Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
File: tYUi2sa83oxIEzNZkTKhYgDmpb4.mft (raw, json)
Hash identifier: 4JSserD/iT7SbpCuTekw06sIsGAaB+pk1pzJp5cQWso=
Subject key identifier: F3:F8:8E:9D:06:BB:01:16:03:E1:F1:74:7C:11:4F:4A:76:FC:44:66
Authority key identifier: B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
Certificate issuer: /CN=b58522dac6bcde8c481333599132a16200e6a5be
Certificate serial: 0198D4725679B7CC200F94E6FBF6E2685846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
Manifest number: 09A3
Signing time: Sat 23 Aug 2025 01:01:59 +0000
Manifest this update: Sat 23 Aug 2025 01:01:59 +0000
Manifest next update: Sun 24 Aug 2025 01:01:59 +0000
Files and hashes: 1: 5moGvKAoN95-3rdirRXOwCahhvs.roa (hash: SkhAzMm5Jb5vcIiM14h4SYz3DQTRyqaR2eF+qq4Rdl0=)
2: RuuQV8FVAOprAh_8jcQjyKszeBc.roa (hash: kX89cdA0JPKtfSqgIarOumMCZ1cTxgD0uR8aSG1ObUs=)
3: tYUi2sa83oxIEzNZkTKhYgDmpb4.crl (hash: lGGVRUKZoO7kGmrhB9VdmPVTZkPTNeKAYnlRu4Ssolc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:56:79:b7:cc:20:0f:94:e6:fb:f6:e2:68:58:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58522dac6bcde8c481333599132a16200e6a5be
Validity
Not Before: Aug 23 01:01:59 2025 GMT
Not After : Aug 24 01:01:59 2025 GMT
Subject: CN=f3f88e9d06bb011603e1f1747c114f4a76fc4466
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:47:db:fb:eb:18:08:d7:36:4b:b5:34:90:03:
05:12:28:5e:81:e2:7b:10:13:3c:a0:16:fc:7b:58:
06:8f:ea:1f:ff:e5:b8:96:b8:ef:b0:c8:54:5f:d7:
82:10:95:3c:9a:d9:81:a7:70:7e:bf:d8:26:57:40:
b2:30:d6:3f:9e:15:3b:73:de:61:3d:33:20:eb:87:
9e:63:c6:e8:97:61:b2:e9:44:7f:b8:3d:ee:e1:b3:
c4:db:22:78:d8:4f:32:03:ba:a3:05:de:23:de:a8:
30:b9:e1:07:5b:f3:1b:fe:31:cb:b7:d4:7c:3c:f5:
d8:fe:f5:93:5f:3f:e3:42:5f:1a:37:7c:f4:4f:29:
26:43:ef:5c:1b:a7:50:65:90:45:18:98:8f:0b:85:
5d:9d:79:cf:98:8e:18:69:13:d7:9c:a9:e3:07:91:
72:09:a1:db:03:a8:76:e2:c0:2b:5f:0e:f6:86:9c:
10:43:ea:8b:64:55:7a:37:21:69:e8:f6:57:55:02:
57:74:32:61:bf:c4:ad:1f:68:8c:88:4d:92:c3:b9:
e2:be:29:9d:00:4a:3b:29:ab:5f:49:02:91:cd:2c:
88:9e:24:de:29:55:e0:6f:fa:16:63:a8:32:8a:83:
46:21:5d:cd:bb:1b:10:00:be:9f:b0:83:28:e8:02:
b3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:F8:8E:9D:06:BB:01:16:03:E1:F1:74:7C:11:4F:4A:76:FC:44:66
X509v3 Authority Key Identifier:
keyid:B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:69:ed:96:48:95:1c:13:cb:b0:1a:7d:75:33:62:8a:1c:45:
cf:8a:d8:7d:b1:a2:3c:31:a2:98:26:6e:16:6e:c9:e8:d7:d0:
a9:6a:01:05:1f:ad:7b:aa:ca:df:f1:a2:d3:bc:67:7f:04:c0:
8b:ee:00:04:de:66:07:e5:3c:36:57:04:ed:28:db:ea:3a:13:
f1:cc:3f:30:ca:72:68:fb:05:8b:56:3f:8b:fa:50:49:0d:e6:
0f:3d:12:af:79:26:05:b5:3d:8f:0c:1a:bc:83:e2:a5:16:69:
e6:18:07:e9:24:26:a6:62:4d:65:62:52:da:c5:3c:e4:87:bf:
04:b1:05:4a:4a:4e:1b:15:3f:e1:05:73:2c:94:57:5b:9b:b7:
27:2e:97:6d:e9:4c:d6:03:30:44:f7:7c:c2:b9:7f:93:45:79:
78:32:92:0d:f7:d3:c9:b7:2d:88:ca:ee:7d:0d:f4:04:37:d4:
dc:d7:63:cc:36:66:55:ac:72:d3:8e:d7:51:46:b8:e7:08:bd:
61:87:c6:e4:31:65:22:5f:4c:fe:f4:ba:37:bf:bc:bf:06:83:
5f:9d:18:1c:6e:05:ce:dc:71:16:2a:52:7a:b2:34:29:a3:42:
96:52:ec:e3:61:48:c4:94:84:9a:4a:3c:c7:95:4b:42:ab:dc:
6a:d1:5b:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUclZ5t8wgD5Tm+/biaFhGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1ODUyMmRhYzZiY2RlOGM0ODEzMzM1OTkxMzJhMTYyMDBl
NmE1YmUwHhcNMjUwODIzMDEwMTU5WhcNMjUwODI0MDEwMTU5WjAzMTEwLwYDVQQD
EyhmM2Y4OGU5ZDA2YmIwMTE2MDNlMWYxNzQ3YzExNGY0YTc2ZmM0NDY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAykfb++sYCNc2S7U0kAMFEihegeJ7
EBM8oBb8e1gGj+of/+W4lrjvsMhUX9eCEJU8mtmBp3B+v9gmV0CyMNY/nhU7c95h
PTMg64eeY8bol2Gy6UR/uD3u4bPE2yJ42E8yA7qjBd4j3qgwueEHW/Mb/jHLt9R8
PPXY/vWTXz/jQl8aN3z0TykmQ+9cG6dQZZBFGJiPC4VdnXnPmI4YaRPXnKnjB5Fy
CaHbA6h24sArXw72hpwQQ+qLZFV6NyFp6PZXVQJXdDJhv8StH2iMiE2Sw7nivimd
AEo7KatfSQKRzSyIniTeKVXgb/oWY6gyioNGIV3NuxsQAL6fsIMo6AKzZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPP4jp0GuwEWA+HxdHwRT0p2/ERmMB8GA1UdIwQY
MBaAFLWFItrGvN6MSBMzWZEyoWIA5qW+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFlVaTJzYTgzb3hJRXpOWmtUS2hZZ0RtcGI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84YjVkMmEtNGJjNC00MDZmLTk3ZDUt
YmEzOTQ3YzliMjJiLzEvdFlVaTJzYTgzb3hJRXpOWmtUS2hZZ0RtcGI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC84YjVkMmEtNGJjNC00MDZmLTk3ZDUtYmEzOTQ3YzliMjJi
LzEvdFlVaTJzYTgzb3hJRXpOWmtUS2hZZ0RtcGI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbGntlkiV
HBPLsBp9dTNiihxFz4rYfbGiPDGimCZuFm7J6NfQqWoBBR+te6rK3/Gi07xnfwTA
i+4ABN5mB+U8NlcE7Sjb6joT8cw/MMpyaPsFi1Y/i/pQSQ3mDz0Sr3kmBbU9jwwa
vIPipRZp5hgH6SQmpmJNZWJS2sU85Ie/BLEFSkpOGxU/4QVzLJRXW5u3Jy6XbelM
1gMwRPd8wrl/k0V5eDKSDffTybctiMrufQ30BDfU3NdjzDZmVaxy047XUUa45wi9
YYfG5DFlIl9M/vS6N7+8vwaDX50YHG4FztxxFipSerI0KaNCllLs42FIxJSEmko8
x5VLQqvcatFbEw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:56 2025 by rpki-client