Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
File: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft (raw, json)
Hash identifier: pChjM/M9DefM7G1f0gsBoS78IBa7m8m1vp9/w2H7LBg=
Subject key identifier: 38:C7:A9:6E:29:A2:2D:ED:5A:D2:62:4F:9E:C7:C4:AD:55:E6:76:24
Authority key identifier: D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
Certificate issuer: /CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Certificate serial: 0198D697EA11E5FF266D022E5DD8862BB975
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
Manifest number: 138E
Signing time: Sat 23 Aug 2025 11:02:16 +0000
Manifest this update: Sat 23 Aug 2025 11:02:16 +0000
Manifest next update: Sun 24 Aug 2025 11:02:16 +0000
Files and hashes: 1: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl (hash: uMsR6QY/nS56Fznqmc/cXk4PT9Ni20gW8Bbuya0SURw=)
2: 5tz1cuLC3Spal7LSIEjI-Qlcl6U.roa (hash: XSoR4/ODhnGd0USG7NRxHx6V9kNwJuT3OUfa19EcNCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:97:ea:11:e5:ff:26:6d:02:2e:5d:d8:86:2b:b9:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Validity
Not Before: Aug 23 11:02:16 2025 GMT
Not After : Aug 24 11:02:16 2025 GMT
Subject: CN=38c7a96e29a22ded5ad2624f9ec7c4ad55e67624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:96:8d:8c:66:3c:a0:bf:3d:ac:75:c2:1c:48:
4f:0b:00:70:c1:cf:4c:d3:8e:eb:a7:50:e2:a8:fc:
5d:1c:50:2f:07:36:6e:75:b2:d1:36:f3:36:05:94:
38:fe:8b:d8:d0:ff:eb:82:cf:f4:5c:bd:e3:73:dc:
a5:e6:ef:48:bf:64:ee:30:03:c1:9e:d9:8e:70:50:
0d:1a:6d:a0:e9:83:3a:94:5a:a4:1d:81:08:cb:35:
09:4f:20:89:25:f3:54:45:3e:46:f5:63:8f:43:d9:
ce:a1:85:e6:54:98:92:b1:e6:b3:44:b9:8a:13:45:
c7:18:0b:2d:90:63:c6:c9:ea:8c:fd:62:a5:2c:bf:
ff:24:6c:86:d5:fe:d9:88:8b:60:aa:29:52:ac:e0:
05:d2:c6:b3:72:a2:4c:8a:a3:4d:08:dc:5c:b2:01:
6e:41:8c:f8:c2:78:7e:b0:d1:7a:87:95:88:0f:d9:
e6:88:80:f5:dd:de:5f:ae:8d:a8:d8:bd:5d:4b:30:
40:82:d4:ac:3e:9b:6b:7a:ae:75:69:8e:28:39:96:
ce:40:45:4b:22:d1:73:25:59:65:54:cf:68:6b:7c:
7b:fd:0a:da:af:f1:26:dd:b6:b7:a4:55:d6:32:19:
59:8a:ca:c6:24:76:9f:ff:2f:08:0c:5a:d8:3b:a2:
e4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C7:A9:6E:29:A2:2D:ED:5A:D2:62:4F:9E:C7:C4:AD:55:E6:76:24
X509v3 Authority Key Identifier:
keyid:D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:5e:b2:bf:4e:43:15:0f:30:c2:80:d6:f0:b8:5d:c8:e2:70:
d5:e5:6d:68:f2:1a:d7:5b:04:5e:04:b6:3d:01:3c:32:85:19:
a8:0b:7b:91:7d:29:76:0f:e3:57:71:6a:fc:f4:ed:2a:81:4d:
95:c9:23:9b:56:f7:ea:5d:51:6e:d5:8b:6f:88:f1:fd:e0:e2:
55:db:c2:f5:f8:d0:a0:6f:ee:1b:44:1b:b5:ff:19:ed:73:fb:
2f:db:d0:ea:ce:c2:03:db:16:02:ce:41:27:4c:54:e3:fa:4b:
6f:69:eb:1d:a6:06:6b:0d:19:b1:de:1c:cd:0c:2b:eb:21:ef:
ee:bf:c7:f1:79:bf:4a:d4:75:7c:e7:74:32:a0:04:7b:d2:3b:
84:e3:4f:f3:0d:ca:b4:7c:fe:c0:fa:ec:2e:68:4c:ef:aa:a1:
52:28:ad:4a:a2:7f:12:69:e9:22:25:70:29:f2:ed:41:59:0b:
a8:d5:e8:21:68:ca:46:1f:65:b6:2b:ea:29:0f:cb:43:6c:69:
51:39:eb:53:67:d6:81:b1:8b:42:82:28:f3:b6:12:4d:2b:b5:
ca:8f:09:25:bd:c6:58:21:ae:9e:5c:82:41:39:30:95:b5:d5:
d6:15:3a:c2:a2:17:ed:1f:a6:e8:0b:44:3a:06:42:34:3f:2f:
c2:70:e9:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWl+oR5f8mbQIuXdiGK7l1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyYjM2YWQyOGU1MjFlZGFiNGI0ZGVhMzQ5YTI3NzcyZDRi
MmE3YmUwHhcNMjUwODIzMTEwMjE2WhcNMjUwODI0MTEwMjE2WjAzMTEwLwYDVQQD
EygzOGM3YTk2ZTI5YTIyZGVkNWFkMjYyNGY5ZWM3YzRhZDU1ZTY3NjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpaNjGY8oL89rHXCHEhPCwBwwc9M
047rp1DiqPxdHFAvBzZudbLRNvM2BZQ4/ovY0P/rgs/0XL3jc9yl5u9Iv2TuMAPB
ntmOcFANGm2g6YM6lFqkHYEIyzUJTyCJJfNURT5G9WOPQ9nOoYXmVJiSseazRLmK
E0XHGAstkGPGyeqM/WKlLL//JGyG1f7ZiItgqilSrOAF0sazcqJMiqNNCNxcsgFu
QYz4wnh+sNF6h5WID9nmiID13d5fro2o2L1dSzBAgtSsPptreq51aY4oOZbOQEVL
ItFzJVllVM9oa3x7/Qrar/Em3ba3pFXWMhlZisrGJHaf/y8IDFrYO6LkowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDjHqW4poi3tWtJiT57HxK1V5nYkMB8GA1UdIwQY
MBaAFNKzatKOUh7atLTeo0mid3LUsqe+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHJOcTBvNVNIdHEwdE42alNhSjNjdFN5cDc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8zYTlhMGItZDQyNC00ZWNhLWE5Mzgt
OTJhODc3YmIxOWY3LzEvMHJOcTBvNVNIdHEwdE42alNhSjNjdFN5cDc0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8zYTlhMGItZDQyNC00ZWNhLWE5MzgtOTJhODc3YmIxOWY3
LzEvMHJOcTBvNVNIdHEwdE42alNhSjNjdFN5cDc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEF6yv05D
FQ8wwoDW8LhdyOJw1eVtaPIa11sEXgS2PQE8MoUZqAt7kX0pdg/jV3Fq/PTtKoFN
lckjm1b36l1RbtWLb4jx/eDiVdvC9fjQoG/uG0Qbtf8Z7XP7L9vQ6s7CA9sWAs5B
J0xU4/pLb2nrHaYGaw0Zsd4czQwr6yHv7r/H8Xm/StR1fOd0MqAEe9I7hONP8w3K
tHz+wPrsLmhM76qhUiitSqJ/EmnpIiVwKfLtQVkLqNXoIWjKRh9ltivqKQ/LQ2xp
UTnrU2fWgbGLQoIo87YSTSu1yo8JJb3GWCGunlyCQTkwlbXV1hU6wqIX7R+m6AtE
OgZCND8vwnDpxg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 19:48:21 2025 by rpki-client