Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
File: 21LN5wkMV9jpwx1Rh0jfkiueBM4.mft (raw, json)
Hash identifier: Sb7AOU89loKW+Uqj2HFaZzrca5Gv/4jaz7J/3vxjs+I=
Subject key identifier: 77:3E:A8:49:91:34:D9:87:64:6B:60:DB:31:8C:96:50:31:47:CE:B9
Authority key identifier: DB:52:CD:E7:09:0C:57:D8:E9:C3:1D:51:87:48:DF:92:2B:9E:04:CE
Certificate issuer: /CN=db52cde7090c57d8e9c31d518748df922b9e04ce
Certificate serial: 01989600A2C1CB3E2B882230750FBA58641B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
Manifest number: 149C
Signing time: Sun 10 Aug 2025 22:01:20 +0000
Manifest this update: Sun 10 Aug 2025 22:01:20 +0000
Manifest next update: Mon 11 Aug 2025 22:01:20 +0000
Files and hashes: 1: 21LN5wkMV9jpwx1Rh0jfkiueBM4.crl (hash: 95Qff/MEaMrQf3OErV08zNc+h8yulq9pjXI6y/E216M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:00:a2:c1:cb:3e:2b:88:22:30:75:0f:ba:58:64:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db52cde7090c57d8e9c31d518748df922b9e04ce
Validity
Not Before: Aug 10 22:01:20 2025 GMT
Not After : Aug 11 22:01:20 2025 GMT
Subject: CN=773ea8499134d987646b60db318c96503147ceb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d1:3a:a3:8c:ed:d8:3e:12:78:c1:cf:ca:86:
0a:56:2c:fd:cf:0e:a5:74:40:c5:f0:6b:6b:29:c2:
d9:df:43:ec:69:70:0f:ac:22:22:de:9f:a7:e7:26:
fb:04:fe:9c:eb:1b:6c:ba:43:59:8e:d1:30:00:f2:
ed:ac:7b:a3:23:f2:ba:c5:06:db:3a:9c:e1:aa:54:
bf:3a:51:7a:b4:51:f4:fd:b9:70:3b:f3:ff:4d:11:
61:8e:8d:87:af:c6:34:cc:0d:68:34:df:70:d1:be:
67:e2:03:37:0b:93:15:c3:c9:7d:d1:55:ce:fe:43:
88:82:38:3d:f6:2d:6e:62:bf:75:92:8d:e4:83:55:
ff:de:a3:75:b9:62:b0:35:75:0d:2b:16:98:86:a5:
e7:87:27:d7:0a:63:59:8a:f5:18:62:42:93:a7:f6:
1e:0b:12:91:2b:51:c0:51:58:5a:80:c8:88:88:aa:
8f:f4:80:6d:59:6a:85:dc:73:71:7b:7c:fc:2c:45:
83:84:d9:47:01:bd:40:17:9c:df:98:df:47:99:fc:
9d:67:1b:fb:1c:ea:a2:0b:69:f1:6e:46:2b:65:f0:
6e:e3:40:71:45:dc:51:63:93:c9:9c:6d:6b:c3:0e:
de:6a:7e:e0:0a:52:5e:5c:9e:80:23:0d:d2:71:e5:
81:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:3E:A8:49:91:34:D9:87:64:6B:60:DB:31:8C:96:50:31:47:CE:B9
X509v3 Authority Key Identifier:
keyid:DB:52:CD:E7:09:0C:57:D8:E9:C3:1D:51:87:48:DF:92:2B:9E:04:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:4f:6e:6d:d8:b0:5f:6a:59:dc:5e:11:25:12:01:39:78:74:
cc:70:fa:ba:0d:6e:5f:30:6c:34:a4:be:03:06:a4:21:4c:ba:
92:7b:a4:88:9d:d5:3a:96:26:a7:dd:63:b5:c9:4d:d5:e1:b9:
9d:57:c1:9f:91:63:98:63:0b:95:7f:8d:1a:9c:97:c6:3a:aa:
e7:33:d7:7e:d3:6e:9a:09:b7:5c:2b:4b:f6:53:e4:bf:e3:0e:
06:6a:14:d1:b0:87:78:87:c2:19:95:b4:bc:7b:1a:e5:28:f9:
09:9f:f3:a5:a4:f0:7f:ae:8b:c3:7a:6b:ef:25:a4:33:82:0b:
4d:f0:3d:70:63:67:ca:88:af:14:d0:3c:03:4f:72:9f:58:06:
7c:b3:34:91:4f:e6:93:a6:3c:72:b4:36:f7:42:3f:01:8a:6a:
e7:13:12:ff:45:3e:7f:8b:9e:ad:16:82:28:d7:3f:85:19:a3:
3a:c8:74:5d:c3:be:87:93:02:7c:a3:a0:88:dc:83:0d:b0:e1:
25:b3:4a:93:73:b7:33:6c:2e:bf:68:a0:10:2c:89:70:78:77:
fe:19:bd:24:95:36:31:73:2e:f1:3c:78:fe:94:3d:46:cf:b0:
86:fb:f1:3b:76:1c:be:f3:c2:45:1f:19:74:48:91:2b:9d:cd:
3c:ea:91:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiWAKLByz4riCIwdQ+6WGQbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiNTJjZGU3MDkwYzU3ZDhlOWMzMWQ1MTg3NDhkZjkyMmI5
ZTA0Y2UwHhcNMjUwODEwMjIwMTIwWhcNMjUwODExMjIwMTIwWjAzMTEwLwYDVQQD
Eyg3NzNlYTg0OTkxMzRkOTg3NjQ2YjYwZGIzMThjOTY1MDMxNDdjZWI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4tE6o4zt2D4SeMHPyoYKViz9zw6l
dEDF8GtrKcLZ30PsaXAPrCIi3p+n5yb7BP6c6xtsukNZjtEwAPLtrHujI/K6xQbb
OpzhqlS/OlF6tFH0/blwO/P/TRFhjo2Hr8Y0zA1oNN9w0b5n4gM3C5MVw8l90VXO
/kOIgjg99i1uYr91ko3kg1X/3qN1uWKwNXUNKxaYhqXnhyfXCmNZivUYYkKTp/Ye
CxKRK1HAUVhagMiIiKqP9IBtWWqF3HNxe3z8LEWDhNlHAb1AF5zfmN9HmfydZxv7
HOqiC2nxbkYrZfBu40BxRdxRY5PJnG1rww7ean7gClJeXJ6AIw3SceWBBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHc+qEmRNNmHZGtg2zGMllAxR865MB8GA1UdIwQY
MBaAFNtSzecJDFfY6cMdUYdI35IrngTOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjFMTjV3a01WOWpwd3gxUmgwamZraXVlQk00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC84ZjMwZWEtZWIyZS00NGNlLWE5M2Mt
ZDBjYWRmZTg0YjE5LzEvMjFMTjV3a01WOWpwd3gxUmgwamZraXVlQk00Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC84ZjMwZWEtZWIyZS00NGNlLWE5M2MtZDBjYWRmZTg0YjE5
LzEvMjFMTjV3a01WOWpwd3gxUmgwamZraXVlQk00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwk9ubdiw
X2pZ3F4RJRIBOXh0zHD6ug1uXzBsNKS+AwakIUy6knukiJ3VOpYmp91jtclN1eG5
nVfBn5FjmGMLlX+NGpyXxjqq5zPXftNumgm3XCtL9lPkv+MOBmoU0bCHeIfCGZW0
vHsa5Sj5CZ/zpaTwf66Lw3pr7yWkM4ILTfA9cGNnyoivFNA8A09yn1gGfLM0kU/m
k6Y8crQ290I/AYpq5xMS/0U+f4uerRaCKNc/hRmjOsh0XcO+h5MCfKOgiNyDDbDh
JbNKk3O3M2wuv2igECyJcHh3/hm9JJU2MXMu8Tx4/pQ9Rs+whvvxO3YcvvPCRR8Z
dEiRK53NPOqRqw==
-----END CERTIFICATE-----
Generated at Mon Aug 11 01:46:41 2025 by rpki-client