Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.mft
File: mXwn0VtG2xhLwCswPIa0fEScG1Q.mft (raw, json)
Hash identifier: Xh+9p0AVoIyfOJDDHItnW+n+8dmK/z0gVgOWj4ApDiE=
Subject key identifier: 30:B1:EE:BF:0E:FA:32:80:61:92:0E:45:80:ED:A5:8A:30:A6:26:4B
Authority key identifier: 99:7C:27:D1:5B:46:DB:18:4B:C0:2B:30:3C:86:B4:7C:44:9C:1B:54
Certificate issuer: /CN=997c27d15b46db184bc02b303c86b47c449c1b54
Certificate serial: 0199221F32AEF7E9F15990B439B49B22F35F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXwn0VtG2xhLwCswPIa0fEScG1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.mft
Manifest number: 0F36
Signing time: Sun 07 Sep 2025 03:01:33 +0000
Manifest this update: Sun 07 Sep 2025 03:01:33 +0000
Manifest next update: Mon 08 Sep 2025 03:01:33 +0000
Files and hashes: 1: JpZlGPUSnNPcPAQ7HrfbEiiCY90.roa (hash: sj/ySyRWLvZHGTxRHODxTY1XK4NRx1uXT8wwjiiWvG0=)
2: mXwn0VtG2xhLwCswPIa0fEScG1Q.crl (hash: ct9zVeU/ye20Dla48J2VMYwSIs3eje3g2/OHYYo051g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXwn0VtG2xhLwCswPIa0fEScG1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:32:ae:f7:e9:f1:59:90:b4:39:b4:9b:22:f3:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997c27d15b46db184bc02b303c86b47c449c1b54
Validity
Not Before: Sep 7 03:01:33 2025 GMT
Not After : Sep 8 03:01:33 2025 GMT
Subject: CN=30b1eebf0efa328061920e4580eda58a30a6264b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:67:ae:2e:14:23:5a:e5:0e:ce:ba:e7:9b:fd:
72:a7:61:3d:22:a5:70:51:ba:a6:ed:4c:3a:a9:ae:
04:9d:82:e3:43:4c:a5:6b:9d:eb:ae:dd:7b:f3:a3:
05:a5:f3:68:63:06:7c:1d:ce:ba:13:fb:23:a2:f5:
d1:0d:35:4f:a0:c9:19:ef:6a:04:59:5c:dc:4b:10:
0f:90:5a:dc:98:47:69:67:40:ce:2b:fa:99:98:48:
f9:06:38:ea:e4:85:8d:55:67:ae:61:31:51:5a:a4:
f1:ae:12:98:a6:f7:17:8c:74:de:37:1c:53:d2:dd:
bb:5b:61:68:b6:26:d2:97:01:44:5e:6c:fa:29:f7:
03:1d:1f:51:f9:3d:a4:cc:de:a4:53:49:ec:c3:f0:
35:68:28:86:dd:09:fd:41:c6:d4:47:a0:ba:a0:2a:
dd:21:f0:87:14:f4:6e:90:78:76:2d:19:1e:23:51:
65:25:2d:c2:72:16:0f:87:e6:d5:74:83:71:b0:b4:
b4:5e:d3:fc:7f:0a:88:ce:91:04:09:4b:44:11:9d:
ed:70:59:ae:bd:9c:f6:51:58:28:b1:12:cc:a1:98:
5a:d6:cc:60:17:cc:2d:c6:4c:c4:8e:ab:91:22:64:
56:48:5b:eb:22:c0:b3:4a:29:2f:1a:b0:4f:8d:8d:
bf:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:B1:EE:BF:0E:FA:32:80:61:92:0E:45:80:ED:A5:8A:30:A6:26:4B
X509v3 Authority Key Identifier:
keyid:99:7C:27:D1:5B:46:DB:18:4B:C0:2B:30:3C:86:B4:7C:44:9C:1B:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXwn0VtG2xhLwCswPIa0fEScG1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:4a:aa:4c:ab:48:f9:38:9a:08:60:18:22:66:97:14:d9:4f:
e4:be:92:ea:9f:5f:90:34:4a:09:b8:d8:0e:02:e0:04:c6:be:
52:24:37:63:ad:bc:3d:cb:dd:6c:c0:46:90:d0:b4:d2:92:37:
14:3b:52:d8:3b:ee:a8:18:95:dc:28:7c:5a:f6:31:ac:5b:a8:
14:09:9d:a8:4a:e0:10:98:b9:dc:fc:7f:12:6b:dc:e2:08:bb:
dc:c7:78:57:28:36:3a:ec:16:d6:83:ea:23:0f:9d:97:19:0b:
08:c4:0d:87:09:31:3d:a4:27:0e:b5:fa:17:e7:56:81:e8:1a:
82:6f:06:00:c7:10:2e:83:9f:bc:2a:24:63:72:0a:93:b1:da:
03:1d:3f:a0:52:e6:7c:d9:20:ee:d1:d9:36:02:bc:e7:9a:47:
b8:15:09:c7:d4:6a:6a:f3:19:93:20:cb:e0:e9:44:e4:fa:16:
3b:fa:1a:b7:d9:c2:f6:d6:4c:ee:b9:65:f6:c1:a5:11:2c:28:
d6:f8:55:fa:00:fe:6f:24:f6:38:63:74:d1:3b:dc:da:c3:29:
95:88:a2:86:45:bb:19:1a:4c:78:e6:cc:25:e8:87:6c:36:6d:
f4:ba:fc:85:66:17:d0:8e:bf:49:4c:eb:44:1a:9c:d4:f7:6a:
f4:33:c2:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiHzKu9+nxWZC0ObSbIvNfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5N2MyN2QxNWI0NmRiMTg0YmMwMmIzMDNjODZiNDdjNDQ5
YzFiNTQwHhcNMjUwOTA3MDMwMTMzWhcNMjUwOTA4MDMwMTMzWjAzMTEwLwYDVQQD
EygzMGIxZWViZjBlZmEzMjgwNjE5MjBlNDU4MGVkYTU4YTMwYTYyNjRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGeuLhQjWuUOzrrnm/1yp2E9IqVw
Ubqm7Uw6qa4EnYLjQ0yla53rrt1786MFpfNoYwZ8Hc66E/sjovXRDTVPoMkZ72oE
WVzcSxAPkFrcmEdpZ0DOK/qZmEj5Bjjq5IWNVWeuYTFRWqTxrhKYpvcXjHTeNxxT
0t27W2FotibSlwFEXmz6KfcDHR9R+T2kzN6kU0nsw/A1aCiG3Qn9QcbUR6C6oCrd
IfCHFPRukHh2LRkeI1FlJS3CchYPh+bVdINxsLS0XtP8fwqIzpEECUtEEZ3tcFmu
vZz2UVgosRLMoZha1sxgF8wtxkzEjquRImRWSFvrIsCzSikvGrBPjY2/ZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDCx7r8O+jKAYZIORYDtpYowpiZLMB8GA1UdIwQY
MBaAFJl8J9FbRtsYS8ArMDyGtHxEnBtUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVh3bjBWdEcyeGhMd0Nzd1BJYTBmRVNjRzFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi81Y2NiYWYtYzUxZC00ZTc2LWEzZWUt
MzVhYjQyMDE3M2RiLzEvbVh3bjBWdEcyeGhMd0Nzd1BJYTBmRVNjRzFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi81Y2NiYWYtYzUxZC00ZTc2LWEzZWUtMzVhYjQyMDE3M2Ri
LzEvbVh3bjBWdEcyeGhMd0Nzd1BJYTBmRVNjRzFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIkqqTKtI
+TiaCGAYImaXFNlP5L6S6p9fkDRKCbjYDgLgBMa+UiQ3Y628PcvdbMBGkNC00pI3
FDtS2DvuqBiV3Ch8WvYxrFuoFAmdqErgEJi53Px/Emvc4gi73Md4Vyg2OuwW1oPq
Iw+dlxkLCMQNhwkxPaQnDrX6F+dWgegagm8GAMcQLoOfvCokY3IKk7HaAx0/oFLm
fNkg7tHZNgK855pHuBUJx9RqavMZkyDL4OlE5PoWO/oat9nC9tZM7rll9sGlESwo
1vhV+gD+byT2OGN00Tvc2sMplYiihkW7GRpMeObMJeiHbDZt9Lr8hWYX0I6/SUzr
RBqc1Pdq9DPC2Q==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:33 2025 by rpki-client