
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
File: _tdzOdk4vvCHWZKTwgGzufgiNiM.mft (raw, json)
Hash identifier: /0jotJWff02BbJgtWXjg27G0NDICxHcp5hBIPFYzt9I=
Subject key identifier: 77:25:1A:B4:6A:4C:F6:CC:63:D2:88:3A:9B:26:5E:5A:5C:31:F3:85
Authority key identifier: FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
Certificate issuer: /CN=fed77339d938bef087599293c201b3b9f8223623
Certificate serial: 019894122D52459517FFB65AE20E023667FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
Manifest number: 15B9
Signing time: Sun 10 Aug 2025 13:01:15 +0000
Manifest this update: Sun 10 Aug 2025 13:01:15 +0000
Manifest next update: Mon 11 Aug 2025 13:01:15 +0000
Files and hashes: 1: JiqQ-b59vNl0MF5eVXzf0TfeO3c.roa (hash: OKAd29RpT9wnjVFO/8cLOZm/b/ev+jNX/rx5kLKiews=)
2: _tdzOdk4vvCHWZKTwgGzufgiNiM.crl (hash: 2cfSWZR9Pn3AHuME4kj3Yx/C9a9VHHrEmKGdZ9xc++Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:12:2d:52:45:95:17:ff:b6:5a:e2:0e:02:36:67:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fed77339d938bef087599293c201b3b9f8223623
Validity
Not Before: Aug 10 13:01:15 2025 GMT
Not After : Aug 11 13:01:15 2025 GMT
Subject: CN=77251ab46a4cf6cc63d2883a9b265e5a5c31f385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0d:f1:f5:34:81:b4:b2:71:d7:d5:52:3b:94:
f3:cb:d7:47:6c:0a:ed:fe:0d:66:b5:ab:b2:91:96:
7b:58:ba:f6:57:a1:b0:e6:6b:76:94:c2:0f:b7:3f:
11:69:43:71:99:f9:b1:d2:f0:a8:70:45:a6:67:d6:
e1:71:f7:0e:79:83:c6:2b:92:25:ee:5f:31:f0:fa:
b4:db:06:09:b4:47:c7:54:c5:40:70:ef:12:fc:71:
69:a4:60:d1:30:5c:4e:93:d2:90:df:5f:f1:e2:1e:
d2:b1:d8:e3:e2:55:a0:99:34:c9:dc:3f:cb:b6:6f:
d6:89:ca:fe:70:51:b4:05:68:92:52:83:5a:cd:04:
44:2c:1f:6d:ac:7e:c2:8b:3e:87:df:77:76:cd:3a:
84:4c:b8:37:15:43:84:c8:f4:49:41:9e:ca:81:b0:
f6:94:47:4a:8b:89:62:cf:bf:d4:58:2e:20:d2:bc:
35:65:b5:11:48:44:54:14:33:a2:3b:11:6c:e6:33:
a0:58:4c:5b:24:c0:53:23:4c:d1:de:4e:41:d6:c5:
a6:3a:93:41:39:54:b9:a1:e5:73:02:b6:53:2c:f4:
d9:78:b1:fd:77:66:a5:fb:61:ef:43:45:d8:61:0a:
b6:3a:8e:04:5b:aa:97:0a:ae:22:1d:61:31:05:f6:
a6:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:25:1A:B4:6A:4C:F6:CC:63:D2:88:3A:9B:26:5E:5A:5C:31:F3:85
X509v3 Authority Key Identifier:
keyid:FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:e9:9c:77:04:39:d4:4f:c9:fc:28:70:d5:1d:a9:36:96:d4:
c0:50:f3:f3:fa:1e:c2:c0:50:f7:f4:5c:73:48:fc:a8:42:64:
da:a0:56:ca:da:c2:e4:5c:93:c8:96:b6:7b:c6:4b:44:fc:86:
93:cd:a9:4a:67:e1:f8:65:83:55:ba:2b:9d:bf:f9:c8:3d:d8:
33:1e:13:2a:b8:a0:fe:d7:8c:7d:dc:a3:df:1c:82:44:1d:9f:
90:ea:33:83:91:28:3f:ac:4c:d7:1f:40:aa:24:48:39:d4:35:
b1:36:12:d6:86:e2:2e:ef:55:0c:1c:26:d6:16:28:79:58:24:
02:cf:29:9e:e2:9c:67:4d:59:39:e0:b3:c4:70:79:c7:46:cb:
f0:02:08:b4:c6:50:47:7f:8a:d6:a5:82:a3:57:b4:b1:84:ab:
0f:6a:4b:d8:ab:ae:a1:87:61:50:c9:9a:49:46:5d:34:3c:7a:
de:01:1a:c7:5a:88:e1:71:5e:b4:aa:68:28:05:22:cb:1e:0d:
ed:66:4d:5d:65:91:1a:d6:5e:5a:44:db:a1:aa:19:1e:bd:92:
58:56:dd:41:b5:5b:20:ef:1b:d2:0c:07:8c:10:a6:d7:bf:83:
2f:4a:23:b4:08:67:47:f3:37:bb:a5:e9:08:9a:76:da:e2:c2:
02:11:c3:46
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiUEi1SRZUX/7Za4g4CNmf8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlZDc3MzM5ZDkzOGJlZjA4NzU5OTI5M2MyMDFiM2I5Zjgy
MjM2MjMwHhcNMjUwODEwMTMwMTE1WhcNMjUwODExMTMwMTE1WjAzMTEwLwYDVQQD
Eyg3NzI1MWFiNDZhNGNmNmNjNjNkMjg4M2E5YjI2NWU1YTVjMzFmMzg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0A3x9TSBtLJx19VSO5Tzy9dHbArt
/g1mtauykZZ7WLr2V6Gw5mt2lMIPtz8RaUNxmfmx0vCocEWmZ9bhcfcOeYPGK5Il
7l8x8Pq02wYJtEfHVMVAcO8S/HFppGDRMFxOk9KQ31/x4h7Ssdjj4lWgmTTJ3D/L
tm/Wicr+cFG0BWiSUoNazQRELB9trH7Ciz6H33d2zTqETLg3FUOEyPRJQZ7KgbD2
lEdKi4liz7/UWC4g0rw1ZbURSERUFDOiOxFs5jOgWExbJMBTI0zR3k5B1sWmOpNB
OVS5oeVzArZTLPTZeLH9d2al+2HvQ0XYYQq2Oo4EW6qXCq4iHWExBfamnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHclGrRqTPbMY9KIOpsmXlpcMfOFMB8GA1UdIwQY
MBaAFP7XcznZOL7wh1mSk8IBs7n4IjYjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3Rkek9kazR2dkNIV1pLVHdnR3p1ZmdpTmlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iZmI4MTctN2UyZC00NDU4LWJhYjEt
ZDE3NTAwMjBjYWY1LzEvX3Rkek9kazR2dkNIV1pLVHdnR3p1ZmdpTmlNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iZmI4MTctN2UyZC00NDU4LWJhYjEtZDE3NTAwMjBjYWY1
LzEvX3Rkek9kazR2dkNIV1pLVHdnR3p1ZmdpTmlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEemcdwQ5
1E/J/Chw1R2pNpbUwFDz8/oewsBQ9/Rcc0j8qEJk2qBWytrC5FyTyJa2e8ZLRPyG
k82pSmfh+GWDVbornb/5yD3YMx4TKrig/teMfdyj3xyCRB2fkOozg5EoP6xM1x9A
qiRIOdQ1sTYS1obiLu9VDBwm1hYoeVgkAs8pnuKcZ01ZOeCzxHB5x0bL8AIItMZQ
R3+K1qWCo1e0sYSrD2pL2KuuoYdhUMmaSUZdNDx63gEax1qI4XFetKpoKAUiyx4N
7WZNXWWRGtZeWkTboaoZHr2SWFbdQbVbIO8b0gwHjBCm17+DL0ojtAhnR/M3u6Xp
CJp22uLCAhHDRg==
-----END CERTIFICATE-----
Generated at Sun Aug 10 13:57:05 2025 by rpki-client