Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
File: skTScYj-UmvXJjZzgZXR639gYzU.mft (raw, json)
Hash identifier: hpP0g1HHLf1lIq+3qO/RlXvKa37moLhujmyuXGN1Ro4=
Subject key identifier: 49:AC:14:0F:8F:78:14:62:F4:88:E2:FF:54:84:AB:50:50:EF:0F:DA
Authority key identifier: B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35
Certificate issuer: /CN=b244d27188fe526bd72636738195d1eb7f606335
Certificate serial: 01988166CD3798ADD2E5FBC71AA6184D7E7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
Manifest number: 161E
Signing time: Wed 06 Aug 2025 22:00:54 +0000
Manifest this update: Wed 06 Aug 2025 22:00:54 +0000
Manifest next update: Thu 07 Aug 2025 22:00:54 +0000
Files and hashes: 1: i9ojhRN5HPqLEONrX8zwsFoi9sk.roa (hash: MIYLI6ZlVjLLI/2sB5M12T0X1D0wb0+Le0eSAFyUiKg=)
2: skTScYj-UmvXJjZzgZXR639gYzU.crl (hash: tB1Sf9t/tAaDCGwcDs9keKZ1DTJoKmCNQz2G7bXYNPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:66:cd:37:98:ad:d2:e5:fb:c7:1a:a6:18:4d:7e:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b244d27188fe526bd72636738195d1eb7f606335
Validity
Not Before: Aug 6 22:00:54 2025 GMT
Not After : Aug 7 22:00:54 2025 GMT
Subject: CN=49ac140f8f781462f488e2ff5484ab5050ef0fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:41:d8:36:aa:6d:f6:e2:15:9b:2e:89:20:e5:
ce:f5:b9:33:8f:ab:7d:4c:f3:4e:8a:92:c6:67:95:
06:37:2b:ab:f8:d7:d8:5a:b2:cc:df:9c:54:ec:68:
9e:ec:f0:ce:41:74:68:ac:6d:70:64:03:76:b6:77:
26:6a:69:a1:73:ce:88:d8:63:3f:53:4b:1d:ab:eb:
8b:18:bd:3d:5d:44:aa:bc:1e:9b:c6:0a:35:37:da:
2b:52:33:b8:fc:48:27:13:98:e1:45:54:04:a9:cb:
30:88:47:43:e1:ee:40:8f:26:46:b2:3d:b8:16:e7:
f8:d8:be:34:7c:5b:90:0d:d8:49:e7:d8:10:af:f7:
a7:1d:1b:3b:05:d2:36:2b:42:dc:6d:1e:96:f9:71:
50:19:8c:03:fc:3a:16:be:03:ad:b9:f0:4a:f9:38:
a5:58:4a:49:2d:63:00:1f:db:38:8e:55:1b:f2:03:
27:2c:57:8c:7a:47:e9:31:4e:5c:44:c6:8e:bc:fc:
48:65:df:ca:1b:3a:26:b2:a2:ab:fa:bc:65:e7:f5:
f6:24:4b:40:05:fc:c7:0d:6e:45:a3:3e:15:03:c7:
f0:66:9b:0d:9a:6e:e7:ff:bd:71:7e:5b:9a:5e:e0:
4d:d8:c3:35:5e:bf:a5:cb:03:20:74:ee:d1:af:c9:
2d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:AC:14:0F:8F:78:14:62:F4:88:E2:FF:54:84:AB:50:50:EF:0F:DA
X509v3 Authority Key Identifier:
keyid:B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:9c:f6:37:26:85:0b:90:6e:9d:1a:6d:ec:96:cd:ce:fe:85:
06:f0:e6:57:c6:16:29:c5:27:f8:b2:8a:29:48:92:e0:60:72:
3b:87:96:64:18:5a:93:04:c6:f0:47:0b:84:f5:cb:f3:9d:1f:
22:80:5a:d4:3d:64:27:45:b1:bc:7e:96:e4:7c:1b:e3:65:84:
0a:b8:c6:59:16:7a:7f:61:eb:8b:f2:d1:d9:70:a5:42:cc:19:
a3:60:ba:8a:3b:58:ed:b6:0a:50:67:2e:7f:ba:54:c5:4e:90:
90:bc:f4:da:23:9f:69:78:87:be:40:08:26:23:83:60:9d:80:
31:c5:14:9e:eb:65:1e:67:e6:69:15:b8:16:76:83:48:46:4f:
a2:e8:45:ee:77:81:1b:b1:9b:ce:15:1e:a5:27:56:13:57:21:
df:10:29:87:e4:25:9f:06:e0:2f:0f:7e:8a:c0:05:a0:44:ff:
7d:68:4b:fb:95:8e:7b:86:88:24:3d:ea:2e:76:33:40:17:7c:
70:a4:06:6d:0e:89:a3:86:47:b7:fa:d9:8e:3a:78:6b:80:30:
0a:ab:39:91:47:cb:0d:ea:f1:ff:ac:ed:b7:bc:b8:78:dc:ff:
ff:2d:37:5a:aa:2d:60:a6:10:32:bd:ef:38:a1:82:b5:0f:9c:
88:60:2c:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiBZs03mK3S5fvHGqYYTX56MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyNDRkMjcxODhmZTUyNmJkNzI2MzY3MzgxOTVkMWViN2Y2
MDYzMzUwHhcNMjUwODA2MjIwMDU0WhcNMjUwODA3MjIwMDU0WjAzMTEwLwYDVQQD
Eyg0OWFjMTQwZjhmNzgxNDYyZjQ4OGUyZmY1NDg0YWI1MDUwZWYwZmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0HYNqpt9uIVmy6JIOXO9bkzj6t9
TPNOipLGZ5UGNyur+NfYWrLM35xU7Gie7PDOQXRorG1wZAN2tncmammhc86I2GM/
U0sdq+uLGL09XUSqvB6bxgo1N9orUjO4/EgnE5jhRVQEqcswiEdD4e5AjyZGsj24
Fuf42L40fFuQDdhJ59gQr/enHRs7BdI2K0LcbR6W+XFQGYwD/DoWvgOtufBK+Til
WEpJLWMAH9s4jlUb8gMnLFeMekfpMU5cRMaOvPxIZd/KGzomsqKr+rxl5/X2JEtA
BfzHDW5Foz4VA8fwZpsNmm7n/71xfluaXuBN2MM1Xr+lywMgdO7Rr8ktYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEmsFA+PeBRi9Iji/1SEq1BQ7w/aMB8GA1UdIwQY
MBaAFLJE0nGI/lJr1yY2c4GV0et/YGM1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2tUU2NZai1VbXZYSmpaemdaWFI2MzlnWXpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8yYTcyN2ItYTc0NS00MzM5LTkyNWEt
NGQwMGQ2MDMyYWZlLzEvc2tUU2NZai1VbXZYSmpaemdaWFI2MzlnWXpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy8yYTcyN2ItYTc0NS00MzM5LTkyNWEtNGQwMGQ2MDMyYWZl
LzEvc2tUU2NZai1VbXZYSmpaemdaWFI2MzlnWXpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMJz2NyaF
C5BunRpt7JbNzv6FBvDmV8YWKcUn+LKKKUiS4GByO4eWZBhakwTG8EcLhPXL850f
IoBa1D1kJ0WxvH6W5Hwb42WECrjGWRZ6f2Hri/LR2XClQswZo2C6ijtY7bYKUGcu
f7pUxU6QkLz02iOfaXiHvkAIJiODYJ2AMcUUnutlHmfmaRW4FnaDSEZPouhF7neB
G7GbzhUepSdWE1ch3xAph+QlnwbgLw9+isAFoET/fWhL+5WOe4aIJD3qLnYzQBd8
cKQGbQ6Jo4ZHt/rZjjp4a4AwCqs5kUfLDerx/6ztt7y4eNz//y03WqotYKYQMr3v
OKGCtQ+ciGAsnA==
-----END CERTIFICATE-----
Generated at Thu Aug 7 05:03:41 2025 by rpki-client