Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
File: REIuqj2u32uQIVnu2-lMqbfSKE8.mft (raw, json)
Hash identifier: ECwOaFiTnAuIwrjho1i7gjLA7avgNj9HSjXR/7mnMV8=
Subject key identifier: 06:5E:C1:F6:B4:5F:4E:D1:42:E7:C2:8A:BC:34:36:F7:2F:8B:DF:C0
Authority key identifier: 44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
Certificate issuer: /CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Certificate serial: 019922FA68C8A83A9B809D5C4F8CB930787B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
Manifest number: 0CA5
Signing time: Sun 07 Sep 2025 07:01:00 +0000
Manifest this update: Sun 07 Sep 2025 07:01:00 +0000
Manifest next update: Mon 08 Sep 2025 07:01:00 +0000
Files and hashes: 1: REIuqj2u32uQIVnu2-lMqbfSKE8.crl (hash: R9Bt0tmC46oHwvUF7/i8pZT4Z7lEdKmw/US1ovV8oMk=)
2: pkwPVsxSdYAUrwekUiCsSfEtBsc.roa (hash: VAoyCYorOSAEGcSFlO8mKuQLxbXXAWAO6ekhAMd8Fps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:68:c8:a8:3a:9b:80:9d:5c:4f:8c:b9:30:78:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Validity
Not Before: Sep 7 07:01:00 2025 GMT
Not After : Sep 8 07:01:00 2025 GMT
Subject: CN=065ec1f6b45f4ed142e7c28abc3436f72f8bdfc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c3:fc:17:da:b7:45:56:3d:bf:64:9e:e5:32:
64:03:3f:24:4c:bf:b5:e9:52:13:e6:64:fa:20:d4:
a2:28:04:c3:1e:07:4c:71:ee:66:c2:cd:9f:77:47:
e4:54:d5:d9:e5:7d:f2:ab:d3:d4:d2:7c:f1:ed:46:
ee:c2:68:67:9e:9b:a2:b4:0f:9e:c9:57:6c:c9:19:
ce:cd:f2:41:2f:ee:50:41:23:13:a4:68:e9:1f:05:
ee:6a:de:06:98:6e:39:44:21:e7:a6:c1:bd:6c:62:
52:97:79:9b:75:8a:a5:48:38:4c:e4:3b:58:57:f8:
1f:f0:b1:4a:8f:7c:54:c2:e8:84:43:8a:3e:ad:2e:
2b:28:77:7c:d4:9e:1b:ba:47:01:85:a6:bf:83:5d:
56:1d:6c:9c:65:95:11:16:b4:7d:54:07:11:c1:f5:
9d:31:b4:d0:5e:26:ba:83:3f:48:ff:53:74:ee:8d:
42:96:9d:3f:a3:d7:cf:15:73:bf:ee:67:d2:bd:7e:
23:74:b5:96:6c:5e:7c:6f:1e:8a:b4:87:4e:b0:6d:
c7:3a:20:38:4f:17:fe:ea:a2:31:c1:b0:53:ff:70:
03:66:e3:16:bc:b6:22:88:97:18:32:e0:b5:a6:a7:
c3:1c:ee:d9:ed:c7:e6:b1:dd:88:e4:b3:be:6b:90:
34:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:5E:C1:F6:B4:5F:4E:D1:42:E7:C2:8A:BC:34:36:F7:2F:8B:DF:C0
X509v3 Authority Key Identifier:
keyid:44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:be:3e:84:10:6b:a9:ff:94:ad:97:22:f7:66:22:3c:f0:2b:
f2:b6:1c:dc:7e:dc:62:62:f3:60:03:2f:24:12:54:3e:04:6f:
56:c0:5f:8a:b5:fb:62:a8:d8:4d:a9:22:73:45:90:fb:bc:1f:
82:ce:87:ce:d2:2b:02:50:54:2a:45:2a:40:59:b9:2b:36:95:
40:f2:ec:97:0e:2c:a6:6a:e8:76:b8:1c:51:ef:42:d2:cc:ac:
e9:e5:af:7e:80:77:ef:08:0a:65:f7:11:4f:cf:5c:e5:eb:3f:
92:31:21:36:3c:bb:a8:2c:92:57:d5:4f:ad:53:6b:1b:23:eb:
82:3f:e1:b5:d5:40:f3:09:bc:be:c6:54:b7:92:7e:46:d4:a3:
c8:14:91:1b:9f:60:34:cc:c5:ac:bd:78:46:a3:3e:6c:b4:41:
f1:25:ef:da:ef:a9:65:6f:d5:89:37:3e:43:51:3b:0c:37:6c:
50:7e:d9:f3:ed:80:d3:6b:04:dc:7c:3a:78:18:05:ac:a2:82:
49:a0:09:37:e0:ec:80:84:96:e7:68:90:c4:2c:0e:20:71:a9:
1f:ca:d7:96:fe:b2:c4:8e:37:ae:5b:bd:87:59:f4:a9:df:2a:
31:13:11:57:e4:2e:3a:b6:7b:aa:9b:21:48:02:b1:ee:17:37:
2a:91:0f:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+mjIqDqbgJ1cT4y5MHh7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NDIyZWFhM2RhZWRmNmI5MDIxNTllZWRiZTk0Y2E5Yjdk
MjI4NGYwHhcNMjUwOTA3MDcwMTAwWhcNMjUwOTA4MDcwMTAwWjAzMTEwLwYDVQQD
EygwNjVlYzFmNmI0NWY0ZWQxNDJlN2MyOGFiYzM0MzZmNzJmOGJkZmMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo8P8F9q3RVY9v2Se5TJkAz8kTL+1
6VIT5mT6INSiKATDHgdMce5mws2fd0fkVNXZ5X3yq9PU0nzx7UbuwmhnnpuitA+e
yVdsyRnOzfJBL+5QQSMTpGjpHwXuat4GmG45RCHnpsG9bGJSl3mbdYqlSDhM5DtY
V/gf8LFKj3xUwuiEQ4o+rS4rKHd81J4bukcBhaa/g11WHWycZZURFrR9VAcRwfWd
MbTQXia6gz9I/1N07o1Clp0/o9fPFXO/7mfSvX4jdLWWbF58bx6KtIdOsG3HOiA4
Txf+6qIxwbBT/3ADZuMWvLYiiJcYMuC1pqfDHO7Z7cfmsd2I5LO+a5A0fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAZewfa0X07RQufCirw0Nvcvi9/AMB8GA1UdIwQY
MBaAFERCLqo9rt9rkCFZ7tvpTKm30ihPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkVJdXFqMnUzMnVRSVZudTItbE1xYmZTS0U4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9kZDk0NGQtOGZhYS00Y2NlLWFhZmUt
YzA1MGY0YzA1ZjI5LzEvUkVJdXFqMnUzMnVRSVZudTItbE1xYmZTS0U4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9kZDk0NGQtOGZhYS00Y2NlLWFhZmUtYzA1MGY0YzA1ZjI5
LzEvUkVJdXFqMnUzMnVRSVZudTItbE1xYmZTS0U4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYb4+hBBr
qf+UrZci92YiPPAr8rYc3H7cYmLzYAMvJBJUPgRvVsBfirX7YqjYTakic0WQ+7wf
gs6HztIrAlBUKkUqQFm5KzaVQPLslw4spmrodrgcUe9C0sys6eWvfoB37wgKZfcR
T89c5es/kjEhNjy7qCySV9VPrVNrGyPrgj/htdVA8wm8vsZUt5J+RtSjyBSRG59g
NMzFrL14RqM+bLRB8SXv2u+pZW/ViTc+Q1E7DDdsUH7Z8+2A02sE3Hw6eBgFrKKC
SaAJN+DsgISW52iQxCwOIHGpH8rXlv6yxI43rlu9h1n0qd8qMRMRV+QuOrZ7qpsh
SAKx7hc3KpEPtA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:31 2025 by rpki-client