Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
File: cW9tEfDOYyMBgac_haZmFw9zib0.mft (raw, json)
Hash identifier: T1CvFASk2+VN9c80cF6vvs6UFdBI3w93v8zEcOuGJE4=
Subject key identifier: 32:9B:4B:5C:AD:1C:95:93:47:C1:63:0C:F6:0F:DA:06:F6:4C:3C:CA
Authority key identifier: 71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
Certificate issuer: /CN=716f6d11f0ce63230181a73f85a666170f7389bd
Certificate serial: 01987DF79F13E0B293AC64C5A7D63788C396
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
Manifest number: 0B3E
Signing time: Wed 06 Aug 2025 06:00:36 +0000
Manifest this update: Wed 06 Aug 2025 06:00:36 +0000
Manifest next update: Thu 07 Aug 2025 06:00:36 +0000
Files and hashes: 1: cW9tEfDOYyMBgac_haZmFw9zib0.crl (hash: NJ2AlDbVJVBk94RN6W1NsXQ5HlvviowKpITXuUnx4oI=)
2: fS7Vtpenx3ISocQLcsKDmT4cdAc.roa (hash: lsacutCDcdT1KWfBtvedBOBvauWcszwNt+V8+YsxMyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f7:9f:13:e0:b2:93:ac:64:c5:a7:d6:37:88:c3:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=716f6d11f0ce63230181a73f85a666170f7389bd
Validity
Not Before: Aug 6 06:00:36 2025 GMT
Not After : Aug 7 06:00:36 2025 GMT
Subject: CN=329b4b5cad1c959347c1630cf60fda06f64c3cca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:39:15:07:be:9a:3c:0d:18:1a:83:54:7b:92:
b0:cb:c6:47:a7:3d:ef:5f:55:58:99:42:15:96:a7:
ee:2b:35:03:77:2a:6b:f5:29:b7:4a:ad:64:3a:6a:
7f:ed:aa:76:a9:04:aa:7b:9e:07:3e:4d:ba:6f:ef:
d9:a9:54:6a:10:b3:fd:5c:a3:27:0b:c2:90:9e:01:
25:db:6e:a9:01:ab:eb:62:3c:79:35:6f:e0:c3:dc:
94:e4:4a:81:18:b3:71:f1:ad:e4:75:af:78:b6:dd:
24:81:d2:1b:36:81:59:4b:79:51:63:1f:79:eb:a5:
5e:f6:c4:3d:20:93:26:c4:67:a8:aa:b8:9c:2d:eb:
7b:fe:4d:2c:73:6e:99:c4:64:2f:9a:0c:57:3b:be:
09:a6:16:2d:78:d2:4d:67:a1:5b:64:7d:4e:a9:16:
92:15:fe:e5:5d:38:6b:92:3b:7b:2b:51:ac:5f:36:
73:37:bc:e2:3e:fb:2e:b7:96:09:51:dc:bc:3f:bd:
b8:64:6b:9d:5a:af:9f:eb:da:73:50:d9:d3:38:df:
d3:0c:1e:44:47:60:a3:a5:1c:11:ed:fd:80:38:c0:
ba:8e:9f:1c:f0:62:4a:de:56:cb:93:b3:2e:5f:6a:
cf:da:b1:f6:8c:2a:ec:9d:b6:44:c8:45:d8:2e:2b:
2d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:9B:4B:5C:AD:1C:95:93:47:C1:63:0C:F6:0F:DA:06:F6:4C:3C:CA
X509v3 Authority Key Identifier:
keyid:71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:46:fc:78:a7:be:e6:30:1e:32:b0:4d:9f:68:d8:69:ef:84:
6d:3f:e9:bc:17:8b:5a:68:f7:71:71:89:c4:26:1f:f4:e6:62:
89:eb:b5:6d:57:6c:80:79:b0:19:79:c6:2a:24:e8:64:7c:4a:
6f:d2:5a:6e:03:fc:a1:a9:39:8a:c3:6d:6f:9b:f2:27:f7:33:
e3:f7:15:9b:fd:b5:a1:e6:0a:0c:28:5c:46:01:32:0f:4f:1c:
54:35:ac:83:52:6d:84:31:a9:f9:51:c3:87:39:12:1a:21:da:
96:5f:98:a8:14:7f:36:f7:40:c9:4e:a0:dc:82:0c:36:ad:aa:
5d:bf:67:48:c0:84:2c:14:08:a8:60:a6:75:06:a2:86:b5:ec:
1d:f5:7f:6e:3b:85:d3:7f:93:04:a3:3a:38:df:78:b2:15:b5:
f1:10:40:cb:1c:88:3e:47:ad:9b:9e:9e:86:8f:8d:54:6e:c4:
65:d2:0b:ae:0c:a0:b3:3a:30:f0:87:82:d2:1a:74:6a:a3:89:
51:70:68:2c:cb:fe:17:f1:df:bf:7f:2f:56:88:a8:ce:98:03:
4d:c2:f7:ed:54:47:c8:75:05:d2:e0:c0:42:8f:df:5e:7f:ff:
88:66:a7:0e:66:37:bb:3d:59:63:3b:a9:e8:66:cb:fb:26:ac:
77:1d:9f:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9958T4LKTrGTFp9Y3iMOWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxNmY2ZDExZjBjZTYzMjMwMTgxYTczZjg1YTY2NjE3MGY3
Mzg5YmQwHhcNMjUwODA2MDYwMDM2WhcNMjUwODA3MDYwMDM2WjAzMTEwLwYDVQQD
EygzMjliNGI1Y2FkMWM5NTkzNDdjMTYzMGNmNjBmZGEwNmY2NGMzY2NhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTkVB76aPA0YGoNUe5Kwy8ZHpz3v
X1VYmUIVlqfuKzUDdypr9Sm3Sq1kOmp/7ap2qQSqe54HPk26b+/ZqVRqELP9XKMn
C8KQngEl226pAavrYjx5NW/gw9yU5EqBGLNx8a3kda94tt0kgdIbNoFZS3lRYx95
66Ve9sQ9IJMmxGeoqricLet7/k0sc26ZxGQvmgxXO74JphYteNJNZ6FbZH1OqRaS
Ff7lXThrkjt7K1GsXzZzN7ziPvsut5YJUdy8P724ZGudWq+f69pzUNnTON/TDB5E
R2CjpRwR7f2AOMC6jp8c8GJK3lbLk7MuX2rP2rH2jCrsnbZEyEXYListlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDKbS1ytHJWTR8FjDPYP2gb2TDzKMB8GA1UdIwQY
MBaAFHFvbRHwzmMjAYGnP4WmZhcPc4m9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1c5dEVmRE9ZeU1CZ2FjX2hhWm1Gdzl6aWIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9iNmEyMzMtNmY4MC00ZjRlLTkzMTIt
ZTNmNDlhYzQ5NTYwLzEvY1c5dEVmRE9ZeU1CZ2FjX2hhWm1Gdzl6aWIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy9iNmEyMzMtNmY4MC00ZjRlLTkzMTItZTNmNDlhYzQ5NTYw
LzEvY1c5dEVmRE9ZeU1CZ2FjX2hhWm1Gdzl6aWIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK0b8eKe+
5jAeMrBNn2jYae+EbT/pvBeLWmj3cXGJxCYf9OZiieu1bVdsgHmwGXnGKiToZHxK
b9JabgP8oak5isNtb5vyJ/cz4/cVm/21oeYKDChcRgEyD08cVDWsg1JthDGp+VHD
hzkSGiHall+YqBR/NvdAyU6g3IIMNq2qXb9nSMCELBQIqGCmdQaihrXsHfV/bjuF
03+TBKM6ON94shW18RBAyxyIPketm56eho+NVG7EZdILrgygszow8IeC0hp0aqOJ
UXBoLMv+F/Hfv38vVoiozpgDTcL37VRHyHUF0uDAQo/fXn//iGanDmY3uz1ZYzup
6GbL+yasdx2flw==
-----END CERTIFICATE-----
Generated at Wed Aug 6 07:54:17 2025 by rpki-client