Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
File: cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft (raw, json)
Hash identifier: 3gUZ39joF+Jh6XQeFrO9zlC5yjvsEZ2jqBdEXxExZY8=
Subject key identifier: 39:EC:3B:4E:34:D1:D3:93:3A:A5:DA:D9:A5:20:EE:AA:CE:03:6E:DF
Authority key identifier: 70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
Certificate issuer: /CN=70cee62b79472dcae51ead4d8ea06923870f5197
Certificate serial: 0199221E29AB97455F581C178A51D69D72FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
Manifest number: 166D
Signing time: Sun 07 Sep 2025 03:00:26 +0000
Manifest this update: Sun 07 Sep 2025 03:00:26 +0000
Manifest next update: Mon 08 Sep 2025 03:00:26 +0000
Files and hashes: 1: cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl (hash: JOzgznUq3oNLBruTWDR03g6wN+JkGo3Fm0yic++CyIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:29:ab:97:45:5f:58:1c:17:8a:51:d6:9d:72:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cee62b79472dcae51ead4d8ea06923870f5197
Validity
Not Before: Sep 7 03:00:26 2025 GMT
Not After : Sep 8 03:00:26 2025 GMT
Subject: CN=39ec3b4e34d1d3933aa5dad9a520eeaace036edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d6:5a:21:18:09:d0:14:f1:3e:30:82:3f:d0:
8d:9f:6b:63:21:bc:98:1e:08:3d:a7:c7:65:d5:49:
62:68:f7:73:aa:fe:a3:85:8a:af:b7:23:98:07:84:
f6:1e:1a:a5:bc:8c:a5:f6:a1:b4:46:78:5e:d5:c0:
67:21:8f:b6:cc:ce:7c:57:c6:d5:05:c2:96:01:3e:
b7:a7:85:60:3e:23:7a:af:38:fe:ac:d2:c9:03:e5:
80:46:eb:13:ed:45:65:48:8f:7f:ab:36:2b:d9:1a:
22:62:2c:4f:6f:67:db:2a:e4:38:4f:dd:fd:95:6b:
75:7b:a0:6a:09:3a:36:bc:fd:b1:a1:10:54:c4:e8:
89:c8:3e:3c:e1:d7:4c:52:49:fa:03:df:7b:dd:83:
cf:1e:10:4e:5f:6b:83:83:a0:e1:33:7b:79:38:b3:
07:a4:6b:2b:b6:5a:5b:02:ea:bc:bd:d5:01:b4:72:
35:a2:66:96:8c:0d:2d:43:c5:be:35:5f:9a:7e:6f:
e6:bf:7d:1b:9a:40:93:eb:d7:dd:4a:ad:08:bb:10:
b9:ac:46:4d:26:a1:1c:76:ef:b8:8b:a1:6d:93:21:
30:6a:75:5a:36:a3:15:55:4e:67:e2:1e:35:32:8d:
f4:12:4c:c7:f1:45:f5:08:af:f0:d5:4a:2f:ec:51:
9d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:EC:3B:4E:34:D1:D3:93:3A:A5:DA:D9:A5:20:EE:AA:CE:03:6E:DF
X509v3 Authority Key Identifier:
keyid:70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:22:be:a5:a8:d3:d9:82:e6:c2:af:16:90:7e:ce:c3:f7:8f:
2c:e6:53:41:40:7d:6c:8c:3e:47:47:c9:8c:0f:4f:0e:24:c1:
84:1b:aa:ea:89:db:16:cb:e4:ba:18:01:83:57:47:83:55:75:
fc:74:e3:18:56:a0:ce:3f:9e:ad:ad:c5:ba:73:46:79:ff:b7:
e2:15:fa:82:ed:56:20:12:b8:9d:82:56:3d:11:17:e5:09:d3:
2c:46:e0:f0:ef:a9:86:50:14:3a:c0:10:fe:c0:7a:ad:b8:47:
75:30:9f:6a:70:21:ee:b1:56:75:a8:e1:44:e5:eb:fa:f5:c4:
9e:68:6b:03:31:9b:d0:24:82:4b:f9:5c:d0:ff:1b:91:2a:d2:
26:30:3a:95:25:55:fd:0b:d9:0e:1a:c0:33:4b:05:91:4b:08:
52:b7:02:65:ef:74:ba:75:83:17:6d:35:3d:9a:d1:b3:39:c6:
f1:98:9f:39:fd:25:50:41:d6:70:6e:92:91:a3:9e:44:5a:07:
52:fd:65:98:7f:93:86:86:70:9b:95:7a:5b:4a:50:73:5b:b0:
56:2f:2b:c0:64:23:06:6d:e6:e4:03:b9:80:8c:fb:33:b0:e5:
9b:29:29:d1:fe:10:fe:6b:5c:71:34:24:2d:8c:52:9e:78:f4:
73:84:db:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiHimrl0VfWBwXilHWnXL+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwY2VlNjJiNzk0NzJkY2FlNTFlYWQ0ZDhlYTA2OTIzODcw
ZjUxOTcwHhcNMjUwOTA3MDMwMDI2WhcNMjUwOTA4MDMwMDI2WjAzMTEwLwYDVQQD
EygzOWVjM2I0ZTM0ZDFkMzkzM2FhNWRhZDlhNTIwZWVhYWNlMDM2ZWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsdZaIRgJ0BTxPjCCP9CNn2tjIbyY
Hgg9p8dl1UliaPdzqv6jhYqvtyOYB4T2HhqlvIyl9qG0Rnhe1cBnIY+2zM58V8bV
BcKWAT63p4VgPiN6rzj+rNLJA+WARusT7UVlSI9/qzYr2RoiYixPb2fbKuQ4T939
lWt1e6BqCTo2vP2xoRBUxOiJyD484ddMUkn6A9973YPPHhBOX2uDg6DhM3t5OLMH
pGsrtlpbAuq8vdUBtHI1omaWjA0tQ8W+NV+afm/mv30bmkCT69fdSq0IuxC5rEZN
JqEcdu+4i6FtkyEwanVaNqMVVU5n4h41Mo30EkzH8UX1CK/w1Uov7FGdsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDnsO0400dOTOqXa2aUg7qrOA27fMB8GA1UdIwQY
MBaAFHDO5it5Ry3K5R6tTY6gaSOHD1GXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTkt
ZDBlMjRmMDE3MDg4LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTktZDBlMjRmMDE3MDg4
LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAliK+pajT
2YLmwq8WkH7Ow/ePLOZTQUB9bIw+R0fJjA9PDiTBhBuq6onbFsvkuhgBg1dHg1V1
/HTjGFagzj+era3FunNGef+34hX6gu1WIBK4nYJWPREX5QnTLEbg8O+phlAUOsAQ
/sB6rbhHdTCfanAh7rFWdajhROXr+vXEnmhrAzGb0CSCS/lc0P8bkSrSJjA6lSVV
/QvZDhrAM0sFkUsIUrcCZe90unWDF201PZrRsznG8ZifOf0lUEHWcG6SkaOeRFoH
Uv1lmH+ThoZwm5V6W0pQc1uwVi8rwGQjBm3m5AO5gIz7M7Dlmykp0f4Q/mtccTQk
LYxSnnj0c4Tb2Q==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:22:16 2025 by rpki-client