Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
File: S8hY5QhWNUaEpdBKPsw1klgNVI0.mft (raw, json)
Hash identifier: tnkVGWrYjVzcgsu9mWBDe1fIdVQa3Oq1Hp6bDQiKYPI=
Subject key identifier: BD:E9:1F:5B:3E:29:23:42:5D:10:00:53:91:06:02:4B:0A:80:F5:3F
Authority key identifier: 4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
Certificate issuer: /CN=4bc858e50856354684a5d04a3ecc3592580d548d
Certificate serial: 01987306869F1EABE4E4014BD45077507A7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
Manifest number: 08D4
Signing time: Mon 04 Aug 2025 03:01:04 +0000
Manifest this update: Mon 04 Aug 2025 03:01:04 +0000
Manifest next update: Tue 05 Aug 2025 03:01:04 +0000
Files and hashes: 1: 1kPYBeHFqZcRahwRlHXvuPvT0zI.roa (hash: qhycFEi6FwqVVERso5+P+dTV24QXX6z3cT56YMpxbXU=)
2: S8hY5QhWNUaEpdBKPsw1klgNVI0.crl (hash: Pc+hQzonmvGEkQ7F6vapwzmMOOt0l+4ePT/BeAw5M64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:06:86:9f:1e:ab:e4:e4:01:4b:d4:50:77:50:7a:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc858e50856354684a5d04a3ecc3592580d548d
Validity
Not Before: Aug 4 03:01:04 2025 GMT
Not After : Aug 5 03:01:04 2025 GMT
Subject: CN=bde91f5b3e2923425d1000539106024b0a80f53f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ca:e0:6c:29:fb:35:af:5c:2d:db:e3:47:c6:
62:85:24:ae:95:de:e4:a9:5c:64:c9:fd:9c:f6:1a:
54:b4:dd:c6:fa:70:95:c5:4d:3f:34:61:26:87:e0:
76:4a:9b:a6:eb:b2:af:8d:83:44:8e:f8:af:a8:03:
ff:bc:b9:a4:d0:c4:ca:74:b9:bc:9c:6f:b4:3a:89:
c5:9b:4f:d9:ee:f3:b4:fe:31:57:2a:c3:95:c2:c3:
c2:87:dd:c0:b3:2a:ab:d5:df:e0:4d:d8:95:c1:63:
2c:9e:5d:14:90:36:a2:cb:ac:84:1e:99:81:88:e7:
78:45:fb:7c:6d:ea:16:a2:4d:e4:9b:51:01:1b:08:
df:0e:c5:a5:b7:4f:98:e3:fb:c6:14:4b:c9:5a:f2:
a7:44:5a:e3:a4:ee:04:93:45:92:ad:cd:3d:cf:27:
74:a2:8c:3c:7b:7b:2b:b8:0e:f9:b9:f1:ad:10:2d:
da:ea:77:e6:93:ab:53:ce:49:2e:97:70:a5:de:27:
7f:73:fe:d3:81:d2:7d:7f:35:8d:a5:10:52:2d:df:
a3:27:74:5f:f3:c5:b2:80:27:15:c1:9d:60:f8:48:
d6:cc:b1:50:3e:5a:d5:c1:25:1a:4e:2a:4c:97:28:
cf:be:af:d2:db:12:1b:aa:89:32:0b:b1:dd:5f:e9:
62:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:E9:1F:5B:3E:29:23:42:5D:10:00:53:91:06:02:4B:0A:80:F5:3F
X509v3 Authority Key Identifier:
keyid:4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:4f:70:46:98:5b:66:58:d7:b2:b9:97:5d:e0:56:a0:97:5c:
3e:25:8c:e7:f4:71:14:34:45:65:b3:8a:ea:8e:a2:9a:99:20:
cb:88:10:e3:9a:a8:a4:56:69:1c:90:6d:f8:4f:6e:da:3f:7a:
37:9a:c8:d5:b5:23:1b:36:44:a9:89:24:69:2e:16:88:28:83:
a1:9f:0f:b0:85:df:f1:f5:e0:70:b6:f9:da:a7:dd:30:90:4b:
ad:7c:8f:12:e0:93:57:24:93:f9:7c:50:49:aa:eb:3f:bf:74:
c9:ab:e1:8c:0d:a6:2a:ab:e4:f0:f8:eb:7d:76:a3:f7:e3:c9:
76:a0:4e:73:38:0f:23:04:6e:d4:66:1b:23:2f:34:d7:ba:6b:
6e:f3:5e:15:13:4f:78:64:06:91:6f:54:a2:78:37:af:2b:10:
71:a0:42:8a:ba:f0:5b:f1:5f:ed:8d:ac:ac:9e:ae:fd:bf:a7:
dc:28:c7:64:12:b3:d0:44:bc:3e:25:09:51:26:02:b9:b0:26:
cf:6e:80:43:67:69:b3:c2:d9:38:ae:1c:bb:63:d2:2d:5e:18:
eb:26:f5:c2:e4:69:52:71:e3:4c:d7:1d:79:a8:bf:de:1d:e9:
5f:98:3f:93:8d:e3:78:44:f4:60:34:6b:55:30:e5:83:c0:28:
65:04:81:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhzBoafHqvk5AFL1FB3UHp7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiYzg1OGU1MDg1NjM1NDY4NGE1ZDA0YTNlY2MzNTkyNTgw
ZDU0OGQwHhcNMjUwODA0MDMwMTA0WhcNMjUwODA1MDMwMTA0WjAzMTEwLwYDVQQD
EyhiZGU5MWY1YjNlMjkyMzQyNWQxMDAwNTM5MTA2MDI0YjBhODBmNTNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsrgbCn7Na9cLdvjR8ZihSSuld7k
qVxkyf2c9hpUtN3G+nCVxU0/NGEmh+B2Spum67KvjYNEjvivqAP/vLmk0MTKdLm8
nG+0OonFm0/Z7vO0/jFXKsOVwsPCh93Asyqr1d/gTdiVwWMsnl0UkDaiy6yEHpmB
iOd4Rft8beoWok3km1EBGwjfDsWlt0+Y4/vGFEvJWvKnRFrjpO4Ek0WSrc09zyd0
oow8e3sruA75ufGtEC3a6nfmk6tTzkkul3Cl3id/c/7TgdJ9fzWNpRBSLd+jJ3Rf
88WygCcVwZ1g+EjWzLFQPlrVwSUaTipMlyjPvq/S2xIbqokyC7HdX+lirQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL3pH1s+KSNCXRAAU5EGAksKgPU/MB8GA1UdIwQY
MBaAFEvIWOUIVjVGhKXQSj7MNZJYDVSNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzhoWTVRaFdOVWFFcGRCS1BzdzFrbGdOVkkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8yNjc5NjYtZjAzOS00MTc0LTgxMGQt
M2Y0ZWY4MWEyZTUzLzEvUzhoWTVRaFdOVWFFcGRCS1BzdzFrbGdOVkkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8yNjc5NjYtZjAzOS00MTc0LTgxMGQtM2Y0ZWY4MWEyZTUz
LzEvUzhoWTVRaFdOVWFFcGRCS1BzdzFrbGdOVkkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABU9wRphb
ZljXsrmXXeBWoJdcPiWM5/RxFDRFZbOK6o6impkgy4gQ45qopFZpHJBt+E9u2j96
N5rI1bUjGzZEqYkkaS4WiCiDoZ8PsIXf8fXgcLb52qfdMJBLrXyPEuCTVyST+XxQ
SarrP790yavhjA2mKqvk8PjrfXaj9+PJdqBOczgPIwRu1GYbIy8017prbvNeFRNP
eGQGkW9Uong3rysQcaBCirrwW/Ff7Y2srJ6u/b+n3CjHZBKz0ES8PiUJUSYCubAm
z26AQ2dps8LZOK4cu2PSLV4Y6yb1wuRpUnHjTNcdeai/3h3pX5g/k43jeET0YDRr
VTDlg8AoZQSBWA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:16:36 2025 by rpki-client