Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.mft
File: tA2EnMQ7cy2rZkH8b9Wk2zotuUc.mft (raw, json)
Hash identifier: 5C9gQA//cC1eVPrU1Uz+L8a8bDnRcgUE0AAKnXT+HoM=
Subject key identifier: E4:DB:28:52:0D:37:95:2E:9A:68:EF:A8:56:E6:91:49:75:81:D0:17
Authority key identifier: B4:0D:84:9C:C4:3B:73:2D:AB:66:41:FC:6F:D5:A4:DB:3A:2D:B9:47
Certificate issuer: /CN=b40d849cc43b732dab6641fc6fd5a4db3a2db947
Certificate serial: 01984964ED01B41E669D5F0CC723BF863C38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.mft
Manifest number: 0999
Signing time: Sun 27 Jul 2025 01:00:07 +0000
Manifest this update: Sun 27 Jul 2025 01:00:07 +0000
Manifest next update: Mon 28 Jul 2025 01:00:07 +0000
Files and hashes: 1: tA2EnMQ7cy2rZkH8b9Wk2zotuUc.crl (hash: nU1g0T251qcVXcJvBDnlIHRqDMARkvr5X7gay6d2mrM=)
2: x7aEXzfMRzlzp6VorB64R028Jvk.roa (hash: 3aOt7CTs1p/zJJSbWQR2//U36Y0+Zh2Kxl00BzPCEXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:64:ed:01:b4:1e:66:9d:5f:0c:c7:23:bf:86:3c:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40d849cc43b732dab6641fc6fd5a4db3a2db947
Validity
Not Before: Jul 27 01:00:07 2025 GMT
Not After : Jul 28 01:00:07 2025 GMT
Subject: CN=e4db28520d37952e9a68efa856e691497581d017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:96:1c:1d:25:93:ea:15:c0:80:94:a5:ea:94:
b4:96:2e:3d:b8:44:a1:12:14:2f:6b:aa:7d:3c:c3:
de:c4:0e:07:26:df:d0:5f:a4:3e:6b:ad:2a:1d:b8:
9b:fa:b5:65:38:73:b2:19:f2:3a:cd:60:19:2e:ed:
5b:bf:bf:f6:e3:f5:b3:c7:9b:3e:d7:9c:30:e5:c7:
d9:dc:ae:5a:84:cf:19:ab:61:36:0d:cc:66:ae:eb:
4e:2a:f7:91:42:46:14:2c:67:6b:f0:16:dc:d4:4a:
9c:b3:8d:6f:49:91:a1:d7:a1:03:d7:5f:0f:57:96:
e5:38:de:68:c6:86:39:ea:fc:4e:cd:fc:24:4a:90:
37:1a:f4:4f:b8:d7:2c:08:a6:e3:6e:ca:0a:00:90:
0c:ed:8c:fd:e1:da:30:b6:07:00:cf:c5:6e:16:6b:
12:b9:9c:14:bb:27:34:ab:24:22:44:25:00:68:2c:
aa:b7:47:47:00:c3:fa:5d:1a:8a:3a:45:20:4b:29:
8b:81:e4:c0:b9:f2:c9:6c:bf:ff:71:af:75:74:63:
ec:07:12:0a:89:da:61:39:6a:2d:e1:e9:14:f5:3c:
57:30:55:4c:59:c7:28:6d:6a:38:ab:12:b0:51:05:
e9:82:0a:1c:6c:9a:70:0b:8c:9f:6f:b5:88:c0:da:
80:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:DB:28:52:0D:37:95:2E:9A:68:EF:A8:56:E6:91:49:75:81:D0:17
X509v3 Authority Key Identifier:
keyid:B4:0D:84:9C:C4:3B:73:2D:AB:66:41:FC:6F:D5:A4:DB:3A:2D:B9:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:1d:54:46:c3:72:e8:9d:1c:11:db:ce:cc:fe:fe:54:10:db:
3c:5c:ff:06:f0:07:f6:53:6d:25:d7:63:2a:bc:08:a0:f4:97:
6b:bd:0f:ee:b8:eb:0c:dc:34:a6:57:c8:bf:0d:5d:b6:43:74:
40:53:8a:26:df:2f:bb:47:bf:c2:df:64:87:d8:4e:16:c3:e4:
94:0b:92:07:2f:b1:f4:7f:cf:ef:c8:23:fe:68:f9:a5:2e:b7:
fa:f5:89:ac:b6:6d:0e:31:3a:7f:7a:0a:88:30:6c:bb:72:33:
a7:e7:62:db:7b:a0:48:c9:2b:7b:21:85:e2:0b:e1:3b:72:83:
2b:65:56:75:c5:94:da:3b:67:06:73:10:57:e6:a9:ca:4f:b0:
bc:92:52:0f:7f:1d:42:bc:ee:f9:d6:44:af:90:ab:64:55:53:
50:cc:d2:85:cd:d8:33:36:10:e9:c7:76:8b:8d:c7:d6:ce:bb:
6d:d1:7b:9f:65:e3:73:97:c0:59:a6:4e:32:1c:59:b5:12:b4:
e5:1d:18:d0:ab:ab:b4:fa:2a:22:b0:26:76:41:ec:ec:5f:c6:
d6:45:6d:26:91:42:81:1b:66:21:a9:dd:ef:ee:1c:b4:33:5b:
73:8f:ef:ab:d7:df:b6:23:a4:fa:4f:e4:61:ba:e3:89:a8:8c:
6e:0a:2c:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhJZO0BtB5mnV8MxyO/hjw4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MGQ4NDljYzQzYjczMmRhYjY2NDFmYzZmZDVhNGRiM2Ey
ZGI5NDcwHhcNMjUwNzI3MDEwMDA3WhcNMjUwNzI4MDEwMDA3WjAzMTEwLwYDVQQD
EyhlNGRiMjg1MjBkMzc5NTJlOWE2OGVmYTg1NmU2OTE0OTc1ODFkMDE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnJYcHSWT6hXAgJSl6pS0li49uESh
EhQva6p9PMPexA4HJt/QX6Q+a60qHbib+rVlOHOyGfI6zWAZLu1bv7/24/Wzx5s+
15ww5cfZ3K5ahM8Zq2E2DcxmrutOKveRQkYULGdr8Bbc1Eqcs41vSZGh16ED118P
V5blON5oxoY56vxOzfwkSpA3GvRPuNcsCKbjbsoKAJAM7Yz94dowtgcAz8VuFmsS
uZwUuyc0qyQiRCUAaCyqt0dHAMP6XRqKOkUgSymLgeTAufLJbL//ca91dGPsBxIK
idphOWot4ekU9TxXMFVMWccobWo4qxKwUQXpggocbJpwC4yfb7WIwNqAGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOTbKFINN5UummjvqFbmkUl1gdAXMB8GA1UdIwQY
MBaAFLQNhJzEO3Mtq2ZB/G/VpNs6LblHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEEyRW5NUTdjeTJyWmtIOGI5V2syem90dVVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC8xMzRjY2ItYjBhYi00NDZiLTgxNzIt
NjJlMjdjZDFlOTc1LzEvdEEyRW5NUTdjeTJyWmtIOGI5V2syem90dVVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC8xMzRjY2ItYjBhYi00NDZiLTgxNzItNjJlMjdjZDFlOTc1
LzEvdEEyRW5NUTdjeTJyWmtIOGI5V2syem90dVVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsx1URsNy
6J0cEdvOzP7+VBDbPFz/BvAH9lNtJddjKrwIoPSXa70P7rjrDNw0plfIvw1dtkN0
QFOKJt8vu0e/wt9kh9hOFsPklAuSBy+x9H/P78gj/mj5pS63+vWJrLZtDjE6f3oK
iDBsu3Izp+di23ugSMkreyGF4gvhO3KDK2VWdcWU2jtnBnMQV+apyk+wvJJSD38d
Qrzu+dZEr5CrZFVTUMzShc3YMzYQ6cd2i43H1s67bdF7n2Xjc5fAWaZOMhxZtRK0
5R0Y0KurtPoqIrAmdkHs7F/G1kVtJpFCgRtmIand7+4ctDNbc4/vq9fftiOk+k/k
YbrjiaiMbgosnQ==
-----END CERTIFICATE-----
Generated at Sun Jul 27 08:47:35 2025 by rpki-client