjE3MDIwMDQwWjAzMTEwLwYDVQQD
EygzYmVmNDMyMWQ0ZDk3NGVkYmVkYzMxYWNmYmU2Yjk1ODdjZjVkZGY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6XjnXo44UClYrN4F3z0IUAvB5Ab
GnqjmFh3fUpvtrSA8Uuj7yxFpMdSbtAcfAPr0Zn6TmzhMiNlLqyl9+sWqctGHY3c
ZYzZbCQJ1UefP36+NS/mNeMRYqidbOGT10IV20iKaCp+Rusr7mf89wym9TECuJQg
5Mc/NhZ7hXlQUKHfZ3EAJl67ijtvZs5dtIUxscuU6synLgNzBXGKETjwH10LOvcx
913YlUAhQmUuiE8rS62Cf2V7u1nO09Silw2SeD8K61MJc4steRpHVtwLp64AWqeq
jZTPLk/eFHFjrAU1gwTjlDxDMWfUX3z2jjCvCSvTYyXDfNlcY6ToPXKypwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDvvQyHU2XTtvtwxrPvmuVh89d35MB8GA1UdIwQY
MBaAFIKIkD2QwB4tXOGHiAWtSpLSiu3JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi84M2Y4MmQtMTU0NS00MDc0LTg2ODIt
YTFkZTU4YTNiMzViLzEvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi84M2Y4MmQtMTU0NS00MDc0LTg2ODItYTFkZTU4YTNiMzVi
LzEvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbL0WmSHw
3CF2doaA5gQsbM9Jxj1xs4yMrIRBdHGGh0Ef0tfUKP4vwNHW2zgmtFAKg1HYzF2n
LQdHP6bq1RBsPkuz5U+4EkVxDTlqAaxZPVPiQv5v7x5GHPdC4mQc4hVuyutz35gn
QbzpiTQkJX0ph+ZgMVRbJeabLzrbWMzruX9cjPLqVL/9Yka+wL8UrkJcCcK8zDk4
Y6MSnokK5TGYhUKKcwE4tInYv4g3D+gGoR2KfSFoB/K5854QT6bYMw2LoTTv0BlT
cciD8Y5svyEBPYNYhIbH+QTR9s1u6vImplTdTMELyB+HDdQr7EsNeAtS6EIBeiSl
+66uJAOHN4m0Sg==
-----END CERTIFICATE-----
Generated at Mon Jun 16 12:21:42 2025 by rpki-client