Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
File: U_8iLUoiYwLL8QBoyqb0xB97scs.mft (raw, json)
Hash identifier: cMbsqBvJFn5YF6AmK4BFZU5gsrgzss59V9hvjl++c4g=
Subject key identifier: 6C:6E:DF:A6:DD:84:21:3F:93:BB:24:21:3B:8C:9F:0D:03:D6:8A:F3
Authority key identifier: 53:FF:22:2D:4A:22:63:02:CB:F1:00:68:CA:A6:F4:C4:1F:7B:B1:CB
Certificate issuer: /CN=53ff222d4a226302cbf10068caa6f4c41f7bb1cb
Certificate serial: 019921B0587C86DFB6D5FD8ACBA9BA22C757
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
Manifest number: 0217
Signing time: Sun 07 Sep 2025 01:00:29 +0000
Manifest this update: Sun 07 Sep 2025 01:00:29 +0000
Manifest next update: Mon 08 Sep 2025 01:00:29 +0000
Files and hashes: 1: U_8iLUoiYwLL8QBoyqb0xB97scs.crl (hash: kDh0fk8Qs7UntuQQE9da7M37xxoefWQz1Y8351Ggy5Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:58:7c:86:df:b6:d5:fd:8a:cb:a9:ba:22:c7:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53ff222d4a226302cbf10068caa6f4c41f7bb1cb
Validity
Not Before: Sep 7 01:00:29 2025 GMT
Not After : Sep 8 01:00:29 2025 GMT
Subject: CN=6c6edfa6dd84213f93bb24213b8c9f0d03d68af3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4b:5d:8b:dc:d3:f7:6b:f9:11:1f:54:b7:02:
a4:d0:45:8a:c7:3d:86:b4:9f:43:c1:28:be:73:27:
b7:21:74:a5:6f:cb:a9:c5:11:09:4e:81:4a:9f:76:
83:47:be:5c:5f:25:6a:92:a1:fd:70:48:66:67:a4:
7d:63:64:51:24:da:1b:73:ea:20:e6:b1:e3:8f:17:
4e:bf:69:3e:02:92:92:59:45:79:1f:b7:6a:8b:ba:
fc:9e:6d:fe:18:43:56:19:be:c5:ae:80:0d:ea:0d:
74:b2:0c:d3:71:b2:83:1d:ae:21:4a:60:fe:14:e3:
98:bf:f6:fb:46:8e:6c:f1:e9:7c:8f:e7:c6:50:47:
42:bc:a7:16:87:8d:c5:ac:a5:d9:b7:84:2a:c5:5f:
07:35:11:83:d1:9e:f1:d7:36:ed:0f:38:1c:7c:32:
58:c2:9a:fe:36:b7:2e:5f:90:19:fc:9b:6a:a9:22:
0c:8b:31:3c:43:35:ce:d9:01:d6:cd:09:a9:f3:a7:
57:f9:6f:84:d8:db:0d:99:d9:c6:5f:8c:37:26:e4:
5b:e5:c4:3d:91:5f:d4:80:d7:59:dc:c7:79:2d:6d:
0a:5f:84:90:a1:0e:07:4b:a7:80:ce:e6:68:4c:20:
c2:25:df:52:7d:6a:4b:3a:29:21:6f:44:78:38:fd:
75:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:6E:DF:A6:DD:84:21:3F:93:BB:24:21:3B:8C:9F:0D:03:D6:8A:F3
X509v3 Authority Key Identifier:
keyid:53:FF:22:2D:4A:22:63:02:CB:F1:00:68:CA:A6:F4:C4:1F:7B:B1:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:c4:88:e1:00:d3:27:f9:9e:aa:95:31:29:ca:54:8b:63:9e:
32:47:5e:db:52:10:9c:9f:47:16:c9:ae:8b:89:52:94:85:5b:
b8:2a:08:4a:fa:c5:d7:e0:8e:ac:cd:8c:56:31:bf:55:a1:25:
21:78:c5:2f:90:bd:ae:20:9f:ea:1b:91:51:1f:f4:77:7b:1f:
74:90:e0:92:db:16:4c:a9:98:c4:ae:aa:ac:37:4f:85:99:af:
d0:22:ad:41:ce:a7:f7:44:1a:8a:d8:9f:4f:8c:c1:10:2f:93:
d6:4a:12:94:bf:98:7a:a4:f2:6a:dc:92:6d:c7:8f:6a:25:e0:
a7:d6:57:50:c2:3f:06:03:1e:2a:b6:98:62:11:18:6d:77:eb:
88:d7:34:79:fb:dc:de:c7:84:fc:04:86:bd:b3:15:59:80:02:
ce:55:06:14:ff:64:de:51:2f:91:de:a6:04:df:23:1f:94:89:
d3:98:02:d6:5a:7d:35:0e:eb:ed:d1:d4:de:2c:59:99:66:a1:
c7:cc:74:fa:9a:b4:1c:ad:ae:9c:08:b0:c5:e9:8d:86:27:d6:
47:9a:f6:cc:3e:95:76:d7:21:71:ed:65:68:3c:25:87:e9:cd:
5b:33:22:2a:cd:ab:30:7f:17:8d:b5:21:c8:73:31:c5:00:b8:
cd:a9:ed:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsFh8ht+21f2Ky6m6IsdXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzZmYyMjJkNGEyMjYzMDJjYmYxMDA2OGNhYTZmNGM0MWY3
YmIxY2IwHhcNMjUwOTA3MDEwMDI5WhcNMjUwOTA4MDEwMDI5WjAzMTEwLwYDVQQD
Eyg2YzZlZGZhNmRkODQyMTNmOTNiYjI0MjEzYjhjOWYwZDAzZDY4YWYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuktdi9zT92v5ER9UtwKk0EWKxz2G
tJ9DwSi+cye3IXSlb8upxREJToFKn3aDR75cXyVqkqH9cEhmZ6R9Y2RRJNobc+og
5rHjjxdOv2k+ApKSWUV5H7dqi7r8nm3+GENWGb7FroAN6g10sgzTcbKDHa4hSmD+
FOOYv/b7Ro5s8el8j+fGUEdCvKcWh43FrKXZt4QqxV8HNRGD0Z7x1zbtDzgcfDJY
wpr+NrcuX5AZ/JtqqSIMizE8QzXO2QHWzQmp86dX+W+E2NsNmdnGX4w3JuRb5cQ9
kV/UgNdZ3Md5LW0KX4SQoQ4HS6eAzuZoTCDCJd9SfWpLOikhb0R4OP11GQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGxu36bdhCE/k7skITuMnw0D1orzMB8GA1UdIwQY
MBaAFFP/Ii1KImMCy/EAaMqm9MQfe7HLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVV84aUxVb2lZd0xMOFFCb3lxYjB4Qjk3c2NzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8wNmY5YTMtOGZjYS00MTRlLWI1YWQt
Y2EzNmQ5OGIzYzRkLzEvVV84aUxVb2lZd0xMOFFCb3lxYjB4Qjk3c2NzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8wNmY5YTMtOGZjYS00MTRlLWI1YWQtY2EzNmQ5OGIzYzRk
LzEvVV84aUxVb2lZd0xMOFFCb3lxYjB4Qjk3c2NzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhMSI4QDT
J/meqpUxKcpUi2OeMkde21IQnJ9HFsmui4lSlIVbuCoISvrF1+COrM2MVjG/VaEl
IXjFL5C9riCf6huRUR/0d3sfdJDgktsWTKmYxK6qrDdPhZmv0CKtQc6n90Qaitif
T4zBEC+T1koSlL+YeqTyatySbcePaiXgp9ZXUMI/BgMeKraYYhEYbXfriNc0efvc
3seE/ASGvbMVWYACzlUGFP9k3lEvkd6mBN8jH5SJ05gC1lp9NQ7r7dHU3ixZmWah
x8x0+pq0HK2unAiwxemNhifWR5r2zD6Vdtchce1laDwlh+nNWzMiKs2rMH8XjbUh
yHMxxQC4zantBA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:15:00 2025 by rpki-client