Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json)
Hash identifier: hOUTee2mqg7Y/YWxNgoyXxGzAMZdGZge6Fj3WnkgilI=
Subject key identifier: 6D:91:01:78:93:17:90:BE:E3:89:84:27:B3:BF:0B:04:6A:4E:60:AB
Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Certificate serial: 01996247250A50E871592678A4A64680CA97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
Manifest number: 03C3
Signing time: Fri 19 Sep 2025 14:00:53 +0000
Manifest this update: Fri 19 Sep 2025 14:00:53 +0000
Manifest next update: Sat 20 Sep 2025 14:00:53 +0000
Files and hashes: 1: kdQZ4QS0sUqXnywKZ8M79hUmfTA.roa (hash: xGG3G4XfdVhcDuFzw8EOPzLUi5vn/b3D8pkyEY9PSkc=)
2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: fCYN4qKMveCaU6T3Ul50Ijt3LNfQpja02VXTgW+8fqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:62:47:25:0a:50:e8:71:59:26:78:a4:a6:46:80:ca:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Validity
Not Before: Sep 19 14:00:53 2025 GMT
Not After : Sep 20 14:00:53 2025 GMT
Subject: CN=6d910178931790bee3898427b3bf0b046a4e60ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:25:f1:7a:85:21:32:7f:f0:0b:6b:fd:76:8b:
ad:73:fb:9e:51:58:99:f5:c2:db:fa:8c:32:01:53:
be:6c:5f:03:9a:8a:91:c4:f2:af:1e:ee:7c:2d:7f:
bd:d7:51:b6:1e:6d:2f:8d:a1:bc:83:1d:8f:f5:17:
cf:58:75:5e:09:47:14:fd:40:ec:ad:cb:6a:a7:22:
97:ee:ab:ec:fa:ca:28:12:63:b2:22:d0:53:27:c8:
d6:ed:90:05:f4:30:f5:b6:a4:7d:64:c6:1a:53:56:
ee:7d:79:c8:02:e2:6e:73:b0:c3:8d:72:52:e3:b5:
7e:f3:d3:86:71:4d:24:68:b6:31:72:a8:54:96:96:
ff:8d:74:a8:4e:61:a3:2a:f8:f6:e8:85:71:56:18:
98:fa:a0:16:91:5f:87:f2:ee:e5:7c:2a:0c:c6:e5:
33:72:fa:e9:df:fc:93:03:19:b6:93:db:9f:d2:d4:
96:50:75:bc:64:82:5a:7d:c4:b5:33:c7:29:b2:93:
3e:e1:d0:50:0f:75:3e:28:82:b0:6c:86:7a:66:66:
d7:df:a7:e8:82:c0:e6:36:6e:88:18:1f:56:f4:fc:
be:9c:ea:ae:4c:7d:b1:05:41:84:ba:74:d7:69:28:
ee:a6:91:fa:e2:05:1b:2e:b9:61:98:04:f8:0e:7e:
36:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:91:01:78:93:17:90:BE:E3:89:84:27:B3:BF:0B:04:6A:4E:60:AB
X509v3 Authority Key Identifier:
keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:3e:f2:b9:25:62:75:58:03:df:8a:24:c6:5d:30:c9:db:cc:
61:d6:ef:06:be:47:b7:b9:7d:1c:d5:14:ef:27:50:8e:f6:24:
d0:63:d1:16:7a:6e:a9:ad:f5:61:f2:1c:e6:f1:a0:c0:77:9e:
8e:68:aa:7e:ac:9e:e6:20:3c:51:20:b5:2b:82:18:e9:9c:14:
56:d7:82:6e:bf:af:27:9c:f2:89:1b:c6:a1:e3:6e:cf:20:9c:
0a:10:5c:71:b0:3d:b8:55:65:31:89:ce:45:66:b5:54:4a:82:
f3:d0:91:d7:d2:02:3d:2d:c9:24:5c:2b:ed:18:f6:70:b5:c9:
d0:f7:aa:1c:78:d5:05:a8:3a:3d:4b:79:11:86:3b:6b:08:a4:
a0:7c:d4:6b:64:36:d1:64:6c:fa:4d:0d:96:0f:18:07:24:96:
0f:ee:55:66:f6:69:2a:b9:53:e3:ff:b1:da:60:98:5b:58:2f:
eb:f3:0f:d4:c2:de:fb:97:ae:25:9a:50:fa:77:fd:03:c0:e7:
41:ad:a8:18:6a:6b:f6:19:05:b8:cd:35:38:33:f0:22:90:03:
87:33:76:2a:f5:ec:f6:d0:db:16:41:23:cf:f5:5c:c3:7f:d9:
c1:64:6f:e2:81:34:9c:da:12:3b:8f:0d:14:44:a1:ab:b8:19:
21:f8:73:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZliRyUKUOhxWSZ4pKZGgMqXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MzZjMGYwZWM4YmJlZGYwZjYwODQ0ZGZlNGZlOTM5MzY5
YTRiNDAwHhcNMjUwOTE5MTQwMDUzWhcNMjUwOTIwMTQwMDUzWjAzMTEwLwYDVQQD
Eyg2ZDkxMDE3ODkzMTc5MGJlZTM4OTg0MjdiM2JmMGIwNDZhNGU2MGFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyXxeoUhMn/wC2v9doutc/ueUViZ
9cLb+owyAVO+bF8DmoqRxPKvHu58LX+911G2Hm0vjaG8gx2P9RfPWHVeCUcU/UDs
rctqpyKX7qvs+sooEmOyItBTJ8jW7ZAF9DD1tqR9ZMYaU1bufXnIAuJuc7DDjXJS
47V+89OGcU0kaLYxcqhUlpb/jXSoTmGjKvj26IVxVhiY+qAWkV+H8u7lfCoMxuUz
cvrp3/yTAxm2k9uf0tSWUHW8ZIJafcS1M8cpspM+4dBQD3U+KIKwbIZ6ZmbX36fo
gsDmNm6IGB9W9Py+nOquTH2xBUGEunTXaSjuppH64gUbLrlhmAT4Dn42owIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG2RAXiTF5C+44mEJ7O/CwRqTmCrMB8GA1UdIwQY
MBaAFLQ2wPDsi77fD2CETf5P6Tk2mktAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kYjY2YWItNzBhYy00MWFkLTk5NTgt
ZGQ4YjVhZmNlZTNiLzEvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9kYjY2YWItNzBhYy00MWFkLTk5NTgtZGQ4YjVhZmNlZTNi
LzEvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkz7yuSVi
dVgD34okxl0wydvMYdbvBr5Ht7l9HNUU7ydQjvYk0GPRFnpuqa31YfIc5vGgwHee
jmiqfqye5iA8USC1K4IY6ZwUVteCbr+vJ5zyiRvGoeNuzyCcChBccbA9uFVlMYnO
RWa1VEqC89CR19ICPS3JJFwr7Rj2cLXJ0PeqHHjVBag6PUt5EYY7awikoHzUa2Q2
0WRs+k0Nlg8YBySWD+5VZvZpKrlT4/+x2mCYW1gv6/MP1MLe+5euJZpQ+nf9A8Dn
Qa2oGGpr9hkFuM01ODPwIpADhzN2KvXs9tDbFkEjz/Vcw3/ZwWRv4oE0nNoSO48N
FEShq7gZIfhzEg==
-----END CERTIFICATE-----
Generated at Fri Sep 19 15:59:01 2025 by rpki-client