Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
File: fD2KpDg1BKMa_0sAaBCga88DBa4.mft (raw, json)
Hash identifier: /LSYVaq7y9wHDtYwjmmK8l5ABetGYU2GwcrYuw5cAg8=
Subject key identifier: 4C:72:B0:51:A8:38:C5:2E:68:53:DE:75:9A:70:65:9F:83:A7:4B:4F
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Certificate issuer: /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial: 019868B980D84B58F3C7AA3D6F07C89B9E1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
Manifest number: 11EC
Signing time: Sat 02 Aug 2025 03:00:44 +0000
Manifest this update: Sat 02 Aug 2025 03:00:44 +0000
Manifest next update: Sun 03 Aug 2025 03:00:44 +0000
Files and hashes: 1: 8L2O5GlhNp_lrqBMRrzhkCl_FU4.roa (hash: MpUCXGi4iU4O/s2W0Ri/evmaR2tEREi873mtgHCWuJE=)
2: fD2KpDg1BKMa_0sAaBCga88DBa4.crl (hash: BY6DpC72lpTKMiDS0dnKYjQuuHsA26Afhzu5AdWp/rk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 02 Aug 2025 21:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:68:b9:80:d8:4b:58:f3:c7:aa:3d:6f:07:c8:9b:9e:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Validity
Not Before: Aug 2 03:00:44 2025 GMT
Not After : Aug 3 03:00:44 2025 GMT
Subject: CN=4c72b051a838c52e6853de759a70659f83a74b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:86:cf:a8:ad:51:e2:0c:b2:cb:93:e8:31:ff:
6b:4f:ff:fc:2c:da:32:05:54:8d:0e:90:12:b4:e6:
0c:1b:21:27:e0:a9:88:9d:8f:b5:66:65:b5:6a:10:
af:04:d6:4b:ee:f7:3a:62:a9:6a:43:78:15:3b:a0:
d5:c4:82:e1:62:9e:68:07:c6:89:5a:4b:45:ae:46:
66:cc:04:fd:b7:bf:88:b4:16:80:19:42:d1:f9:af:
76:89:e2:ca:e5:f6:e2:5c:d2:9f:96:47:65:55:c9:
1d:32:22:b6:79:dd:c8:bb:f9:12:0c:16:64:1f:5e:
d3:47:d7:47:1e:e6:87:34:a7:20:88:89:ff:63:1b:
b5:e1:66:75:10:3d:08:55:fa:73:f4:51:42:0f:f9:
80:88:d0:7b:fc:85:8f:e0:de:f4:16:26:92:72:45:
93:8c:8b:fc:4a:13:1d:3b:73:12:2a:f3:a2:c1:e1:
62:cd:c1:d3:9e:e7:d1:64:e7:84:ab:7e:19:21:a7:
57:2e:2c:7a:9c:94:5e:b6:92:94:55:60:6b:27:bd:
87:42:b6:7d:34:24:9b:ad:1e:2f:e4:ca:fd:c4:d6:
62:f1:2e:ea:6e:0e:a6:ef:ec:55:dd:3f:23:46:b3:
13:87:88:25:d9:f6:aa:5f:86:ec:d4:4e:84:3a:b2:
66:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:72:B0:51:A8:38:C5:2E:68:53:DE:75:9A:70:65:9F:83:A7:4B:4F
X509v3 Authority Key Identifier:
keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:e3:1f:41:25:28:12:a4:d0:46:51:34:04:37:67:0f:1b:02:
7a:d4:ce:72:bb:46:02:58:c0:c4:0c:32:d6:d9:c4:96:0d:9d:
99:f9:13:32:c1:76:0e:d4:75:b3:5c:ec:a3:61:29:40:18:19:
64:17:24:f0:a3:d9:c1:60:8a:d1:1b:4b:1b:fe:2e:62:8f:f9:
6c:f5:50:b9:c3:1c:c1:1f:98:d7:61:19:08:a2:d2:45:d3:6b:
3d:f1:31:d8:07:e3:fb:89:cd:99:ba:5c:38:86:ae:a5:1d:bf:
b7:37:27:8d:b6:1b:74:11:79:a5:ca:8a:34:c3:30:2b:f4:7a:
bf:d1:8e:01:c8:4d:67:fc:d3:a6:05:b1:14:c7:3e:85:15:93:
4d:f9:b1:d5:05:61:2a:bf:16:a3:6a:0b:72:78:34:bf:c8:c9:
84:4e:f7:02:dd:cb:3d:ff:aa:f8:71:22:4a:01:0a:d8:1c:21:
bb:f8:bd:77:a3:87:d4:fe:58:f1:9b:5c:b0:4e:7f:cc:c1:3b:
b5:ee:7b:af:10:f0:5c:15:0c:64:41:07:b1:f5:92:ef:68:49:
cf:75:8c:11:96:60:7c:f1:4b:d6:6e:90:c1:9b:71:52:77:4e:
3b:04:7e:34:de:fb:8d:7c:c7:68:82:d3:8d:d8:63:34:35:9c:
71:55:76:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhouYDYS1jzx6o9bwfIm54dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjM2Q4YWE0MzgzNTA0YTMxYWZmNGIwMDY4MTBhMDZiY2Yw
MzA1YWUwHhcNMjUwODAyMDMwMDQ0WhcNMjUwODAzMDMwMDQ0WjAzMTEwLwYDVQQD
Eyg0YzcyYjA1MWE4MzhjNTJlNjg1M2RlNzU5YTcwNjU5ZjgzYTc0YjRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsIbPqK1R4gyyy5PoMf9rT//8LNoy
BVSNDpAStOYMGyEn4KmInY+1ZmW1ahCvBNZL7vc6YqlqQ3gVO6DVxILhYp5oB8aJ
WktFrkZmzAT9t7+ItBaAGULR+a92ieLK5fbiXNKflkdlVckdMiK2ed3Iu/kSDBZk
H17TR9dHHuaHNKcgiIn/Yxu14WZ1ED0IVfpz9FFCD/mAiNB7/IWP4N70FiaSckWT
jIv8ShMdO3MSKvOiweFizcHTnufRZOeEq34ZIadXLix6nJRetpKUVWBrJ72HQrZ9
NCSbrR4v5Mr9xNZi8S7qbg6m7+xV3T8jRrMTh4gl2faqX4bs1E6EOrJmVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFExysFGoOMUuaFPedZpwZZ+Dp0tPMB8GA1UdIwQY
MBaAFHw9iqQ4NQSjGv9LAGgQoGvPAwWuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZkQyS3BEZzFCS01hXzBzQWFCQ2dhODhEQmE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9hNDJlOTQtMTViNy00MjcyLTllYjAt
OTlkYjIxMjQ0ZWRmLzEvZkQyS3BEZzFCS01hXzBzQWFCQ2dhODhEQmE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC9hNDJlOTQtMTViNy00MjcyLTllYjAtOTlkYjIxMjQ0ZWRm
LzEvZkQyS3BEZzFCS01hXzBzQWFCQ2dhODhEQmE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAluMfQSUo
EqTQRlE0BDdnDxsCetTOcrtGAljAxAwy1tnElg2dmfkTMsF2DtR1s1zso2EpQBgZ
ZBck8KPZwWCK0RtLG/4uYo/5bPVQucMcwR+Y12EZCKLSRdNrPfEx2Afj+4nNmbpc
OIaupR2/tzcnjbYbdBF5pcqKNMMwK/R6v9GOAchNZ/zTpgWxFMc+hRWTTfmx1QVh
Kr8Wo2oLcng0v8jJhE73At3LPf+q+HEiSgEK2Bwhu/i9d6OH1P5Y8ZtcsE5/zME7
te57rxDwXBUMZEEHsfWS72hJz3WMEZZgfPFL1m6QwZtxUndOOwR+NN77jXzHaILT
jdhjNDWccVV2oQ==
-----END CERTIFICATE-----
Generated at Sat Aug 2 05:36:57 2025 by rpki-client