Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
File: tRm7YH6Ot267nMsgIsxkbDzOC2A.mft (raw, json)
Hash identifier: 3B4MtG8BGy3Cg1gg51W3ewHjCObEtwHVK/OHqDQn3z8=
Subject key identifier: 6A:DC:BB:5B:42:B2:AC:DD:4A:BC:97:7F:07:FB:57:8A:D2:5F:17:CF
Authority key identifier: B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60
Certificate issuer: /CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60
Certificate serial: 01987B9BC8D166581DD41133D37103DF69F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
Manifest number: 1617
Signing time: Tue 05 Aug 2025 19:01:03 +0000
Manifest this update: Tue 05 Aug 2025 19:01:03 +0000
Manifest next update: Wed 06 Aug 2025 19:01:03 +0000
Files and hashes: 1: tRm7YH6Ot267nMsgIsxkbDzOC2A.crl (hash: z9Jb1jcJQRga8A6PlQt2HRsEdQiEpFNwHHU6zPHyOBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 19:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:9b:c8:d1:66:58:1d:d4:11:33:d3:71:03:df:69:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60
Validity
Not Before: Aug 5 19:01:03 2025 GMT
Not After : Aug 6 19:01:03 2025 GMT
Subject: CN=6adcbb5b42b2acdd4abc977f07fb578ad25f17cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:db:ec:b8:92:40:07:bc:19:57:bd:7d:cb:49:
7a:5d:54:1e:c1:18:95:8d:3b:58:87:01:e1:d8:02:
7b:e2:99:e3:83:52:aa:6a:a9:96:5c:2c:9c:4d:dc:
f2:dd:74:51:9b:83:75:07:8f:4c:87:b1:61:f6:e8:
38:c4:49:4a:18:ec:40:f4:f9:5a:14:cf:2b:f5:68:
ff:d1:64:c9:d6:31:6b:27:0b:8e:7a:89:d9:fc:74:
99:b6:5b:47:2d:bc:e5:99:b3:bf:97:42:29:11:55:
87:fa:7d:c3:f2:39:cf:da:8a:6c:be:23:ae:a0:f1:
33:01:a0:a9:f8:0f:15:81:ea:18:ee:88:34:0c:3f:
1d:4e:1c:0b:4b:f8:a0:14:1e:00:a2:fb:78:83:5a:
12:6d:e0:1f:7e:27:2d:c0:22:cb:9e:dc:28:ec:8b:
af:50:0a:be:cb:c1:17:34:03:ab:8e:9e:df:8d:45:
48:47:77:16:53:2a:dd:f4:10:13:da:fb:c4:25:06:
21:28:97:d2:af:47:a3:c4:a4:3c:46:10:5d:7e:d5:
40:5b:d2:38:22:6d:33:e0:a6:33:a6:10:d4:01:bb:
11:e6:1c:30:03:0a:93:05:79:ee:ab:75:c8:e1:8c:
a4:ad:52:66:ad:e1:13:51:2f:da:7b:c7:4b:e1:e6:
8a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:DC:BB:5B:42:B2:AC:DD:4A:BC:97:7F:07:FB:57:8A:D2:5F:17:CF
X509v3 Authority Key Identifier:
keyid:B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:86:33:6b:9b:6e:6a:13:76:ae:73:00:8d:00:cf:cf:e6:0b:
63:dd:08:c5:47:f8:cf:af:04:7f:e5:24:fa:f5:5c:04:5a:7e:
be:70:14:58:f9:e2:bf:ab:1e:0e:c5:d4:52:44:e5:6c:20:f7:
11:25:be:0f:3b:d9:56:79:5d:d3:7f:0a:db:d6:85:88:1a:b9:
7a:b6:85:8f:ab:c1:5f:34:7a:18:eb:56:ab:a7:1c:d8:dd:2b:
49:12:a6:b7:87:0e:ec:8a:2b:b6:f5:f3:c1:93:84:a8:10:53:
d1:87:ff:70:82:1a:b0:27:21:3e:17:62:a6:1a:99:97:ee:e6:
bd:27:20:3c:e4:69:88:62:89:fd:da:b0:a7:10:6f:a6:87:0e:
6d:a4:9d:41:37:56:ac:09:b2:82:0f:ab:5b:3b:49:d8:75:a0:
99:1c:93:28:de:53:7b:53:be:d0:08:8d:68:ab:27:a6:1b:79:
69:2f:da:98:73:e5:78:1c:32:4d:56:95:6f:4a:86:c0:0d:38:
88:42:c7:93:39:3c:3c:68:ef:cc:de:fb:2a:9a:73:42:5e:44:
17:da:92:1c:d5:ee:12:cf:f0:56:89:42:31:5c:ac:7d:d2:ed:
8d:3e:2b:4b:4d:a5:f3:d9:db:41:0d:a8:db:a5:ce:cb:cc:9a:
40:64:27:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh7m8jRZlgd1BEz03ED32nyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1MTliYjYwN2U4ZWI3NmViYjljY2IyMDIyY2M2NDZjM2Nj
ZTBiNjAwHhcNMjUwODA1MTkwMTAzWhcNMjUwODA2MTkwMTAzWjAzMTEwLwYDVQQD
Eyg2YWRjYmI1YjQyYjJhY2RkNGFiYzk3N2YwN2ZiNTc4YWQyNWYxN2NmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytvsuJJAB7wZV719y0l6XVQewRiV
jTtYhwHh2AJ74pnjg1KqaqmWXCycTdzy3XRRm4N1B49Mh7Fh9ug4xElKGOxA9Pla
FM8r9Wj/0WTJ1jFrJwuOeonZ/HSZtltHLbzlmbO/l0IpEVWH+n3D8jnP2opsviOu
oPEzAaCp+A8VgeoY7og0DD8dThwLS/igFB4Aovt4g1oSbeAffictwCLLntwo7Iuv
UAq+y8EXNAOrjp7fjUVIR3cWUyrd9BAT2vvEJQYhKJfSr0ejxKQ8RhBdftVAW9I4
Im0z4KYzphDUAbsR5hwwAwqTBXnuq3XI4YykrVJmreETUS/ae8dL4eaKgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGrcu1tCsqzdSryXfwf7V4rSXxfPMB8GA1UdIwQY
MBaAFLUZu2B+jrduu5zLICLMZGw8zgtgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFJtN1lINk90MjY3bk1zZ0lzeGtiRHpPQzJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80ZTUwNDktODU2ZC00YzA3LTg1NTYt
ZTE4MTg0ZTgwMjU4LzEvdFJtN1lINk90MjY3bk1zZ0lzeGtiRHpPQzJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80ZTUwNDktODU2ZC00YzA3LTg1NTYtZTE4MTg0ZTgwMjU4
LzEvdFJtN1lINk90MjY3bk1zZ0lzeGtiRHpPQzJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB4Yza5tu
ahN2rnMAjQDPz+YLY90IxUf4z68Ef+Uk+vVcBFp+vnAUWPniv6seDsXUUkTlbCD3
ESW+DzvZVnld038K29aFiBq5eraFj6vBXzR6GOtWq6cc2N0rSRKmt4cO7IortvXz
wZOEqBBT0Yf/cIIasCchPhdiphqZl+7mvScgPORpiGKJ/dqwpxBvpocObaSdQTdW
rAmygg+rWztJ2HWgmRyTKN5Te1O+0AiNaKsnpht5aS/amHPleBwyTVaVb0qGwA04
iELHkzk8PGjvzN77KppzQl5EF9qSHNXuEs/wVolCMVysfdLtjT4rS02l89nbQQ2o
26XOy8yaQGQn9g==
-----END CERTIFICATE-----
Generated at Wed Aug 6 04:08:59 2025 by rpki-client