Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
File: hst0KgO8nIVQcheiUgTf_4L8zfk.mft (raw, json)
Hash identifier: ZCUqwLGaio3h0K/14yO7fByXOt1NDr2KpgP95KZkz3A=
Subject key identifier: F8:23:FB:54:17:BD:58:97:74:68:EC:DB:8A:EB:E9:DF:47:CE:AF:81
Authority key identifier: 86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
Certificate issuer: /CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Certificate serial: 01976C2B2F6BB3CEA7E31B50CA66DC035D63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
Manifest number: 0E9B
Signing time: Sat 14 Jun 2025 02:00:58 +0000
Manifest this update: Sat 14 Jun 2025 02:00:58 +0000
Manifest next update: Sun 15 Jun 2025 02:00:58 +0000
Files and hashes: 1: 1-TKHNCKbZE8g4XJcuPLU9wUNwXw.roa (hash: 4YE3N5IWvrJIb1gbK5UKUvbBqNqAEHWjC5reIu6mjb8=)
2: KPSPKR5CERt24RgHkaAIVOQ-_3Y.roa (hash: /B2g+d8SvUFH1wq4gYFhblNg4apBCw0hfFmzBcRbekw=)
3: bFD1sjNrlT8-Exv5RMapq_1KPJ0.roa (hash: dms0tmgxNyDbB9rboVPonFSAfotpbIdMya/cvQRCIY0=)
4: hst0KgO8nIVQcheiUgTf_4L8zfk.crl (hash: cDuao5dh3NJu0tbz9sAeEeU6MpaL2zOZXqlIm3uaIHg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:2f:6b:b3:ce:a7:e3:1b:50:ca:66:dc:03:5d:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Validity
Not Before: Jun 14 02:00:58 2025 GMT
Not After : Jun 15 02:00:58 2025 GMT
Subject: CN=f823fb5417bd58977468ecdb8aebe9df47ceaf81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:60:c4:11:b0:20:4a:7b:f7:d7:5a:56:a3:44:
60:b3:b1:9d:21:36:75:84:8f:d7:5a:01:ce:ab:bb:
89:bf:95:d8:f2:01:7f:6f:63:11:73:98:34:ef:c2:
df:96:ee:a4:49:06:66:9a:f9:05:73:ae:82:c1:7c:
20:0d:a8:c4:7a:19:eb:b0:e0:51:a7:bd:b8:50:fc:
9b:f3:cc:49:90:7e:76:4f:61:11:49:be:e0:8c:0b:
fa:7a:5f:3e:77:bb:a9:c2:2d:0c:ba:89:4a:18:fe:
4e:1d:31:6d:57:a0:b2:74:44:06:22:f9:b4:88:64:
c5:3a:b0:54:7d:ab:32:b4:f8:d4:97:a2:62:0d:f4:
9e:34:92:a7:93:84:e1:2e:54:55:a3:c5:82:1a:0a:
a7:96:1c:14:b5:a8:49:99:58:88:66:4e:29:66:6b:
8b:3d:65:9f:a8:21:c5:05:0b:90:eb:65:8f:02:95:
33:a5:74:18:d6:af:d3:1e:4b:22:03:f1:8b:37:6d:
14:38:a5:0f:7d:9b:3d:b6:f4:55:c7:16:a5:07:8c:
3c:5c:e0:fb:47:ab:8d:42:c8:6a:49:f0:81:b9:54:
87:0e:ed:19:9a:fc:b9:7c:91:63:87:23:59:53:bf:
c0:23:f8:20:e2:c9:88:50:14:7f:3e:9b:a3:4d:65:
40:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:23:FB:54:17:BD:58:97:74:68:EC:DB:8A:EB:E9:DF:47:CE:AF:81
X509v3 Authority Key Identifier:
keyid:86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:63:c4:64:0e:0d:9e:6a:e2:9d:e7:72:5d:65:66:51:de:e6:
71:00:d5:4e:71:40:b0:52:26:f6:8d:3e:c9:88:3d:c1:90:7f:
38:27:d9:1f:84:23:0b:cd:1b:2e:29:f8:1a:f1:c7:8a:b8:6a:
d9:6f:29:35:73:48:c9:d5:ee:c4:2a:04:a3:99:16:87:85:8d:
f9:89:fc:3b:38:d6:62:a0:f6:69:64:02:f4:48:e9:f1:19:40:
10:4f:42:9f:00:e9:5e:73:6a:fb:62:73:e4:1d:f8:d4:c3:6d:
7c:1f:37:09:40:53:78:b5:c3:f5:77:b4:59:1f:2c:19:2a:72:
e8:e9:1c:07:2a:b1:68:38:88:8d:b8:d6:06:5a:f3:e6:83:b1:
75:f5:4f:97:03:5e:04:4e:27:45:66:21:5e:87:8c:ae:33:b5:
9e:ed:e4:22:0f:27:22:e9:c9:c9:b7:80:76:86:79:b7:28:c5:
61:05:01:96:3e:60:ff:d4:60:11:d6:8d:c0:af:08:36:53:a6:
84:c5:3c:8a:ce:12:ca:b4:7a:38:12:75:4c:92:58:09:f9:a8:
61:8c:cd:3c:47:80:1d:4d:4d:57:34:a6:e6:e6:f9:2b:c8:93:
72:a0:32:30:c8:65:a8:c7:17:d6:9b:1a:65:6c:18:5b:04:46:
e7:2e:a0:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsKy9rs86n4xtQymbcA11jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Y2I3NDJhMDNiYzljODU1MDcyMTdhMjUyMDRkZmZmODJm
Y2NkZjkwHhcNMjUwNjE0MDIwMDU4WhcNMjUwNjE1MDIwMDU4WjAzMTEwLwYDVQQD
EyhmODIzZmI1NDE3YmQ1ODk3NzQ2OGVjZGI4YWViZTlkZjQ3Y2VhZjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2DEEbAgSnv311pWo0Rgs7GdITZ1
hI/XWgHOq7uJv5XY8gF/b2MRc5g078Lflu6kSQZmmvkFc66CwXwgDajEehnrsOBR
p724UPyb88xJkH52T2ERSb7gjAv6el8+d7upwi0MuolKGP5OHTFtV6CydEQGIvm0
iGTFOrBUfasytPjUl6JiDfSeNJKnk4ThLlRVo8WCGgqnlhwUtahJmViIZk4pZmuL
PWWfqCHFBQuQ62WPApUzpXQY1q/THksiA/GLN20UOKUPfZs9tvRVxxalB4w8XOD7
R6uNQshqSfCBuVSHDu0Zmvy5fJFjhyNZU7/AI/gg4smIUBR/PpujTWVA+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPgj+1QXvViXdGjs24rr6d9Hzq+BMB8GA1UdIwQY
MBaAFIbLdCoDvJyFUHIXolIE3/+C/M35MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHN0MEtnTzhuSVZRY2hlaVVnVGZfNEw4emZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS83NjdhZTUtYjlhMi00OTkzLTgxYTgt
MDVmMThmYzIxMmE3LzEvaHN0MEtnTzhuSVZRY2hlaVVnVGZfNEw4emZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS83NjdhZTUtYjlhMi00OTkzLTgxYTgtMDVmMThmYzIxMmE3
LzEvaHN0MEtnTzhuSVZRY2hlaVVnVGZfNEw4emZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjmPEZA4N
nmrinedyXWVmUd7mcQDVTnFAsFIm9o0+yYg9wZB/OCfZH4QjC80bLin4GvHHirhq
2W8pNXNIydXuxCoEo5kWh4WN+Yn8OzjWYqD2aWQC9Ejp8RlAEE9CnwDpXnNq+2Jz
5B341MNtfB83CUBTeLXD9Xe0WR8sGSpy6OkcByqxaDiIjbjWBlrz5oOxdfVPlwNe
BE4nRWYhXoeMrjO1nu3kIg8nIunJybeAdoZ5tyjFYQUBlj5g/9RgEdaNwK8INlOm
hMU8is4SyrR6OBJ1TJJYCfmoYYzNPEeAHU1NVzSm5ub5K8iTcqAyMMhlqMcX1psa
ZWwYWwRG5y6gtg==
-----END CERTIFICATE-----
Generated at Sat Jun 14 12:20:43 2025 by rpki-client