Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
File: tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft (raw, json)
Hash identifier: ysbiGus9AuzkIELE/zAd/UJCoH1JA0yhWl7kTk7imtA=
Subject key identifier: 7B:F3:E0:45:E6:76:8C:33:88:FF:9A:C7:2E:EA:E1:90:1C:BB:9D:55
Authority key identifier: B4:D8:B2:7A:AA:55:E5:1A:34:5F:6A:45:19:E3:67:95:50:46:C3:0A
Certificate issuer: /CN=b4d8b27aaa55e51a345f6a4519e367955046c30a
Certificate serial: 01987D8B192E8BBC51452D8F592A594DFC3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
Manifest number: 11C4
Signing time: Wed 06 Aug 2025 04:02:04 +0000
Manifest this update: Wed 06 Aug 2025 04:02:04 +0000
Manifest next update: Thu 07 Aug 2025 04:02:04 +0000
Files and hashes: 1: nqRmyRsi2-hKiZqffDikHhIZIA8.roa (hash: vx+mbFW9leAh9kJ2X2Cv3OUNnkvDKbo77etkxvxrmFM=)
2: tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl (hash: HfpGuCY1Xva4yuMRjOOasyfc0ILlSoTQpNspN12jCyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 04:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8b:19:2e:8b:bc:51:45:2d:8f:59:2a:59:4d:fc:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4d8b27aaa55e51a345f6a4519e367955046c30a
Validity
Not Before: Aug 6 04:02:04 2025 GMT
Not After : Aug 7 04:02:04 2025 GMT
Subject: CN=7bf3e045e6768c3388ff9ac72eeae1901cbb9d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1b:a7:04:b7:c5:a4:31:2b:c4:90:ac:7a:bf:
5f:b1:c0:d0:5e:5b:0e:24:4f:73:58:42:71:92:8c:
8b:41:79:7e:54:cc:2a:f0:c9:14:2e:08:8d:8a:0b:
ea:41:13:7d:c3:fd:e6:0c:2f:03:9d:7e:36:c2:45:
5d:b0:ed:48:80:35:55:d7:80:8a:80:49:99:70:b0:
2e:1f:72:f0:c1:07:d6:37:a7:07:1e:1f:bb:11:3d:
db:52:4f:d4:d7:01:e9:fa:b7:a6:7c:24:8d:1f:61:
93:99:ec:c9:5b:88:9c:d3:f4:55:1a:8e:3c:3a:0a:
c3:2f:b6:99:93:a0:e0:0c:60:cf:99:0d:0f:53:78:
7c:83:c0:78:6c:29:c5:7f:d8:3b:28:1d:c4:f7:50:
75:1c:22:bc:56:3e:d4:9e:16:97:da:a3:15:d8:a7:
e3:3d:5b:6c:a5:b3:ff:2c:97:75:fd:e0:90:df:62:
69:07:f3:b5:66:61:2b:a1:a5:bc:23:e7:1f:fb:e2:
0a:68:f2:82:33:c2:7e:2a:77:11:94:2d:5d:a2:bf:
6f:50:74:f2:08:e7:fb:f9:1d:ae:c5:d1:b7:d1:08:
57:af:bd:65:fd:ab:95:d5:0f:1a:3c:e2:e0:d8:89:
23:db:1a:24:d5:1e:a8:1c:95:8d:8f:22:89:1a:bf:
b3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F3:E0:45:E6:76:8C:33:88:FF:9A:C7:2E:EA:E1:90:1C:BB:9D:55
X509v3 Authority Key Identifier:
keyid:B4:D8:B2:7A:AA:55:E5:1A:34:5F:6A:45:19:E3:67:95:50:46:C3:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:2d:4d:c4:35:a1:c0:3a:94:0c:70:e3:41:df:1f:59:e3:8b:
1e:7b:39:9c:dc:4e:ae:d0:f5:96:1b:9a:36:4a:37:c6:2d:f5:
3a:76:33:ca:ac:7e:05:f2:e1:a0:9d:65:0e:46:b7:34:cc:ca:
6b:6e:23:46:5f:6f:1d:ff:59:67:31:4e:fa:f9:dc:56:85:30:
b9:63:e2:49:a0:02:2e:0c:33:2b:d2:07:2b:af:16:a8:77:5e:
2b:5e:6b:20:be:b2:c9:df:91:e5:dc:7b:ca:29:21:b4:b8:1c:
c0:32:a9:33:0b:4e:5c:ed:31:45:66:2e:57:64:17:3f:48:6a:
cc:7f:20:a7:0f:41:26:15:43:f0:ff:53:90:74:5e:6a:4c:9d:
42:35:b0:e2:92:e3:74:43:d4:36:d2:cf:53:5b:54:37:54:7a:
ac:f3:a7:06:17:7c:91:bf:1c:90:c4:15:ec:dd:f0:4a:6e:0f:
6a:63:d1:c4:ec:75:7a:8e:da:d2:4d:19:49:89:d7:f4:d1:4c:
1a:91:d3:9f:36:ef:68:5f:cf:47:bd:df:2a:6e:dd:69:cd:af:
60:e6:bb:79:54:ef:86:71:5a:33:fd:a1:f7:9f:6f:3a:6d:d9:
02:96:cd:e7:9a:01:73:aa:bf:94:50:ce:85:ef:a0:12:d1:5a:
19:6c:f0:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9ixkui7xRRS2PWSpZTfw6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0ZDhiMjdhYWE1NWU1MWEzNDVmNmE0NTE5ZTM2Nzk1NTA0
NmMzMGEwHhcNMjUwODA2MDQwMjA0WhcNMjUwODA3MDQwMjA0WjAzMTEwLwYDVQQD
Eyg3YmYzZTA0NWU2NzY4YzMzODhmZjlhYzcyZWVhZTE5MDFjYmI5ZDU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxunBLfFpDErxJCser9fscDQXlsO
JE9zWEJxkoyLQXl+VMwq8MkULgiNigvqQRN9w/3mDC8DnX42wkVdsO1IgDVV14CK
gEmZcLAuH3LwwQfWN6cHHh+7ET3bUk/U1wHp+remfCSNH2GTmezJW4ic0/RVGo48
OgrDL7aZk6DgDGDPmQ0PU3h8g8B4bCnFf9g7KB3E91B1HCK8Vj7UnhaX2qMV2Kfj
PVtspbP/LJd1/eCQ32JpB/O1ZmEroaW8I+cf++IKaPKCM8J+KncRlC1dor9vUHTy
COf7+R2uxdG30QhXr71l/auV1Q8aPOLg2Ikj2xok1R6oHJWNjyKJGr+zUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHvz4EXmdowziP+axy7q4ZAcu51VMB8GA1UdIwQY
MBaAFLTYsnqqVeUaNF9qRRnjZ5VQRsMKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdE5peWVxcFY1Um8wWDJwRkdlTm5sVkJHd3dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9kM2MxZDUtZTkyMy00ODMxLTgwNGMt
Yzc1ODYyODJmZTEzLzEvdE5peWVxcFY1Um8wWDJwRkdlTm5sVkJHd3dvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi9kM2MxZDUtZTkyMy00ODMxLTgwNGMtYzc1ODYyODJmZTEz
LzEvdE5peWVxcFY1Um8wWDJwRkdlTm5sVkJHd3dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMC1NxDWh
wDqUDHDjQd8fWeOLHns5nNxOrtD1lhuaNko3xi31OnYzyqx+BfLhoJ1lDka3NMzK
a24jRl9vHf9ZZzFO+vncVoUwuWPiSaACLgwzK9IHK68WqHdeK15rIL6yyd+R5dx7
yikhtLgcwDKpMwtOXO0xRWYuV2QXP0hqzH8gpw9BJhVD8P9TkHReakydQjWw4pLj
dEPUNtLPU1tUN1R6rPOnBhd8kb8ckMQV7N3wSm4PamPRxOx1eo7a0k0ZSYnX9NFM
GpHTnzbvaF/PR73fKm7dac2vYOa7eVTvhnFaM/2h959vOm3ZApbN55oBc6q/lFDO
he+gEtFaGWzw5w==
-----END CERTIFICATE-----
Generated at Wed Aug 6 12:34:00 2025 by rpki-client