Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
File: md6y4fhaF9okDPyBbZcsheQR5iQ.mft (raw, json)
Hash identifier: ref6HUt9ZbhU/Ty6KhPTyOe8va7prDl5w5/mEMaSTtU=
Subject key identifier: AA:AE:80:5C:BC:53:3E:AF:A9:C2:CC:63:C5:CD:61:DB:3E:4B:DD:3A
Authority key identifier: 99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
Certificate issuer: /CN=99deb2e1f85a17da240cfc816d972c85e411e624
Certificate serial: 0198D54DEDA8281C041DCD8FD14FF60C7041
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 05:01:50 +0000
Manifest this update: Sat 23 Aug 2025 05:01:50 +0000
Manifest next update: Sun 24 Aug 2025 05:01:50 +0000
Files and hashes: 1: G9mF37Fb91r0jC33-YcK9r4IAmk.roa (hash: MaEVR8Nlqavgaakwb2T4C4sUXoGT+mVODKAXw14Vucs=)
2: md6y4fhaF9okDPyBbZcsheQR5iQ.crl (hash: s/oVB190ECkSXj77oTqKPg3J7TE94wLbTGHDDk2L3wo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:ed:a8:28:1c:04:1d:cd:8f:d1:4f:f6:0c:70:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99deb2e1f85a17da240cfc816d972c85e411e624
Validity
Not Before: Aug 23 05:01:50 2025 GMT
Not After : Aug 24 05:01:50 2025 GMT
Subject: CN=aaae805cbc533eafa9c2cc63c5cd61db3e4bdd3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7a:91:b0:d4:b0:0f:30:80:4a:6a:b7:38:92:
fb:4f:d0:41:2b:21:c0:80:c3:d6:c2:ee:dd:6c:34:
5c:08:82:0c:a2:87:d2:6e:dd:02:99:07:66:01:5e:
8f:71:e2:0a:9c:12:00:02:66:cc:d9:62:76:30:a7:
16:70:65:e8:a5:6d:ad:38:46:f8:1e:1f:d0:3e:4b:
48:75:f0:de:0f:ce:cf:8b:a4:df:bb:23:f0:bb:97:
48:da:6a:fb:2d:8d:a0:ef:97:b6:70:eb:ff:d6:68:
b6:48:98:75:38:23:93:a4:a7:be:5e:a3:e1:a1:9c:
4d:99:53:9f:86:3d:a1:0b:76:4b:f4:ea:05:e3:6d:
bc:a2:b6:e0:d2:ac:fe:f5:a0:ba:73:56:10:78:ca:
ce:80:bd:72:01:e7:74:71:28:61:38:7d:93:26:fb:
2a:2c:aa:5f:ab:94:35:0f:fe:c3:b4:93:08:0e:33:
6d:f6:60:46:a3:a3:4f:21:8f:75:b7:0f:c9:15:83:
d3:c9:46:20:82:1c:4b:fa:c8:ec:97:5f:f1:16:cf:
a5:ca:23:d8:35:14:5d:fb:f5:1a:de:ef:be:e5:39:
de:bf:d8:3a:45:2a:30:19:eb:31:de:5e:c3:ec:61:
ad:41:d0:3b:71:f4:aa:ba:7c:6f:55:89:52:93:dc:
47:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:AE:80:5C:BC:53:3E:AF:A9:C2:CC:63:C5:CD:61:DB:3E:4B:DD:3A
X509v3 Authority Key Identifier:
keyid:99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:8a:b2:0b:eb:65:27:09:4b:3b:ea:c6:c6:e8:61:68:45:e6:
a9:51:96:96:ea:96:69:03:4b:61:fc:20:62:9d:b0:38:f1:57:
93:92:43:fb:71:26:a2:63:ff:99:61:1a:ad:08:dd:10:8f:e5:
0e:73:aa:3a:67:30:15:03:46:e8:89:ff:da:62:62:88:3c:b6:
0e:a3:4d:59:9d:63:8d:ca:a1:dd:8d:db:ae:24:07:39:d7:cb:
85:05:d3:2e:73:ea:d7:45:d1:69:0a:66:cb:1e:e6:e4:57:23:
7e:ba:20:16:77:8d:c1:2d:ad:86:33:bb:73:4b:e5:c2:f3:8e:
7f:8d:f3:0a:e8:06:ab:4d:b2:cd:88:b9:35:38:dc:67:ed:91:
51:aa:a6:86:7f:05:8c:0f:3d:d2:12:68:2f:f0:da:40:8e:f9:
8c:f7:fb:69:2c:2e:24:eb:f0:0e:27:e2:25:16:eb:b8:5c:14:
21:8a:e9:3f:90:4c:e4:c2:5a:9f:bd:24:1a:6e:e9:6f:dc:28:
b5:28:1d:51:5c:85:4f:f8:c6:46:1e:43:9f:c8:b8:66:af:ad:
40:51:18:27:a3:f9:72:3a:07:b9:2e:cb:e6:ae:11:09:ce:11:
d2:8f:ee:aa:8f:2d:de:e9:a7:6e:19:41:00:95:c8:c2:64:41:
8a:38:45:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTe2oKBwEHc2P0U/2DHBBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5ZGViMmUxZjg1YTE3ZGEyNDBjZmM4MTZkOTcyYzg1ZTQx
MWU2MjQwHhcNMjUwODIzMDUwMTUwWhcNMjUwODI0MDUwMTUwWjAzMTEwLwYDVQQD
EyhhYWFlODA1Y2JjNTMzZWFmYTljMmNjNjNjNWNkNjFkYjNlNGJkZDNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXqRsNSwDzCASmq3OJL7T9BBKyHA
gMPWwu7dbDRcCIIMoofSbt0CmQdmAV6PceIKnBIAAmbM2WJ2MKcWcGXopW2tOEb4
Hh/QPktIdfDeD87Pi6TfuyPwu5dI2mr7LY2g75e2cOv/1mi2SJh1OCOTpKe+XqPh
oZxNmVOfhj2hC3ZL9OoF4228orbg0qz+9aC6c1YQeMrOgL1yAed0cShhOH2TJvsq
LKpfq5Q1D/7DtJMIDjNt9mBGo6NPIY91tw/JFYPTyUYgghxL+sjsl1/xFs+lyiPY
NRRd+/Ua3u++5Tnev9g6RSowGesx3l7D7GGtQdA7cfSqunxvVYlSk9xH0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKqugFy8Uz6vqcLMY8XNYds+S906MB8GA1UdIwQY
MBaAFJnesuH4WhfaJAz8gW2XLIXkEeYkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWQ2eTRmaGFGOW9rRFB5QmJaY3NoZVFSNWlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy83YzkxY2EtNTVmNy00M2E0LWI5NTAt
OGRjOTRlODliZjAzLzEvbWQ2eTRmaGFGOW9rRFB5QmJaY3NoZVFSNWlRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy83YzkxY2EtNTVmNy00M2E0LWI5NTAtOGRjOTRlODliZjAz
LzEvbWQ2eTRmaGFGOW9rRFB5QmJaY3NoZVFSNWlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApYqyC+tl
JwlLO+rGxuhhaEXmqVGWluqWaQNLYfwgYp2wOPFXk5JD+3EmomP/mWEarQjdEI/l
DnOqOmcwFQNG6In/2mJiiDy2DqNNWZ1jjcqh3Y3briQHOdfLhQXTLnPq10XRaQpm
yx7m5FcjfrogFneNwS2thjO7c0vlwvOOf43zCugGq02yzYi5NTjcZ+2RUaqmhn8F
jA890hJoL/DaQI75jPf7aSwuJOvwDifiJRbruFwUIYrpP5BM5MJan70kGm7pb9wo
tSgdUVyFT/jGRh5Dn8i4Zq+tQFEYJ6P5cjoHuS7L5q4RCc4R0o/uqo8t3umnbhlB
AJXIwmRBijhF0A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:29:41 2025 by rpki-client