Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
File: tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft (raw, json)
Hash identifier: o6JpzfODBf7cG828No96yN14jCI6hPXz/9Due50u68I=
Subject key identifier: 6C:5A:5D:01:57:2D:0F:5C:50:A2:3F:2A:4D:CB:8B:8A:FD:D7:FF:BF
Authority key identifier: B4:A3:A9:BE:77:E2:D9:FD:E7:FF:E1:F5:16:29:F9:4E:98:EA:3C:D8
Certificate issuer: /CN=b4a3a9be77e2d9fde7ffe1f51629f94e98ea3cd8
Certificate serial: 0198D4E0DB89B14047EADD72A88A5B5C3A83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
Manifest number: 085E
Signing time: Sat 23 Aug 2025 03:02:42 +0000
Manifest this update: Sat 23 Aug 2025 03:02:42 +0000
Manifest next update: Sun 24 Aug 2025 03:02:42 +0000
Files and hashes: 1: tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl (hash: UKEaYANy7qcxdOagsy6bV72ejZKL/uomfZYyBIMPgew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:db:89:b1:40:47:ea:dd:72:a8:8a:5b:5c:3a:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a3a9be77e2d9fde7ffe1f51629f94e98ea3cd8
Validity
Not Before: Aug 23 03:02:42 2025 GMT
Not After : Aug 24 03:02:42 2025 GMT
Subject: CN=6c5a5d01572d0f5c50a23f2a4dcb8b8afdd7ffbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b0:73:6b:bc:31:7c:0a:a5:f8:be:bd:d1:ca:
eb:17:ec:6e:da:54:fe:8d:e1:ad:95:25:e0:3d:f8:
e6:31:80:69:cb:a7:3c:8f:10:76:d7:9e:5c:87:0a:
6c:06:89:f5:9a:d8:5b:83:2f:96:bc:4f:12:05:1f:
6c:0a:b9:88:b1:aa:65:6e:b9:37:c7:1b:00:0f:4c:
97:81:54:ea:8c:bf:b0:3d:24:7f:ba:35:79:78:e4:
d0:c8:61:5b:ff:13:c4:f4:5f:da:93:36:e5:ab:e2:
1d:01:03:3c:98:35:3c:3e:4c:58:23:5a:76:3a:95:
65:a8:b6:3a:f4:70:ec:ce:fd:dc:47:d1:01:c1:15:
9a:ba:1f:cc:84:61:26:70:fd:e2:e7:4c:66:fc:ee:
cf:cf:b0:4f:10:8b:be:3f:bf:af:53:3b:9b:db:8f:
a7:f5:2d:92:85:66:a3:94:99:7d:c9:8b:26:04:18:
50:66:1a:1c:3f:88:64:20:0c:dd:65:59:0b:aa:18:
f8:ce:a5:29:42:a3:64:86:be:c1:50:be:aa:ab:7e:
73:3d:7f:f6:27:7a:19:59:a0:b9:5e:0b:12:7b:e3:
5c:09:81:2a:30:34:eb:93:9a:fc:3d:42:3f:56:08:
d5:98:de:ed:be:df:b5:1e:e2:d5:36:38:2b:ec:28:
54:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:5A:5D:01:57:2D:0F:5C:50:A2:3F:2A:4D:CB:8B:8A:FD:D7:FF:BF
X509v3 Authority Key Identifier:
keyid:B4:A3:A9:BE:77:E2:D9:FD:E7:FF:E1:F5:16:29:F9:4E:98:EA:3C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:83:f1:b7:16:ab:02:40:0e:79:3f:03:69:a5:b0:56:57:05:
c8:99:7c:2f:2d:1e:bb:96:8d:bc:3c:dd:13:fe:85:2b:96:4b:
fc:4e:6a:d3:83:f8:99:aa:1b:47:ca:d0:0f:a7:ff:9a:7c:45:
8b:8c:bd:ba:2d:34:74:8e:d7:6f:66:64:27:74:93:8e:e1:33:
a3:1a:67:f6:bf:b0:e2:45:c2:39:ca:03:74:ff:b0:67:69:fe:
c6:b5:d6:b4:f9:51:34:5a:d5:5d:b2:26:33:d8:24:44:53:01:
68:bc:53:f6:a3:47:df:0b:03:06:ab:34:17:e2:76:c2:35:f2:
31:f3:51:b6:e3:3d:0e:d6:66:29:61:6d:67:6d:06:4e:d0:eb:
0a:07:80:7f:81:52:92:d7:06:f0:da:87:0d:a0:0e:3d:67:f8:
de:ae:87:0f:ee:19:dd:9f:3e:92:7a:84:8f:a9:bd:19:66:6e:
a8:c5:12:3f:69:4e:b5:62:bc:c1:98:5d:29:31:7f:fd:b2:50:
52:02:2a:8b:8f:de:02:76:79:cf:30:c6:01:70:bb:03:f8:9f:
2d:3e:e7:7b:da:e6:54:40:de:a2:71:fd:27:6b:81:33:af:00:
b7:ee:4f:22:d8:8e:ce:dd:0a:77:fe:a4:99:e6:1f:72:30:29:
46:3e:bf:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4NuJsUBH6t1yqIpbXDqDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0YTNhOWJlNzdlMmQ5ZmRlN2ZmZTFmNTE2MjlmOTRlOThl
YTNjZDgwHhcNMjUwODIzMDMwMjQyWhcNMjUwODI0MDMwMjQyWjAzMTEwLwYDVQQD
Eyg2YzVhNWQwMTU3MmQwZjVjNTBhMjNmMmE0ZGNiOGI4YWZkZDdmZmJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLBza7wxfAql+L690crrF+xu2lT+
jeGtlSXgPfjmMYBpy6c8jxB2155chwpsBon1mthbgy+WvE8SBR9sCrmIsaplbrk3
xxsAD0yXgVTqjL+wPSR/ujV5eOTQyGFb/xPE9F/akzblq+IdAQM8mDU8PkxYI1p2
OpVlqLY69HDszv3cR9EBwRWauh/MhGEmcP3i50xm/O7Pz7BPEIu+P7+vUzub24+n
9S2ShWajlJl9yYsmBBhQZhocP4hkIAzdZVkLqhj4zqUpQqNkhr7BUL6qq35zPX/2
J3oZWaC5XgsSe+NcCYEqMDTrk5r8PUI/VgjVmN7tvt+1HuLVNjgr7ChUMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGxaXQFXLQ9cUKI/Kk3Li4r91/+/MB8GA1UdIwQY
MBaAFLSjqb534tn95//h9RYp+U6Y6jzYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEtPcHZuZmkyZjNuXy1IMUZpbjVUcGpxUE5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9kZDQxNDgtODlhYi00OGY4LThkNmYt
MzNjZmE1MTFiMGM3LzEvdEtPcHZuZmkyZjNuXy1IMUZpbjVUcGpxUE5nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9kZDQxNDgtODlhYi00OGY4LThkNmYtMzNjZmE1MTFiMGM3
LzEvdEtPcHZuZmkyZjNuXy1IMUZpbjVUcGpxUE5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm4Pxtxar
AkAOeT8DaaWwVlcFyJl8Ly0eu5aNvDzdE/6FK5ZL/E5q04P4maobR8rQD6f/mnxF
i4y9ui00dI7Xb2ZkJ3STjuEzoxpn9r+w4kXCOcoDdP+wZ2n+xrXWtPlRNFrVXbIm
M9gkRFMBaLxT9qNH3wsDBqs0F+J2wjXyMfNRtuM9DtZmKWFtZ20GTtDrCgeAf4FS
ktcG8NqHDaAOPWf43q6HD+4Z3Z8+knqEj6m9GWZuqMUSP2lOtWK8wZhdKTF//bJQ
UgIqi4/eAnZ5zzDGAXC7A/ifLT7ne9rmVEDeonH9J2uBM68At+5PItiOzt0Kd/6k
meYfcjApRj6/Lg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:27:01 2025 by rpki-client