Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
File: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft (raw, json)
Hash identifier: m9fqWYOTjyd68XsYOMLR2DfCoVWCv323USnCik/G/ZI=
Subject key identifier: 43:2C:F2:99:72:4B:10:10:28:D9:BC:40:01:73:73:BB:20:F8:8F:AF
Authority key identifier: 77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46
Certificate issuer: /CN=779fbaaac6541ab318529eb025613c6520e47646
Certificate serial: 01993125480C450DC08AEC2EB7DE4E90931D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
Manifest number: 052B
Signing time: Wed 10 Sep 2025 01:02:30 +0000
Manifest this update: Wed 10 Sep 2025 01:02:30 +0000
Manifest next update: Thu 11 Sep 2025 01:02:30 +0000
Files and hashes: 1: bKhEoTi8VyX_Q5KODWRSQwgQwKY.roa (hash: xvVp0HHxMjOmKvNmsan4is7a0Z8jz8EK1PXrOk2MzSo=)
2: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl (hash: uYYjoCU4hDW+NdokBTL7fMdiiqfzdEzfRhHDbcUnTx8=)
3: k3MkBKIkrmXV8hBuw2gGPp_sASw.roa (hash: kkGwe02sJUGG5OVjC1fC3C/lnFwMVxsODhInEGGgNMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:25:48:0c:45:0d:c0:8a:ec:2e:b7:de:4e:90:93:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779fbaaac6541ab318529eb025613c6520e47646
Validity
Not Before: Sep 10 01:02:30 2025 GMT
Not After : Sep 11 01:02:30 2025 GMT
Subject: CN=432cf299724b101028d9bc40017373bb20f88faf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:42:5a:a3:90:51:2e:33:a6:f5:a1:20:6a:1e:
0b:56:73:8f:88:df:70:71:29:cc:41:95:23:95:84:
8d:df:92:3c:e0:31:41:d7:4d:d4:d5:bd:4d:a3:cd:
67:a4:e5:62:1f:a2:68:43:05:2b:d4:33:d4:05:e8:
c6:0f:60:97:9f:6f:02:29:57:d3:94:97:72:9f:8e:
11:fe:6e:f6:f1:26:a5:1e:f6:91:c6:06:bb:cc:00:
9b:bb:2b:28:cb:99:6a:30:50:88:58:53:96:46:1e:
4b:f3:93:10:f7:a1:df:54:b3:7b:48:c4:60:46:92:
b4:42:b6:50:52:7c:c2:60:c5:ab:6f:e5:8a:91:60:
89:ff:a6:4e:ab:8d:6f:a1:6b:3a:fd:3e:cd:f7:e7:
a1:4f:b5:f4:e1:ef:2c:d2:64:cf:17:37:0b:92:a1:
3d:8e:d3:a3:a6:e7:3a:08:6f:e5:c4:e0:59:fd:86:
bc:f3:8c:5a:f4:6c:a2:48:05:ea:c9:d6:3b:c3:2d:
4f:87:95:17:24:ae:fb:49:9c:b0:c5:88:4d:14:d7:
84:19:fc:2f:b3:24:b6:c9:67:74:e2:53:af:f8:22:
cc:05:6c:9c:53:97:5c:f0:5d:01:ed:2b:ed:74:d3:
a7:d4:b8:5e:16:17:5f:ba:68:0a:e6:a4:1d:94:5c:
76:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:2C:F2:99:72:4B:10:10:28:D9:BC:40:01:73:73:BB:20:F8:8F:AF
X509v3 Authority Key Identifier:
keyid:77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:3b:af:e7:01:3a:bd:66:98:a7:9d:af:fd:c2:e3:b1:a9:81:
5f:f5:f7:4c:98:fc:de:81:36:b5:36:bf:f8:27:ad:ec:3f:44:
93:b9:7b:87:f7:fa:60:8f:29:76:64:15:7f:17:2e:d3:a6:25:
09:ce:c7:60:de:c8:c8:b0:a9:42:26:23:66:ce:67:bc:cc:ae:
b2:de:6c:07:42:93:ae:a5:b9:f3:4d:51:3c:9e:2a:6b:48:28:
4a:2a:bc:d6:be:e3:99:3d:d5:e0:92:20:a3:87:d3:fb:a8:ac:
71:1b:cb:62:cb:c1:a8:bf:da:bd:46:ce:e0:87:71:df:d9:82:
6d:d1:0a:7e:0d:04:2c:7b:07:f3:49:01:9a:db:6a:9b:2c:b9:
54:d7:31:fb:74:72:3f:1a:34:cc:bf:25:7e:c4:0c:50:48:78:
1b:d8:bb:86:c4:8a:56:3e:1b:e0:40:82:bb:cc:05:fd:38:6b:
5c:b9:0e:3e:76:01:b4:79:da:f6:1e:53:53:7b:79:a9:e3:ec:
0d:3d:c5:a3:6c:fe:d6:f0:b1:35:87:75:e7:90:7e:ce:79:35:
75:79:98:e4:13:73:88:5f:3e:19:34:b5:22:7e:80:3c:c1:f9:
d3:e9:d0:d4:c4:0a:08:1d:a0:d8:14:21:70:a7:f4:9b:16:b5:
90:51:94:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkxJUgMRQ3Aiuwut95OkJMdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3OWZiYWFhYzY1NDFhYjMxODUyOWViMDI1NjEzYzY1MjBl
NDc2NDYwHhcNMjUwOTEwMDEwMjMwWhcNMjUwOTExMDEwMjMwWjAzMTEwLwYDVQQD
Eyg0MzJjZjI5OTcyNGIxMDEwMjhkOWJjNDAwMTczNzNiYjIwZjg4ZmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0kJao5BRLjOm9aEgah4LVnOPiN9w
cSnMQZUjlYSN35I84DFB103U1b1No81npOViH6JoQwUr1DPUBejGD2CXn28CKVfT
lJdyn44R/m728SalHvaRxga7zACbuysoy5lqMFCIWFOWRh5L85MQ96HfVLN7SMRg
RpK0QrZQUnzCYMWrb+WKkWCJ/6ZOq41voWs6/T7N9+ehT7X04e8s0mTPFzcLkqE9
jtOjpuc6CG/lxOBZ/Ya884xa9GyiSAXqydY7wy1Ph5UXJK77SZywxYhNFNeEGfwv
syS2yWd04lOv+CLMBWycU5dc8F0B7SvtdNOn1LheFhdfumgK5qQdlFx2bwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEMs8plySxAQKNm8QAFzc7sg+I+vMB8GA1UdIwQY
MBaAFHefuqrGVBqzGFKesCVhPGUg5HZGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDUtNnFzWlVHck1ZVXA2d0pXRThaU0RrZGtZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi85ODNiNDctNDdhOS00MjUxLWExMjkt
MjAwMjQ5MThlZTY2LzEvZDUtNnFzWlVHck1ZVXA2d0pXRThaU0RrZGtZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi85ODNiNDctNDdhOS00MjUxLWExMjktMjAwMjQ5MThlZTY2
LzEvZDUtNnFzWlVHck1ZVXA2d0pXRThaU0RrZGtZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWTuv5wE6
vWaYp52v/cLjsamBX/X3TJj83oE2tTa/+Cet7D9Ek7l7h/f6YI8pdmQVfxcu06Yl
Cc7HYN7IyLCpQiYjZs5nvMyust5sB0KTrqW5801RPJ4qa0goSiq81r7jmT3V4JIg
o4fT+6iscRvLYsvBqL/avUbO4Idx39mCbdEKfg0ELHsH80kBmttqmyy5VNcx+3Ry
Pxo0zL8lfsQMUEh4G9i7hsSKVj4b4ECCu8wF/ThrXLkOPnYBtHna9h5TU3t5qePs
DT3Fo2z+1vCxNYd155B+znk1dXmY5BNziF8+GTS1In6APMH50+nQ1MQKCB2g2BQh
cKf0mxa1kFGU0g==
-----END CERTIFICATE-----
Generated at Wed Sep 10 03:16:36 2025 by rpki-client