Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
File: F3khM2kRpWiNeOk__l5HIRO7Gb4.mft (raw, json)
Hash identifier: v1MBP1bE6vDHomy9816d1186wb+oTcR/IRbfCvQS4HM=
Subject key identifier: 78:67:6C:A1:19:65:FC:2F:2A:ED:10:CA:59:E2:C8:FE:79:AE:27:94
Authority key identifier: 17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
Certificate issuer: /CN=177921336911a5688d78e93ffe5e472113bb19be
Certificate serial: 019873E37153F68CBDE71AA355A2C03F68CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
Manifest number: 05F8
Signing time: Mon 04 Aug 2025 07:02:21 +0000
Manifest this update: Mon 04 Aug 2025 07:02:21 +0000
Manifest next update: Tue 05 Aug 2025 07:02:21 +0000
Files and hashes: 1: F3khM2kRpWiNeOk__l5HIRO7Gb4.crl (hash: rZs6AeKTzOo72M/oI2tvuWKjemZXTk0HGzVY5fVsmUc=)
2: WN1QsY4J0xzhzXI37At9k24AG4s.roa (hash: aONG4etXL5aCmGtS97ulkTYk4UjXjlB6E7tpLdYeDEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:71:53:f6:8c:bd:e7:1a:a3:55:a2:c0:3f:68:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=177921336911a5688d78e93ffe5e472113bb19be
Validity
Not Before: Aug 4 07:02:21 2025 GMT
Not After : Aug 5 07:02:21 2025 GMT
Subject: CN=78676ca11965fc2f2aed10ca59e2c8fe79ae2794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d2:18:24:c8:64:8c:34:55:48:b5:89:a4:97:
11:91:28:fa:8a:22:28:c0:cd:86:69:af:7f:ee:2a:
a4:cc:cd:dc:d3:41:9c:0f:bf:b3:34:0b:50:ea:b9:
37:a3:7b:67:bb:b0:b7:10:ce:53:9a:14:8b:cb:21:
60:1f:ee:84:7d:f8:3e:da:af:d9:98:bb:60:00:24:
9a:20:3f:9b:7b:13:5f:40:66:52:8d:af:ea:b8:26:
16:09:b0:24:11:b8:80:f6:db:df:11:91:e4:bb:04:
28:e6:2f:9e:80:82:89:6c:5c:3d:ca:f0:b7:76:a5:
f3:9e:ac:b9:b1:4d:37:1f:6b:fc:08:7d:98:cc:f9:
63:2d:7b:b1:90:dc:10:0b:9d:97:b7:f6:fc:40:57:
55:82:d1:b5:d0:ae:d2:29:4d:ab:1a:5a:5d:37:4f:
84:b0:fb:1d:77:f0:98:35:f2:08:80:b7:f8:ca:27:
7f:87:fb:91:26:e9:66:ec:21:13:b5:64:7e:e7:0e:
7f:1e:42:f6:cc:ea:7f:6b:67:18:c9:9b:84:5e:2e:
d7:01:73:2a:da:17:39:dc:79:4e:95:b8:f2:64:b0:
4f:ab:03:8e:59:e4:3a:97:ec:08:7f:62:67:e3:72:
37:34:d2:eb:13:8b:61:18:a6:ef:f0:15:2f:95:35:
d3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:67:6C:A1:19:65:FC:2F:2A:ED:10:CA:59:E2:C8:FE:79:AE:27:94
X509v3 Authority Key Identifier:
keyid:17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:b8:8a:ba:7b:89:3d:db:37:8b:1b:7d:e5:6a:f7:20:f8:75:
c5:53:5c:4c:50:38:5e:0a:49:d2:71:25:2b:a1:93:07:3d:8e:
c8:fd:38:7d:09:58:2d:a1:28:63:7b:05:d0:d0:05:78:71:44:
16:27:d1:4e:e0:3e:25:4f:22:c8:01:5e:11:52:8e:69:01:e5:
98:73:78:ae:5f:43:32:e1:3a:5c:0a:17:62:31:8f:0b:bc:3c:
e1:f3:1a:ed:f0:a7:1f:46:fa:b8:19:38:8b:81:7a:16:1e:11:
9e:2d:0c:4d:7d:d2:14:cf:85:ce:0f:05:f8:56:58:f5:57:f4:
d4:44:d9:14:92:8f:d4:f9:7f:5b:61:92:29:98:0f:72:e1:f6:
23:d1:26:65:d6:0f:0b:f7:7e:81:a7:0e:1f:81:83:e2:4d:c9:
a2:fc:7a:23:0f:a1:32:19:0a:0b:e8:62:9e:b3:a1:51:b0:16:
2b:9f:26:ea:93:2e:dc:d0:fd:d5:78:6a:5b:77:df:84:d7:0d:
48:8b:0d:59:b9:fd:be:60:6d:ac:5d:6e:56:49:82:8a:1c:76:
ea:46:1b:aa:0d:cc:06:c2:1d:1a:f9:b5:f5:f0:5e:b2:86:86:
9e:73:c6:44:67:82:30:38:db:dd:57:95:36:7f:90:a9:95:c9:
09:df:4d:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz43FT9oy95xqjVaLAP2jNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3NzkyMTMzNjkxMWE1Njg4ZDc4ZTkzZmZlNWU0NzIxMTNi
YjE5YmUwHhcNMjUwODA0MDcwMjIxWhcNMjUwODA1MDcwMjIxWjAzMTEwLwYDVQQD
Eyg3ODY3NmNhMTE5NjVmYzJmMmFlZDEwY2E1OWUyYzhmZTc5YWUyNzk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNIYJMhkjDRVSLWJpJcRkSj6iiIo
wM2Gaa9/7iqkzM3c00GcD7+zNAtQ6rk3o3tnu7C3EM5TmhSLyyFgH+6Effg+2q/Z
mLtgACSaID+bexNfQGZSja/quCYWCbAkEbiA9tvfEZHkuwQo5i+egIKJbFw9yvC3
dqXznqy5sU03H2v8CH2YzPljLXuxkNwQC52Xt/b8QFdVgtG10K7SKU2rGlpdN0+E
sPsdd/CYNfIIgLf4yid/h/uRJulm7CETtWR+5w5/HkL2zOp/a2cYyZuEXi7XAXMq
2hc53HlOlbjyZLBPqwOOWeQ6l+wIf2Jn43I3NNLrE4thGKbv8BUvlTXTaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHhnbKEZZfwvKu0QylniyP55rieUMB8GA1UdIwQY
MBaAFBd5ITNpEaVojXjpP/5eRyETuxm+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0Nzgt
YjVjM2QyNGVmZGNkLzEvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0NzgtYjVjM2QyNGVmZGNk
LzEvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUriKunuJ
Pds3ixt95Wr3IPh1xVNcTFA4XgpJ0nElK6GTBz2OyP04fQlYLaEoY3sF0NAFeHFE
FifRTuA+JU8iyAFeEVKOaQHlmHN4rl9DMuE6XAoXYjGPC7w84fMa7fCnH0b6uBk4
i4F6Fh4Rni0MTX3SFM+Fzg8F+FZY9Vf01ETZFJKP1Pl/W2GSKZgPcuH2I9EmZdYP
C/d+gacOH4GD4k3Jovx6Iw+hMhkKC+hinrOhUbAWK58m6pMu3ND91XhqW3ffhNcN
SIsNWbn9vmBtrF1uVkmCihx26kYbqg3MBsIdGvm19fBesoaGnnPGRGeCMDjb3VeV
Nn+QqZXJCd9NdA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:21:06 2025 by rpki-client