Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
File: pdCLMVCtNN4riFkhdBkkCDlvEfs.mft (raw, json)
Hash identifier: jjqidlVvkmbJX9Ggsik60R0tLhC2fGjIAiyPog1ku90=
Subject key identifier: 57:40:2C:3E:7F:71:B4:A1:3C:BC:F5:E9:10:85:18:5B:13:F9:E2:54
Authority key identifier: A5:D0:8B:31:50:AD:34:DE:2B:88:59:21:74:19:24:08:39:6F:11:FB
Certificate issuer: /CN=a5d08b3150ad34de2b88592174192408396f11fb
Certificate serial: 019874504E6E14D71EE4A3A8BC65B1B7B7A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
Manifest number: 1617
Signing time: Mon 04 Aug 2025 09:01:16 +0000
Manifest this update: Mon 04 Aug 2025 09:01:16 +0000
Manifest next update: Tue 05 Aug 2025 09:01:16 +0000
Files and hashes: 1: bY2tBQ51YL8a-pcphuYuVQz7bOg.roa (hash: FnAC9AE4W5+r++w2y10UXXpTgultC6LrjOa8S41rhns=)
2: pdCLMVCtNN4riFkhdBkkCDlvEfs.crl (hash: Cvzh88q010mav20KyTDqyLXFZM8TaWjS4Vj7FbFUNqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:4e:6e:14:d7:1e:e4:a3:a8:bc:65:b1:b7:b7:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5d08b3150ad34de2b88592174192408396f11fb
Validity
Not Before: Aug 4 09:01:16 2025 GMT
Not After : Aug 5 09:01:16 2025 GMT
Subject: CN=57402c3e7f71b4a13cbcf5e91085185b13f9e254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:97:37:12:07:77:12:6a:a7:85:ac:c1:b6:b7:
b3:1e:b2:16:66:48:82:e2:b3:29:ef:a0:37:e2:24:
0a:1c:c6:5f:d2:a7:60:b8:9d:74:ac:61:b1:ab:bf:
14:6c:fa:60:36:11:21:10:ee:40:f5:7f:28:0e:75:
eb:9d:8b:e7:34:e1:35:d9:b9:26:bb:69:98:df:eb:
52:93:83:ae:17:94:87:5f:c2:2f:ac:75:3f:d1:ab:
36:93:02:76:c1:e9:cd:5f:5a:ca:3d:c0:1b:f1:93:
e1:cf:58:d4:f5:6c:b9:b5:85:9b:11:e0:b4:dd:36:
6b:39:58:58:0a:b6:c4:44:15:a5:cf:f0:f5:a7:ed:
9f:63:05:d1:de:ca:4c:73:1c:98:c8:8c:6e:6a:cf:
55:a6:3d:4d:18:63:16:a1:8d:c1:ee:ea:5f:be:32:
53:20:56:69:6a:20:b9:26:4b:52:e3:ce:4b:bf:e0:
98:40:c3:e2:de:e3:e1:aa:7a:77:e4:2a:db:6b:ec:
c8:6e:dc:54:b3:f0:a0:bc:0f:04:f4:fe:bf:61:80:
b6:e3:5b:20:60:a5:ad:75:10:0c:9c:89:d5:1d:72:
21:e7:68:89:51:ee:e0:2d:12:5d:5d:76:1a:6d:c7:
f2:3f:b6:c3:08:19:bc:51:8f:bc:a5:86:60:22:27:
9b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:40:2C:3E:7F:71:B4:A1:3C:BC:F5:E9:10:85:18:5B:13:F9:E2:54
X509v3 Authority Key Identifier:
keyid:A5:D0:8B:31:50:AD:34:DE:2B:88:59:21:74:19:24:08:39:6F:11:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:3a:3f:8f:f9:b2:c4:3c:16:bb:c4:b9:f9:92:09:35:00:ca:
1d:29:22:f4:b8:74:06:96:d3:8d:dc:e5:54:67:0a:8c:1e:19:
e1:c3:fd:b4:6c:0b:24:89:7d:29:11:33:6d:e0:47:f1:8f:2d:
eb:75:38:69:24:4a:17:0b:15:a5:63:99:96:ea:e6:3b:e4:d9:
89:20:47:b6:02:c5:d1:22:ab:7c:70:1d:c9:51:35:1b:6a:f6:
16:09:00:eb:c0:99:1e:12:97:46:3b:21:0a:bb:26:ba:66:81:
47:48:cc:3e:ed:d0:6b:38:99:48:02:ae:3a:7c:9e:8f:29:24:
8b:04:23:96:96:a1:cc:f0:22:a1:ab:40:b6:70:a1:32:16:20:
9e:bf:43:88:44:ac:02:61:bd:f8:85:29:3b:93:2b:0f:ea:f8:
a4:2c:f4:9d:2a:22:79:29:9f:15:a9:c7:78:f2:8d:29:b1:fb:
f1:f6:24:00:13:66:44:c3:be:d0:45:1c:b6:fb:47:d9:68:c8:
90:29:9b:ae:65:58:7b:b7:b4:32:a7:ac:9b:29:e3:76:8e:19:
06:87:db:fa:50:75:46:a2:72:03:a3:72:44:a0:d4:ba:3d:ab:
74:24:d1:ee:9d:4c:97:5d:d8:b6:4b:54:9a:e4:ed:97:8d:b3:
92:18:6b:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0UE5uFNce5KOovGWxt7ekMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1ZDA4YjMxNTBhZDM0ZGUyYjg4NTkyMTc0MTkyNDA4Mzk2
ZjExZmIwHhcNMjUwODA0MDkwMTE2WhcNMjUwODA1MDkwMTE2WjAzMTEwLwYDVQQD
Eyg1NzQwMmMzZTdmNzFiNGExM2NiY2Y1ZTkxMDg1MTg1YjEzZjllMjU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAupc3Egd3EmqnhazBtrezHrIWZkiC
4rMp76A34iQKHMZf0qdguJ10rGGxq78UbPpgNhEhEO5A9X8oDnXrnYvnNOE12bkm
u2mY3+tSk4OuF5SHX8IvrHU/0as2kwJ2wenNX1rKPcAb8ZPhz1jU9Wy5tYWbEeC0
3TZrOVhYCrbERBWlz/D1p+2fYwXR3spMcxyYyIxuas9Vpj1NGGMWoY3B7upfvjJT
IFZpaiC5JktS485Lv+CYQMPi3uPhqnp35Crba+zIbtxUs/CgvA8E9P6/YYC241sg
YKWtdRAMnInVHXIh52iJUe7gLRJdXXYabcfyP7bDCBm8UY+8pYZgIiebswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFdALD5/cbShPLz16RCFGFsT+eJUMB8GA1UdIwQY
MBaAFKXQizFQrTTeK4hZIXQZJAg5bxH7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGRDTE1WQ3ROTjRyaUZraGRCa2tDRGx2RWZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85MDE4MzktMGVmMi00MGVjLTk5YjMt
NDNjYzViNDZkNWIyLzEvcGRDTE1WQ3ROTjRyaUZraGRCa2tDRGx2RWZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi85MDE4MzktMGVmMi00MGVjLTk5YjMtNDNjYzViNDZkNWIy
LzEvcGRDTE1WQ3ROTjRyaUZraGRCa2tDRGx2RWZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACzo/j/my
xDwWu8S5+ZIJNQDKHSki9Lh0BpbTjdzlVGcKjB4Z4cP9tGwLJIl9KREzbeBH8Y8t
63U4aSRKFwsVpWOZlurmO+TZiSBHtgLF0SKrfHAdyVE1G2r2FgkA68CZHhKXRjsh
CrsmumaBR0jMPu3QaziZSAKuOnyejykkiwQjlpahzPAioatAtnChMhYgnr9DiESs
AmG9+IUpO5MrD+r4pCz0nSoieSmfFanHePKNKbH78fYkABNmRMO+0EUctvtH2WjI
kCmbrmVYe7e0Mqesmynjdo4ZBofb+lB1RqJyA6NyRKDUuj2rdCTR7p1Ml13YtktU
muTtl42zkhhrfA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:08:03 2025 by rpki-client