Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
File: sCqa8vxf6TxDFIqssTxRvpBMjkw.mft (raw, json)
Hash identifier: TdtrOMNz7HW0ysWntIK0lAptpzBmOIebAbuLa0poZ4Q=
Subject key identifier: F0:0F:95:B7:8B:2E:3A:C8:E4:79:BC:6C:AB:24:57:86:58:9E:AA:10
Authority key identifier: B0:2A:9A:F2:FC:5F:E9:3C:43:14:8A:AC:B1:3C:51:BE:90:4C:8E:4C
Certificate issuer: /CN=b02a9af2fc5fe93c43148aacb13c51be904c8e4c
Certificate serial: 019922FA20C47C2DA3976FE3214B1FDCED97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
Manifest number: 04AC
Signing time: Sun 07 Sep 2025 07:00:41 +0000
Manifest this update: Sun 07 Sep 2025 07:00:41 +0000
Manifest next update: Mon 08 Sep 2025 07:00:41 +0000
Files and hashes: 1: RLYBpjQJ_nWnvtQxzs5jpfZ53LI.roa (hash: WydSL9s2ghSAkXvNPUv+LZJE2s3aihvIV2UvrS6hIBw=)
2: sCqa8vxf6TxDFIqssTxRvpBMjkw.crl (hash: 0hgagtJsUUbUzWw6HXlONVBzCmAQmRsSrohO9DH/BJE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:20:c4:7c:2d:a3:97:6f:e3:21:4b:1f:dc:ed:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b02a9af2fc5fe93c43148aacb13c51be904c8e4c
Validity
Not Before: Sep 7 07:00:41 2025 GMT
Not After : Sep 8 07:00:41 2025 GMT
Subject: CN=f00f95b78b2e3ac8e479bc6cab245786589eaa10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6d:f2:50:a2:83:95:da:a7:c1:1d:ea:f2:0e:
11:18:c3:60:4d:93:89:4c:48:e6:48:60:8d:3b:b2:
6f:01:a4:0e:91:f3:d6:59:00:33:fb:df:ec:a8:ac:
5d:4e:f9:7d:eb:8f:5d:18:ef:11:27:fb:8d:7f:3a:
a8:cc:0e:ae:c8:c2:10:53:7e:1a:3e:f7:36:bb:d3:
0d:64:b3:a1:89:b7:95:f0:86:3c:5c:37:f5:9e:d0:
b6:dd:f9:b9:ea:be:68:d4:b9:0d:6d:40:c9:1a:ed:
9d:28:dd:c4:bb:d2:ff:ca:a0:29:ae:1f:72:6d:5b:
54:85:dd:03:66:ef:a3:83:93:bb:5a:73:30:8d:ee:
29:16:d8:da:9d:a2:bb:46:06:91:96:28:14:80:2c:
a8:4e:99:38:1a:48:d7:0a:49:f1:df:2c:6c:f7:60:
fc:95:d7:cc:cf:ba:86:b0:fa:85:c1:e6:ae:ec:94:
36:b6:42:24:9c:f0:28:cf:fc:d9:ab:ad:8c:70:b2:
9f:c0:0e:47:c6:33:a3:ed:40:ef:64:66:ea:0f:a1:
86:89:4e:e2:c4:3d:cf:6b:87:c9:60:b8:70:e9:5e:
2e:b4:24:7a:b7:97:a7:81:b0:a4:ad:bd:07:0d:84:
4c:7a:1e:74:b1:11:9c:6b:84:74:86:66:e0:d1:d0:
52:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:0F:95:B7:8B:2E:3A:C8:E4:79:BC:6C:AB:24:57:86:58:9E:AA:10
X509v3 Authority Key Identifier:
keyid:B0:2A:9A:F2:FC:5F:E9:3C:43:14:8A:AC:B1:3C:51:BE:90:4C:8E:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:1d:58:64:ca:52:da:42:6f:1e:ab:dd:73:0b:70:7a:71:02:
ee:b3:fc:a4:e7:5e:3c:61:8d:61:f4:ab:f8:00:89:35:eb:9f:
bb:03:6d:13:d0:c2:b7:6b:35:91:f3:f4:ee:fb:eb:3e:b0:47:
87:48:70:20:54:a0:63:be:db:31:4d:e4:f0:5c:ef:67:89:33:
ae:d8:dc:32:42:7a:b2:c9:f2:dd:87:f9:5a:c1:98:93:e6:0e:
53:62:71:5e:ec:e5:51:3b:c2:7e:7e:66:c4:3c:19:c8:3e:be:
9d:6b:38:52:30:84:b9:a5:80:cb:a1:82:22:8c:71:fa:6d:5e:
63:03:cb:8b:ce:29:65:2d:fd:4c:4e:a4:b1:ae:90:b8:03:b5:
fb:3e:23:a2:df:c8:2a:a3:5e:4f:7e:67:03:27:7c:f8:a1:de:
d0:75:a5:92:d2:bd:63:1e:78:e3:28:2e:1b:03:75:8a:b9:2d:
04:02:20:1f:27:d7:87:5c:d5:2d:8b:bc:f5:a4:b8:a9:cd:d5:
16:b6:25:02:2d:29:b1:84:98:40:c2:97:ab:54:76:f7:4d:b1:
49:c3:74:c6:6e:ad:64:11:ec:78:c9:ec:b4:69:a0:65:24:78:
59:9d:50:f5:e6:33:85:59:85:ca:5d:ae:15:b8:36:c2:7d:4e:
a7:2b:7a:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+iDEfC2jl2/jIUsf3O2XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwMmE5YWYyZmM1ZmU5M2M0MzE0OGFhY2IxM2M1MWJlOTA0
YzhlNGMwHhcNMjUwOTA3MDcwMDQxWhcNMjUwOTA4MDcwMDQxWjAzMTEwLwYDVQQD
EyhmMDBmOTViNzhiMmUzYWM4ZTQ3OWJjNmNhYjI0NTc4NjU4OWVhYTEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjW3yUKKDldqnwR3q8g4RGMNgTZOJ
TEjmSGCNO7JvAaQOkfPWWQAz+9/sqKxdTvl9649dGO8RJ/uNfzqozA6uyMIQU34a
Pvc2u9MNZLOhibeV8IY8XDf1ntC23fm56r5o1LkNbUDJGu2dKN3Eu9L/yqAprh9y
bVtUhd0DZu+jg5O7WnMwje4pFtjanaK7RgaRligUgCyoTpk4GkjXCknx3yxs92D8
ldfMz7qGsPqFweau7JQ2tkIknPAoz/zZq62McLKfwA5HxjOj7UDvZGbqD6GGiU7i
xD3Pa4fJYLhw6V4utCR6t5engbCkrb0HDYRMeh50sRGca4R0hmbg0dBSNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPAPlbeLLjrI5Hm8bKskV4ZYnqoQMB8GA1UdIwQY
MBaAFLAqmvL8X+k8QxSKrLE8Ub6QTI5MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0NxYTh2eGY2VHhERklxc3NUeFJ2cEJNamt3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8wYTYwY2UtYmIzNy00MzM3LWJmNTAt
NWVjYTM2ZTE5ZjVkLzEvc0NxYTh2eGY2VHhERklxc3NUeFJ2cEJNamt3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi8wYTYwY2UtYmIzNy00MzM3LWJmNTAtNWVjYTM2ZTE5ZjVk
LzEvc0NxYTh2eGY2VHhERklxc3NUeFJ2cEJNamt3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAex1YZMpS
2kJvHqvdcwtwenEC7rP8pOdePGGNYfSr+ACJNeufuwNtE9DCt2s1kfP07vvrPrBH
h0hwIFSgY77bMU3k8FzvZ4kzrtjcMkJ6ssny3Yf5WsGYk+YOU2JxXuzlUTvCfn5m
xDwZyD6+nWs4UjCEuaWAy6GCIoxx+m1eYwPLi84pZS39TE6ksa6QuAO1+z4jot/I
KqNeT35nAyd8+KHe0HWlktK9Yx544yguGwN1irktBAIgHyfXh1zVLYu89aS4qc3V
FrYlAi0psYSYQMKXq1R2902xScN0xm6tZBHseMnstGmgZSR4WZ1Q9eYzhVmFyl2u
Fbg2wn1Opyt6pA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:50:19 2025 by rpki-client