Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.mft
File: sYfM7EmqX2aqAmSNkbSi7o_3veY.mft (raw, json)
Hash identifier: C2iUrd2jBMSxqK0Plnn1IOCn+Gbklqy3qQ0yEColdkk=
Subject key identifier: 6D:20:42:DF:02:96:C4:62:AF:F1:FF:BF:85:B4:50:D4:53:9A:21:96
Authority key identifier: B1:87:CC:EC:49:AA:5F:66:AA:02:64:8D:91:B4:A2:EE:8F:F7:BD:E6
Certificate issuer: /CN=b187ccec49aa5f66aa02648d91b4a2ee8ff7bde6
Certificate serial: 01987D1C06D5939B29FFB596E4B877441796
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYfM7EmqX2aqAmSNkbSi7o_3veY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.mft
Manifest number: 034A
Signing time: Wed 06 Aug 2025 02:00:45 +0000
Manifest this update: Wed 06 Aug 2025 02:00:45 +0000
Manifest next update: Thu 07 Aug 2025 02:00:45 +0000
Files and hashes: 1: OfdMOcUbbc7oEojb1zo08qkIRuQ.roa (hash: IicrU+y2VcBYbd4QyyTDfZZRjrYA59p1rvePkvFgFRg=)
2: sYfM7EmqX2aqAmSNkbSi7o_3veY.crl (hash: L2n71vaFxRQY3uwnfK45DDBhpWIYsDGuzpMhJ0C4rXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sYfM7EmqX2aqAmSNkbSi7o_3veY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 02:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:1c:06:d5:93:9b:29:ff:b5:96:e4:b8:77:44:17:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b187ccec49aa5f66aa02648d91b4a2ee8ff7bde6
Validity
Not Before: Aug 6 02:00:45 2025 GMT
Not After : Aug 7 02:00:45 2025 GMT
Subject: CN=6d2042df0296c462aff1ffbf85b450d4539a2196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:80:51:a1:1f:20:ba:da:81:73:f0:dd:f0:5a:
bb:01:b6:ab:72:89:71:7e:62:43:34:30:a6:3c:49:
b2:21:38:32:36:60:1e:16:d4:3c:2f:6b:ff:cd:9b:
59:ef:7c:38:e1:91:78:64:c9:a5:9f:4b:35:86:d6:
c4:af:e8:c6:79:ad:d9:0c:b4:23:44:16:3c:56:cb:
d4:a6:ca:e9:a5:dc:bc:75:f4:dc:af:af:7c:2b:42:
ae:d9:0f:70:32:ea:0d:08:4c:d2:d3:7b:68:c4:98:
29:00:25:ec:ac:ed:c7:32:2b:43:af:56:73:2b:cf:
2d:54:06:1c:bc:bf:61:17:d7:54:e5:eb:ce:61:58:
2c:ea:0c:35:35:59:45:ea:6d:ef:13:43:8b:ff:78:
50:3c:ce:9e:26:96:78:08:4e:cf:ea:b5:09:6b:c1:
aa:af:1f:c0:9e:ab:8e:f7:2c:0f:64:52:f0:5c:d4:
e2:b7:65:0a:da:3b:64:f1:ba:6d:7a:4b:23:bd:db:
90:a6:5a:3c:47:d2:8f:df:3c:8d:af:e4:3e:d6:89:
92:26:1e:10:67:bd:ad:ae:80:33:67:d5:af:29:32:
37:26:ee:83:9b:c1:f7:1d:ca:ae:0c:97:11:a7:e9:
d3:7a:bc:0b:64:e4:d4:81:98:59:fa:48:2b:86:3c:
bc:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:20:42:DF:02:96:C4:62:AF:F1:FF:BF:85:B4:50:D4:53:9A:21:96
X509v3 Authority Key Identifier:
keyid:B1:87:CC:EC:49:AA:5F:66:AA:02:64:8D:91:B4:A2:EE:8F:F7:BD:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYfM7EmqX2aqAmSNkbSi7o_3veY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:4a:36:41:1a:d3:5f:ea:46:c2:17:77:22:cd:6c:cc:e7:83:
f5:de:81:cd:62:93:69:b5:b8:91:c4:f6:ab:e1:d9:50:31:96:
6d:d6:58:73:9c:c3:58:ee:c1:45:6d:75:1a:12:e8:17:f5:f7:
2e:ed:cc:56:e5:77:d1:e6:7e:8e:50:33:ac:14:9a:c9:8b:0e:
5c:5e:b9:98:b3:b0:54:db:47:69:98:d3:c7:77:51:68:89:11:
92:c2:9f:d3:e4:b8:4f:45:b7:2c:54:f8:63:cb:84:ba:8b:1f:
fe:50:de:07:7f:eb:1d:6d:8b:22:a1:45:1c:9f:28:7c:93:df:
ea:63:6b:11:c1:ec:1e:31:04:35:9c:6e:63:4a:7c:b7:bc:b9:
7f:bf:15:1f:45:00:c4:ba:c8:5a:5b:05:da:fe:d7:56:99:f8:
9e:e6:ec:c6:5c:bc:69:29:28:82:a8:00:cb:c3:9e:ca:e3:8c:
9c:b1:02:e3:14:74:fd:f4:30:91:63:66:06:96:a1:8f:2d:5a:
de:64:cd:60:93:5e:24:83:99:30:38:b6:96:9e:81:79:b8:90:
64:c4:16:53:5d:fa:e1:d2:83:ee:71:01:fb:4f:c0:ae:38:b1:
84:32:4c:0e:b7:21:29:fd:d5:64:f3:42:28:9d:bb:f8:39:b9:
37:42:76:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9HAbVk5sp/7WW5Lh3RBeWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxODdjY2VjNDlhYTVmNjZhYTAyNjQ4ZDkxYjRhMmVlOGZm
N2JkZTYwHhcNMjUwODA2MDIwMDQ1WhcNMjUwODA3MDIwMDQ1WjAzMTEwLwYDVQQD
Eyg2ZDIwNDJkZjAyOTZjNDYyYWZmMWZmYmY4NWI0NTBkNDUzOWEyMTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIBRoR8gutqBc/Dd8Fq7Abarcolx
fmJDNDCmPEmyITgyNmAeFtQ8L2v/zZtZ73w44ZF4ZMmln0s1htbEr+jGea3ZDLQj
RBY8VsvUpsrppdy8dfTcr698K0Ku2Q9wMuoNCEzS03toxJgpACXsrO3HMitDr1Zz
K88tVAYcvL9hF9dU5evOYVgs6gw1NVlF6m3vE0OL/3hQPM6eJpZ4CE7P6rUJa8Gq
rx/AnquO9ywPZFLwXNTit2UK2jtk8bpteksjvduQplo8R9KP3zyNr+Q+1omSJh4Q
Z72troAzZ9WvKTI3Ju6Dm8H3HcquDJcRp+nTerwLZOTUgZhZ+kgrhjy8uwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG0gQt8ClsRir/H/v4W0UNRTmiGWMB8GA1UdIwQY
MBaAFLGHzOxJql9mqgJkjZG0ou6P973mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1lmTTdFbXFYMmFxQW1TTmtiU2k3b18zdmVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC83MjI4MWEtZDY4OC00MTVkLWEyYzYt
MTdmNGUwZjZjZGViLzEvc1lmTTdFbXFYMmFxQW1TTmtiU2k3b18zdmVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC83MjI4MWEtZDY4OC00MTVkLWEyYzYtMTdmNGUwZjZjZGVi
LzEvc1lmTTdFbXFYMmFxQW1TTmtiU2k3b18zdmVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF0o2QRrT
X+pGwhd3Is1szOeD9d6BzWKTabW4kcT2q+HZUDGWbdZYc5zDWO7BRW11GhLoF/X3
Lu3MVuV30eZ+jlAzrBSayYsOXF65mLOwVNtHaZjTx3dRaIkRksKf0+S4T0W3LFT4
Y8uEuosf/lDeB3/rHW2LIqFFHJ8ofJPf6mNrEcHsHjEENZxuY0p8t7y5f78VH0UA
xLrIWlsF2v7XVpn4nubsxly8aSkogqgAy8OeyuOMnLEC4xR0/fQwkWNmBpahjy1a
3mTNYJNeJIOZMDi2lp6BebiQZMQWU1364dKD7nEB+0/ArjixhDJMDrchKf3VZPNC
KJ27+Dm5N0J2SA==
-----END CERTIFICATE-----
Generated at Wed Aug 6 11:12:24 2025 by rpki-client