Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
File: fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft (raw, json)
Hash identifier: r32/HDriBu9NB7TnYN/3Pn3avs9L31JnGe8ZdM71G+Q=
Subject key identifier: 05:B6:B7:43:0A:82:76:00:2B:19:92:F9:D0:06:E0:1C:F6:7C:04:A1
Authority key identifier: 7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
Certificate issuer: /CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Certificate serial: 0199225548FED319CA8F3501F5B06593EA82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
Manifest number: 04BA
Signing time: Sun 07 Sep 2025 04:00:38 +0000
Manifest this update: Sun 07 Sep 2025 04:00:38 +0000
Manifest next update: Mon 08 Sep 2025 04:00:38 +0000
Files and hashes: 1: 7IU0huufqQxYxItg8zFZPOwzYRM.roa (hash: I4C8M2jxvU1m60xK7AT2Uz7jOA8Cd0LrtZ3lmEnNBLc=)
2: fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl (hash: 3FvBFHDV/ZZVtUWkS098qg1oN/WzRHq4A2JI2rmRsAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:48:fe:d3:19:ca:8f:35:01:f5:b0:65:93:ea:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Validity
Not Before: Sep 7 04:00:38 2025 GMT
Not After : Sep 8 04:00:38 2025 GMT
Subject: CN=05b6b7430a8276002b1992f9d006e01cf67c04a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:83:04:6e:cc:38:eb:1e:7a:56:68:09:3b:42:
17:eb:79:7d:33:61:df:c6:85:24:bb:d5:44:86:5e:
db:2c:35:c0:74:fa:8a:27:d5:44:f0:85:22:ab:d4:
c8:7c:05:25:5d:03:e9:3d:cf:46:6c:1d:1f:3b:dc:
75:14:cc:88:77:21:f7:8f:fb:e7:d0:79:b3:97:83:
6f:d7:db:7c:1d:ab:ef:ea:b1:8a:a8:d0:5b:42:94:
73:20:02:9d:fa:76:46:6f:1e:3c:82:c3:5e:f4:76:
63:81:9f:7c:a4:4a:88:00:0b:d8:f4:1a:fe:62:b6:
84:56:77:ed:85:ff:55:9d:1d:48:b6:41:55:68:e5:
c8:89:25:99:59:5f:05:e8:54:1d:85:10:cc:6a:60:
9a:2c:6a:14:03:7a:ac:ed:57:be:5e:cb:04:0b:1b:
99:c6:b6:dd:3d:99:3b:ed:63:6a:d1:4e:b9:21:e0:
17:c2:da:2c:23:9b:24:ef:b4:9b:31:49:6c:49:c6:
f1:03:bb:b6:01:14:a5:41:ad:0c:4a:9c:82:1d:10:
cd:24:d5:bd:8c:5d:14:d5:68:bc:2a:d6:a7:75:fe:
ab:9f:dc:fe:34:0a:c0:1d:e9:c5:79:3e:3d:1b:3b:
50:d7:28:33:fe:e8:2b:e9:bc:53:31:c0:f4:ef:de:
3e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:B6:B7:43:0A:82:76:00:2B:19:92:F9:D0:06:E0:1C:F6:7C:04:A1
X509v3 Authority Key Identifier:
keyid:7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:6e:b7:a3:ed:05:68:60:b1:6c:47:4c:88:ea:e1:2c:60:a5:
97:4c:ef:f5:c9:2e:d3:bb:67:50:40:84:43:53:58:a2:67:00:
d0:fb:68:be:16:b7:63:f8:1f:c1:83:41:54:24:f4:1b:b7:bf:
7b:59:04:11:89:dd:99:93:50:c4:5c:a6:72:4f:fe:f6:5d:9c:
a3:78:b6:a6:4b:7a:b6:9f:df:6d:22:91:85:6a:20:36:c9:1a:
7d:e8:e7:4f:da:c5:40:67:96:e4:b8:64:7e:08:68:08:e5:8f:
50:22:76:5f:bc:aa:03:40:54:95:dd:bd:7e:14:58:69:a9:de:
4d:3e:75:dd:eb:80:0a:d0:08:14:60:d6:93:47:bd:66:69:3e:
0f:60:b1:fe:11:b3:02:95:73:5d:3d:d0:9b:f3:f8:bf:a5:43:
0b:d7:ac:d5:a0:8f:73:49:a5:9f:70:35:5d:20:10:3c:83:a7:
1f:a7:b4:f0:c8:9a:b7:fc:b7:7c:b7:f7:fb:d9:e2:30:9d:69:
10:32:16:82:c9:9c:a2:ca:ab:13:be:cb:e3:cf:e8:33:12:6c:
12:15:b1:2a:b1:16:c1:69:91:72:3c:5e:85:b4:39:58:a6:75:
27:3d:34:39:77:06:58:8b:51:bf:07:a6:fe:34:b7:d7:a8:60:
2b:e6:46:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiVUj+0xnKjzUB9bBlk+qCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNzg1NmM5N2JlYjk3YzJiMzg2ZmI5NThjMmRiMTIyYzU3
ZGIzNmMwHhcNMjUwOTA3MDQwMDM4WhcNMjUwOTA4MDQwMDM4WjAzMTEwLwYDVQQD
EygwNWI2Yjc0MzBhODI3NjAwMmIxOTkyZjlkMDA2ZTAxY2Y2N2MwNGExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYMEbsw46x56VmgJO0IX63l9M2Hf
xoUku9VEhl7bLDXAdPqKJ9VE8IUiq9TIfAUlXQPpPc9GbB0fO9x1FMyIdyH3j/vn
0Hmzl4Nv19t8Havv6rGKqNBbQpRzIAKd+nZGbx48gsNe9HZjgZ98pEqIAAvY9Br+
YraEVnfthf9VnR1ItkFVaOXIiSWZWV8F6FQdhRDMamCaLGoUA3qs7Ve+XssECxuZ
xrbdPZk77WNq0U65IeAXwtosI5sk77SbMUlsScbxA7u2ARSlQa0MSpyCHRDNJNW9
jF0U1Wi8Ktandf6rn9z+NArAHenFeT49GztQ1ygz/ugr6bxTMcD0794+fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAW2t0MKgnYAKxmS+dAG4Bz2fAShMB8GA1UdIwQY
MBaAFH14Vsl765fCs4b7lYwtsSLFfbNsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlhoV3lYdnJsOEt6aHZ1VmpDMnhJc1Y5czJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jMDNkMzctNGVmYy00YzNjLTgyODEt
M2M3Mzg1NDQ0ODJlLzEvZlhoV3lYdnJsOEt6aHZ1VmpDMnhJc1Y5czJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9jMDNkMzctNGVmYy00YzNjLTgyODEtM2M3Mzg1NDQ0ODJl
LzEvZlhoV3lYdnJsOEt6aHZ1VmpDMnhJc1Y5czJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdW63o+0F
aGCxbEdMiOrhLGCll0zv9cku07tnUECEQ1NYomcA0Ptovha3Y/gfwYNBVCT0G7e/
e1kEEYndmZNQxFymck/+9l2co3i2pkt6tp/fbSKRhWogNskafejnT9rFQGeW5Lhk
fghoCOWPUCJ2X7yqA0BUld29fhRYaaneTT513euACtAIFGDWk0e9Zmk+D2Cx/hGz
ApVzXT3Qm/P4v6VDC9es1aCPc0mln3A1XSAQPIOnH6e08Miat/y3fLf3+9niMJ1p
EDIWgsmcosqrE77L48/oMxJsEhWxKrEWwWmRcjxehbQ5WKZ1Jz00OXcGWItRvwem
/jS316hgK+ZGXg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:08:18 2025 by rpki-client