Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
File: RzrT6YeegYYjFqEICLtcQhKVTLo.mft (raw, json)
Hash identifier: I1c+PikWS+1oXbOUJWBC8aGUhIUn+LHBBFfwS/CCFAE=
Subject key identifier: 38:EE:D4:FD:02:74:50:73:AA:6E:E4:C7:F6:81:6C:3B:97:48:10:9D
Authority key identifier: 47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA
Certificate issuer: /CN=473ad3e9879e81862316a10808bb5c4212954cba
Certificate serial: 0198D4732E25D1E02A56D3577ED0C5C2D3F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
Manifest number: 0EF6
Signing time: Sat 23 Aug 2025 01:02:54 +0000
Manifest this update: Sat 23 Aug 2025 01:02:54 +0000
Manifest next update: Sun 24 Aug 2025 01:02:54 +0000
Files and hashes: 1: RzrT6YeegYYjFqEICLtcQhKVTLo.crl (hash: T5Uq4MNfsTWZo23upOCfN1CJK6IiflgoHbrum0WOwpk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:2e:25:d1:e0:2a:56:d3:57:7e:d0:c5:c2:d3:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473ad3e9879e81862316a10808bb5c4212954cba
Validity
Not Before: Aug 23 01:02:54 2025 GMT
Not After : Aug 24 01:02:54 2025 GMT
Subject: CN=38eed4fd02745073aa6ee4c7f6816c3b9748109d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0e:24:b3:23:12:8e:00:c9:d2:86:ad:6e:d3:
2b:8a:4f:be:5f:45:76:b0:3b:60:e8:ea:63:63:34:
f3:72:16:bf:cc:86:8c:ba:07:b0:7d:6c:16:7c:1a:
69:2e:e5:01:0b:c2:a4:c3:33:81:e9:30:7c:da:86:
1a:fc:6f:dd:38:35:5c:fd:05:69:0a:69:67:d0:b5:
35:ff:1f:a6:9d:2a:87:4b:77:64:04:4c:68:b7:17:
60:e6:e3:b9:d4:67:38:91:ac:93:24:98:0f:79:18:
e4:a5:d7:4e:16:fd:e6:12:33:8b:9e:d8:ba:02:03:
1b:9d:05:3d:22:65:1c:25:48:b8:82:2b:b6:84:37:
0c:74:a5:1b:e0:ba:c2:9a:bf:ad:da:60:9e:05:36:
29:5c:2d:ab:e3:69:6f:f7:f7:b8:1f:c5:c2:74:26:
eb:9d:68:44:06:74:72:dc:b7:04:36:a9:a8:c3:fb:
3d:95:f9:63:b2:c1:84:47:f4:5b:28:e8:f4:1d:77:
fe:8a:31:14:d7:36:55:92:6c:83:40:8a:24:7c:98:
8d:23:16:cd:ca:5f:12:2e:aa:fe:a7:4a:b1:e4:80:
60:00:d5:f5:f6:8c:17:8f:58:67:48:c6:47:7c:c7:
37:12:c7:b3:bd:4e:fa:75:e1:75:7e:2e:fe:94:4e:
f0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:EE:D4:FD:02:74:50:73:AA:6E:E4:C7:F6:81:6C:3B:97:48:10:9D
X509v3 Authority Key Identifier:
keyid:47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:0b:1e:63:b5:2b:1b:83:56:81:bd:01:8d:83:18:6c:09:89:
16:1a:21:06:04:78:49:60:1b:25:27:09:53:b5:33:a2:dd:5f:
bc:a1:82:63:9b:1f:c1:c1:d0:2a:ac:8c:47:e1:eb:83:8c:2a:
a9:be:34:b2:e1:81:44:48:4e:d5:cf:c4:c3:44:6a:71:75:55:
bc:62:ac:fb:7d:f1:9e:20:be:9a:63:3b:e4:d5:c0:b9:ac:a5:
e2:e1:21:cf:d5:2b:fa:e7:b6:63:1a:73:42:e7:6b:40:78:1f:
55:1a:36:c4:12:3f:6b:60:1d:da:d3:10:42:4b:22:55:e7:55:
58:0e:c7:ba:05:ef:9f:3a:ad:24:ab:9d:36:7f:b5:4f:a1:33:
79:63:de:a4:1a:0a:a1:15:f7:4f:83:8a:18:42:ae:06:22:12:
92:3c:19:a8:79:c2:f4:15:48:0c:9d:17:0b:33:85:08:9b:04:
04:4c:5d:ba:29:93:57:55:3d:32:e9:e1:32:b6:d2:ae:6c:dc:
89:0e:5f:df:ac:5c:69:99:34:80:7d:49:08:b3:10:a9:c1:c3:
e7:e7:c3:30:b3:71:a2:5d:27:08:fe:f0:80:29:66:97:a2:27:
51:1f:07:17:6f:f9:31:b9:3d:b4:5a:31:b0:bd:01:2b:ad:78:
77:47:14:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcy4l0eAqVtNXftDFwtP5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3M2FkM2U5ODc5ZTgxODYyMzE2YTEwODA4YmI1YzQyMTI5
NTRjYmEwHhcNMjUwODIzMDEwMjU0WhcNMjUwODI0MDEwMjU0WjAzMTEwLwYDVQQD
EygzOGVlZDRmZDAyNzQ1MDczYWE2ZWU0YzdmNjgxNmMzYjk3NDgxMDlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0g4ksyMSjgDJ0oatbtMrik++X0V2
sDtg6OpjYzTzcha/zIaMugewfWwWfBppLuUBC8KkwzOB6TB82oYa/G/dODVc/QVp
Cmln0LU1/x+mnSqHS3dkBExotxdg5uO51Gc4kayTJJgPeRjkpddOFv3mEjOLnti6
AgMbnQU9ImUcJUi4giu2hDcMdKUb4LrCmr+t2mCeBTYpXC2r42lv9/e4H8XCdCbr
nWhEBnRy3LcENqmow/s9lfljssGER/RbKOj0HXf+ijEU1zZVkmyDQIokfJiNIxbN
yl8SLqr+p0qx5IBgANX19owXj1hnSMZHfMc3EsezvU76deF1fi7+lE7weQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDju1P0CdFBzqm7kx/aBbDuXSBCdMB8GA1UdIwQY
MBaAFEc60+mHnoGGIxahCAi7XEISlUy6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUnpyVDZZZWVnWVlqRnFFSUNMdGNRaEtWVExvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8xZDI3ZGEtYjM5Zi00MmE5LTk0OWYt
YjZjMzlhZDk4M2RkLzEvUnpyVDZZZWVnWVlqRnFFSUNMdGNRaEtWVExvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi8xZDI3ZGEtYjM5Zi00MmE5LTk0OWYtYjZjMzlhZDk4M2Rk
LzEvUnpyVDZZZWVnWVlqRnFFSUNMdGNRaEtWVExvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARQseY7Ur
G4NWgb0BjYMYbAmJFhohBgR4SWAbJScJU7Uzot1fvKGCY5sfwcHQKqyMR+Hrg4wq
qb40suGBREhO1c/Ew0RqcXVVvGKs+33xniC+mmM75NXAuayl4uEhz9Ur+ue2Yxpz
QudrQHgfVRo2xBI/a2Ad2tMQQksiVedVWA7HugXvnzqtJKudNn+1T6EzeWPepBoK
oRX3T4OKGEKuBiISkjwZqHnC9BVIDJ0XCzOFCJsEBExduimTV1U9MunhMrbSrmzc
iQ5f36xcaZk0gH1JCLMQqcHD5+fDMLNxol0nCP7wgClml6InUR8HF2/5Mbk9tFox
sL0BK614d0cUaw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:48:39 2025 by rpki-client