
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
File: rwMNO0xYnpSj72Hd1UAajz_3m20.mft (raw, json)
Hash identifier: Q/7Vhu0Y5Zyr8Jld+5y+UfjKUFBClIwigt7OO0aZoVE=
Subject key identifier: 84:C4:EC:E9:3F:1E:C8:00:5A:3D:58:14:85:50:0A:C2:7F:0A:D4:D9
Authority key identifier: AF:03:0D:3B:4C:58:9E:94:A3:EF:61:DD:D5:40:1A:8F:3F:F7:9B:6D
Certificate issuer: /CN=af030d3b4c589e94a3ef61ddd5401a8f3ff79b6d
Certificate serial: 01988B7D522986F4803591F2258496392E6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
Manifest number: 0459
Signing time: Fri 08 Aug 2025 21:01:42 +0000
Manifest this update: Fri 08 Aug 2025 21:01:42 +0000
Manifest next update: Sat 09 Aug 2025 21:01:42 +0000
Files and hashes: 1: lhPT8Z32dm5HBnSDBqDW1qERmiA.roa (hash: 0NqD/8/FwQf4n6Nk71zoiew6bzyeCyV72ogP7Shiesg=)
2: rwMNO0xYnpSj72Hd1UAajz_3m20.crl (hash: Hb5lQ6tg2I2NfMxSMJe4fDB+vVGphOcbf1+HC1wIYDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:7d:52:29:86:f4:80:35:91:f2:25:84:96:39:2e:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af030d3b4c589e94a3ef61ddd5401a8f3ff79b6d
Validity
Not Before: Aug 8 21:01:42 2025 GMT
Not After : Aug 9 21:01:42 2025 GMT
Subject: CN=84c4ece93f1ec8005a3d581485500ac27f0ad4d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4e:a0:49:a1:b0:2e:1c:e6:ea:e4:74:8c:4e:
51:46:7e:f0:1d:e0:62:a0:e3:bc:b0:97:71:43:0e:
79:ca:b5:20:67:5b:14:5a:79:26:c2:d2:31:69:8b:
47:c4:e4:58:80:8c:d7:c2:cc:7e:71:a6:b9:54:d8:
13:5a:14:1a:f5:1a:6a:6b:74:db:d1:3f:c1:39:47:
b7:88:49:21:cb:f7:19:55:ed:aa:99:99:ad:e6:c8:
81:ff:94:97:6d:6a:3d:1a:e8:04:51:49:02:71:e3:
ec:aa:59:69:a5:ca:95:2c:a4:0e:a4:a1:01:38:20:
5f:e1:e1:de:c4:7e:91:b8:f0:ba:59:48:21:b7:a6:
a7:69:48:b8:fd:45:c8:ca:fb:da:9a:7f:d1:2d:14:
83:75:7c:25:a1:4c:a3:22:7e:39:da:3b:a3:6b:34:
6e:57:4a:1d:a7:e4:5c:d1:8b:ca:ac:a0:f2:00:73:
d3:7f:5b:1a:82:3c:12:36:79:6b:17:d3:3a:6b:f4:
b7:94:9f:d7:2e:d2:11:b1:8f:7a:53:3b:a5:ab:14:
f8:11:c1:d0:1a:2a:e3:9c:03:34:96:e6:d9:ad:d1:
ff:78:0f:14:aa:36:73:0b:62:d8:da:dc:cb:3e:57:
a6:79:d5:dc:e7:3a:7f:f5:58:42:16:1c:0e:84:d6:
e9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C4:EC:E9:3F:1E:C8:00:5A:3D:58:14:85:50:0A:C2:7F:0A:D4:D9
X509v3 Authority Key Identifier:
keyid:AF:03:0D:3B:4C:58:9E:94:A3:EF:61:DD:D5:40:1A:8F:3F:F7:9B:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:45:56:f1:4e:de:69:c5:76:f5:ec:b3:01:33:33:38:b7:a9:
58:06:1f:4d:48:33:12:ae:96:c1:7f:d8:3c:4c:27:b1:98:40:
93:70:d5:f9:7a:05:d5:a9:91:00:3e:0e:fb:5c:b8:97:9d:25:
17:8a:79:e0:7d:3e:8b:1e:ba:22:4b:11:54:b2:b6:e1:7f:2c:
03:bd:62:ee:78:a3:8a:d2:c1:d5:8f:34:b1:d9:9f:e4:15:11:
5c:73:9c:d4:90:16:cc:92:ad:a9:ad:fc:55:e9:95:49:10:c7:
8b:8f:80:17:e4:64:9c:17:7a:1f:fc:0a:f9:4d:2b:ea:39:31:
50:28:4b:cd:2a:4a:f8:92:c7:3f:79:a6:7c:c7:0c:5f:13:d8:
b4:4b:fb:60:eb:ab:d9:28:4c:8e:10:1b:32:0a:08:82:f6:a4:
36:a7:f4:ef:cc:d5:11:8b:91:63:f3:c2:03:c1:98:b9:21:7a:
37:5d:c9:24:13:b9:af:97:10:09:11:c4:f8:27:fb:28:1e:aa:
88:29:e8:aa:1d:7f:65:14:4e:b5:99:36:01:67:ab:69:18:67:
a0:8e:62:98:16:b5:4f:6b:9c:fa:11:6c:30:d9:a9:33:49:87:
e3:d6:b2:da:7c:2d:37:9d:a0:53:4e:ba:74:9e:d2:a9:34:c5:
cc:c0:27:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiLfVIphvSANZHyJYSWOS5qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMDMwZDNiNGM1ODllOTRhM2VmNjFkZGQ1NDAxYThmM2Zm
NzliNmQwHhcNMjUwODA4MjEwMTQyWhcNMjUwODA5MjEwMTQyWjAzMTEwLwYDVQQD
Eyg4NGM0ZWNlOTNmMWVjODAwNWEzZDU4MTQ4NTUwMGFjMjdmMGFkNGQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyE6gSaGwLhzm6uR0jE5RRn7wHeBi
oOO8sJdxQw55yrUgZ1sUWnkmwtIxaYtHxORYgIzXwsx+caa5VNgTWhQa9Rpqa3Tb
0T/BOUe3iEkhy/cZVe2qmZmt5siB/5SXbWo9GugEUUkCcePsqllppcqVLKQOpKEB
OCBf4eHexH6RuPC6WUght6anaUi4/UXIyvvamn/RLRSDdXwloUyjIn452jujazRu
V0odp+Rc0YvKrKDyAHPTf1sagjwSNnlrF9M6a/S3lJ/XLtIRsY96UzulqxT4EcHQ
GirjnAM0lubZrdH/eA8UqjZzC2LY2tzLPlemedXc5zp/9VhCFhwOhNbpxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFITE7Ok/HsgAWj1YFIVQCsJ/CtTZMB8GA1UdIwQY
MBaAFK8DDTtMWJ6Uo+9h3dVAGo8/95ttMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcndNTk8weFlucFNqNzJIZDFVQWFqel8zbTIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8wZGE4NDctMWFlOS00OTZjLTg5ZmEt
OTI0NWE5YWI5NzhiLzEvcndNTk8weFlucFNqNzJIZDFVQWFqel8zbTIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi8wZGE4NDctMWFlOS00OTZjLTg5ZmEtOTI0NWE5YWI5Nzhi
LzEvcndNTk8weFlucFNqNzJIZDFVQWFqel8zbTIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN0VW8U7e
acV29eyzATMzOLepWAYfTUgzEq6WwX/YPEwnsZhAk3DV+XoF1amRAD4O+1y4l50l
F4p54H0+ix66IksRVLK24X8sA71i7nijitLB1Y80sdmf5BURXHOc1JAWzJKtqa38
VemVSRDHi4+AF+RknBd6H/wK+U0r6jkxUChLzSpK+JLHP3mmfMcMXxPYtEv7YOur
2ShMjhAbMgoIgvakNqf078zVEYuRY/PCA8GYuSF6N13JJBO5r5cQCRHE+Cf7KB6q
iCnoqh1/ZRROtZk2AWeraRhnoI5imBa1T2uc+hFsMNmpM0mH49ay2nwtN52gU066
dJ7SqTTFzMAnTA==
-----END CERTIFICATE-----
Generated at Sat Aug 9 05:50:12 2025 by rpki-client