Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
File: 1gTknpKDBavLjzLe8_78A-u83kQ.mft (raw, json)
Hash identifier: tDkQ/tgXw/ZS1kbNjFXqL0zKcx7K5ZuY8EUSCvANiNg=
Subject key identifier: 68:7F:11:4B:8A:9E:B0:5C:DA:C3:74:2D:89:5F:4A:6F:B2:3C:CF:B6
Authority key identifier: D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
Certificate issuer: /CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Certificate serial: 019873E206D539D9868324B5F7AAF5C90002
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
Manifest number: 15AA
Signing time: Mon 04 Aug 2025 07:00:49 +0000
Manifest this update: Mon 04 Aug 2025 07:00:49 +0000
Manifest next update: Tue 05 Aug 2025 07:00:49 +0000
Files and hashes: 1: 1gTknpKDBavLjzLe8_78A-u83kQ.crl (hash: gHGz8/E2gs4sTbqZ+HzGdR4nn+7iZ9w5+IqW0DKIoTY=)
2: pucl_qoNJsFNHYReBDscEGdx2N0.roa (hash: SiJfUuqs3fjKSI6Mo6WtKDUOtA0gOnKfbqvupwDeWPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:06:d5:39:d9:86:83:24:b5:f7:aa:f5:c9:00:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Validity
Not Before: Aug 4 07:00:49 2025 GMT
Not After : Aug 5 07:00:49 2025 GMT
Subject: CN=687f114b8a9eb05cdac3742d895f4a6fb23ccfb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:11:7d:3f:a5:36:93:56:d3:55:52:aa:3e:45:
60:17:c1:c8:b4:a5:f3:4d:21:7a:a8:d9:4b:5a:53:
f5:0c:4f:d9:6d:fd:52:ee:ea:e8:c7:e3:d4:53:b2:
76:b2:56:1a:bf:8f:4a:0f:32:ae:d0:f8:b9:73:54:
b7:db:7e:b0:92:2c:1b:e3:20:d0:46:9b:b4:b0:23:
13:9d:ed:2a:ea:62:7c:4e:85:51:08:2d:2e:91:82:
c9:f3:05:03:5f:c8:f9:32:57:06:58:42:c9:d2:da:
e4:50:db:bb:5c:50:6d:98:74:a7:66:6e:e6:16:8a:
34:24:e6:11:40:fb:6e:2a:dd:db:5d:af:25:4b:9b:
cf:3f:f3:c3:6c:83:f7:8f:b5:02:3c:1d:43:14:b2:
11:32:69:ed:47:6d:59:49:6c:ef:a2:42:81:34:4a:
87:a3:28:9b:04:1b:0f:38:bb:6a:f5:f8:8d:e6:6f:
97:1f:bc:8a:45:c2:f9:c7:35:02:c8:14:6e:c9:da:
f0:4a:75:cc:3a:2d:b0:79:d0:0c:05:ed:d7:3f:2a:
ae:e4:02:31:3d:90:12:2b:ba:77:a9:dc:a9:9c:6e:
7a:7e:2b:62:8d:e8:1b:97:d7:b2:b9:0d:11:eb:b0:
40:e8:79:44:f1:f8:bd:68:2a:6d:9f:21:7c:ee:97:
09:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:7F:11:4B:8A:9E:B0:5C:DA:C3:74:2D:89:5F:4A:6F:B2:3C:CF:B6
X509v3 Authority Key Identifier:
keyid:D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:4d:d4:ef:67:e9:0f:1c:0b:ed:ff:08:63:39:20:b0:6d:d7:
a5:a5:c9:49:16:e8:6f:58:08:02:fb:93:04:25:15:34:f2:0d:
07:77:45:4d:e2:ae:17:c5:9b:a2:1a:41:c4:d7:0f:a6:81:aa:
90:7a:39:e3:c4:a6:68:a1:c7:53:d1:43:fb:ae:08:69:c0:0a:
fa:dc:da:34:ee:c2:54:8a:e9:de:ad:08:e5:5c:b6:53:cf:2b:
b8:57:0f:7f:6d:89:e6:71:0c:a0:c1:98:ed:1a:3c:22:02:a6:
a7:76:b3:14:ec:6a:a3:e6:70:3e:28:3d:d8:53:a4:09:4d:2c:
99:72:50:f5:d3:73:d9:f7:fa:c7:b1:39:27:a7:3b:41:b7:10:
45:c7:07:20:93:45:13:50:b6:23:0b:97:9b:55:a3:39:c2:85:
fb:a9:36:03:10:41:5a:43:3c:74:32:26:0c:83:0f:77:b2:65:
ff:3d:e2:c0:0d:e9:56:de:96:a0:bd:77:72:2d:61:2f:e1:44:
80:14:6d:43:c8:42:d5:de:bf:7d:25:fd:c7:b1:c9:de:12:25:
e6:3e:00:c3:69:b8:d1:c9:5a:26:2f:8b:d8:15:d1:5d:f2:96:
50:40:cc:f0:5c:47:c4:a0:29:cd:7b:30:77:60:c2:9c:c9:98:
7d:09:e8:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4gbVOdmGgyS196r1yQACMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2MDRlNDllOTI4MzA1YWJjYjhmMzJkZWYzZmVmYzAzZWJi
Y2RlNDQwHhcNMjUwODA0MDcwMDQ5WhcNMjUwODA1MDcwMDQ5WjAzMTEwLwYDVQQD
Eyg2ODdmMTE0YjhhOWViMDVjZGFjMzc0MmQ4OTVmNGE2ZmIyM2NjZmI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRF9P6U2k1bTVVKqPkVgF8HItKXz
TSF6qNlLWlP1DE/Zbf1S7urox+PUU7J2slYav49KDzKu0Pi5c1S3236wkiwb4yDQ
Rpu0sCMTne0q6mJ8ToVRCC0ukYLJ8wUDX8j5MlcGWELJ0trkUNu7XFBtmHSnZm7m
Foo0JOYRQPtuKt3bXa8lS5vPP/PDbIP3j7UCPB1DFLIRMmntR21ZSWzvokKBNEqH
oyibBBsPOLtq9fiN5m+XH7yKRcL5xzUCyBRuydrwSnXMOi2wedAMBe3XPyqu5AIx
PZASK7p3qdypnG56fitijegbl9eyuQ0R67BA6HlE8fi9aCptnyF87pcJHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGh/EUuKnrBc2sN0LYlfSm+yPM+2MB8GA1UdIwQY
MBaAFNYE5J6SgwWry48y3vP+/APrvN5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWdUa25wS0RCYXZManpMZThfNzhBLXU4M2tRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9hODMwYTItMDI3MS00ZGU5LWJjMzgt
MDNjODIxNTc0MjFhLzEvMWdUa25wS0RCYXZManpMZThfNzhBLXU4M2tRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC9hODMwYTItMDI3MS00ZGU5LWJjMzgtMDNjODIxNTc0MjFh
LzEvMWdUa25wS0RCYXZManpMZThfNzhBLXU4M2tRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa03U72fp
DxwL7f8IYzkgsG3XpaXJSRbob1gIAvuTBCUVNPINB3dFTeKuF8WbohpBxNcPpoGq
kHo548SmaKHHU9FD+64IacAK+tzaNO7CVIrp3q0I5Vy2U88ruFcPf22J5nEMoMGY
7Ro8IgKmp3azFOxqo+ZwPig92FOkCU0smXJQ9dNz2ff6x7E5J6c7QbcQRccHIJNF
E1C2IwuXm1WjOcKF+6k2AxBBWkM8dDImDIMPd7Jl/z3iwA3pVt6WoL13ci1hL+FE
gBRtQ8hC1d6/fSX9x7HJ3hIl5j4Aw2m40claJi+L2BXRXfKWUEDM8FxHxKApzXsw
d2DCnMmYfQno0g==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:26:39 2025 by rpki-client