Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
File: toF3Ytn8jxGwHPUjS25DHPvsG80.mft (raw, json)
Hash identifier: B3EdazJIFuo0I+bAXS0N2m1WRz+VTjf0ERMlofkJzJk=
Subject key identifier: E5:66:9C:EA:3D:8B:B5:10:9D:41:41:18:5D:07:C0:B7:8B:BF:28:20
Authority key identifier: B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
Certificate issuer: /CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Certificate serial: 019921E76713CD17376C02047338CC724AA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
Manifest number: 09D1
Signing time: Sun 07 Sep 2025 02:00:37 +0000
Manifest this update: Sun 07 Sep 2025 02:00:37 +0000
Manifest next update: Mon 08 Sep 2025 02:00:37 +0000
Files and hashes: 1: iFeMzfeEdL5eLiPhJVZH9fOR9os.roa (hash: Hluf44L3umjh9a1sEhuox24mM0+jKftFeuevrlqeW6M=)
2: toF3Ytn8jxGwHPUjS25DHPvsG80.crl (hash: hGZO2tcKD6uhPV5poggsONZvQASVRJsAXzjmcFrlm4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:67:13:cd:17:37:6c:02:04:73:38:cc:72:4a:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Validity
Not Before: Sep 7 02:00:37 2025 GMT
Not After : Sep 8 02:00:37 2025 GMT
Subject: CN=e5669cea3d8bb5109d4141185d07c0b78bbf2820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:13:b2:fd:73:2e:25:74:30:77:88:0f:c9:e4:
17:ca:83:0d:e6:fe:3e:51:eb:16:47:f5:94:04:02:
6e:2a:81:fe:98:3a:02:7f:d8:a2:f2:db:d3:4c:81:
bb:97:30:20:89:ce:17:1a:19:b5:4d:18:4b:fd:d8:
44:5f:a9:97:04:d5:90:b6:6e:ab:b8:d6:bf:61:c5:
0e:ca:b6:ff:6a:71:70:cf:88:ae:e2:bf:e3:c2:81:
f2:1c:02:8e:f9:7e:ce:5e:e8:bb:0e:d5:a9:eb:d5:
11:ec:4d:59:9d:77:87:b5:51:cb:dc:08:fb:85:4d:
c0:89:21:b5:04:f7:6c:14:f0:8c:30:2b:c9:b5:c1:
01:80:fc:3d:3e:49:a1:b7:c6:28:c0:e8:69:98:e8:
7d:3e:11:d6:42:1a:d4:f5:b6:ed:79:50:6b:76:0c:
95:01:75:b8:71:e4:31:65:78:c8:ab:30:d6:db:d4:
e9:1e:5a:2c:fd:af:a2:92:9d:db:57:e3:af:e0:af:
8c:ca:fd:17:fd:07:a1:94:36:3f:9c:50:41:71:76:
b2:ea:21:ab:f6:62:0f:36:cb:83:a2:28:50:ca:ac:
40:6a:04:76:5c:b9:0b:0d:09:cc:51:7b:3c:4d:d9:
c5:38:ac:a6:27:b7:54:b4:06:11:04:e5:98:14:35:
9a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:66:9C:EA:3D:8B:B5:10:9D:41:41:18:5D:07:C0:B7:8B:BF:28:20
X509v3 Authority Key Identifier:
keyid:B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:fa:11:87:e5:24:fe:97:0c:46:42:a8:3c:b1:07:a3:13:41:
1a:e4:8a:01:22:4c:24:2c:7b:f1:1d:34:34:f3:c1:2c:b2:b0:
db:e3:3e:d4:92:1a:5f:74:2b:b6:30:b8:a9:ed:3b:7c:b4:e4:
3b:b8:2c:cd:32:78:11:30:90:f9:f9:61:93:71:79:b4:70:56:
4f:8d:73:12:92:aa:43:f2:e1:92:44:99:7b:fa:11:b0:e1:c6:
15:a3:f4:34:37:09:5a:e8:c6:22:e0:2f:7d:22:a8:84:25:07:
66:ea:ef:56:04:7d:d1:d7:30:db:3c:50:15:01:e2:3d:9a:2f:
95:91:c4:03:0d:21:00:8a:09:0c:07:77:32:e4:3d:bc:2b:77:
76:c6:ca:c4:9b:92:f2:64:24:bb:e2:bf:5b:52:cf:6b:7b:09:
f4:70:58:08:4d:a7:82:99:6a:4f:ea:53:9f:69:e4:10:c2:4e:
c0:79:09:50:e1:fb:fd:1b:c6:ce:8f:fe:26:d7:0a:4b:9e:6a:
a9:9a:6a:4a:83:aa:4b:6d:dc:56:8f:2c:d5:d3:d7:ab:f0:c2:
c7:7f:76:3a:4e:55:e7:e8:ca:71:6b:85:f4:70:f9:53:9f:ed:
a3:92:57:f0:f7:66:28:bb:c8:ab:84:74:5c:29:ed:a0:ef:f5:
c2:0f:c6:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkh52cTzRc3bAIEczjMckqjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2ODE3NzYyZDlmYzhmMTFiMDFjZjUyMzRiNmU0MzFjZmJl
YzFiY2QwHhcNMjUwOTA3MDIwMDM3WhcNMjUwOTA4MDIwMDM3WjAzMTEwLwYDVQQD
EyhlNTY2OWNlYTNkOGJiNTEwOWQ0MTQxMTg1ZDA3YzBiNzhiYmYyODIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtROy/XMuJXQwd4gPyeQXyoMN5v4+
UesWR/WUBAJuKoH+mDoCf9ii8tvTTIG7lzAgic4XGhm1TRhL/dhEX6mXBNWQtm6r
uNa/YcUOyrb/anFwz4iu4r/jwoHyHAKO+X7OXui7DtWp69UR7E1ZnXeHtVHL3Aj7
hU3AiSG1BPdsFPCMMCvJtcEBgPw9Pkmht8YowOhpmOh9PhHWQhrU9bbteVBrdgyV
AXW4ceQxZXjIqzDW29TpHlos/a+ikp3bV+Ov4K+Myv0X/QehlDY/nFBBcXay6iGr
9mIPNsuDoihQyqxAagR2XLkLDQnMUXs8TdnFOKymJ7dUtAYRBOWYFDWavQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOVmnOo9i7UQnUFBGF0HwLeLvyggMB8GA1UdIwQY
MBaAFLaBd2LZ/I8RsBz1I0tuQxz77BvNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdG9GM1l0bjhqeEd3SFBValMyNURIUHZzRzgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8xZTYzYTMtYjMwNi00MTNhLWFkZjQt
ZDNmMjY1YWQ1MTRmLzEvdG9GM1l0bjhqeEd3SFBValMyNURIUHZzRzgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8xZTYzYTMtYjMwNi00MTNhLWFkZjQtZDNmMjY1YWQ1MTRm
LzEvdG9GM1l0bjhqeEd3SFBValMyNURIUHZzRzgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOPoRh+Uk
/pcMRkKoPLEHoxNBGuSKASJMJCx78R00NPPBLLKw2+M+1JIaX3QrtjC4qe07fLTk
O7gszTJ4ETCQ+flhk3F5tHBWT41zEpKqQ/LhkkSZe/oRsOHGFaP0NDcJWujGIuAv
fSKohCUHZurvVgR90dcw2zxQFQHiPZovlZHEAw0hAIoJDAd3MuQ9vCt3dsbKxJuS
8mQku+K/W1LPa3sJ9HBYCE2ngplqT+pTn2nkEMJOwHkJUOH7/RvGzo/+JtcKS55q
qZpqSoOqS23cVo8s1dPXq/DCx392Ok5V5+jKcWuF9HD5U5/to5JX8PdmKLvIq4R0
XCntoO/1wg/GSA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:26 2025 by rpki-client