Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.mft
File: tDlkbascuAzWConx-qE0bzlSO_o.mft (raw, json)
Hash identifier: kzYDirjTIJPshUrMxtxTcDmmAM8+gkE5u5qAC8YVYHQ=
Subject key identifier: C8:6B:89:93:7A:14:D9:07:90:47:7E:90:32:E8:0E:A5:16:8C:25:9F
Authority key identifier: B4:39:64:6D:AB:1C:B8:0C:D6:0A:89:F1:FA:A1:34:6F:39:52:3B:FA
Certificate issuer: /CN=b439646dab1cb80cd60a89f1faa1346f39523bfa
Certificate serial: 019873E3B229043C98A9F9BFF9B84B517CB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlkbascuAzWConx-qE0bzlSO_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.mft
Manifest number: 1613
Signing time: Mon 04 Aug 2025 07:02:38 +0000
Manifest this update: Mon 04 Aug 2025 07:02:38 +0000
Manifest next update: Tue 05 Aug 2025 07:02:38 +0000
Files and hashes: 1: tDlkbascuAzWConx-qE0bzlSO_o.crl (hash: qbkjJiUgLl3wDTDkgBTjiedc0ri+n0M0y7hLjKyj/TU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDlkbascuAzWConx-qE0bzlSO_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:b2:29:04:3c:98:a9:f9:bf:f9:b8:4b:51:7c:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b439646dab1cb80cd60a89f1faa1346f39523bfa
Validity
Not Before: Aug 4 07:02:38 2025 GMT
Not After : Aug 5 07:02:38 2025 GMT
Subject: CN=c86b89937a14d90790477e9032e80ea5168c259f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:36:f2:20:50:e8:89:c5:c8:2a:d2:5c:a4:db:
fe:b5:5d:c3:de:dd:52:7d:73:6e:f7:f3:41:91:51:
1c:20:ed:38:fd:f4:af:45:0e:d7:71:eb:0a:2f:74:
89:df:4d:d2:81:2f:13:45:66:64:94:f3:51:de:c2:
a4:e2:63:fe:32:b3:3b:fb:0c:f3:74:68:15:69:4d:
23:29:c8:97:dc:5a:2c:dc:3e:aa:79:eb:81:37:16:
2f:c3:3d:25:61:25:78:fb:39:65:ee:36:3a:ef:b0:
bd:de:9d:6b:43:1f:28:57:6f:11:f1:9e:ec:46:02:
94:c5:8e:e0:7c:8a:35:dd:a3:82:08:2c:68:44:c7:
1d:30:27:40:57:89:5e:da:10:29:0c:3e:13:1a:9d:
77:9c:b6:3e:6a:dd:35:48:ae:3a:4c:32:c7:d5:f1:
b9:e4:45:f5:39:3c:25:b6:c1:ff:7c:65:ec:bf:91:
9a:99:b2:01:eb:6f:a5:1f:51:57:2f:c1:f7:e8:13:
c9:81:33:70:e1:e8:51:99:fa:89:1b:9b:bb:14:e1:
21:09:f9:79:75:7e:21:4f:aa:00:c5:ad:fb:3b:d8:
d9:1d:c3:b6:de:4b:d3:9e:5b:a2:f6:b8:dd:d2:4d:
7d:4b:a0:29:07:31:a4:eb:12:ff:96:2a:4e:3e:cf:
e2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:6B:89:93:7A:14:D9:07:90:47:7E:90:32:E8:0E:A5:16:8C:25:9F
X509v3 Authority Key Identifier:
keyid:B4:39:64:6D:AB:1C:B8:0C:D6:0A:89:F1:FA:A1:34:6F:39:52:3B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlkbascuAzWConx-qE0bzlSO_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:99:9c:16:49:93:82:30:fe:05:95:21:bd:8f:d1:aa:b1:9c:
c6:58:00:cd:ff:a7:c4:7c:42:78:63:39:c8:28:23:7c:50:e1:
21:34:67:e4:cc:e1:59:95:c4:d7:b6:32:ea:1c:8e:75:68:b5:
c2:34:b7:d7:f0:fe:8d:1f:5c:04:51:f5:b7:e1:aa:84:ca:36:
11:21:f4:9e:ad:d8:d3:2b:9f:29:ca:1a:89:82:ee:6c:3e:5f:
a2:00:47:c9:86:5b:7c:38:16:58:b1:05:19:e8:e3:1a:19:d1:
ee:09:86:90:ed:f8:44:a9:7a:0f:24:82:57:eb:08:49:cb:91:
89:e9:31:89:28:9d:e3:29:63:30:5d:1b:2b:65:5b:99:03:94:
2c:49:a8:a0:ac:77:9d:ff:36:45:8d:a0:4f:d6:b9:39:48:3b:
6f:44:4c:5b:e5:ea:42:d0:bd:d7:6e:d7:28:d6:77:46:ef:3a:
e1:34:07:40:c5:06:d3:bc:43:2b:e0:3d:cd:22:8e:18:74:63:
cf:67:1d:f6:4a:38:54:e0:8a:8a:1a:9a:43:5d:9e:43:07:41:
34:d0:55:38:4e:f5:60:bc:a7:09:f2:24:d3:83:d0:72:8f:a8:
d6:82:50:62:70:d4:58:12:24:e3:8e:8c:43:4b:db:dd:8f:9b:
be:6b:fa:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz47IpBDyYqfm/+bhLUXy4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Mzk2NDZkYWIxY2I4MGNkNjBhODlmMWZhYTEzNDZmMzk1
MjNiZmEwHhcNMjUwODA0MDcwMjM4WhcNMjUwODA1MDcwMjM4WjAzMTEwLwYDVQQD
EyhjODZiODk5MzdhMTRkOTA3OTA0NzdlOTAzMmU4MGVhNTE2OGMyNTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnzbyIFDoicXIKtJcpNv+tV3D3t1S
fXNu9/NBkVEcIO04/fSvRQ7XcesKL3SJ303SgS8TRWZklPNR3sKk4mP+MrM7+wzz
dGgVaU0jKciX3Fos3D6qeeuBNxYvwz0lYSV4+zll7jY677C93p1rQx8oV28R8Z7s
RgKUxY7gfIo13aOCCCxoRMcdMCdAV4le2hApDD4TGp13nLY+at01SK46TDLH1fG5
5EX1OTwltsH/fGXsv5GambIB62+lH1FXL8H36BPJgTNw4ehRmfqJG5u7FOEhCfl5
dX4hT6oAxa37O9jZHcO23kvTnlui9rjd0k19S6ApBzGk6xL/lipOPs/ixQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMhriZN6FNkHkEd+kDLoDqUWjCWfMB8GA1UdIwQY
MBaAFLQ5ZG2rHLgM1gqJ8fqhNG85Ujv6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERsa2Jhc2N1QXpXQ29ueC1xRTBiemxTT19vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy9jZDRmNGQtYWE1OC00YTJmLWEzYzUt
N2U4YzU0NWE5N2FlLzEvdERsa2Jhc2N1QXpXQ29ueC1xRTBiemxTT19vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy9jZDRmNGQtYWE1OC00YTJmLWEzYzUtN2U4YzU0NWE5N2Fl
LzEvdERsa2Jhc2N1QXpXQ29ueC1xRTBiemxTT19vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL5mcFkmT
gjD+BZUhvY/RqrGcxlgAzf+nxHxCeGM5yCgjfFDhITRn5MzhWZXE17Yy6hyOdWi1
wjS31/D+jR9cBFH1t+GqhMo2ESH0nq3Y0yufKcoaiYLubD5fogBHyYZbfDgWWLEF
GejjGhnR7gmGkO34RKl6DySCV+sIScuRiekxiSid4yljMF0bK2VbmQOULEmooKx3
nf82RY2gT9a5OUg7b0RMW+XqQtC9127XKNZ3Ru864TQHQMUG07xDK+A9zSKOGHRj
z2cd9ko4VOCKihqaQ12eQwdBNNBVOE71YLynCfIk04PQco+o1oJQYnDUWBIk446M
Q0vb3Y+bvmv6Qg==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:39 2025 by rpki-client