Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.mft
File: 2afNm3hyoceqJis_rRqQdlAlKDI.mft (raw, json)
Hash identifier: gett8thjdYHP2qCnrWJC0jZPHQm3+DyqpYJukVE3LjA=
Subject key identifier: E7:67:6F:C6:1E:2F:F3:00:90:15:97:01:CB:1B:72:98:76:ED:A4:33
Authority key identifier: D9:A7:CD:9B:78:72:A1:C7:AA:26:2B:3F:AD:1A:90:76:50:25:28:32
Certificate issuer: /CN=d9a7cd9b7872a1c7aa262b3fad1a907650252832
Certificate serial: 01987486B51DDA8C1BF008255953114C7272
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2afNm3hyoceqJis_rRqQdlAlKDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.mft
Manifest number: 043D
Signing time: Mon 04 Aug 2025 10:00:41 +0000
Manifest this update: Mon 04 Aug 2025 10:00:41 +0000
Manifest next update: Tue 05 Aug 2025 10:00:41 +0000
Files and hashes: 1: 2afNm3hyoceqJis_rRqQdlAlKDI.crl (hash: EjKzsjvlxjuO/DEnDDz4943k4VWV5m473LZhPtdXQZE=)
2: 8xRb-DPzCzHiHinhBGSiJKFCfq0.roa (hash: A9plqAZ6tW823XWa6YGs85LIMKZtOqJdz/q0S+8zYRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2afNm3hyoceqJis_rRqQdlAlKDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 10:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:86:b5:1d:da:8c:1b:f0:08:25:59:53:11:4c:72:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9a7cd9b7872a1c7aa262b3fad1a907650252832
Validity
Not Before: Aug 4 10:00:41 2025 GMT
Not After : Aug 5 10:00:41 2025 GMT
Subject: CN=e7676fc61e2ff30090159701cb1b729876eda433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1d:93:68:2a:fb:a4:d5:e5:48:9b:3a:01:0c:
26:03:43:4a:bc:8b:27:32:10:0f:93:82:b9:82:b5:
25:aa:a5:44:ec:d2:82:79:aa:2d:ed:b3:89:54:30:
c8:1b:40:fa:55:eb:7e:a1:31:d5:2a:e3:4d:a2:7f:
cc:c9:f4:97:0b:a8:7a:92:12:e5:dc:78:8a:8a:48:
3f:1a:cb:9d:39:89:41:ab:53:ce:1e:b6:bf:7f:26:
ef:a7:33:ef:c2:35:9f:e2:ee:25:46:58:31:4a:2a:
8d:b1:c5:93:c8:e6:65:41:39:3a:cf:55:c1:20:81:
87:b4:51:9b:04:4b:fe:91:e8:fc:93:f1:bb:74:7d:
f6:28:af:5c:5d:26:fb:49:5d:3b:38:05:4f:70:49:
78:ee:13:6c:9b:19:c7:cf:09:4c:a6:ab:b0:11:65:
5f:d7:f7:e1:d8:1a:16:7c:b9:54:15:0b:3f:30:91:
1f:c0:56:79:4a:0e:c5:cc:e7:29:c3:35:be:ad:8b:
4b:6b:b0:f7:f4:57:52:ff:ef:19:bf:0c:8c:03:85:
d3:64:db:7e:52:8a:58:56:2d:e3:0f:18:a4:77:21:
d8:cf:a0:ff:69:ff:8c:16:f7:89:97:f1:07:ae:32:
77:8b:18:d2:c2:66:3b:c2:ac:96:05:59:5b:c5:fe:
e3:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:67:6F:C6:1E:2F:F3:00:90:15:97:01:CB:1B:72:98:76:ED:A4:33
X509v3 Authority Key Identifier:
keyid:D9:A7:CD:9B:78:72:A1:C7:AA:26:2B:3F:AD:1A:90:76:50:25:28:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2afNm3hyoceqJis_rRqQdlAlKDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:9c:8c:e9:73:a9:f4:93:06:4d:f6:13:55:4f:e8:89:bb:4e:
8a:90:b5:82:00:c8:74:cf:cd:27:f3:7a:b5:db:e7:06:91:8b:
2d:7a:7f:a9:e7:97:e0:e8:9c:f5:b5:87:ee:5d:f6:78:fe:b8:
73:29:46:0a:95:67:3d:6e:71:47:5b:c9:a7:41:e3:b6:39:fc:
48:e5:9e:98:bb:7f:55:28:5e:8c:fc:0c:58:33:2f:b2:2b:62:
6e:3d:8b:dd:af:03:a3:e9:08:70:a3:60:08:13:a7:be:e1:55:
8d:54:9c:d8:8b:a3:b4:01:98:4e:82:ea:1b:4c:47:02:6b:97:
6c:24:bb:07:52:7a:79:42:0b:35:3a:84:bb:7e:33:d0:af:4c:
76:64:71:79:cb:0c:c7:9b:33:4e:90:5e:11:f2:28:be:4a:00:
0e:0c:34:85:fc:a7:e0:4e:a0:0c:c5:ad:5a:44:54:69:40:74:
95:74:35:a8:72:e9:4c:fd:b3:0c:b6:ef:93:83:6a:18:84:01:
d7:de:43:86:f7:20:ff:99:24:57:5e:8e:84:aa:d3:d1:46:69:
81:7b:37:16:0a:ec:41:bc:f1:af:f6:59:e9:19:22:2b:37:0f:
60:ac:57:c5:b1:98:ab:ff:a5:0e:c1:db:6f:14:bc:f4:38:02:
0d:65:ff:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0hrUd2owb8AglWVMRTHJyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5YTdjZDliNzg3MmExYzdhYTI2MmIzZmFkMWE5MDc2NTAy
NTI4MzIwHhcNMjUwODA0MTAwMDQxWhcNMjUwODA1MTAwMDQxWjAzMTEwLwYDVQQD
EyhlNzY3NmZjNjFlMmZmMzAwOTAxNTk3MDFjYjFiNzI5ODc2ZWRhNDMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAox2TaCr7pNXlSJs6AQwmA0NKvIsn
MhAPk4K5grUlqqVE7NKCeaot7bOJVDDIG0D6Vet+oTHVKuNNon/MyfSXC6h6khLl
3HiKikg/GsudOYlBq1POHra/fybvpzPvwjWf4u4lRlgxSiqNscWTyOZlQTk6z1XB
IIGHtFGbBEv+kej8k/G7dH32KK9cXSb7SV07OAVPcEl47hNsmxnHzwlMpquwEWVf
1/fh2BoWfLlUFQs/MJEfwFZ5Sg7FzOcpwzW+rYtLa7D39FdS/+8ZvwyMA4XTZNt+
UopYVi3jDxikdyHYz6D/af+MFveJl/EHrjJ3ixjSwmY7wqyWBVlbxf7jfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOdnb8YeL/MAkBWXAcsbcph27aQzMB8GA1UdIwQY
MBaAFNmnzZt4cqHHqiYrP60akHZQJSgyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmFmTm0zaHlvY2VxSmlzX3JScVFkbEFsS0RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9jMDZmMDktOTA3Mi00ZDU3LTliNjQt
ZDA1YmU4YzVhNGIxLzEvMmFmTm0zaHlvY2VxSmlzX3JScVFkbEFsS0RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9jMDZmMDktOTA3Mi00ZDU3LTliNjQtZDA1YmU4YzVhNGIx
LzEvMmFmTm0zaHlvY2VxSmlzX3JScVFkbEFsS0RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcZyM6XOp
9JMGTfYTVU/oibtOipC1ggDIdM/NJ/N6tdvnBpGLLXp/qeeX4Oic9bWH7l32eP64
cylGCpVnPW5xR1vJp0Hjtjn8SOWemLt/VShejPwMWDMvsitibj2L3a8Do+kIcKNg
CBOnvuFVjVSc2IujtAGYToLqG0xHAmuXbCS7B1J6eUILNTqEu34z0K9MdmRxecsM
x5szTpBeEfIovkoADgw0hfyn4E6gDMWtWkRUaUB0lXQ1qHLpTP2zDLbvk4NqGIQB
195Dhvcg/5kkV16OhKrT0UZpgXs3FgrsQbzxr/ZZ6RkiKzcPYKxXxbGYq/+lDsHb
bxS89DgCDWX/Dg==
-----END CERTIFICATE-----
Generated at Mon Aug 4 13:59:38 2025 by rpki-client