Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
File: RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft (raw, json)
Hash identifier: 9rRbWuHqGYdefiWwrcrsiSAUoxXF06JOo1UJq8X0f+A=
Subject key identifier: 4D:F3:7F:E1:8F:33:42:CC:AC:72:E4:B2:C7:B0:A8:A3:78:2F:E7:EB
Authority key identifier: 46:73:50:D5:97:5A:27:2A:88:BF:B8:81:0A:F4:59:81:CD:55:93:5A
Certificate issuer: /CN=467350d5975a272a88bfb8810af45981cd55935a
Certificate serial: 0198A0F17172CFEBE6D10F1FC73B008EF276
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
Manifest number: 0F29
Signing time: Wed 13 Aug 2025 01:00:34 +0000
Manifest this update: Wed 13 Aug 2025 01:00:34 +0000
Manifest next update: Thu 14 Aug 2025 01:00:34 +0000
Files and hashes: 1: RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl (hash: Zu9opkJ3fL1GqslIsuLVjCwuV5tKt7neJigG6y3vN/E=)
2: cM594o8l7Xh7Dw0EOXhcxgvWLYI.roa (hash: 1Ym4804A2QtxpGJhVDPpEbLS0giUeOdd5FG8xMIV330=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:f1:71:72:cf:eb:e6:d1:0f:1f:c7:3b:00:8e:f2:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=467350d5975a272a88bfb8810af45981cd55935a
Validity
Not Before: Aug 13 01:00:34 2025 GMT
Not After : Aug 14 01:00:34 2025 GMT
Subject: CN=4df37fe18f3342ccac72e4b2c7b0a8a3782fe7eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8f:50:b5:23:2f:9b:f4:83:e9:d3:28:ff:31:
0c:55:bf:6a:80:bc:52:3d:55:a5:3c:f5:99:24:9f:
8c:d2:fd:e8:36:1b:24:5e:aa:6e:2d:e6:14:54:5b:
db:d5:f6:b5:01:4d:e4:f6:1d:08:19:fe:4d:69:cc:
0c:5a:95:49:3f:4d:1f:ec:1b:48:7b:a7:01:10:2a:
7f:96:2a:95:a0:a8:f7:c3:4e:b3:c6:64:d5:b1:00:
62:35:9b:1a:52:8d:37:b7:db:03:81:50:9e:d8:f8:
c6:71:c8:72:1b:25:32:83:31:eb:e9:2a:a0:6a:4b:
07:1e:f0:18:52:86:ba:73:71:73:e9:43:56:bc:8d:
51:a8:ce:d9:57:bd:40:0d:a1:43:55:01:00:a1:58:
c0:aa:e4:6f:0f:38:48:7a:1f:c6:37:5a:b2:27:52:
bc:03:03:f6:f4:cf:4c:1a:ae:f5:57:b2:14:f1:2b:
86:1c:d5:ae:3f:4d:61:27:f1:31:33:cc:51:2c:7a:
a0:69:40:53:31:88:e5:b5:ba:8a:26:19:00:76:7b:
2b:80:ad:aa:4e:d4:3e:37:79:74:ac:9b:82:dd:d9:
08:64:9a:15:8c:27:72:b5:a3:6d:3d:8e:a7:97:9b:
5c:7c:04:99:87:59:a5:ba:d5:fb:fd:9e:eb:27:2f:
dd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:F3:7F:E1:8F:33:42:CC:AC:72:E4:B2:C7:B0:A8:A3:78:2F:E7:EB
X509v3 Authority Key Identifier:
keyid:46:73:50:D5:97:5A:27:2A:88:BF:B8:81:0A:F4:59:81:CD:55:93:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:e7:c1:48:19:14:85:23:37:55:bd:da:9a:75:2f:d7:d7:a3:
8a:72:e6:a0:e0:cc:e1:07:02:88:cd:d6:03:ac:8b:f2:19:ce:
58:a0:2a:20:51:d0:37:6d:e3:8e:37:55:94:2c:df:b5:06:8d:
c1:9b:bf:6b:47:03:c3:50:59:20:74:9b:8c:39:f1:8d:c6:0e:
b0:9f:6b:09:a6:46:4c:c1:1b:bd:11:3a:78:83:8e:ea:95:3f:
da:32:bc:d9:1c:8b:e5:50:44:76:50:3e:b0:cf:e1:8b:5b:3b:
f2:91:1f:90:bb:e4:81:f5:b7:a9:0c:e2:00:56:ce:02:b1:1a:
a1:2a:54:8b:d5:71:cf:a2:22:ff:2f:34:fc:e0:38:7b:52:6b:
14:c6:4f:6d:39:88:b3:57:82:9f:ef:e1:32:bb:5f:3f:be:fc:
d2:8e:a7:c7:d2:ce:7b:66:02:ce:f8:15:86:ad:57:16:1e:67:
8b:fc:93:eb:0d:bc:50:34:23:f3:fe:00:2e:7f:8a:41:77:61:
c9:d8:8d:4f:a5:96:e3:85:47:4b:4d:af:24:0a:99:74:1f:9c:
b5:59:38:3a:eb:1c:09:a4:52:aa:3b:2d:c3:88:2a:61:90:a8:
a7:7a:5c:ec:42:f7:e7:03:43:02:6e:a1:70:3e:51:80:5c:82:
9d:4a:fb:03
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZig8XFyz+vm0Q8fxzsAjvJ2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2NzM1MGQ1OTc1YTI3MmE4OGJmYjg4MTBhZjQ1OTgxY2Q1
NTkzNWEwHhcNMjUwODEzMDEwMDM0WhcNMjUwODE0MDEwMDM0WjAzMTEwLwYDVQQD
Eyg0ZGYzN2ZlMThmMzM0MmNjYWM3MmU0YjJjN2IwYThhMzc4MmZlN2ViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1I9QtSMvm/SD6dMo/zEMVb9qgLxS
PVWlPPWZJJ+M0v3oNhskXqpuLeYUVFvb1fa1AU3k9h0IGf5NacwMWpVJP00f7BtI
e6cBECp/liqVoKj3w06zxmTVsQBiNZsaUo03t9sDgVCe2PjGcchyGyUygzHr6Sqg
aksHHvAYUoa6c3Fz6UNWvI1RqM7ZV71ADaFDVQEAoVjAquRvDzhIeh/GN1qyJ1K8
AwP29M9MGq71V7IU8SuGHNWuP01hJ/ExM8xRLHqgaUBTMYjltbqKJhkAdnsrgK2q
TtQ+N3l0rJuC3dkIZJoVjCdytaNtPY6nl5tcfASZh1mlutX7/Z7rJy/dcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE3zf+GPM0LMrHLkssewqKN4L+frMB8GA1UdIwQY
MBaAFEZzUNWXWicqiL+4gQr0WYHNVZNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUm5OUTFaZGFKeXFJdjdpQkN2UlpnYzFWazFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9jNTdiNzUtMTBhNy00NzIzLTk0ZWEt
ZTg1NzQ3N2E3MDA4LzEvUm5OUTFaZGFKeXFJdjdpQkN2UlpnYzFWazFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9jNTdiNzUtMTBhNy00NzIzLTk0ZWEtZTg1NzQ3N2E3MDA4
LzEvUm5OUTFaZGFKeXFJdjdpQkN2UlpnYzFWazFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdefBSBkU
hSM3Vb3amnUv19ejinLmoODM4QcCiM3WA6yL8hnOWKAqIFHQN23jjjdVlCzftQaN
wZu/a0cDw1BZIHSbjDnxjcYOsJ9rCaZGTMEbvRE6eIOO6pU/2jK82RyL5VBEdlA+
sM/hi1s78pEfkLvkgfW3qQziAFbOArEaoSpUi9Vxz6Ii/y80/OA4e1JrFMZPbTmI
s1eCn+/hMrtfP7780o6nx9LOe2YCzvgVhq1XFh5ni/yT6w28UDQj8/4ALn+KQXdh
ydiNT6WW44VHS02vJAqZdB+ctVk4OuscCaRSqjstw4gqYZCop3pc7EL35wNDAm6h
cD5RgFyCnUr7Aw==
-----END CERTIFICATE-----
Generated at Wed Aug 13 02:42:55 2025 by rpki-client