Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
File: mFW4DEXftep6qn3R2O2LFPnB3EU.mft (raw, json)
Hash identifier: LYoVY5yr14VypKeji3J22ot9jwJX6RU2nFkGFcttbQA=
Subject key identifier: 98:8D:61:BF:38:AF:59:8B:65:2B:3C:C4:A2:24:11:F2:E6:38:9E:52
Authority key identifier: 98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
Certificate issuer: /CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Certificate serial: 0198D58354C8ADF0FA3E13EA83AEAFE9F469
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
Manifest number: 0133
Signing time: Sat 23 Aug 2025 06:00:10 +0000
Manifest this update: Sat 23 Aug 2025 06:00:10 +0000
Manifest next update: Sun 24 Aug 2025 06:00:10 +0000
Files and hashes: 1: NymzbNZBsKNd-Q-QLvAahyZY8zY.roa (hash: 4tm9+O5MAP6uU3Q2HGQCNAKZry1kf/X+Xwuo3WltB+8=)
2: mFW4DEXftep6qn3R2O2LFPnB3EU.crl (hash: kyJfk83H1e+v3L5HVus74sr/AWY8Kz2HS1hNFq+JxI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:54:c8:ad:f0:fa:3e:13:ea:83:ae:af:e9:f4:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Validity
Not Before: Aug 23 06:00:10 2025 GMT
Not After : Aug 24 06:00:10 2025 GMT
Subject: CN=988d61bf38af598b652b3cc4a22411f2e6389e52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:32:d8:b1:6b:90:b9:01:bc:89:39:17:33:68:
55:9a:3d:c6:12:1a:87:11:cc:51:26:a8:6f:b8:9d:
87:8c:5c:92:61:3b:43:7c:8d:9b:85:c4:ac:0c:b4:
fe:d4:8c:f3:79:dc:1f:e7:3b:46:2c:c8:4f:4a:be:
8a:c9:c6:a7:90:3d:ca:96:05:7c:46:42:6b:9e:1b:
d8:89:61:06:c3:9e:62:55:5e:65:05:ff:84:fc:2c:
b6:48:1b:9c:7d:3d:59:be:2e:27:97:1e:82:b7:65:
e7:6d:e6:2e:e8:99:78:c6:56:0b:ae:24:7b:64:a4:
4a:db:3b:1f:d2:7f:74:20:7b:b0:14:51:79:2c:1c:
b2:8c:8d:d7:73:0c:c1:16:24:14:7a:5c:77:8e:ea:
9d:4a:46:a0:ca:96:21:4f:c1:c9:b9:0a:cd:a0:13:
6f:65:d6:ff:da:96:eb:c0:cf:5a:7b:e9:81:6d:a7:
0f:58:ab:b6:81:b6:41:88:da:d9:f7:55:d6:60:c6:
3a:ba:0a:f6:dc:55:6c:c3:8d:5f:30:72:7a:9d:f2:
98:fa:3b:97:7a:2e:f2:5c:49:0c:d4:57:c9:11:0b:
bf:6d:2f:f8:3c:7b:cd:ac:85:f8:33:56:49:d8:de:
48:0c:2b:79:70:ed:bf:31:98:91:a2:38:02:4d:38:
2f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:8D:61:BF:38:AF:59:8B:65:2B:3C:C4:A2:24:11:F2:E6:38:9E:52
X509v3 Authority Key Identifier:
keyid:98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:cf:c1:08:7e:6e:52:39:b1:28:3e:4b:bf:da:a2:c7:33:96:
71:3f:3b:f8:9c:85:20:a5:83:9e:a2:10:7b:0b:4e:b1:a3:df:
d3:32:d6:e6:d4:a9:1c:f5:d2:8d:1f:c0:55:73:6a:4f:f9:95:
e5:08:0c:16:35:fd:2d:7b:f5:22:ae:cd:aa:70:ba:4e:c3:95:
34:20:50:7a:8b:d4:ad:57:74:7b:af:d5:0d:df:5c:36:82:b5:
e1:52:e2:75:c8:cd:af:a6:d5:5c:c0:12:a7:e8:31:0d:5d:de:
09:a5:fb:69:50:b2:9e:d8:f0:a2:ea:0e:30:48:98:ae:a4:53:
31:74:f2:e2:ec:e6:19:8f:06:75:05:36:35:05:e5:97:00:4e:
0b:9d:b1:9d:79:e7:7d:d8:4d:d5:49:87:7a:64:d7:49:bb:ea:
02:7c:41:1d:ca:e2:5e:fc:5b:12:f5:5e:b2:d8:fe:4b:6e:19:
dc:87:96:ef:42:18:9c:ae:b1:ce:bb:4b:8e:44:75:32:c6:52:
09:ce:ba:c6:ce:f2:e1:4c:a9:d1:68:e5:10:2e:6f:58:1c:ca:
ab:c5:50:b5:17:29:93:5e:1e:77:16:53:04:ee:b5:f1:5c:21:
c4:33:09:d6:fd:6e:82:f0:0e:2c:1e:29:a3:fa:79:f3:97:e7:
2d:13:4a:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg1TIrfD6PhPqg66v6fRpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4NTViODBjNDVkZmI1ZWE3YWFhN2RkMWQ4ZWQ4YjE0Zjlj
MWRjNDUwHhcNMjUwODIzMDYwMDEwWhcNMjUwODI0MDYwMDEwWjAzMTEwLwYDVQQD
Eyg5ODhkNjFiZjM4YWY1OThiNjUyYjNjYzRhMjI0MTFmMmU2Mzg5ZTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzzLYsWuQuQG8iTkXM2hVmj3GEhqH
EcxRJqhvuJ2HjFySYTtDfI2bhcSsDLT+1Izzedwf5ztGLMhPSr6KycankD3KlgV8
RkJrnhvYiWEGw55iVV5lBf+E/Cy2SBucfT1Zvi4nlx6Ct2XnbeYu6Jl4xlYLriR7
ZKRK2zsf0n90IHuwFFF5LByyjI3XcwzBFiQUelx3juqdSkagypYhT8HJuQrNoBNv
Zdb/2pbrwM9ae+mBbacPWKu2gbZBiNrZ91XWYMY6ugr23FVsw41fMHJ6nfKY+juX
ei7yXEkM1FfJEQu/bS/4PHvNrIX4M1ZJ2N5IDCt5cO2/MZiRojgCTTgvpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJiNYb84r1mLZSs8xKIkEfLmOJ5SMB8GA1UdIwQY
MBaAFJhVuAxF37Xqeqp90djtixT5wdxFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8zYTZiYjQtMjRiOC00MDg2LWEyOWQt
ZWU2YzUwOWI2MjIxLzEvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8zYTZiYjQtMjRiOC00MDg2LWEyOWQtZWU2YzUwOWI2MjIx
LzEvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbM/BCH5u
UjmxKD5Lv9qixzOWcT87+JyFIKWDnqIQewtOsaPf0zLW5tSpHPXSjR/AVXNqT/mV
5QgMFjX9LXv1Iq7NqnC6TsOVNCBQeovUrVd0e6/VDd9cNoK14VLidcjNr6bVXMAS
p+gxDV3eCaX7aVCyntjwouoOMEiYrqRTMXTy4uzmGY8GdQU2NQXllwBOC52xnXnn
fdhN1UmHemTXSbvqAnxBHcriXvxbEvVestj+S24Z3IeW70IYnK6xzrtLjkR1MsZS
Cc66xs7y4Uyp0WjlEC5vWBzKq8VQtRcpk14edxZTBO618VwhxDMJ1v1ugvAOLB4p
o/p585fnLRNKoQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:49:53 2025 by rpki-client