Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
File: _l28QbEed7xEvSxzVVS1tCWNDDM.mft (raw, json)
Hash identifier: r4viCD/UHjYo2BzkKERiJxsicNFFLLG0u9Z8DBjlOdY=
Subject key identifier: 55:26:7D:5C:EC:2E:18:6C:B0:29:83:29:02:C2:C6:58:8C:65:E9:18
Authority key identifier: FE:5D:BC:41:B1:1E:77:BC:44:BD:2C:73:55:54:B5:B4:25:8D:0C:33
Certificate issuer: /CN=fe5dbc41b11e77bc44bd2c735554b5b4258d0c33
Certificate serial: 019921E79990AD087FDA4D57116C6851975F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 02:00:50 +0000
Manifest this update: Sun 07 Sep 2025 02:00:50 +0000
Manifest next update: Mon 08 Sep 2025 02:00:50 +0000
Files and hashes: 1: QQYnKZZEKh0t39rLRqceu8xA4vU.roa (hash: PxxqnNy49Cu4ltRHNTmmrI+SwKZQqPOvx1a9kq3y6xs=)
2: _l28QbEed7xEvSxzVVS1tCWNDDM.crl (hash: 9y0Ipe3fTQMFMoCFbDTPyhbcYYsKrUZvYea0S2BiuAg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:99:90:ad:08:7f:da:4d:57:11:6c:68:51:97:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe5dbc41b11e77bc44bd2c735554b5b4258d0c33
Validity
Not Before: Sep 7 02:00:50 2025 GMT
Not After : Sep 8 02:00:50 2025 GMT
Subject: CN=55267d5cec2e186cb029832902c2c6588c65e918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:95:1b:0f:28:66:63:6b:08:6b:36:4b:ae:e8:
a3:c2:c5:52:12:00:7a:90:6f:a5:5a:bd:07:79:90:
98:84:66:c0:f8:80:1d:f0:9e:82:d9:0e:06:1b:7c:
36:d2:bf:49:c9:55:0a:73:74:c9:44:b7:16:64:e7:
ca:1b:73:61:cb:3e:eb:dd:1c:c6:db:c8:7b:80:cf:
85:2f:9e:f0:7a:c3:a1:1c:6e:0d:da:5d:f5:81:98:
e7:ff:54:d5:13:70:d0:f1:a2:47:96:b6:21:13:28:
14:be:61:f7:36:dc:db:2c:39:76:46:27:cf:68:8b:
32:3a:c3:ce:e2:ff:9e:6f:1f:af:6c:55:04:c3:e2:
b6:b4:43:26:6e:b0:a7:7c:e5:83:d4:a1:2e:94:32:
bf:89:f2:50:32:d0:bf:18:40:34:1f:26:2b:02:67:
f1:86:9c:ad:d0:f6:ac:41:06:35:bb:de:2a:e6:34:
d9:53:5c:0c:9b:d4:ee:c0:de:14:7e:d5:29:52:76:
1e:b7:27:ed:c5:53:b2:0c:80:92:67:ee:d0:a5:8c:
79:0b:93:47:01:3a:1e:15:40:9a:dc:e4:23:a4:5d:
99:dc:19:83:49:87:02:b8:cf:8d:ac:d4:ab:b3:ef:
67:63:3c:c3:55:8f:2a:6c:77:6d:62:20:6e:1f:b4:
a0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:26:7D:5C:EC:2E:18:6C:B0:29:83:29:02:C2:C6:58:8C:65:E9:18
X509v3 Authority Key Identifier:
keyid:FE:5D:BC:41:B1:1E:77:BC:44:BD:2C:73:55:54:B5:B4:25:8D:0C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:ae:b7:86:f8:70:0c:4e:63:76:4b:da:78:78:97:b0:e5:67:
35:66:83:2f:4d:65:c2:a2:c2:a1:ef:f5:4e:f8:d1:1e:d2:ac:
9b:be:11:f5:af:60:8c:30:a2:10:54:1f:8f:93:7a:e4:a6:eb:
f7:8f:f5:dc:b0:6d:f2:98:8e:b7:ab:82:05:cd:27:95:2d:c0:
3c:c2:f2:f1:c2:ee:8f:02:5c:91:15:e6:cc:e3:f2:83:6b:37:
77:ba:30:c1:75:db:2d:8f:25:51:39:c6:69:4a:13:48:82:dc:
fd:1a:48:bd:fd:08:69:5e:a4:1b:d5:90:60:ca:4a:ab:c6:1d:
74:28:33:cc:0a:d7:bc:11:d2:8d:40:08:38:e2:57:bc:29:04:
f2:32:80:3e:d4:8e:18:e0:e0:ad:96:7e:44:43:09:74:8a:e9:
a6:ba:d9:c1:c8:a5:67:28:6a:36:3a:44:18:1f:f9:cb:06:a5:
f5:a0:3f:e0:2a:ed:26:f5:1f:91:9d:3c:eb:e7:b9:42:fb:bc:
21:53:0a:79:28:d3:4c:77:cb:c5:66:e9:c2:d9:7b:b0:ce:db:
94:86:d3:c8:2f:1c:8c:dc:0e:cb:78:5b:30:75:48:d9:3a:c9:
31:e1:82:bd:58:25:e8:eb:e8:51:a4:fe:a9:10:cd:d8:66:de:
68:6d:c2:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkh55mQrQh/2k1XEWxoUZdfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlNWRiYzQxYjExZTc3YmM0NGJkMmM3MzU1NTRiNWI0MjU4
ZDBjMzMwHhcNMjUwOTA3MDIwMDUwWhcNMjUwOTA4MDIwMDUwWjAzMTEwLwYDVQQD
Eyg1NTI2N2Q1Y2VjMmUxODZjYjAyOTgzMjkwMmMyYzY1ODhjNjVlOTE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZUbDyhmY2sIazZLruijwsVSEgB6
kG+lWr0HeZCYhGbA+IAd8J6C2Q4GG3w20r9JyVUKc3TJRLcWZOfKG3Nhyz7r3RzG
28h7gM+FL57wesOhHG4N2l31gZjn/1TVE3DQ8aJHlrYhEygUvmH3NtzbLDl2RifP
aIsyOsPO4v+ebx+vbFUEw+K2tEMmbrCnfOWD1KEulDK/ifJQMtC/GEA0HyYrAmfx
hpyt0PasQQY1u94q5jTZU1wMm9TuwN4UftUpUnYetyftxVOyDICSZ+7QpYx5C5NH
AToeFUCa3OQjpF2Z3BmDSYcCuM+NrNSrs+9nYzzDVY8qbHdtYiBuH7Sg8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFUmfVzsLhhssCmDKQLCxliMZekYMB8GA1UdIwQY
MBaAFP5dvEGxHne8RL0sc1VUtbQljQwzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2wyOFFiRWVkN3hFdlN4elZWUzF0Q1dORERNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8wODRkMzMtOWZlZC00NjIwLWI0NmMt
ODhhNjMxNDgwMjZmLzEvX2wyOFFiRWVkN3hFdlN4elZWUzF0Q1dORERNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8wODRkMzMtOWZlZC00NjIwLWI0NmMtODhhNjMxNDgwMjZm
LzEvX2wyOFFiRWVkN3hFdlN4elZWUzF0Q1dORERNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE663hvhw
DE5jdkvaeHiXsOVnNWaDL01lwqLCoe/1TvjRHtKsm74R9a9gjDCiEFQfj5N65Kbr
94/13LBt8piOt6uCBc0nlS3APMLy8cLujwJckRXmzOPyg2s3d7owwXXbLY8lUTnG
aUoTSILc/RpIvf0IaV6kG9WQYMpKq8YddCgzzArXvBHSjUAIOOJXvCkE8jKAPtSO
GODgrZZ+REMJdIrpprrZwcilZyhqNjpEGB/5ywal9aA/4CrtJvUfkZ086+e5Qvu8
IVMKeSjTTHfLxWbpwtl7sM7blIbTyC8cjNwOy3hbMHVI2TrJMeGCvVgl6OvoUaT+
qRDN2GbeaG3Cfw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:21 2025 by rpki-client