Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
File: 04BE23ZiygAUgai9swt6vRi86ao.mft (raw, json)
Hash identifier: QpEnK2CUi5jaIZwrJKKno1qHsbs0Qr1AB0CqNmz3NG0=
Subject key identifier: D1:31:10:E2:24:E8:61:46:47:E5:DF:30:D7:55:8D:04:BA:A5:8D:93
Authority key identifier: D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
Certificate issuer: /CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Certificate serial: 0198936CB03CF95570EFF6E85D686C230B5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
Manifest number: 10EA
Signing time: Sun 10 Aug 2025 10:00:30 +0000
Manifest this update: Sun 10 Aug 2025 10:00:30 +0000
Manifest next update: Mon 11 Aug 2025 10:00:30 +0000
Files and hashes: 1: 04BE23ZiygAUgai9swt6vRi86ao.crl (hash: V8iPqV0OJkhtgCsjytAde5wqw1PtVbcyVI+67LYX6cQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 10:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:6c:b0:3c:f9:55:70:ef:f6:e8:5d:68:6c:23:0b:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Validity
Not Before: Aug 10 10:00:30 2025 GMT
Not After : Aug 11 10:00:30 2025 GMT
Subject: CN=d13110e224e8614647e5df30d7558d04baa58d93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2f:8d:69:e7:37:a0:be:f5:21:5c:f0:70:19:
ea:57:74:63:db:f9:d5:bf:09:85:82:45:5d:56:fb:
e8:0a:a3:0c:44:7e:3f:44:20:ce:7b:30:e8:53:07:
a0:2f:f0:9b:60:1d:b1:6e:4a:55:1b:d1:4a:86:63:
51:c3:0d:04:17:f9:2d:d8:b8:c0:25:74:60:d1:87:
54:31:4c:57:61:ba:a5:3c:24:59:24:49:90:5f:69:
e6:27:af:4c:97:4d:05:b1:4a:91:c9:f9:7a:79:18:
44:f4:e1:58:bd:bf:45:98:ae:52:65:cc:2a:99:f4:
03:74:d1:89:e1:71:10:83:d2:aa:56:87:68:31:de:
46:e0:56:35:8f:48:27:33:e7:2e:53:4a:d6:96:8d:
f5:ce:91:ab:2a:3b:84:93:9c:7c:5a:f6:3e:8c:b2:
3f:2b:eb:8d:41:b4:06:93:a7:e5:ab:b9:33:aa:a6:
f0:0c:f1:cb:5c:ac:9d:7f:24:cb:56:d3:79:0f:c6:
52:62:a0:ed:9c:6a:3b:ad:87:54:ce:80:6e:ab:b5:
ee:2b:80:66:8c:3a:6c:9c:a9:57:81:ed:7e:d4:f5:
68:63:be:d6:dc:e9:59:7a:5c:7e:5f:af:70:c3:a8:
c0:b6:ae:2a:de:23:7a:92:cf:c9:f7:80:6a:dc:5e:
3d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:31:10:E2:24:E8:61:46:47:E5:DF:30:D7:55:8D:04:BA:A5:8D:93
X509v3 Authority Key Identifier:
keyid:D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:75:4b:36:a5:ca:89:eb:53:84:47:48:bc:6d:be:2a:74:dc:
d8:32:1a:73:6b:71:ea:6f:8f:2d:d8:94:bb:da:a7:83:d9:72:
f5:0c:ef:27:ee:b6:1f:94:d0:31:e1:34:82:34:ac:df:fb:0b:
c9:85:fd:f1:93:44:7b:4d:a9:64:cf:48:12:ad:a9:8d:a8:78:
f2:52:40:d9:64:c4:20:fb:ae:39:a3:4b:78:44:8c:5e:35:e1:
42:c7:cd:06:7c:67:5a:b0:27:82:14:fc:7a:ca:17:6d:6d:a2:
59:c3:6e:05:40:ef:44:16:30:e8:be:b0:c8:6e:17:eb:d2:ac:
95:6a:3a:0b:6d:63:85:38:98:1d:f0:9f:50:20:67:f5:14:dd:
37:95:43:1e:8b:53:b6:63:1d:74:cb:d4:78:e5:e0:c1:31:b0:
ee:69:bb:2c:94:b1:92:b9:44:41:a7:f9:05:7e:e8:40:90:f9:
70:be:29:ee:aa:48:d8:ea:0e:90:78:f9:c8:84:f8:3c:71:44:
5b:9d:dc:f1:65:4a:5d:16:a1:2e:9d:fc:8b:2c:e1:23:c7:51:
b1:f5:74:1e:7f:f3:4f:c1:5f:07:8c:b8:00:63:dd:e4:1f:e7:
14:83:d0:b5:4b:85:73:dd:79:d0:7e:bb:c3:fb:94:ec:74:72:
2b:13:08:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiTbLA8+VVw7/boXWhsIwtdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzODA0NGRiNzY2MmNhMDAxNDgxYThiZGIzMGI3YWJkMThi
Y2U5YWEwHhcNMjUwODEwMTAwMDMwWhcNMjUwODExMTAwMDMwWjAzMTEwLwYDVQQD
EyhkMTMxMTBlMjI0ZTg2MTQ2NDdlNWRmMzBkNzU1OGQwNGJhYTU4ZDkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApy+Naec3oL71IVzwcBnqV3Rj2/nV
vwmFgkVdVvvoCqMMRH4/RCDOezDoUwegL/CbYB2xbkpVG9FKhmNRww0EF/kt2LjA
JXRg0YdUMUxXYbqlPCRZJEmQX2nmJ69Ml00FsUqRyfl6eRhE9OFYvb9FmK5SZcwq
mfQDdNGJ4XEQg9KqVodoMd5G4FY1j0gnM+cuU0rWlo31zpGrKjuEk5x8WvY+jLI/
K+uNQbQGk6flq7kzqqbwDPHLXKydfyTLVtN5D8ZSYqDtnGo7rYdUzoBuq7XuK4Bm
jDpsnKlXge1+1PVoY77W3OlZelx+X69ww6jAtq4q3iN6ks/J94Bq3F49+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNExEOIk6GFGR+XfMNdVjQS6pY2TMB8GA1UdIwQY
MBaAFNOARNt2YsoAFIGovbMLer0YvOmqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDRCRTIzWml5Z0FVZ2FpOXN3dDZ2Umk4NmFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8xNGU5NzctMzQ2Zi00NGFkLWIwZGYt
MGExMGI4ODFjM2FjLzEvMDRCRTIzWml5Z0FVZ2FpOXN3dDZ2Umk4NmFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS8xNGU5NzctMzQ2Zi00NGFkLWIwZGYtMGExMGI4ODFjM2Fj
LzEvMDRCRTIzWml5Z0FVZ2FpOXN3dDZ2Umk4NmFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUHVLNqXK
ietThEdIvG2+KnTc2DIac2tx6m+PLdiUu9qng9ly9QzvJ+62H5TQMeE0gjSs3/sL
yYX98ZNEe02pZM9IEq2pjah48lJA2WTEIPuuOaNLeESMXjXhQsfNBnxnWrAnghT8
esoXbW2iWcNuBUDvRBYw6L6wyG4X69KslWo6C21jhTiYHfCfUCBn9RTdN5VDHotT
tmMddMvUeOXgwTGw7mm7LJSxkrlEQaf5BX7oQJD5cL4p7qpI2OoOkHj5yIT4PHFE
W53c8WVKXRahLp38iyzhI8dRsfV0Hn/zT8FfB4y4AGPd5B/nFIPQtUuFc9150H67
w/uU7HRyKxMIQA==
-----END CERTIFICATE-----
Generated at Sun Aug 10 19:51:42 2025 by rpki-client