Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
File: MAVrA3XYlLk8sOJtm01koIxYNx4.mft (raw, json)
Hash identifier: 3to5lswyLmZEA1z05oYsGR6UFn8klsg67ikDiflB1X0=
Subject key identifier: EE:BF:6E:65:A5:CF:77:A1:B5:B5:98:3E:25:99:06:C3:40:A2:F1:8C
Authority key identifier: 30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
Certificate issuer: /CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Certificate serial: 0198C6109A0181DE2FAD08417D4E22FCA955
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
Manifest number: 0BCB
Signing time: Wed 20 Aug 2025 06:00:33 +0000
Manifest this update: Wed 20 Aug 2025 06:00:33 +0000
Manifest next update: Thu 21 Aug 2025 06:00:33 +0000
Files and hashes: 1: 3O6Y3eQ5OpGsAft35AyeyfVjQ6o.roa (hash: u+uYD6/L10KdiWIH/nhFz7IkGG28050DGlwgSDFBhnk=)
2: MAVrA3XYlLk8sOJtm01koIxYNx4.crl (hash: 8pWRZxzbjL2G+VHEN4YzCMG7cc8jqVg6TY0UsMDSWfk=)
3: vQwx6cGSIAT7m9K8R35GzUVPtvc.roa (hash: zbCFg7Xh1dqpHRv2DApSfzHkCmAjvg9jJtigoE/GHhk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 06:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c6:10:9a:01:81:de:2f:ad:08:41:7d:4e:22:fc:a9:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Validity
Not Before: Aug 20 06:00:33 2025 GMT
Not After : Aug 21 06:00:33 2025 GMT
Subject: CN=eebf6e65a5cf77a1b5b5983e259906c340a2f18c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:76:2d:d4:3e:95:b8:dc:b4:29:60:2a:cb:e9:
ee:26:95:05:7d:d9:f8:39:d6:33:ad:d2:95:bc:e3:
da:e3:6f:0f:6b:2b:07:3f:91:50:b4:f2:a6:e3:b1:
67:19:59:56:68:59:aa:22:0b:08:0b:31:fd:7f:c0:
d2:a0:3f:f1:90:7d:e8:84:95:68:bd:39:fe:d6:0d:
2d:06:67:67:9b:c5:40:6f:39:a8:ef:83:a6:95:bf:
9c:08:f1:45:41:02:f5:af:83:33:f1:30:a2:40:86:
18:b9:63:f9:3d:1c:82:b3:2f:71:29:d4:1b:d9:c0:
6f:46:74:9d:73:b7:da:59:ee:5b:0a:28:77:cb:83:
b6:9e:8f:ef:01:d5:06:5d:9d:8f:da:8e:8e:e7:10:
69:53:bb:51:4d:89:56:1f:3a:04:2a:32:b8:d8:29:
8c:af:ea:b9:e1:31:86:81:cf:59:c6:89:41:02:e8:
bf:c8:80:46:0a:30:db:06:84:6b:10:a3:c0:7d:d1:
7e:76:5e:88:16:ca:1b:ad:36:c0:ff:05:49:a1:86:
0c:74:b3:0b:6c:a8:4e:c0:cd:11:0a:10:55:51:09:
3d:80:0b:cc:89:97:d7:ec:1d:37:da:06:a7:d6:92:
27:6b:92:2c:4b:51:27:d6:6f:7f:f0:5d:9f:b5:be:
fe:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:BF:6E:65:A5:CF:77:A1:B5:B5:98:3E:25:99:06:C3:40:A2:F1:8C
X509v3 Authority Key Identifier:
keyid:30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:74:5c:34:2c:df:76:86:44:a3:a2:01:21:26:1d:ec:7f:85:
26:35:8f:c4:62:a1:62:42:e6:57:92:db:7a:bb:e5:24:14:84:
40:44:48:8b:00:bf:22:1a:15:d9:6b:f8:f9:8e:0d:b6:88:48:
0b:f0:a0:0c:49:1e:12:9f:17:1f:46:f3:59:57:00:88:4c:ad:
d9:43:77:43:4f:68:77:7d:e3:98:94:b1:c2:c8:ac:c4:0b:85:
f3:c6:17:73:b4:7b:b6:4f:95:34:66:bc:c7:08:27:a1:ba:ef:
4f:e6:fc:56:b6:36:5d:d5:98:f9:e6:93:a0:09:56:a2:7a:6b:
9f:fa:bd:54:f0:8d:6e:8c:76:ad:47:0c:25:b4:b3:f4:cf:93:
5a:d2:f4:b9:63:3e:5d:b4:e5:e0:6e:31:0c:de:52:34:75:8e:
a6:54:3e:c7:5a:af:63:74:97:c5:05:68:2f:1c:83:ed:92:4a:
2e:da:23:42:bb:3b:74:37:17:83:24:e3:37:bb:14:6f:0f:26:
59:b0:7d:7c:d5:fb:3e:07:44:7a:5a:4b:d0:8b:6d:66:78:ad:
b8:45:2e:b6:e1:94:17:f6:ff:58:f8:0e:99:0b:46:b1:24:a1:
20:50:ee:81:0d:ee:9e:b0:c5:ad:5d:cf:b6:da:98:d6:95:71:
1c:e9:70:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjGEJoBgd4vrQhBfU4i/KlVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwMDU2YjAzNzVkODk0YjkzY2IwZTI2ZDliNGQ2NGEwOGM1
ODM3MWUwHhcNMjUwODIwMDYwMDMzWhcNMjUwODIxMDYwMDMzWjAzMTEwLwYDVQQD
EyhlZWJmNmU2NWE1Y2Y3N2ExYjViNTk4M2UyNTk5MDZjMzQwYTJmMThjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3Yt1D6VuNy0KWAqy+nuJpUFfdn4
OdYzrdKVvOPa428PaysHP5FQtPKm47FnGVlWaFmqIgsICzH9f8DSoD/xkH3ohJVo
vTn+1g0tBmdnm8VAbzmo74Omlb+cCPFFQQL1r4Mz8TCiQIYYuWP5PRyCsy9xKdQb
2cBvRnSdc7faWe5bCih3y4O2no/vAdUGXZ2P2o6O5xBpU7tRTYlWHzoEKjK42CmM
r+q54TGGgc9ZxolBAui/yIBGCjDbBoRrEKPAfdF+dl6IFsobrTbA/wVJoYYMdLML
bKhOwM0RChBVUQk9gAvMiZfX7B032gan1pIna5IsS1En1m9/8F2ftb7+ewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO6/bmWlz3ehtbWYPiWZBsNAovGMMB8GA1UdIwQY
MBaAFDAFawN12JS5PLDibZtNZKCMWDceMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUFWckEzWFlsTGs4c09KdG0wMWtvSXhZTng0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8yYTc0NzItY2JiOC00Yzk5LWJlMjEt
MTFiNGFmYmVkZTE5LzEvTUFWckEzWFlsTGs4c09KdG0wMWtvSXhZTng0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8yYTc0NzItY2JiOC00Yzk5LWJlMjEtMTFiNGFmYmVkZTE5
LzEvTUFWckEzWFlsTGs4c09KdG0wMWtvSXhZTng0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARXRcNCzf
doZEo6IBISYd7H+FJjWPxGKhYkLmV5LbervlJBSEQERIiwC/IhoV2Wv4+Y4NtohI
C/CgDEkeEp8XH0bzWVcAiEyt2UN3Q09od33jmJSxwsisxAuF88YXc7R7tk+VNGa8
xwgnobrvT+b8VrY2XdWY+eaToAlWonprn/q9VPCNbox2rUcMJbSz9M+TWtL0uWM+
XbTl4G4xDN5SNHWOplQ+x1qvY3SXxQVoLxyD7ZJKLtojQrs7dDcXgyTjN7sUbw8m
WbB9fNX7PgdEelpL0IttZnituEUutuGUF/b/WPgOmQtGsSShIFDugQ3unrDFrV3P
ttqY1pVxHOlwdw==
-----END CERTIFICATE-----
Generated at Wed Aug 20 15:27:06 2025 by rpki-client