
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.mft
File: t38R7tTnnIXMxWLfPR8oPjOdou0.mft (raw, json)
Hash identifier: 2cgd8jL33LamnbzN8EbgX46K0lY2j/zpk5cD4zLAxow=
Subject key identifier: 1D:79:AA:97:58:FF:9C:41:16:59:6D:38:DB:DA:32:94:C4:C9:63:6A
Authority key identifier: B7:7F:11:EE:D4:E7:9C:85:CC:C5:62:DF:3D:1F:28:3E:33:9D:A2:ED
Certificate issuer: /CN=b77f11eed4e79c85ccc562df3d1f283e339da2ed
Certificate serial: 01988B0F1A715A8490AAA1384E8A61200CE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t38R7tTnnIXMxWLfPR8oPjOdou0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.mft
Manifest number: 0CC5
Signing time: Fri 08 Aug 2025 19:01:19 +0000
Manifest this update: Fri 08 Aug 2025 19:01:19 +0000
Manifest next update: Sat 09 Aug 2025 19:01:19 +0000
Files and hashes: 1: t38R7tTnnIXMxWLfPR8oPjOdou0.crl (hash: ucxGKK47DHLCiKyVxyYeES1Q6xP4drDVmC9n69vfGf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.mft
rsync://rpki.ripe.net/repository/DEFAULT/t38R7tTnnIXMxWLfPR8oPjOdou0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:1a:71:5a:84:90:aa:a1:38:4e:8a:61:20:0c:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b77f11eed4e79c85ccc562df3d1f283e339da2ed
Validity
Not Before: Aug 8 19:01:19 2025 GMT
Not After : Aug 9 19:01:19 2025 GMT
Subject: CN=1d79aa9758ff9c4116596d38dbda3294c4c9636a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f9:02:97:59:10:9a:bd:a2:fb:88:e5:59:85:
78:f8:f7:58:5d:eb:9f:6e:0f:ef:70:fe:f7:81:a5:
eb:de:0a:b0:2c:80:dc:25:74:ae:24:7f:a5:6a:8c:
1a:00:13:5f:24:6a:39:43:c1:80:7c:2e:b9:b0:27:
52:47:ec:c4:8a:a3:f0:e1:1f:69:23:21:8a:29:db:
ec:8d:69:43:e9:f1:a6:ad:bf:9d:93:3e:ad:93:f9:
76:34:e5:89:6b:a4:33:81:c4:b2:2f:48:ff:03:ec:
62:59:89:1e:c6:d3:4e:fa:3e:34:ba:7b:22:3d:34:
b9:e0:2c:f5:b9:c8:f0:55:c2:66:1f:91:80:43:49:
df:bf:33:15:c0:cf:42:79:87:5b:35:fd:b0:4f:5e:
08:97:cd:38:97:fa:d8:26:6b:ef:df:4e:d2:3f:ee:
2d:61:1c:82:1d:ba:9e:97:72:bb:ff:0c:42:e9:97:
1d:40:55:1b:bd:98:a4:12:44:8d:b1:46:46:8a:4c:
3a:dc:52:02:87:5a:e7:ea:ac:4c:f1:87:a9:ab:d3:
11:9f:3d:bb:56:18:62:f2:d2:c5:8f:75:fb:fe:e1:
4e:62:e0:36:5c:1b:ec:61:f2:df:bb:26:2d:e8:41:
93:4a:35:3b:e8:c2:30:d4:5d:98:32:66:73:4f:d6:
6b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:79:AA:97:58:FF:9C:41:16:59:6D:38:DB:DA:32:94:C4:C9:63:6A
X509v3 Authority Key Identifier:
keyid:B7:7F:11:EE:D4:E7:9C:85:CC:C5:62:DF:3D:1F:28:3E:33:9D:A2:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t38R7tTnnIXMxWLfPR8oPjOdou0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:46:e3:ad:72:13:27:71:25:30:da:fc:8b:6b:7c:7e:78:58:
bb:1b:f1:bf:a1:cf:b3:32:df:60:96:42:d6:1c:fe:81:e1:db:
eb:1a:91:c0:be:09:88:02:46:06:bd:a3:41:91:4c:0f:b0:94:
36:48:cf:e4:41:12:3f:cf:4c:63:b1:c2:17:ca:5a:38:f8:1f:
bc:b3:3b:f7:2c:cc:16:87:51:29:b4:ad:18:f3:a2:30:43:9b:
09:0f:7b:66:fd:4d:6a:8e:87:38:d6:7f:1d:79:cc:10:5e:f9:
a1:79:4c:ce:32:d1:92:ee:bb:9f:57:55:8d:48:6b:81:b4:65:
f3:50:b7:9e:4b:b5:a1:19:40:da:87:3b:95:b0:46:83:a1:f2:
77:3e:e8:12:17:68:d9:be:31:f6:2a:66:c3:6d:f2:8f:b2:9e:
41:93:65:03:23:da:2e:c7:47:26:69:f3:e6:a7:3d:6b:15:26:
e2:0f:4a:21:23:5f:99:a9:7f:98:1a:b0:e0:c1:fe:09:9e:5b:
c7:96:81:a9:db:e6:a9:ad:1e:fe:5a:b1:d3:77:df:16:41:46:
f9:ab:8b:8d:cb:f7:12:ea:da:c9:1b:d4:ee:3b:e1:36:61:3c:
99:b9:99:db:d7:1f:33:eb:19:43:6f:8b:25:96:84:1d:09:15:
0d:43:b5:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiLDxpxWoSQqqE4TophIAzhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3N2YxMWVlZDRlNzljODVjY2M1NjJkZjNkMWYyODNlMzM5
ZGEyZWQwHhcNMjUwODA4MTkwMTE5WhcNMjUwODA5MTkwMTE5WjAzMTEwLwYDVQQD
EygxZDc5YWE5NzU4ZmY5YzQxMTY1OTZkMzhkYmRhMzI5NGM0Yzk2MzZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPkCl1kQmr2i+4jlWYV4+PdYXeuf
bg/vcP73gaXr3gqwLIDcJXSuJH+laowaABNfJGo5Q8GAfC65sCdSR+zEiqPw4R9p
IyGKKdvsjWlD6fGmrb+dkz6tk/l2NOWJa6QzgcSyL0j/A+xiWYkextNO+j40unsi
PTS54Cz1ucjwVcJmH5GAQ0nfvzMVwM9CeYdbNf2wT14Il804l/rYJmvv307SP+4t
YRyCHbqel3K7/wxC6ZcdQFUbvZikEkSNsUZGikw63FICh1rn6qxM8Yepq9MRnz27
Vhhi8tLFj3X7/uFOYuA2XBvsYfLfuyYt6EGTSjU76MIw1F2YMmZzT9ZrQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB15qpdY/5xBFlltONvaMpTEyWNqMB8GA1UdIwQY
MBaAFLd/Ee7U55yFzMVi3z0fKD4znaLtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDM4Ujd0VG5uSVhNeFdMZlBSOG9Qak9kb3UwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi85NzUwMzAtNDNiMi00MDBiLThkYzkt
MGM3NzU1OWQ5ZGIwLzEvdDM4Ujd0VG5uSVhNeFdMZlBSOG9Qak9kb3UwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi85NzUwMzAtNDNiMi00MDBiLThkYzktMGM3NzU1OWQ5ZGIw
LzEvdDM4Ujd0VG5uSVhNeFdMZlBSOG9Qak9kb3UwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQUbjrXIT
J3ElMNr8i2t8fnhYuxvxv6HPszLfYJZC1hz+geHb6xqRwL4JiAJGBr2jQZFMD7CU
NkjP5EESP89MY7HCF8paOPgfvLM79yzMFodRKbStGPOiMEObCQ97Zv1Nao6HONZ/
HXnMEF75oXlMzjLRku67n1dVjUhrgbRl81C3nku1oRlA2oc7lbBGg6Hydz7oEhdo
2b4x9ipmw23yj7KeQZNlAyPaLsdHJmnz5qc9axUm4g9KISNfmal/mBqw4MH+CZ5b
x5aBqdvmqa0e/lqx03ffFkFG+auLjcv3EurayRvU7jvhNmE8mbmZ29cfM+sZQ2+L
JZaEHQkVDUO1Cg==
-----END CERTIFICATE-----
Generated at Sat Aug 9 01:23:33 2025 by rpki-client