Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json)
Hash identifier: tCLh1KshFFMvdbc2T1ArlBoFXrnz/mJ2oUlvH4EVgLI=
Subject key identifier: 3D:0F:F2:7F:C9:83:65:FC:6A:92:F2:3A:29:21:06:C4:0F:A5:AB:16
Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Certificate serial: 019873E2B6B13C7B444DC57C05571A10B15D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
Manifest number: 05BB
Signing time: Mon 04 Aug 2025 07:01:34 +0000
Manifest this update: Mon 04 Aug 2025 07:01:34 +0000
Manifest next update: Tue 05 Aug 2025 07:01:34 +0000
Files and hashes: 1: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: PaeoP8uAMC48bth6c+gdlwUtd3nphkPEgpf5GhzIhRg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:b6:b1:3c:7b:44:4d:c5:7c:05:57:1a:10:b1:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Validity
Not Before: Aug 4 07:01:34 2025 GMT
Not After : Aug 5 07:01:34 2025 GMT
Subject: CN=3d0ff27fc98365fc6a92f23a292106c40fa5ab16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:92:ce:b2:8e:3b:24:f1:f6:33:ca:ef:75:81:
63:46:76:4d:be:6c:3a:24:81:65:69:3a:fa:07:ae:
a5:6e:6f:fc:49:44:7b:93:5f:cf:38:27:94:cc:32:
2d:b0:6c:1f:31:e1:d3:6c:6f:a6:ed:9d:35:dd:dc:
a8:7c:f8:d6:91:80:aa:6a:8c:33:8f:2e:9c:4e:09:
27:e9:85:f6:34:1e:c4:89:1f:c4:e3:c3:01:9c:09:
36:20:ae:8b:35:a8:c2:b4:e1:0a:c7:85:b8:cc:67:
e1:c9:e3:95:44:8e:d5:49:2d:6d:91:8c:62:8f:2e:
ea:7b:b8:40:77:bf:da:bd:d0:11:62:92:9e:5a:71:
0b:f9:47:f3:93:a9:f2:ac:86:a3:7b:f6:e1:4e:9e:
08:05:5e:0e:4c:fa:d9:ed:6f:0c:53:e5:45:de:d6:
47:c0:2e:9d:9f:c0:fa:14:ce:9c:1e:54:b0:32:7f:
8e:21:cf:9c:6b:b2:ce:6f:97:d8:ef:08:6e:e3:aa:
12:29:a4:b0:96:c5:c0:91:f5:45:42:b4:bb:18:2a:
c4:d7:13:84:42:80:31:0f:06:15:40:ac:cb:c9:2a:
8b:39:aa:89:d2:38:38:b4:18:c6:d2:8d:3b:b7:a3:
1e:8d:ba:f4:7e:fe:1a:a9:88:44:52:10:5e:1e:2c:
c3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:0F:F2:7F:C9:83:65:FC:6A:92:F2:3A:29:21:06:C4:0F:A5:AB:16
X509v3 Authority Key Identifier:
keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:78:94:0a:04:e3:ff:75:07:96:fb:26:94:1a:3b:7d:7c:2f:
4a:0e:3e:06:ba:5b:1b:01:90:23:13:7c:6a:b0:ef:94:8c:35:
b0:df:33:02:e4:14:b4:b2:7e:c5:ba:3a:cd:07:cb:91:1e:11:
d1:30:32:79:24:73:e4:e8:1e:4f:32:e4:af:2c:04:c6:25:c2:
fc:87:eb:ba:dc:12:a6:7d:15:86:e0:f7:dd:69:63:c4:53:a3:
fa:c8:5f:92:4b:26:4c:88:ff:c6:02:60:5a:42:6c:d6:bc:01:
87:e1:c5:15:cc:41:89:90:d6:24:f9:0b:dd:3b:10:e3:25:a3:
70:12:31:c8:bb:66:bf:c2:ef:cb:8a:ef:6b:ce:fc:e7:a4:b2:
34:5b:4d:31:50:c6:57:d4:fb:63:cf:8e:b3:e4:66:1c:b1:70:
9b:ba:04:b5:78:96:28:bc:d2:e6:af:5c:98:52:e0:84:a8:32:
69:73:e2:34:c8:34:bf:45:d2:7c:e0:5f:7f:f7:32:95:1f:ac:
b0:79:88:02:18:69:fe:8f:97:a0:21:b5:2f:f0:0a:de:a4:6d:
48:84:4c:f1:7a:4b:83:cc:33:39:43:16:81:63:69:9a:a9:86:
19:a3:1b:85:10:13:62:81:17:f8:1b:7e:f3:11:ea:07:65:45:
e4:c6:7c:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4raxPHtETcV8BVcaELFdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjYTU5ODMyMmE2OTkwNWE1YzZlMDI5NWEwY2ExZmI1NTY2
NmMxNGIwHhcNMjUwODA0MDcwMTM0WhcNMjUwODA1MDcwMTM0WjAzMTEwLwYDVQQD
EygzZDBmZjI3ZmM5ODM2NWZjNmE5MmYyM2EyOTIxMDZjNDBmYTVhYjE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ZLOso47JPH2M8rvdYFjRnZNvmw6
JIFlaTr6B66lbm/8SUR7k1/POCeUzDItsGwfMeHTbG+m7Z013dyofPjWkYCqaowz
jy6cTgkn6YX2NB7EiR/E48MBnAk2IK6LNajCtOEKx4W4zGfhyeOVRI7VSS1tkYxi
jy7qe7hAd7/avdARYpKeWnEL+Ufzk6nyrIaje/bhTp4IBV4OTPrZ7W8MU+VF3tZH
wC6dn8D6FM6cHlSwMn+OIc+ca7LOb5fY7whu46oSKaSwlsXAkfVFQrS7GCrE1xOE
QoAxDwYVQKzLySqLOaqJ0jg4tBjG0o07t6Mejbr0fv4aqYhEUhBeHizDuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD0P8n/Jg2X8apLyOikhBsQPpasWMB8GA1UdIwQY
MBaAFHylmDIqaZBaXG4ClaDKH7VWZsFLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUt
NTgwZDg3Njg4NWExLzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUtNTgwZDg3Njg4NWEx
LzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXXiUCgTj
/3UHlvsmlBo7fXwvSg4+BrpbGwGQIxN8arDvlIw1sN8zAuQUtLJ+xbo6zQfLkR4R
0TAyeSRz5OgeTzLkrywExiXC/IfrutwSpn0VhuD33WljxFOj+shfkksmTIj/xgJg
WkJs1rwBh+HFFcxBiZDWJPkL3TsQ4yWjcBIxyLtmv8Lvy4rva87856SyNFtNMVDG
V9T7Y8+Os+RmHLFwm7oEtXiWKLzS5q9cmFLghKgyaXPiNMg0v0XSfOBff/cylR+s
sHmIAhhp/o+XoCG1L/AK3qRtSIRM8XpLg8wzOUMWgWNpmqmGGaMbhRATYoEX+Bt+
8xHqB2VF5MZ8fQ==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:23:25 2025 by rpki-client