Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
File: i70nOhRTYWFVEmDYSNdvomRGzUY.mft (raw, json)
Hash identifier: LiU60PrnTzW9H1hQx0enzPsbpbmRQeob9D6qQ5VCWxg=
Subject key identifier: 2A:0C:78:77:A1:FB:9A:71:DC:FE:66:73:28:1C:DD:4F:E0:96:EC:7F
Authority key identifier: 8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
Certificate issuer: /CN=8bbd273a14536161551260d848d76fa26446cd46
Certificate serial: 01988F2255CBE693613BFF29EF8918557BCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
Manifest number: 01FD
Signing time: Sat 09 Aug 2025 14:00:48 +0000
Manifest this update: Sat 09 Aug 2025 14:00:48 +0000
Manifest next update: Sun 10 Aug 2025 14:00:48 +0000
Files and hashes: 1: i70nOhRTYWFVEmDYSNdvomRGzUY.crl (hash: GJggSkJY4XGRhNDdJTtvZXvpYrKKE1hZc0fQOODXHMM=)
2: iW3M8w8EnOfRKmq5UL0Jzk_nXrc.roa (hash: vQxUQ/gQ4diOyDGNSgt4mcIRpvqTprh0PY77byZ05KY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:22:55:cb:e6:93:61:3b:ff:29:ef:89:18:55:7b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bbd273a14536161551260d848d76fa26446cd46
Validity
Not Before: Aug 9 14:00:48 2025 GMT
Not After : Aug 10 14:00:48 2025 GMT
Subject: CN=2a0c7877a1fb9a71dcfe6673281cdd4fe096ec7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1d:3c:ff:61:1e:31:98:eb:c5:f1:59:70:71:
d2:59:22:fb:ee:94:bf:47:52:0e:04:97:6e:34:3e:
6e:79:9d:4b:b6:89:25:af:16:f2:99:11:4c:1a:6d:
a3:a6:d4:cd:40:f5:13:79:05:9a:50:1c:a1:cd:04:
19:cc:fc:16:b7:b9:61:4a:65:66:22:0e:d4:16:f5:
56:51:cf:9e:72:9e:27:6e:ff:73:58:61:d3:fd:b1:
8d:6c:50:3e:5a:30:6b:fe:5d:fa:a2:3d:b8:86:56:
03:20:1d:b6:ed:7a:fd:18:ad:0c:00:e7:f6:9a:06:
7f:c5:ed:b8:b0:c3:6e:f1:8b:cb:24:30:2b:81:dc:
27:24:31:d2:eb:24:87:8e:d2:56:89:e8:0c:d4:95:
bf:5c:11:24:8a:9e:fc:e8:7f:cf:b9:16:0e:47:d7:
3c:a3:4f:e0:1e:e8:29:98:2d:0e:ef:18:5e:fc:00:
6f:9b:4c:56:5e:34:57:44:d8:ee:c4:f8:8e:41:f5:
6d:5b:6b:7d:66:74:7d:51:7e:ab:00:1f:f5:4c:b4:
f9:b3:ca:de:ce:f5:f2:6e:9e:5d:0d:9e:fd:ea:28:
4f:4f:c2:f1:6b:4f:55:63:92:5c:f1:70:46:5f:3c:
23:e0:eb:ac:99:e3:ad:c4:b9:65:05:b4:de:ce:aa:
f8:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:0C:78:77:A1:FB:9A:71:DC:FE:66:73:28:1C:DD:4F:E0:96:EC:7F
X509v3 Authority Key Identifier:
keyid:8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dd:81:d6:f0:8b:1b:a3:9a:ba:ba:07:c3:e8:81:03:2a:3b:29:
46:64:3d:0d:f3:61:4c:42:b4:3b:bb:0c:7d:af:c4:0b:b2:1e:
37:71:51:02:3b:d2:e4:fa:bb:be:c3:32:e1:80:5f:22:d3:46:
84:31:b0:d6:35:59:de:fa:0b:b0:07:6a:87:0c:00:5f:27:36:
8d:77:ae:34:75:42:da:9a:b1:fc:e0:23:27:aa:2b:a7:26:88:
cd:61:77:1a:1f:7c:7c:60:23:f4:a1:55:da:a2:48:84:71:22:
d0:90:fa:95:c5:d8:a9:4c:78:1b:62:86:97:3b:6e:d4:ee:cb:
1b:2b:67:9f:90:9a:00:d8:f6:43:6d:78:38:ff:88:a0:19:63:
c5:55:b2:d0:9f:63:a0:54:e8:bf:3f:15:73:05:3d:61:23:e0:
bf:a3:a5:03:7b:a4:38:c2:17:d6:a1:14:a0:70:15:22:2a:71:
e2:1c:2a:1a:29:82:84:ff:95:ef:6b:0e:9e:43:38:96:c7:04:
5e:8b:61:20:9c:fd:ef:a7:68:86:0e:fe:83:51:f8:9c:c4:7a:
42:53:fa:b0:e2:85:35:97:bb:40:64:f6:85:3d:ab:df:05:d1:
de:9f:c7:74:a0:44:36:6c:c0:bf:34:24:93:7f:5a:20:4d:42:
55:8d:e0:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiPIlXL5pNhO/8p74kYVXvKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYmQyNzNhMTQ1MzYxNjE1NTEyNjBkODQ4ZDc2ZmEyNjQ0
NmNkNDYwHhcNMjUwODA5MTQwMDQ4WhcNMjUwODEwMTQwMDQ4WjAzMTEwLwYDVQQD
EygyYTBjNzg3N2ExZmI5YTcxZGNmZTY2NzMyODFjZGQ0ZmUwOTZlYzdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApx08/2EeMZjrxfFZcHHSWSL77pS/
R1IOBJduND5ueZ1LtoklrxbymRFMGm2jptTNQPUTeQWaUByhzQQZzPwWt7lhSmVm
Ig7UFvVWUc+ecp4nbv9zWGHT/bGNbFA+WjBr/l36oj24hlYDIB227Xr9GK0MAOf2
mgZ/xe24sMNu8YvLJDArgdwnJDHS6ySHjtJWiegM1JW/XBEkip786H/PuRYOR9c8
o0/gHugpmC0O7xhe/ABvm0xWXjRXRNjuxPiOQfVtW2t9ZnR9UX6rAB/1TLT5s8re
zvXybp5dDZ796ihPT8Lxa09VY5Jc8XBGXzwj4OusmeOtxLllBbTezqr4+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCoMeHeh+5px3P5mcygc3U/glux/MB8GA1UdIwQY
MBaAFIu9JzoUU2FhVRJg2EjXb6JkRs1GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTcwbk9oUlRZV0ZWRW1EWVNOZHZvbVJHelVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9hNzMzZjYtMDlhZC00ZjFhLWEzNTct
ZTE2MjIwMzI5NmJiLzEvaTcwbk9oUlRZV0ZWRW1EWVNOZHZvbVJHelVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC9hNzMzZjYtMDlhZC00ZjFhLWEzNTctZTE2MjIwMzI5NmJi
LzEvaTcwbk9oUlRZV0ZWRW1EWVNOZHZvbVJHelVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3YHW8Isb
o5q6ugfD6IEDKjspRmQ9DfNhTEK0O7sMfa/EC7IeN3FRAjvS5Pq7vsMy4YBfItNG
hDGw1jVZ3voLsAdqhwwAXyc2jXeuNHVC2pqx/OAjJ6orpyaIzWF3Gh98fGAj9KFV
2qJIhHEi0JD6lcXYqUx4G2KGlztu1O7LGytnn5CaANj2Q214OP+IoBljxVWy0J9j
oFTovz8VcwU9YSPgv6OlA3ukOMIX1qEUoHAVIipx4hwqGimChP+V72sOnkM4lscE
XothIJz976dohg7+g1H4nMR6QlP6sOKFNZe7QGT2hT2r3wXR3p/HdKBENmzAvzQk
k39aIE1CVY3gDA==
-----END CERTIFICATE-----
Generated at Sat Aug 9 22:42:23 2025 by rpki-client