Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/36e065-a1f6-4e14-b2d7-61e54cfc2abc/1/h3XmQIuOBaqRS4dGNaR7e4IMbDI.mft
File: h3XmQIuOBaqRS4dGNaR7e4IMbDI.mft (raw, json)
Hash identifier: A2BsRg2XNaaXsl8yDH7NBMvryqVQArXcGHsgLhmLhM8=
Subject key identifier: 1D:87:FA:4F:57:05:6D:FC:AE:67:24:88:F1:61:41:B4:55:92:7E:B6
Authority key identifier: 87:75:E6:40:8B:8E:05:AA:91:4B:87:46:35:A4:7B:7B:82:0C:6C:32
Certificate issuer: /CN=8775e6408b8e05aa914b874635a47b7b820c6c32
Certificate serial: 019846D25D4C4DAD74158958DEC2681B73AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3XmQIuOBaqRS4dGNaR7e4IMbDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/36e065-a1f6-4e14-b2d7-61e54cfc2abc/1/h3XmQIuOBaqRS4dGNaR7e4IMbDI.mft
Manifest number: 01DB
Signing time: Sat 26 Jul 2025 13:00:48 +0000
Manifest this update: Sat 26 Jul 2025 13:00:48 +0000
Manifest next update: Sun 27 Jul 2025 13:00:48 +0000
Files and hashes: 1: JY1Ry82sD4kNWhz4gQuDnSIFpN8.roa (hash: 8elrrlaE2J0H4bGnc8sBg7PwEFKBgdvohUzIrvCFh2E=)
2: h3XmQIuOBaqRS4dGNaR7e4IMbDI.crl (hash: Tawq8j4Yg4ktrVPYzNjkpZofbJihshPmRPOrPsqQ8hM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/36e065-a1f6-4e14-b2d7-61e54cfc2abc/1/h3XmQIuOBaqRS4dGNaR7e4IMbDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/36e065-a1f6-4e14-b2d7-61e54cfc2abc/1/h3XmQIuOBaqRS4dGNaR7e4IMbDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3XmQIuOBaqRS4dGNaR7e4IMbDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:46:d2:5d:4c:4d:ad:74:15:89:58:de:c2:68:1b:73:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8775e6408b8e05aa914b874635a47b7b820c6c32
Validity
Not Before: Jul 26 13:00:48 2025 GMT
Not After : Jul 27 13:00:48 2025 GMT
Subject: CN=1d87fa4f57056dfcae672488f16141b455927eb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:da:d2:e7:0b:27:7a:96:4b:03:96:c6:91:6c:
5f:1f:90:3a:b0:58:5f:b4:b1:b3:cf:48:03:3e:d9:
5e:fd:23:7e:d0:05:9f:82:e5:98:77:48:52:71:9a:
70:8e:02:83:23:08:f3:fa:ec:ee:4c:e0:01:ae:05:
f8:53:ab:fb:51:20:66:bb:9c:aa:d5:02:c7:fc:3c:
88:eb:5a:fc:46:28:16:8e:55:6a:47:f0:26:51:c1:
ca:16:ae:db:a5:9e:03:0b:0d:66:a4:62:f7:b3:93:
a5:bc:4b:57:ce:53:0c:32:dd:5b:94:5b:20:d0:5b:
ad:27:55:1d:97:53:dd:ed:07:d8:df:b3:31:34:b0:
16:4e:39:84:e9:0c:48:e7:7b:8c:14:72:95:3f:2c:
32:46:97:d2:1f:13:e7:ea:9d:a2:89:2a:15:5b:ec:
8c:ed:70:10:67:f3:bd:8c:6d:d4:a6:71:04:1c:c0:
52:88:ae:49:e6:2c:d0:48:87:75:2b:9a:3e:c9:15:
55:01:99:e8:93:92:98:61:4f:00:22:77:6d:5c:0c:
93:29:06:9c:64:be:eb:2b:06:82:28:5e:9b:c8:a4:
44:15:27:a8:6e:37:18:59:a5:cb:0b:8d:3a:71:2c:
a5:b9:b2:61:9c:30:a3:c5:b3:9c:40:b0:5f:63:3c:
58:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:87:FA:4F:57:05:6D:FC:AE:67:24:88:F1:61:41:B4:55:92:7E:B6
X509v3 Authority Key Identifier:
keyid:87:75:E6:40:8B:8E:05:AA:91:4B:87:46:35:A4:7B:7B:82:0C:6C:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3XmQIuOBaqRS4dGNaR7e4IMbDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/36e065-a1f6-4e14-b2d7-61e54cfc2abc/1/h3XmQIuOBaqRS4dGNaR7e4IMbDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/36e065-a1f6-4e14-b2d7-61e54cfc2abc/1/h3XmQIuOBaqRS4dGNaR7e4IMbDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:93:52:a5:12:d0:d1:a2:d4:3f:a8:61:80:72:94:6b:d8:98:
48:8a:14:fd:68:fd:10:23:25:6b:dc:54:36:31:0a:32:c1:35:
d9:61:fe:5b:dd:67:56:e9:a1:f9:fc:0a:92:39:87:c4:d7:ac:
36:99:72:04:09:68:3d:d5:9b:c4:46:e7:c7:72:f8:8e:d2:b2:
f9:33:87:c8:92:2d:b9:b6:a3:f6:df:78:30:8c:89:bf:d0:a1:
22:1e:84:e7:38:63:b0:2c:9c:c5:83:b0:78:39:58:4a:80:5d:
b3:c0:23:a5:97:b9:85:1d:62:3b:71:ac:db:42:b9:93:27:9c:
2d:7c:79:22:b2:ba:54:25:c9:b0:99:32:95:86:87:e9:f4:ff:
86:95:ca:bf:c3:e4:1e:e3:1d:8c:fe:da:57:b8:22:ad:de:9d:
93:c5:de:61:c6:46:20:4b:1e:73:f5:3b:5c:62:60:f4:bd:ee:
2d:e8:93:30:e1:20:82:43:41:60:4b:73:c8:1c:2f:64:f4:f9:
e9:e7:38:f0:82:4b:6a:79:3c:7e:16:1e:e8:3f:9a:00:8a:80:
23:aa:82:26:e1:12:a3:15:4c:d3:ef:6d:99:5c:32:a4:1d:4e:
ef:49:e7:70:43:72:4b:20:86:62:0b:f5:01:3a:0e:c3:b2:7d:
ff:b5:10:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhG0l1MTa10FYlY3sJoG3OtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3NzVlNjQwOGI4ZTA1YWE5MTRiODc0NjM1YTQ3YjdiODIw
YzZjMzIwHhcNMjUwNzI2MTMwMDQ4WhcNMjUwNzI3MTMwMDQ4WjAzMTEwLwYDVQQD
EygxZDg3ZmE0ZjU3MDU2ZGZjYWU2NzI0ODhmMTYxNDFiNDU1OTI3ZWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7drS5wsnepZLA5bGkWxfH5A6sFhf
tLGzz0gDPtle/SN+0AWfguWYd0hScZpwjgKDIwjz+uzuTOABrgX4U6v7USBmu5yq
1QLH/DyI61r8RigWjlVqR/AmUcHKFq7bpZ4DCw1mpGL3s5OlvEtXzlMMMt1blFsg
0FutJ1Udl1Pd7QfY37MxNLAWTjmE6QxI53uMFHKVPywyRpfSHxPn6p2iiSoVW+yM
7XAQZ/O9jG3UpnEEHMBSiK5J5izQSId1K5o+yRVVAZnok5KYYU8AIndtXAyTKQac
ZL7rKwaCKF6byKREFSeobjcYWaXLC406cSylubJhnDCjxbOcQLBfYzxY2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB2H+k9XBW38rmckiPFhQbRVkn62MB8GA1UdIwQY
MBaAFId15kCLjgWqkUuHRjWke3uCDGwyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDNYbVFJdU9CYXFSUzRkR05hUjdlNElNYkRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi8zNmUwNjUtYTFmNi00ZTE0LWIyZDct
NjFlNTRjZmMyYWJjLzEvaDNYbVFJdU9CYXFSUzRkR05hUjdlNElNYkRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi8zNmUwNjUtYTFmNi00ZTE0LWIyZDctNjFlNTRjZmMyYWJj
LzEvaDNYbVFJdU9CYXFSUzRkR05hUjdlNElNYkRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAJNSpRLQ
0aLUP6hhgHKUa9iYSIoU/Wj9ECMla9xUNjEKMsE12WH+W91nVumh+fwKkjmHxNes
NplyBAloPdWbxEbnx3L4jtKy+TOHyJItubaj9t94MIyJv9ChIh6E5zhjsCycxYOw
eDlYSoBds8AjpZe5hR1iO3Gs20K5kyecLXx5IrK6VCXJsJkylYaH6fT/hpXKv8Pk
HuMdjP7aV7gird6dk8XeYcZGIEsec/U7XGJg9L3uLeiTMOEggkNBYEtzyBwvZPT5
6ec48IJLank8fhYe6D+aAIqAI6qCJuESoxVM0+9tmVwypB1O70nncENySyCGYgv1
AToOw7J9/7UQfQ==
-----END CERTIFICATE-----
Generated at Sat Jul 26 21:06:09 2025 by rpki-client