Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
File: isfq5knZVHsK0KsAerTopI3tTV0.mft (raw, json)
Hash identifier: sbuEoPRTT1cZWrJQr+Iny3uWhcJS7sEAPL0WLXOJZns=
Subject key identifier: E3:66:C1:92:73:6D:AD:F0:AD:09:2B:38:1B:36:28:EE:23:F9:61:60
Authority key identifier: 8A:C7:EA:E6:49:D9:54:7B:0A:D0:AB:00:7A:B4:E8:A4:8D:ED:4D:5D
Certificate issuer: /CN=8ac7eae649d9547b0ad0ab007ab4e8a48ded4d5d
Certificate serial: 01989F39D999C0694FC998564143CD3BD2C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
Manifest number: 1633
Signing time: Tue 12 Aug 2025 17:00:25 +0000
Manifest this update: Tue 12 Aug 2025 17:00:25 +0000
Manifest next update: Wed 13 Aug 2025 17:00:25 +0000
Files and hashes: 1: VnjAZXEV2IpEDwg3p4BnaouHiwY.roa (hash: +OjGTLOvqNCpLYSjRU9GeBSRZeFRlVpWW6Mj3HPVgqw=)
2: isfq5knZVHsK0KsAerTopI3tTV0.crl (hash: /kbsH9mOP4dyoyFgp+r3CzIEHlYlGTXVc31NJtt2bQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:39:d9:99:c0:69:4f:c9:98:56:41:43:cd:3b:d2:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ac7eae649d9547b0ad0ab007ab4e8a48ded4d5d
Validity
Not Before: Aug 12 17:00:25 2025 GMT
Not After : Aug 13 17:00:25 2025 GMT
Subject: CN=e366c192736dadf0ad092b381b3628ee23f96160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:dd:3f:85:60:ba:54:91:7f:5a:00:aa:c7:2a:
c5:d7:76:b7:f6:11:bf:4d:01:89:d0:d3:08:94:dd:
de:f8:b1:ce:05:71:e3:4b:a3:d4:db:86:f7:e2:6f:
2b:4c:ad:93:ff:51:59:61:3b:9e:ef:53:64:a1:8b:
55:3f:d6:4b:a8:19:fd:9b:e4:10:cc:f4:2d:52:15:
ab:e4:f3:50:9a:68:03:64:8e:3a:ad:2b:23:ff:b7:
3a:b9:18:2a:6d:04:bb:a2:d2:a4:2b:9c:34:3e:e2:
8e:77:1e:fb:1e:21:12:13:e4:01:69:9e:99:31:b1:
1d:f1:6f:6b:12:8e:3c:73:32:84:64:e2:cd:0d:5e:
48:36:5a:ea:47:44:06:b8:91:2f:55:28:03:28:c2:
2b:e2:cb:c1:6b:1d:82:5e:c0:ca:58:a7:0e:8e:2e:
2d:0d:55:1c:12:fa:ec:b9:e2:f9:96:9b:c2:76:03:
da:f5:a3:80:a9:cc:70:50:d4:87:ba:90:6f:14:22:
70:6b:a9:cd:87:9d:b6:3b:c3:ce:3b:e4:0c:62:be:
58:f5:58:1c:3a:b5:e2:02:db:59:e8:88:77:34:ad:
bc:3a:00:62:c9:b0:e4:74:ed:41:4f:3a:a0:56:b8:
33:89:12:47:c2:9e:7c:b9:3a:c4:2a:8f:ef:d6:26:
89:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:66:C1:92:73:6D:AD:F0:AD:09:2B:38:1B:36:28:EE:23:F9:61:60
X509v3 Authority Key Identifier:
keyid:8A:C7:EA:E6:49:D9:54:7B:0A:D0:AB:00:7A:B4:E8:A4:8D:ED:4D:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:67:4b:a3:f1:2b:f3:09:9a:b3:d4:48:b1:62:03:0a:be:6c:
76:df:a7:a3:fc:75:d2:3b:8e:f2:b9:a8:a1:62:03:58:0a:70:
81:af:5f:93:89:5c:46:be:33:de:32:9c:4e:da:c4:c7:98:85:
e8:0c:08:a2:a8:7f:c3:77:05:48:06:a0:8b:bb:6c:57:96:b5:
8e:fa:b6:e8:e9:ff:da:56:41:5e:c3:8b:73:23:8f:26:cd:db:
6d:27:45:1c:1c:a8:cb:36:fc:ea:b0:b3:f4:26:89:55:fc:a8:
7d:4c:7d:d6:91:ed:0b:33:70:31:5c:cb:f7:8d:fb:47:df:24:
bd:2f:f6:6a:8b:f1:02:9d:a4:ed:ea:92:03:6c:e0:3e:84:d7:
41:1e:74:68:71:9f:f4:9d:f7:94:a1:a0:b7:f5:a7:22:bc:08:
82:ce:3d:cf:95:b8:9b:e3:93:1c:90:67:b1:ef:0d:75:6a:67:
f0:e5:cd:d6:b5:f3:7c:db:3b:10:37:e5:c4:3e:34:08:bc:cf:
68:f2:c6:ed:43:96:7d:a9:ec:ab:7c:41:37:82:24:5b:6f:bd:
f9:52:a9:31:ca:8c:31:0f:bc:59:41:c2:b9:88:2c:65:4e:07:
9f:94:89:32:c0:e3:ad:f1:35:76:d6:d4:c5:84:10:02:de:ea:
dc:aa:f1:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZifOdmZwGlPyZhWQUPNO9LJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYzdlYWU2NDlkOTU0N2IwYWQwYWIwMDdhYjRlOGE0OGRl
ZDRkNWQwHhcNMjUwODEyMTcwMDI1WhcNMjUwODEzMTcwMDI1WjAzMTEwLwYDVQQD
EyhlMzY2YzE5MjczNmRhZGYwYWQwOTJiMzgxYjM2MjhlZTIzZjk2MTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6t0/hWC6VJF/WgCqxyrF13a39hG/
TQGJ0NMIlN3e+LHOBXHjS6PU24b34m8rTK2T/1FZYTue71NkoYtVP9ZLqBn9m+QQ
zPQtUhWr5PNQmmgDZI46rSsj/7c6uRgqbQS7otKkK5w0PuKOdx77HiESE+QBaZ6Z
MbEd8W9rEo48czKEZOLNDV5INlrqR0QGuJEvVSgDKMIr4svBax2CXsDKWKcOji4t
DVUcEvrsueL5lpvCdgPa9aOAqcxwUNSHupBvFCJwa6nNh522O8POO+QMYr5Y9Vgc
OrXiAttZ6Ih3NK28OgBiybDkdO1BTzqgVrgziRJHwp58uTrEKo/v1iaJBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFONmwZJzba3wrQkrOBs2KO4j+WFgMB8GA1UdIwQY
MBaAFIrH6uZJ2VR7CtCrAHq06KSN7U1dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXNmcTVrblpWSHNLMEtzQWVyVG9wSTN0VFYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC82N2RiMGItMWQxMC00Yzk3LTlhZjYt
YWMwMWYwYzU2NjJiLzEvaXNmcTVrblpWSHNLMEtzQWVyVG9wSTN0VFYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC82N2RiMGItMWQxMC00Yzk3LTlhZjYtYWMwMWYwYzU2NjJi
LzEvaXNmcTVrblpWSHNLMEtzQWVyVG9wSTN0VFYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlmdLo/Er
8wmas9RIsWIDCr5sdt+no/x10juO8rmooWIDWApwga9fk4lcRr4z3jKcTtrEx5iF
6AwIoqh/w3cFSAagi7tsV5a1jvq26On/2lZBXsOLcyOPJs3bbSdFHByoyzb86rCz
9CaJVfyofUx91pHtCzNwMVzL9437R98kvS/2aovxAp2k7eqSA2zgPoTXQR50aHGf
9J33lKGgt/WnIrwIgs49z5W4m+OTHJBnse8NdWpn8OXN1rXzfNs7EDflxD40CLzP
aPLG7UOWfansq3xBN4IkW2+9+VKpMcqMMQ+8WUHCuYgsZU4Hn5SJMsDjrfE1dtbU
xYQQAt7q3KrxyQ==
-----END CERTIFICATE-----
Generated at Wed Aug 13 02:10:32 2025 by rpki-client