Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
File: RdGncWAlFxEzoyAslGKg6r1mBoI.mft (raw, json)
Hash identifier: IUcMj9R0B1JH4cmD01tcsCpssfokPmZo/p+aL+MkaYk=
Subject key identifier: 9E:8A:B0:4E:23:E5:43:A3:EC:47:B6:4E:E0:98:B0:B9:2C:1E:2B:93
Authority key identifier: 45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
Certificate issuer: /CN=45d1a7716025171133a3202c9462a0eabd660682
Certificate serial: 0198A6F44CB7E2F8975D77EE7CBE2B000A8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
Manifest number: 05C6
Signing time: Thu 14 Aug 2025 05:01:24 +0000
Manifest this update: Thu 14 Aug 2025 05:01:24 +0000
Manifest next update: Fri 15 Aug 2025 05:01:24 +0000
Files and hashes: 1: RdGncWAlFxEzoyAslGKg6r1mBoI.crl (hash: Pks2ZTo1bNTH4eS248H2fpSX0w4e0qsU/s+1PMJHJws=)
2: p6pII2yeX9CFzHUBZ-7ECA5XoLc.roa (hash: a0i/QIPJclzVoZAHggGCZw2DH9on4V8xPPUo2d8z17I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 Aug 2025 05:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a6:f4:4c:b7:e2:f8:97:5d:77:ee:7c:be:2b:00:0a:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45d1a7716025171133a3202c9462a0eabd660682
Validity
Not Before: Aug 14 05:01:24 2025 GMT
Not After : Aug 15 05:01:24 2025 GMT
Subject: CN=9e8ab04e23e543a3ec47b64ee098b0b92c1e2b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:95:3c:49:d5:4c:d2:27:87:20:45:4c:49:69:
cf:79:bd:63:10:63:d0:01:fa:58:94:8d:a0:b3:ac:
ec:99:2a:db:b8:60:63:4f:23:c3:ad:a9:b4:a0:67:
bf:7a:33:07:2f:b1:f6:fa:b9:8d:c8:49:13:23:d6:
fd:c1:86:e5:4c:34:36:68:79:0c:4e:68:21:ae:f2:
c6:7a:81:ec:7f:91:25:2a:ea:11:84:61:d5:ec:1d:
bc:c9:41:c8:e8:49:a0:42:ef:3a:b1:43:7e:28:bf:
7e:93:95:4c:b8:83:ed:c6:2f:57:97:e2:a3:a9:9a:
e2:a3:2d:11:1a:bd:5c:96:89:9e:6c:30:2c:8f:c8:
33:8b:0a:30:9b:84:57:5f:46:26:5b:dc:ad:5f:c7:
ba:a8:d1:52:5f:87:79:8a:be:4b:55:8d:c7:38:2a:
19:f4:20:3b:85:b9:e2:1c:05:63:c3:03:13:00:c4:
2d:f0:62:50:a3:39:71:5b:12:b4:33:26:30:42:f7:
71:a8:e7:50:a6:2c:df:5f:13:be:df:63:7b:61:bc:
bb:35:21:ae:50:28:2b:f4:fd:fe:3f:49:50:b5:88:
12:e6:35:80:44:9b:cf:4e:d3:39:a3:bb:d2:53:a1:
22:ef:76:a1:a6:d2:4d:70:44:c7:f6:77:9a:7c:a1:
fe:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:8A:B0:4E:23:E5:43:A3:EC:47:B6:4E:E0:98:B0:B9:2C:1E:2B:93
X509v3 Authority Key Identifier:
keyid:45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:e5:d6:6f:40:44:ca:ea:7a:1d:f2:75:e2:1b:90:fd:4d:1c:
fa:84:30:56:d7:b1:e3:67:09:14:be:1d:94:63:c7:17:f6:4d:
e9:11:0b:d0:47:30:06:a4:90:d1:fe:ff:d1:1b:92:00:5a:5f:
7f:c0:3e:18:10:21:90:6d:8f:e7:8a:4f:88:a5:85:25:e2:b3:
ae:2e:66:bb:72:c6:36:b6:5f:5c:d6:e8:ea:6c:2a:ce:f8:49:
dc:58:3b:65:93:37:82:17:26:8a:b9:4c:98:ae:32:dc:46:09:
34:18:70:a5:c0:6f:fd:22:21:4d:00:19:c4:aa:9c:65:29:e1:
76:c0:e2:1d:69:20:d0:6f:75:59:72:6d:80:e6:5e:49:d6:70:
2e:48:15:6f:75:7b:24:d1:d6:c5:d3:02:47:4b:de:3a:e0:09:
6b:b0:bc:81:43:c7:87:3a:80:e0:f4:ad:12:f8:7a:03:e9:af:
51:c3:f6:60:ec:f3:06:b6:e2:8c:75:18:6e:e9:81:23:d4:86:
b9:85:8f:35:3f:25:44:a4:aa:b2:fc:ca:df:71:62:38:43:54:
5b:eb:4f:01:5f:3f:c5:7b:eb:df:4e:42:19:f6:2e:74:02:f7:
58:11:83:42:79:26:85:14:58:b6:0c:30:b7:b8:18:cb:b0:5d:
32:d3:6c:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZim9Ey34viXXXfufL4rAAqMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ1ZDFhNzcxNjAyNTE3MTEzM2EzMjAyYzk0NjJhMGVhYmQ2
NjA2ODIwHhcNMjUwODE0MDUwMTI0WhcNMjUwODE1MDUwMTI0WjAzMTEwLwYDVQQD
Eyg5ZThhYjA0ZTIzZTU0M2EzZWM0N2I2NGVlMDk4YjBiOTJjMWUyYjkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZU8SdVM0ieHIEVMSWnPeb1jEGPQ
AfpYlI2gs6zsmSrbuGBjTyPDram0oGe/ejMHL7H2+rmNyEkTI9b9wYblTDQ2aHkM
TmghrvLGeoHsf5ElKuoRhGHV7B28yUHI6EmgQu86sUN+KL9+k5VMuIPtxi9Xl+Kj
qZrioy0RGr1clomebDAsj8gziwowm4RXX0YmW9ytX8e6qNFSX4d5ir5LVY3HOCoZ
9CA7hbniHAVjwwMTAMQt8GJQozlxWxK0MyYwQvdxqOdQpizfXxO+32N7Yby7NSGu
UCgr9P3+P0lQtYgS5jWARJvPTtM5o7vSU6Ei73ahptJNcETH9neafKH+RQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ6KsE4j5UOj7Ee2TuCYsLksHiuTMB8GA1UdIwQY
MBaAFEXRp3FgJRcRM6MgLJRioOq9ZgaCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmRHbmNXQWxGeEV6b3lBc2xHS2c2cjFtQm9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8xNWM0N2MtMmM3Yy00ODFjLWJmODkt
ODA3MjQ2Y2E3YTI0LzEvUmRHbmNXQWxGeEV6b3lBc2xHS2c2cjFtQm9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC8xNWM0N2MtMmM3Yy00ODFjLWJmODktODA3MjQ2Y2E3YTI0
LzEvUmRHbmNXQWxGeEV6b3lBc2xHS2c2cjFtQm9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEeXWb0BE
yup6HfJ14huQ/U0c+oQwVtex42cJFL4dlGPHF/ZN6REL0EcwBqSQ0f7/0RuSAFpf
f8A+GBAhkG2P54pPiKWFJeKzri5mu3LGNrZfXNbo6mwqzvhJ3Fg7ZZM3ghcmirlM
mK4y3EYJNBhwpcBv/SIhTQAZxKqcZSnhdsDiHWkg0G91WXJtgOZeSdZwLkgVb3V7
JNHWxdMCR0veOuAJa7C8gUPHhzqA4PStEvh6A+mvUcP2YOzzBrbijHUYbumBI9SG
uYWPNT8lRKSqsvzK33FiOENUW+tPAV8/xXvr305CGfYudAL3WBGDQnkmhRRYtgww
t7gYy7BdMtNsFA==
-----END CERTIFICATE-----
Generated at Thu Aug 14 11:01:45 2025 by rpki-client