Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
File: U8DiB45PPrpfh5UD_dgJw4O7dig.mft (raw, json)
Hash identifier: z7w4DVyAsv0eYN01/TR48RpPNot/rzbuiOV4r8qVsWY=
Subject key identifier: 39:A7:D5:EB:7F:C9:45:AB:70:AD:04:6A:6B:9B:CF:EA:6E:61:23:51
Authority key identifier: 53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28
Certificate issuer: /CN=53c0e2078e4f3eba5f879503fdd809c383bb7628
Certificate serial: 0198C56D1D856C4F227160168CA155B2B7CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
Manifest number: 103E
Signing time: Wed 20 Aug 2025 03:01:59 +0000
Manifest this update: Wed 20 Aug 2025 03:01:59 +0000
Manifest next update: Thu 21 Aug 2025 03:01:59 +0000
Files and hashes: 1: U8DiB45PPrpfh5UD_dgJw4O7dig.crl (hash: AQoO9ToUspJwpQnsoU3Ay2/b5sUukSK0P0C1+8WZKUQ=)
2: XOqVL4Qlgd2qj_R2o35sDNSHJkw.roa (hash: Vhjo7o5u3C511AphXSnY5EBALpIpM0HGnrEGYenlVkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 03:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c5:6d:1d:85:6c:4f:22:71:60:16:8c:a1:55:b2:b7:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c0e2078e4f3eba5f879503fdd809c383bb7628
Validity
Not Before: Aug 20 03:01:59 2025 GMT
Not After : Aug 21 03:01:59 2025 GMT
Subject: CN=39a7d5eb7fc945ab70ad046a6b9bcfea6e612351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3c:a0:d9:43:2f:aa:cd:c6:8c:2c:52:41:23:
48:75:02:fc:34:b5:5e:db:13:32:a2:00:de:1b:a4:
5a:87:73:ef:96:70:de:82:cd:87:19:b9:86:0d:34:
f7:75:df:8d:cd:db:03:47:7f:2f:f2:d4:3c:57:37:
45:35:ae:6d:ae:b3:5d:b3:47:91:62:dc:29:b4:ca:
7e:90:2a:42:d2:9e:01:5f:24:4c:95:e7:2e:e0:5a:
28:5a:da:88:0b:f7:65:c0:1a:b9:eb:9d:64:b6:7e:
10:7e:34:f3:30:13:48:72:ca:fd:36:d2:ac:50:26:
2d:db:87:86:e5:22:1e:45:df:c7:c3:11:c5:38:7c:
69:47:67:aa:cf:98:e2:c0:b6:53:e0:6b:de:48:96:
ba:0f:93:41:89:10:53:3c:d3:c6:8b:8e:0d:1e:2c:
53:b7:21:f4:4e:72:70:f3:de:32:fc:9c:c8:79:f4:
28:c9:7b:e9:05:b4:f9:8d:71:4d:e7:08:ab:03:40:
8f:ba:a1:e3:9c:4d:94:d6:7d:d5:db:5a:d3:27:71:
f0:0f:0a:30:24:9c:7b:5a:19:3a:ed:f4:42:5a:b6:
67:4b:11:50:69:29:d6:ce:4c:a1:81:62:12:66:17:
bd:7f:ed:01:31:eb:7f:47:af:e4:dc:35:36:b2:4e:
88:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:A7:D5:EB:7F:C9:45:AB:70:AD:04:6A:6B:9B:CF:EA:6E:61:23:51
X509v3 Authority Key Identifier:
keyid:53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:0b:ef:f8:4a:18:e5:22:79:46:34:50:0a:96:4e:61:2b:88:
02:fd:b8:28:18:03:f0:e7:c1:fc:2e:9d:1b:54:f9:19:a8:43:
f3:ec:19:5c:5e:98:61:7e:79:5d:3b:7d:c6:12:dd:84:f4:12:
eb:2c:c3:9d:82:50:9e:5b:6a:7b:03:4f:a1:38:72:e4:9b:3a:
0a:11:66:f2:24:ed:15:52:87:b3:32:83:6b:97:68:93:56:34:
44:d0:d8:85:c6:f7:d0:5f:ca:2e:4b:43:51:6d:a2:cc:0a:16:
44:a3:30:b6:14:23:98:02:75:ed:ff:88:1d:7b:b0:ac:b6:78:
b3:09:55:64:2b:9b:2a:d7:26:52:86:20:0f:18:33:ef:2e:60:
47:bc:a0:a7:aa:94:b9:9e:98:82:cf:54:b5:bf:20:15:8c:55:
1c:0e:6e:de:54:12:f1:5b:21:9a:64:4a:a8:7b:7d:5c:20:20:
33:6c:ae:5e:ed:8c:96:38:76:29:22:c4:87:62:36:47:36:9c:
d8:46:b3:fa:30:3b:ec:73:3a:e0:23:60:ca:20:d5:5d:1e:03:
0a:13:ca:54:2c:0a:c6:9e:17:41:3d:63:81:91:c2:92:61:a8:
42:7f:6a:5b:22:3c:b6:89:d3:61:02:b6:22:b7:b5:51:ab:e4:
d8:cb:6e:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjFbR2FbE8icWAWjKFVsrfMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYzBlMjA3OGU0ZjNlYmE1Zjg3OTUwM2ZkZDgwOWMzODNi
Yjc2MjgwHhcNMjUwODIwMDMwMTU5WhcNMjUwODIxMDMwMTU5WjAzMTEwLwYDVQQD
EygzOWE3ZDVlYjdmYzk0NWFiNzBhZDA0NmE2YjliY2ZlYTZlNjEyMzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAozyg2UMvqs3GjCxSQSNIdQL8NLVe
2xMyogDeG6Rah3PvlnDegs2HGbmGDTT3dd+NzdsDR38v8tQ8VzdFNa5trrNds0eR
YtwptMp+kCpC0p4BXyRMlecu4FooWtqIC/dlwBq5651ktn4QfjTzMBNIcsr9NtKs
UCYt24eG5SIeRd/HwxHFOHxpR2eqz5jiwLZT4GveSJa6D5NBiRBTPNPGi44NHixT
tyH0TnJw894y/JzIefQoyXvpBbT5jXFN5wirA0CPuqHjnE2U1n3V21rTJ3HwDwow
JJx7Whk67fRCWrZnSxFQaSnWzkyhgWISZhe9f+0BMet/R6/k3DU2sk6IJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDmn1et/yUWrcK0Eamubz+puYSNRMB8GA1UdIwQY
MBaAFFPA4geOTz66X4eVA/3YCcODu3YoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVThEaUI0NVBQcnBmaDVVRF9kZ0p3NE83ZGlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9iMzY2MzYtMzMwNi00NDhmLThlY2Yt
NTY0ODJiMzkwNjc4LzEvVThEaUI0NVBQcnBmaDVVRF9kZ0p3NE83ZGlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9iMzY2MzYtMzMwNi00NDhmLThlY2YtNTY0ODJiMzkwNjc4
LzEvVThEaUI0NVBQcnBmaDVVRF9kZ0p3NE83ZGlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALwvv+EoY
5SJ5RjRQCpZOYSuIAv24KBgD8OfB/C6dG1T5GahD8+wZXF6YYX55XTt9xhLdhPQS
6yzDnYJQnltqewNPoThy5Js6ChFm8iTtFVKHszKDa5dok1Y0RNDYhcb30F/KLktD
UW2izAoWRKMwthQjmAJ17f+IHXuwrLZ4swlVZCubKtcmUoYgDxgz7y5gR7ygp6qU
uZ6Ygs9Utb8gFYxVHA5u3lQS8VshmmRKqHt9XCAgM2yuXu2Mljh2KSLEh2I2Rzac
2Eaz+jA77HM64CNgyiDVXR4DChPKVCwKxp4XQT1jgZHCkmGoQn9qWyI8tonTYQK2
Ire1Uavk2Mtuhg==
-----END CERTIFICATE-----
Generated at Wed Aug 20 10:45:04 2025 by rpki-client