Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
File: goiQPZDAHi1c4YeIBa1KktKK7ck.mft (raw, json)
Hash identifier: LhI/bCb/r7AcOTRaSIVErvLsoxMnGjY0eNjrE0uUKis=
Subject key identifier: A2:E6:9A:D4:41:A4:6F:E4:F4:98:9C:7B:D3:9C:FB:1E:5B:D1:21:32
Authority key identifier: 82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
Certificate issuer: /CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Certificate serial: 01987373F20C0C54678C46D5DA834B8EC69F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
Manifest number: 0D69
Signing time: Mon 04 Aug 2025 05:00:35 +0000
Manifest this update: Mon 04 Aug 2025 05:00:35 +0000
Manifest next update: Tue 05 Aug 2025 05:00:35 +0000
Files and hashes: 1: goiQPZDAHi1c4YeIBa1KktKK7ck.crl (hash: ZLTYxOxpzP12Iv42mjJtIjouf/smUfWTTIpbrBweGuE=)
2: xs7enPVeNIMyt7yLlWdZQsBjc6E.roa (hash: Hl7Zc5f4P4RuVLf0+lM7s4f9NcFGJ5Df6CUhJF0dl6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 05:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:73:f2:0c:0c:54:67:8c:46:d5:da:83:4b:8e:c6:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Validity
Not Before: Aug 4 05:00:35 2025 GMT
Not After : Aug 5 05:00:35 2025 GMT
Subject: CN=a2e69ad441a46fe4f4989c7bd39cfb1e5bd12132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d5:e3:1c:bd:5f:ac:96:eb:79:b9:64:bb:19:
fe:59:15:5e:a6:9b:01:3b:93:c1:8d:03:0b:ca:39:
a7:f3:30:6a:32:79:6d:50:5a:30:1a:25:aa:c6:ee:
da:dd:50:0b:6f:eb:3a:79:e9:d0:7b:0e:ee:de:6f:
0d:ac:b0:92:a4:c9:94:e3:66:d4:39:9f:82:a1:a2:
7e:da:87:f1:59:6a:83:ec:57:56:9d:e1:d1:11:17:
b0:20:af:83:e5:df:39:71:82:9c:2a:33:80:95:11:
88:3e:b1:8e:9b:63:fb:c3:5f:28:ea:e5:e3:59:af:
9d:1b:af:12:8b:98:b2:5e:9a:0e:4d:5a:a2:a7:d6:
02:41:72:cd:8a:a9:a2:7c:8e:2c:b1:0b:eb:bd:9d:
ef:ba:d5:2e:6f:7f:1e:b2:37:89:58:72:0e:24:36:
19:7c:e8:e8:e5:65:a5:36:b6:b6:94:88:25:89:47:
70:63:4c:bd:30:c0:96:90:6f:54:0a:5d:84:be:12:
f7:29:34:b8:02:40:c9:46:8b:73:53:a7:91:0f:25:
45:2b:a7:71:38:58:72:b4:ce:2a:2e:fa:c7:c2:66:
50:ae:b0:c2:3d:f7:49:91:ec:31:b4:de:bd:74:d0:
9d:17:d6:84:42:ba:e2:e3:ae:f2:28:78:4e:9c:00:
44:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:E6:9A:D4:41:A4:6F:E4:F4:98:9C:7B:D3:9C:FB:1E:5B:D1:21:32
X509v3 Authority Key Identifier:
keyid:82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:76:e2:c5:1e:5e:4a:7c:75:c4:47:25:a7:5c:aa:fc:8d:84:
7a:22:0a:15:cf:3e:a2:30:0a:fa:70:3d:5b:20:e1:4b:da:e2:
a2:e7:cd:fd:2d:57:c0:94:f2:9d:16:99:64:3d:62:55:7c:be:
62:85:c0:c8:1e:de:41:ba:9d:6b:fc:c3:c5:1e:c6:bf:af:41:
4b:de:c2:e5:f6:a0:f7:8b:bc:d3:9e:7f:d5:26:bc:da:03:37:
0d:45:e1:6a:7d:37:06:51:b6:ac:3f:03:ec:fc:bf:2a:53:b9:
f8:5b:06:f2:76:35:a8:da:f3:cd:78:23:d0:81:de:3b:84:32:
4e:a6:4e:12:f4:ac:d6:9d:a9:fe:9f:22:74:9e:2c:19:10:b1:
96:65:19:97:52:67:81:8f:7b:16:2e:bf:3b:b7:08:06:e3:40:
89:85:bb:62:66:f9:5e:13:ce:0e:72:13:c0:53:02:6a:88:5b:
32:ec:fc:fd:a3:bc:c4:19:bf:79:40:3c:82:96:42:55:0f:77:
5e:1e:25:66:5b:71:98:c7:e4:c5:72:84:5a:6d:69:f8:11:fc:
47:52:b0:2b:f8:3d:c2:04:cc:e9:1f:9a:e1:35:0c:4c:29:5e:
f3:0d:96:30:e3:6e:2a:f6:d2:46:a9:3a:0b:7e:bc:9c:e4:2b:
cf:3c:a2:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhzc/IMDFRnjEbV2oNLjsafMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyODg5MDNkOTBjMDFlMmQ1Y2UxODc4ODA1YWQ0YTkyZDI4
YWVkYzkwHhcNMjUwODA0MDUwMDM1WhcNMjUwODA1MDUwMDM1WjAzMTEwLwYDVQQD
EyhhMmU2OWFkNDQxYTQ2ZmU0ZjQ5ODljN2JkMzljZmIxZTViZDEyMTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAltXjHL1frJbreblkuxn+WRVeppsB
O5PBjQMLyjmn8zBqMnltUFowGiWqxu7a3VALb+s6eenQew7u3m8NrLCSpMmU42bU
OZ+CoaJ+2ofxWWqD7FdWneHRERewIK+D5d85cYKcKjOAlRGIPrGOm2P7w18o6uXj
Wa+dG68Si5iyXpoOTVqip9YCQXLNiqmifI4ssQvrvZ3vutUub38esjeJWHIOJDYZ
fOjo5WWlNra2lIgliUdwY0y9MMCWkG9UCl2EvhL3KTS4AkDJRotzU6eRDyVFK6dx
OFhytM4qLvrHwmZQrrDCPfdJkewxtN69dNCdF9aEQrri467yKHhOnABE1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKLmmtRBpG/k9Jice9Oc+x5b0SEyMB8GA1UdIwQY
MBaAFIKIkD2QwB4tXOGHiAWtSpLSiu3JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi84M2Y4MmQtMTU0NS00MDc0LTg2ODIt
YTFkZTU4YTNiMzViLzEvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi84M2Y4MmQtMTU0NS00MDc0LTg2ODItYTFkZTU4YTNiMzVi
LzEvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY3bixR5e
Snx1xEclp1yq/I2EeiIKFc8+ojAK+nA9WyDhS9rioufN/S1XwJTynRaZZD1iVXy+
YoXAyB7eQbqda/zDxR7Gv69BS97C5fag94u8055/1Sa82gM3DUXhan03BlG2rD8D
7Py/KlO5+FsG8nY1qNrzzXgj0IHeO4QyTqZOEvSs1p2p/p8idJ4sGRCxlmUZl1Jn
gY97Fi6/O7cIBuNAiYW7Ymb5XhPODnITwFMCaohbMuz8/aO8xBm/eUA8gpZCVQ93
Xh4lZltxmMfkxXKEWm1p+BH8R1KwK/g9wgTM6R+a4TUMTCle8w2WMONuKvbSRqk6
C368nOQrzzyiLw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 14:52:37 2025 by rpki-client