Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
File: F3khM2kRpWiNeOk__l5HIRO7Gb4.mft (raw, json)
Hash identifier: XdJO2uXCkgPS5fTz7bXqsNy/qkzg/4AtToBIOp+C890=
Subject key identifier: 05:A6:9B:86:EA:F0:BF:A7:5B:EA:7C:E4:3A:C7:38:2D:F3:22:09:F5
Authority key identifier: 17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
Certificate issuer: /CN=177921336911a5688d78e93ffe5e472113bb19be
Certificate serial: 0199239EBE288FFBE7052CCF4A39A571560F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
Manifest number: 0653
Signing time: Sun 07 Sep 2025 10:00:29 +0000
Manifest this update: Sun 07 Sep 2025 10:00:29 +0000
Manifest next update: Mon 08 Sep 2025 10:00:29 +0000
Files and hashes: 1: F3khM2kRpWiNeOk__l5HIRO7Gb4.crl (hash: 1+ls3beCZyVPBr+TS/lzda1Eyb/K4hPOr+Hfsu+DXUA=)
2: WN1QsY4J0xzhzXI37At9k24AG4s.roa (hash: aONG4etXL5aCmGtS97ulkTYk4UjXjlB6E7tpLdYeDEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:be:28:8f:fb:e7:05:2c:cf:4a:39:a5:71:56:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=177921336911a5688d78e93ffe5e472113bb19be
Validity
Not Before: Sep 7 10:00:29 2025 GMT
Not After : Sep 8 10:00:29 2025 GMT
Subject: CN=05a69b86eaf0bfa75bea7ce43ac7382df32209f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f1:56:7e:3c:bc:f8:1b:46:30:de:d8:4e:b6:
5a:de:0f:b1:42:6a:8a:73:bc:b2:61:e5:a7:91:d5:
ea:b1:e4:54:a6:20:24:52:1b:b3:11:f4:3b:23:fd:
1d:8b:82:44:2f:47:cd:86:2e:ff:c3:43:04:10:97:
db:76:b4:91:b2:da:3f:e2:89:ac:49:ad:20:0d:16:
f5:a5:ae:72:40:af:76:8c:c7:28:53:19:97:74:0c:
43:c2:b5:55:a5:92:f4:3b:9a:48:1a:ad:ee:8a:1b:
38:1b:91:af:58:8b:f3:bf:c8:f9:a8:2b:f8:9f:24:
9c:dd:ad:66:23:47:24:18:51:9f:11:32:41:3c:9c:
c6:4f:4a:93:b2:ea:01:58:00:85:1d:37:5c:ee:e8:
5e:93:f8:20:8e:e6:49:7a:38:02:b5:00:49:b6:31:
76:c9:eb:cc:b8:6f:21:07:5a:23:a7:12:ab:a6:a5:
82:57:49:db:6a:2c:7b:b6:d8:fe:b2:f9:39:ed:a1:
6d:8e:82:08:3c:eb:17:f1:d7:56:9e:6f:43:42:37:
c4:67:d7:a0:b2:25:38:e1:59:5b:fa:0b:1b:b8:67:
c8:eb:71:0b:16:b8:56:10:ab:91:46:2d:91:cf:dc:
27:e3:a5:b2:6e:d5:4f:01:6a:52:08:87:f9:8e:80:
4a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:A6:9B:86:EA:F0:BF:A7:5B:EA:7C:E4:3A:C7:38:2D:F3:22:09:F5
X509v3 Authority Key Identifier:
keyid:17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:58:dc:3d:e3:f4:1b:c9:7f:d1:3d:62:95:09:a9:a4:85:45:
07:ac:11:04:ac:07:7c:04:47:ba:6b:a1:7d:30:e5:f8:c8:b1:
98:59:95:73:41:f0:1c:26:15:8e:48:1a:99:ed:3e:bf:aa:0a:
fe:49:ea:19:3f:ed:db:d4:83:fb:bf:b2:f3:3a:81:7e:e3:09:
6a:e0:a6:06:b6:12:de:ac:97:bd:48:0d:29:39:6a:03:2e:5f:
80:a0:0f:2c:42:a8:1a:1a:02:7c:8d:d3:b4:1a:d9:33:32:9a:
f5:14:16:0b:31:1d:4c:4c:af:12:0f:10:2c:cb:bc:1c:3d:f4:
a5:25:5b:4d:66:c7:e8:fa:5a:34:03:69:dc:42:cb:00:79:0f:
76:b6:a8:42:e6:08:22:fa:d2:39:9d:5c:05:08:87:a6:d5:a2:
86:74:bc:64:8f:c7:8b:ee:14:d5:23:64:4a:4a:44:60:fd:0d:
0c:83:8f:a6:a1:67:81:bb:d1:68:10:b3:13:cb:93:6d:65:00:
e7:6f:67:5b:4a:d1:d8:b7:79:2d:a6:cc:76:0d:9e:f8:76:7b:
ca:19:a0:66:f1:ba:da:c1:3d:61:78:84:78:7f:13:ed:b9:07:
54:62:41:22:90:c8:ea:c9:3b:d9:b1:47:d1:33:2c:26:2b:06:
6d:ab:41:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjnr4oj/vnBSzPSjmlcVYPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3NzkyMTMzNjkxMWE1Njg4ZDc4ZTkzZmZlNWU0NzIxMTNi
YjE5YmUwHhcNMjUwOTA3MTAwMDI5WhcNMjUwOTA4MTAwMDI5WjAzMTEwLwYDVQQD
EygwNWE2OWI4NmVhZjBiZmE3NWJlYTdjZTQzYWM3MzgyZGYzMjIwOWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy/FWfjy8+BtGMN7YTrZa3g+xQmqK
c7yyYeWnkdXqseRUpiAkUhuzEfQ7I/0di4JEL0fNhi7/w0MEEJfbdrSRsto/4oms
Sa0gDRb1pa5yQK92jMcoUxmXdAxDwrVVpZL0O5pIGq3uihs4G5GvWIvzv8j5qCv4
nySc3a1mI0ckGFGfETJBPJzGT0qTsuoBWACFHTdc7uhek/ggjuZJejgCtQBJtjF2
yevMuG8hB1ojpxKrpqWCV0nbaix7ttj+svk57aFtjoIIPOsX8ddWnm9DQjfEZ9eg
siU44Vlb+gsbuGfI63ELFrhWEKuRRi2Rz9wn46WybtVPAWpSCIf5joBKWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAWmm4bq8L+nW+p85DrHOC3zIgn1MB8GA1UdIwQY
MBaAFBd5ITNpEaVojXjpP/5eRyETuxm+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0Nzgt
YjVjM2QyNGVmZGNkLzEvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0NzgtYjVjM2QyNGVmZGNk
LzEvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsljcPeP0
G8l/0T1ilQmppIVFB6wRBKwHfARHumuhfTDl+MixmFmVc0HwHCYVjkgame0+v6oK
/knqGT/t29SD+7+y8zqBfuMJauCmBrYS3qyXvUgNKTlqAy5fgKAPLEKoGhoCfI3T
tBrZMzKa9RQWCzEdTEyvEg8QLMu8HD30pSVbTWbH6PpaNANp3ELLAHkPdraoQuYI
IvrSOZ1cBQiHptWihnS8ZI/Hi+4U1SNkSkpEYP0NDIOPpqFngbvRaBCzE8uTbWUA
529nW0rR2Ld5LabMdg2e+HZ7yhmgZvG62sE9YXiEeH8T7bkHVGJBIpDI6sk72bFH
0TMsJisGbatB3Q==
-----END CERTIFICATE-----
Generated at Sun Sep 7 14:56:50 2025 by rpki-client