Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
File: tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft (raw, json)
Hash identifier: m9gcvfOWfWHbmbqwWPhEEwHzbAVcR71YN1IFs9+PKzc=
Subject key identifier: B0:09:0C:BC:74:21:FA:DB:36:45:9A:0E:FB:B9:BC:75:86:39:50:03
Authority key identifier: B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
Certificate issuer: /CN=b4430ba11506741d676ea202e291ec7ec6191b17
Certificate serial: 0198808AFBD8FC9AB95F5EF32B25FEBE41F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
Manifest number: 1622
Signing time: Wed 06 Aug 2025 18:00:48 +0000
Manifest this update: Wed 06 Aug 2025 18:00:48 +0000
Manifest next update: Thu 07 Aug 2025 18:00:48 +0000
Files and hashes: 1: Ar5ixINRYv4h1JY24F8pTYnNdfU.roa (hash: cerPS0rrVRA1DCH9YtBUW4yHi1b4My2ifCj92CGheoI=)
2: tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl (hash: HrI82UQom1oxxrExtScJcYRAdYsqREhvQ63BSr7BvMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 18:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:8a:fb:d8:fc:9a:b9:5f:5e:f3:2b:25:fe:be:41:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4430ba11506741d676ea202e291ec7ec6191b17
Validity
Not Before: Aug 6 18:00:48 2025 GMT
Not After : Aug 7 18:00:48 2025 GMT
Subject: CN=b0090cbc7421fadb36459a0efbb9bc7586395003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:33:34:7e:fa:d3:26:2f:60:d8:f8:09:de:bb:
da:2d:fd:bf:82:53:af:fe:71:7b:2f:75:a3:53:0d:
e3:d2:d8:f3:92:42:21:97:ab:19:97:94:e5:bc:10:
c1:de:19:9b:5c:27:54:80:c4:9b:70:df:67:19:5c:
0e:fd:cd:1b:f5:23:e1:85:71:7f:22:28:f5:f7:35:
a8:1e:ee:6c:b1:63:4d:11:8a:e9:3b:b9:95:f9:cc:
4f:ba:96:66:23:d3:b6:f0:4c:fa:ab:c9:76:78:e3:
40:aa:91:64:1a:83:88:a5:18:90:92:66:f0:d8:a4:
02:d7:8d:eb:1f:6a:c6:1e:c8:71:3b:c3:d3:cf:b5:
d3:d8:d7:a9:6b:60:ab:4c:c6:e5:a4:c0:f7:65:84:
da:84:4e:d6:31:08:8d:6e:78:09:dc:4d:53:e7:a6:
d2:ef:cc:10:89:80:10:02:00:db:4a:87:c0:c9:a3:
4a:bb:b7:59:24:1c:36:95:f7:f8:1f:51:fd:b2:d0:
a3:e3:73:d1:a7:1a:cf:05:7a:ca:a4:12:3f:8b:74:
a3:23:70:99:5e:f8:0e:c1:3e:14:00:78:0f:2a:9e:
e3:3a:38:e3:ba:bf:9d:68:4b:d6:19:94:01:62:0a:
5d:9e:23:91:61:c5:de:68:43:5a:28:6e:20:dd:67:
0f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:09:0C:BC:74:21:FA:DB:36:45:9A:0E:FB:B9:BC:75:86:39:50:03
X509v3 Authority Key Identifier:
keyid:B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:96:0e:a1:f6:6b:43:40:45:ce:74:3f:5c:fa:e0:d4:15:82:
f9:86:03:e2:98:1f:fc:c0:cd:64:7e:95:16:44:fe:fe:dd:4e:
98:78:16:75:9e:14:01:00:98:6f:7d:f4:c1:98:39:12:85:16:
a2:2f:bc:d0:1d:bf:ce:52:01:57:5a:20:7a:3f:5b:ee:b8:65:
a2:5a:a2:d4:70:73:d8:74:c8:ed:2b:02:74:58:93:f0:43:9d:
ff:04:e4:9d:2a:af:66:d2:49:11:76:36:c1:85:e2:5e:85:eb:
16:25:3f:02:2d:a9:6c:bf:8f:e2:db:05:be:80:8f:01:54:0d:
a1:26:0f:a0:22:d4:39:21:3b:ec:9f:34:1b:c5:d0:32:d7:5a:
33:4b:dc:a5:6b:62:58:2c:81:11:9a:cc:d9:57:9f:ac:75:f4:
65:35:89:b2:df:7d:bc:f6:f0:64:18:53:aa:40:e2:24:6f:c5:
e1:4b:71:b4:4d:82:19:1b:50:20:c1:93:e1:bb:11:bc:dd:2d:
62:75:df:59:e4:31:65:07:a4:0a:f6:08:d3:10:6f:50:4f:fd:
4a:b6:15:40:12:6e:96:b6:6a:72:d6:cf:7e:c6:7c:7e:ac:2d:
2c:9c:2b:0d:81:61:93:ad:7b:b0:91:de:8c:a2:8e:b8:85:64:
03:7d:87:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAivvY/Jq5X17zKyX+vkHyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0NDMwYmExMTUwNjc0MWQ2NzZlYTIwMmUyOTFlYzdlYzYx
OTFiMTcwHhcNMjUwODA2MTgwMDQ4WhcNMjUwODA3MTgwMDQ4WjAzMTEwLwYDVQQD
EyhiMDA5MGNiYzc0MjFmYWRiMzY0NTlhMGVmYmI5YmM3NTg2Mzk1MDAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7TM0fvrTJi9g2PgJ3rvaLf2/glOv
/nF7L3WjUw3j0tjzkkIhl6sZl5TlvBDB3hmbXCdUgMSbcN9nGVwO/c0b9SPhhXF/
Iij19zWoHu5ssWNNEYrpO7mV+cxPupZmI9O28Ez6q8l2eONAqpFkGoOIpRiQkmbw
2KQC143rH2rGHshxO8PTz7XT2Nepa2CrTMblpMD3ZYTahE7WMQiNbngJ3E1T56bS
78wQiYAQAgDbSofAyaNKu7dZJBw2lff4H1H9stCj43PRpxrPBXrKpBI/i3SjI3CZ
XvgOwT4UAHgPKp7jOjjjur+daEvWGZQBYgpdniORYcXeaENaKG4g3WcPKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLAJDLx0IfrbNkWaDvu5vHWGOVADMB8GA1UdIwQY
MBaAFLRDC6EVBnQdZ26iAuKR7H7GGRsXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEVNTG9SVUdkQjFuYnFJQzRwSHNmc1laR3hjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi82MGNjZmEtMDkzMC00NmI0LTgzMTct
ZjhjYTljYjYzMzE3LzEvdEVNTG9SVUdkQjFuYnFJQzRwSHNmc1laR3hjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi82MGNjZmEtMDkzMC00NmI0LTgzMTctZjhjYTljYjYzMzE3
LzEvdEVNTG9SVUdkQjFuYnFJQzRwSHNmc1laR3hjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsZYOofZr
Q0BFznQ/XPrg1BWC+YYD4pgf/MDNZH6VFkT+/t1OmHgWdZ4UAQCYb330wZg5EoUW
oi+80B2/zlIBV1ogej9b7rhlolqi1HBz2HTI7SsCdFiT8EOd/wTknSqvZtJJEXY2
wYXiXoXrFiU/Ai2pbL+P4tsFvoCPAVQNoSYPoCLUOSE77J80G8XQMtdaM0vcpWti
WCyBEZrM2VefrHX0ZTWJst99vPbwZBhTqkDiJG/F4UtxtE2CGRtQIMGT4bsRvN0t
YnXfWeQxZQekCvYI0xBvUE/9SrYVQBJulrZqctbPfsZ8fqwtLJwrDYFhk617sJHe
jKKOuIVkA32HxQ==
-----END CERTIFICATE-----
Generated at Thu Aug 7 03:29:19 2025 by rpki-client