Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
File: un1KwTROw43OmXaNeKEU6_fxfYU.mft (raw, json)
Hash identifier: fF7MNhW6mZvvkVOW3JcXUzI9/bMz5vxoSLUDrkD9wic=
Subject key identifier: 31:85:58:17:61:09:93:AA:C2:C7:19:E3:6F:9D:6C:4E:D5:EF:B5:6B
Authority key identifier: BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85
Certificate issuer: /CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85
Certificate serial: 0197715171DD0E027FBE51033D596BA0AB1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
Manifest number: 0C4A
Signing time: Sun 15 Jun 2025 02:00:52 +0000
Manifest this update: Sun 15 Jun 2025 02:00:52 +0000
Manifest next update: Mon 16 Jun 2025 02:00:52 +0000
Files and hashes: 1: eJvxqWQVuJlIAcOu0zuhq-FEIwc.roa (hash: T9Btt+1WHrBsFsD5c6tC5d0RHMAv0qfav0ae3k59Hwg=)
2: un1KwTROw43OmXaNeKEU6_fxfYU.crl (hash: nhhz6nG0JTKP6DntgtJ5l0uyi4MCTDiu30/17UxjvZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:51:71:dd:0e:02:7f:be:51:03:3d:59:6b:a0:ab:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85
Validity
Not Before: Jun 15 02:00:52 2025 GMT
Not After : Jun 16 02:00:52 2025 GMT
Subject: CN=31855817610993aac2c719e36f9d6c4ed5efb56b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b2:56:6d:0c:33:69:35:d8:a4:a2:bd:0c:a7:
c6:1f:eb:38:ae:26:f9:f7:67:92:5c:73:f4:a3:32:
64:92:35:f2:0c:43:47:44:8c:c6:ed:96:f6:ef:22:
c8:df:f1:78:8c:99:b1:46:7a:aa:8a:1b:4b:f4:e5:
5f:1e:cb:05:e3:7f:19:db:b6:f5:42:5d:2a:d6:0b:
a7:0d:bc:eb:5a:19:0c:40:da:ee:d8:97:27:24:1f:
1c:67:7a:6f:52:c9:91:6d:fb:79:bc:af:d2:3d:82:
d8:b4:ee:ca:96:ec:a5:fd:f1:29:98:30:2e:9e:06:
c4:fa:87:09:a9:90:6a:95:99:73:ea:79:a1:b2:3d:
49:e5:36:21:c8:a2:a3:d7:0b:56:d7:a8:d2:1d:4e:
37:1d:96:c8:1b:32:65:d8:cb:30:65:f6:57:db:86:
06:05:98:eb:64:b1:54:3d:67:fd:4f:8e:8b:84:0e:
bf:ab:09:7a:40:97:48:70:1c:77:e2:d7:4f:a2:d3:
3c:96:dc:84:21:af:0b:60:41:fa:51:e8:ca:a5:c9:
32:c3:25:96:f1:6c:23:7a:1f:9d:7d:4f:97:f1:ab:
31:84:51:69:7b:bb:80:93:32:b5:aa:36:35:a7:fc:
71:b0:b6:38:0c:eb:4f:53:b0:9e:ac:f9:a8:a3:5c:
7a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:85:58:17:61:09:93:AA:C2:C7:19:E3:6F:9D:6C:4E:D5:EF:B5:6B
X509v3 Authority Key Identifier:
keyid:BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:d6:2f:c9:70:45:f8:78:5f:8d:85:34:9d:56:6a:f8:19:68:
d8:92:68:a5:e1:28:93:64:19:2c:2a:81:fc:5a:d0:2e:b1:fe:
91:b3:a6:4c:45:d8:19:f9:be:4b:03:70:fc:ba:49:a7:85:12:
3c:4a:4f:cb:a3:e0:d1:94:4b:58:af:35:27:70:dd:31:78:2d:
60:89:88:57:e4:cc:12:ff:42:22:f6:2d:68:cd:d4:20:7f:74:
20:1b:fc:7a:9b:e2:e9:26:7f:24:f1:a6:36:05:38:94:32:87:
72:f2:10:7c:0e:88:b8:23:1c:e8:47:95:da:c5:18:17:7d:e8:
98:dd:74:d9:1c:6a:11:81:1a:eb:e1:99:46:33:d9:72:f6:af:
9a:82:13:ca:3c:99:16:08:49:9c:b3:13:d3:cf:75:a8:0e:5d:
2a:26:bf:88:c1:ee:c0:94:23:23:9b:90:99:9e:0c:50:25:49:
41:d9:d1:6c:2f:52:f0:83:57:00:f9:c6:f4:34:18:a0:33:6b:
21:97:6e:eb:10:01:57:5f:bf:a1:56:e2:70:d7:5d:4f:02:77:
f0:36:e8:75:d8:7d:b6:4d:ca:6f:4d:a3:f4:58:5f:31:5d:04:
5b:61:d4:19:eb:e2:93:db:b4:65:ac:f8:e8:0a:ea:72:c5:df:
1d:c9:52:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdxUXHdDgJ/vlEDPVlroKseMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhN2Q0YWMxMzQ0ZWMzOGRjZTk5NzY4ZDc4YTExNGViZjdm
MTdkODUwHhcNMjUwNjE1MDIwMDUyWhcNMjUwNjE2MDIwMDUyWjAzMTEwLwYDVQQD
EygzMTg1NTgxNzYxMDk5M2FhYzJjNzE5ZTM2ZjlkNmM0ZWQ1ZWZiNTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl7JWbQwzaTXYpKK9DKfGH+s4rib5
92eSXHP0ozJkkjXyDENHRIzG7Zb27yLI3/F4jJmxRnqqihtL9OVfHssF438Z27b1
Ql0q1gunDbzrWhkMQNru2JcnJB8cZ3pvUsmRbft5vK/SPYLYtO7Kluyl/fEpmDAu
ngbE+ocJqZBqlZlz6nmhsj1J5TYhyKKj1wtW16jSHU43HZbIGzJl2MswZfZX24YG
BZjrZLFUPWf9T46LhA6/qwl6QJdIcBx34tdPotM8ltyEIa8LYEH6UejKpckywyWW
8Wwjeh+dfU+X8asxhFFpe7uAkzK1qjY1p/xxsLY4DOtPU7CerPmoo1x6AQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDGFWBdhCZOqwscZ42+dbE7V77VrMB8GA1UdIwQY
MBaAFLp9SsE0TsONzpl2jXihFOv38X2FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9iNjYxMjUtNjg0NC00YTg3LTliYjUt
YWY0MjYyM2VhNDMxLzEvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9iNjYxMjUtNjg0NC00YTg3LTliYjUtYWY0MjYyM2VhNDMx
LzEvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb9YvyXBF
+HhfjYU0nVZq+Blo2JJopeEok2QZLCqB/FrQLrH+kbOmTEXYGfm+SwNw/LpJp4US
PEpPy6Pg0ZRLWK81J3DdMXgtYImIV+TMEv9CIvYtaM3UIH90IBv8epvi6SZ/JPGm
NgU4lDKHcvIQfA6IuCMc6EeV2sUYF33omN102RxqEYEa6+GZRjPZcvavmoITyjyZ
FghJnLMT0891qA5dKia/iMHuwJQjI5uQmZ4MUCVJQdnRbC9S8INXAPnG9DQYoDNr
IZdu6xABV1+/oVbicNddTwJ38Dboddh9tk3Kb02j9FhfMV0EW2HUGevik9u0Zaz4
6ArqcsXfHclS1A==
-----END CERTIFICATE-----
Generated at Sun Jun 15 04:08:24 2025 by rpki-client