Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json)
Hash identifier: javPKuCpcfrkgsdLqXKHKeniJdWnEENFOKnSGwvhNaA=
Subject key identifier: 9E:EB:88:41:E9:39:FE:2A:34:63:CD:50:CD:D1:93:85:CD:3D:50:4D
Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Certificate serial: 0198D4A85C93D4687A651AC48D486E721752
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
Manifest number: 1034
Signing time: Sat 23 Aug 2025 02:01:00 +0000
Manifest this update: Sat 23 Aug 2025 02:01:00 +0000
Manifest next update: Sun 24 Aug 2025 02:01:00 +0000
Files and hashes: 1: MBnjR0q6eR7PujQYuvXc6EY3kbo.roa (hash: HNqzyjDd+TtlMN5tniTDAwjj1tssNX0++6C4Wyg438o=)
2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: mgujqk/bdAon3NdE8gjIblQlrMFX20x6/jra414JtN8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:5c:93:d4:68:7a:65:1a:c4:8d:48:6e:72:17:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Validity
Not Before: Aug 23 02:01:00 2025 GMT
Not After : Aug 24 02:01:00 2025 GMT
Subject: CN=9eeb8841e939fe2a3463cd50cdd19385cd3d504d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1b:d8:0b:ca:32:e6:dd:8e:5f:28:09:15:2b:
e5:5e:5f:02:90:f7:46:38:44:0e:8d:11:9f:ec:9c:
37:49:20:81:19:00:c2:1b:1d:9f:06:d7:5e:42:05:
e7:fa:dd:bd:f9:3f:8a:db:98:a9:1d:1b:13:b9:b9:
49:9d:f7:0f:0d:dd:52:3b:ad:df:90:27:d3:87:b3:
8c:8c:67:0a:4c:e4:9e:c9:9c:d2:3b:42:30:71:ce:
1a:5b:6d:5b:03:1f:0d:86:d2:bb:41:b6:d2:36:e0:
45:a7:9d:56:6d:48:26:a6:6e:d9:e1:5a:95:9f:84:
8d:7c:cc:38:a1:ad:13:22:ae:88:10:a7:f9:43:d6:
80:51:96:38:61:d4:1e:d2:f1:e0:ef:19:c0:aa:83:
3c:f6:79:8a:e4:e3:f6:82:61:68:e0:5e:7c:85:c5:
c5:31:84:94:15:0e:a3:ae:f3:a6:d5:e3:d8:cd:50:
b1:7f:3a:c6:69:b5:18:d2:8e:5e:fc:e1:d4:20:51:
4e:8c:ca:f7:2e:69:a8:dd:15:75:ea:35:d6:c3:25:
7b:e9:b6:2f:ab:0f:2d:22:31:93:62:dc:9e:07:c8:
20:ec:65:2e:1d:26:c1:73:f0:86:36:55:c6:42:44:
be:49:2c:24:70:77:bd:d9:d3:4b:c0:f5:d4:e0:cc:
07:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EB:88:41:E9:39:FE:2A:34:63:CD:50:CD:D1:93:85:CD:3D:50:4D
X509v3 Authority Key Identifier:
keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:15:d8:c3:d4:ae:df:1c:7e:44:a1:26:4b:23:75:5e:ba:40:
b1:a9:ba:e6:d0:93:f1:d3:a6:d5:3b:c4:04:64:6c:dc:d0:cd:
05:b1:43:be:61:bb:8f:ad:e6:bc:c7:3a:3e:84:f9:17:ad:90:
e6:be:3f:c8:38:cc:29:fd:5f:63:23:f4:f8:43:8e:37:69:94:
e6:ba:7e:2f:46:46:c0:c6:45:7f:32:e5:ad:e3:1c:18:18:80:
02:9b:14:e6:3b:f9:25:98:1b:1c:43:e1:58:ed:c1:e7:1d:82:
33:f4:46:92:6a:4b:12:a0:f5:44:77:67:1a:f6:41:ea:88:2f:
fa:85:33:05:3e:37:dc:fc:e9:2d:c4:42:1a:ad:f8:28:2e:e1:
d4:dd:35:fd:1e:eb:5a:cd:11:69:ad:c0:50:16:21:0e:1e:bc:
11:df:8f:7b:7a:07:dc:32:39:4f:f5:20:ed:90:1e:6b:6a:61:
18:bc:27:46:d6:fd:03:83:41:bb:3b:9a:df:0e:de:f2:16:32:
64:9c:b1:75:e5:e3:06:9e:e7:c2:66:cf:fa:4c:1a:58:60:1d:
43:24:2a:2a:9d:d3:75:74:1e:4b:30:b2:79:3f:d0:f7:1a:ba:
7d:33:3a:79:a8:65:be:57:3e:11:bf:d0:2e:28:67:5d:ec:f7:
5d:72:e1:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUqFyT1Gh6ZRrEjUhuchdSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0MzRlZGJlMWI0MTAxYjI4YWJlMjMyZjJiY2YyYTAxNDg5
NzgyNWEwHhcNMjUwODIzMDIwMTAwWhcNMjUwODI0MDIwMTAwWjAzMTEwLwYDVQQD
Eyg5ZWViODg0MWU5MzlmZTJhMzQ2M2NkNTBjZGQxOTM4NWNkM2Q1MDRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRvYC8oy5t2OXygJFSvlXl8CkPdG
OEQOjRGf7Jw3SSCBGQDCGx2fBtdeQgXn+t29+T+K25ipHRsTublJnfcPDd1SO63f
kCfTh7OMjGcKTOSeyZzSO0Iwcc4aW21bAx8NhtK7QbbSNuBFp51WbUgmpm7Z4VqV
n4SNfMw4oa0TIq6IEKf5Q9aAUZY4YdQe0vHg7xnAqoM89nmK5OP2gmFo4F58hcXF
MYSUFQ6jrvOm1ePYzVCxfzrGabUY0o5e/OHUIFFOjMr3Lmmo3RV16jXWwyV76bYv
qw8tIjGTYtyeB8gg7GUuHSbBc/CGNlXGQkS+SSwkcHe92dNLwPXU4MwHhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ7riEHpOf4qNGPNUM3Rk4XNPVBNMB8GA1UdIwQY
MBaAFEQ07b4bQQGyir4jLyvPKgFIl4JaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC82MzlmNjQtMWRmMS00NmQ1LWFkZDkt
MTBjYWY1NDk4NmZmLzEvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC82MzlmNjQtMWRmMS00NmQ1LWFkZDktMTBjYWY1NDk4NmZm
LzEvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFRXYw9Su
3xx+RKEmSyN1XrpAsam65tCT8dOm1TvEBGRs3NDNBbFDvmG7j63mvMc6PoT5F62Q
5r4/yDjMKf1fYyP0+EOON2mU5rp+L0ZGwMZFfzLlreMcGBiAApsU5jv5JZgbHEPh
WO3B5x2CM/RGkmpLEqD1RHdnGvZB6ogv+oUzBT433PzpLcRCGq34KC7h1N01/R7r
Ws0Raa3AUBYhDh68Ed+Pe3oH3DI5T/Ug7ZAea2phGLwnRtb9A4NBuzua3w7e8hYy
ZJyxdeXjBp7nwmbP+kwaWGAdQyQqKp3TdXQeSzCyeT/Q9xq6fTM6eahlvlc+Eb/Q
LihnXez3XXLhzA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:16:33 2025 by rpki-client