Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
File: t1ELZRv73wnISGqBNiAABb77SX0.mft (raw, json)
Hash identifier: 8RM/uZtSRZfJ2Z1+uEkuqKU69Tx7xl2olUoixLZcn6o=
Subject key identifier: 16:6B:39:4B:FE:04:1A:94:B2:72:74:6C:E9:34:D0:D9:CF:24:BF:C0
Authority key identifier: B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
Certificate issuer: /CN=b7510b651bfbdf09c8486a8136200005befb497d
Certificate serial: 019880C1E551D489FB65D84D0B94495A0A79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
Manifest number: 0C9D
Signing time: Wed 06 Aug 2025 19:00:47 +0000
Manifest this update: Wed 06 Aug 2025 19:00:47 +0000
Manifest next update: Thu 07 Aug 2025 19:00:47 +0000
Files and hashes: 1: Jiow1t-Pk1ZOtI6Aqeh1RaSW3p4.roa (hash: DYR6jlP51Fl43ZL0B6qnJrGHJROyqbTA9KSRORts0Uo=)
2: t1ELZRv73wnISGqBNiAABb77SX0.crl (hash: KWjOy5aDwW7fcNYCUINWfMEX9+qtW6mppWgXVQMXfGs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 19:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:c1:e5:51:d4:89:fb:65:d8:4d:0b:94:49:5a:0a:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7510b651bfbdf09c8486a8136200005befb497d
Validity
Not Before: Aug 6 19:00:47 2025 GMT
Not After : Aug 7 19:00:47 2025 GMT
Subject: CN=166b394bfe041a94b272746ce934d0d9cf24bfc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f3:58:d5:2a:e4:1f:ea:76:4d:3e:e3:46:38:
e1:d2:e4:e9:3d:8e:c2:a3:7d:ad:8e:6e:49:50:af:
1d:5e:cb:8f:a9:ae:42:06:53:2f:9c:2d:cd:17:e5:
c1:fa:f8:c5:7f:95:7c:59:78:32:2b:57:3d:ae:01:
52:4c:ca:7e:dc:c3:73:f0:14:df:41:d7:66:20:2b:
1c:91:56:58:f1:f0:ad:7c:db:2d:4f:c7:bf:71:96:
04:ab:26:30:b8:dd:c9:82:24:e1:15:ee:b0:4e:25:
bd:c8:de:4b:53:ae:7d:2b:32:84:95:3d:50:cd:ab:
d7:ca:46:80:a5:db:b9:a1:50:74:34:ce:a3:ae:68:
39:e8:3f:64:bc:08:97:8d:8f:49:4f:78:9d:30:27:
d4:18:c0:5c:a8:7d:5d:84:16:ea:55:b5:0b:37:f7:
71:9a:f7:c9:9b:ce:4c:4a:da:27:2e:8c:31:fe:db:
d8:63:cd:e3:93:d2:b9:7e:39:06:46:d1:78:50:7c:
c7:b3:d2:3b:ad:6a:8b:8d:32:14:86:ff:f4:f8:0c:
e5:cf:bf:0b:8b:9d:53:8f:cd:66:d2:67:86:23:b1:
2c:06:db:d3:cc:60:38:6b:56:ff:99:57:ec:4c:9b:
64:2b:3c:90:17:5b:54:da:f6:bc:75:36:1f:5e:a7:
d3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:6B:39:4B:FE:04:1A:94:B2:72:74:6C:E9:34:D0:D9:CF:24:BF:C0
X509v3 Authority Key Identifier:
keyid:B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:8c:6c:0f:23:14:82:f4:97:be:eb:0f:d5:15:b0:22:ae:5b:
09:06:8a:81:d6:52:3e:7a:9c:54:bc:2f:dc:5b:c8:dd:da:f6:
4c:c4:5d:c8:47:e9:d8:b1:14:46:55:47:45:6f:9c:d8:e0:31:
57:8d:59:18:07:94:b7:33:be:f1:9a:95:bf:7d:2a:00:20:b2:
fe:1d:02:83:26:51:ae:90:d6:92:14:b9:fe:bf:9a:df:5e:19:
e7:5e:7a:ac:b4:60:40:36:8e:d6:a5:66:26:ed:7e:0f:8a:97:
df:cd:26:3b:4a:08:90:ae:c0:38:8c:b9:46:06:ea:b2:2b:7c:
f2:c4:0e:95:ca:7b:1a:a6:92:ae:50:cf:c8:63:cd:88:5b:70:
27:45:bb:c7:d0:8a:1b:0f:84:90:12:46:bc:83:fc:11:6c:ba:
c6:31:90:7e:cc:9f:62:9b:59:41:13:30:42:64:25:db:00:73:
d2:49:e6:55:a2:1d:d7:54:4d:25:50:68:55:84:bb:1a:9f:54:
e3:7e:85:c2:c5:bf:45:47:90:41:26:df:7a:99:67:9a:c7:d9:
42:f1:f9:07:28:8f:d0:33:c9:a1:b8:e6:12:a2:1d:b1:e7:56:
0f:e4:d0:be:d5:b8:ee:46:80:d1:59:87:4b:e0:66:c6:36:9e:
2f:ca:ee:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAweVR1In7ZdhNC5RJWgp5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NTEwYjY1MWJmYmRmMDljODQ4NmE4MTM2MjAwMDA1YmVm
YjQ5N2QwHhcNMjUwODA2MTkwMDQ3WhcNMjUwODA3MTkwMDQ3WjAzMTEwLwYDVQQD
EygxNjZiMzk0YmZlMDQxYTk0YjI3Mjc0NmNlOTM0ZDBkOWNmMjRiZmMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1fNY1SrkH+p2TT7jRjjh0uTpPY7C
o32tjm5JUK8dXsuPqa5CBlMvnC3NF+XB+vjFf5V8WXgyK1c9rgFSTMp+3MNz8BTf
QddmICsckVZY8fCtfNstT8e/cZYEqyYwuN3JgiThFe6wTiW9yN5LU659KzKElT1Q
zavXykaApdu5oVB0NM6jrmg56D9kvAiXjY9JT3idMCfUGMBcqH1dhBbqVbULN/dx
mvfJm85MStonLowx/tvYY83jk9K5fjkGRtF4UHzHs9I7rWqLjTIUhv/0+Azlz78L
i51Tj81m0meGI7EsBtvTzGA4a1b/mVfsTJtkKzyQF1tU2va8dTYfXqfTkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBZrOUv+BBqUsnJ0bOk00NnPJL/AMB8GA1UdIwQY
MBaAFLdRC2Ub+98JyEhqgTYgAAW++0l9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFFTFpSdjczd25JU0dxQk5pQUFCYjc3U1gwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iZmYxYzMtMDA4NC00MmJiLWJjZjct
MmNiODg3N2ZkOTcwLzEvdDFFTFpSdjczd25JU0dxQk5pQUFCYjc3U1gwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9iZmYxYzMtMDA4NC00MmJiLWJjZjctMmNiODg3N2ZkOTcw
LzEvdDFFTFpSdjczd25JU0dxQk5pQUFCYjc3U1gwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG4xsDyMU
gvSXvusP1RWwIq5bCQaKgdZSPnqcVLwv3FvI3dr2TMRdyEfp2LEURlVHRW+c2OAx
V41ZGAeUtzO+8ZqVv30qACCy/h0CgyZRrpDWkhS5/r+a314Z5156rLRgQDaO1qVm
Ju1+D4qX380mO0oIkK7AOIy5Rgbqsit88sQOlcp7GqaSrlDPyGPNiFtwJ0W7x9CK
Gw+EkBJGvIP8EWy6xjGQfsyfYptZQRMwQmQl2wBz0knmVaId11RNJVBoVYS7Gp9U
436FwsW/RUeQQSbfeplnmsfZQvH5ByiP0DPJobjmEqIdsedWD+TQvtW47kaA0VmH
S+BmxjaeL8rubw==
-----END CERTIFICATE-----
Generated at Thu Aug 7 03:16:12 2025 by rpki-client