Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
File: cd9sdT6ghb7zcrOSYw90uldpbuU.mft (raw, json)
Hash identifier: dpc5GKTCsvuAz97wPY2y9VhFiIsU1cWphkDo7/KKLJg=
Subject key identifier: 2C:A0:22:B4:39:0B:28:2E:85:B9:A3:9F:C5:A7:87:15:30:0B:BD:F6
Authority key identifier: 71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5
Certificate issuer: /CN=71df6c753ea085bef372b392630f74ba57696ee5
Certificate serial: 0198D6611CCA81CF757417F1D04E7B814871
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
Manifest number: 135B
Signing time: Sat 23 Aug 2025 10:02:25 +0000
Manifest this update: Sat 23 Aug 2025 10:02:25 +0000
Manifest next update: Sun 24 Aug 2025 10:02:25 +0000
Files and hashes: 1: 26OroNSilLDsLnRmS90OawnRg8M.roa (hash: 2vZiL1ss373Q0TX+B8Q8SMDZKCr1m9fpyjjeqgVg0rI=)
2: cd9sdT6ghb7zcrOSYw90uldpbuU.crl (hash: HPSDTvV2yAsT4OXA0gFwNUYPatd9zsNXUE7/wB3oZ6s=)
3: yFq0JfOaNjdhRiNZMahKgBz5pBs.roa (hash: HLvs21UJM8ndMu/vC6YjvpshtGffGUPV1RHDv0ERCAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:1c:ca:81:cf:75:74:17:f1:d0:4e:7b:81:48:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71df6c753ea085bef372b392630f74ba57696ee5
Validity
Not Before: Aug 23 10:02:25 2025 GMT
Not After : Aug 24 10:02:25 2025 GMT
Subject: CN=2ca022b4390b282e85b9a39fc5a78715300bbdf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:41:b3:69:2e:44:c4:03:f1:5d:31:21:0b:25:
a0:31:1b:86:af:83:4d:a5:bc:6e:1f:0f:04:47:6b:
ce:b1:50:48:92:8a:84:9f:f6:21:60:29:c1:45:10:
23:40:bd:d6:f1:08:49:f2:f9:38:5c:7b:03:c9:a5:
5d:1e:fe:6e:b8:b3:da:6a:aa:73:76:37:42:82:1d:
c0:ab:4d:73:07:c1:96:10:38:e5:73:e1:14:a3:93:
b3:86:75:ab:ff:7a:3a:27:b3:b0:8b:c6:f8:d8:01:
09:b6:64:51:2d:31:d5:80:78:21:0c:39:fe:93:cd:
43:33:d3:7c:03:cc:92:09:4b:8e:cb:be:11:52:4f:
3a:84:01:a6:5d:f0:4b:81:e2:b7:cb:e8:db:89:48:
b2:54:6f:8f:77:fd:d1:f0:8f:8d:16:ca:2e:7a:97:
b9:ba:e2:4e:d3:1d:be:09:c0:c2:25:36:97:94:50:
0e:62:01:ba:d3:28:4d:0e:d3:1a:55:56:b9:72:b5:
4c:fc:aa:8a:f9:51:ce:ed:8a:76:3e:f1:9a:c4:cc:
15:5e:e2:04:6a:c6:bc:65:fa:6d:05:0f:3b:e0:f5:
49:5e:88:3b:03:21:fa:90:98:10:53:34:d3:3d:21:
1c:bd:08:e0:40:18:08:06:6d:f5:71:c2:67:a2:e9:
f6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:A0:22:B4:39:0B:28:2E:85:B9:A3:9F:C5:A7:87:15:30:0B:BD:F6
X509v3 Authority Key Identifier:
keyid:71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:be:78:26:25:27:95:c4:06:d5:73:75:5e:bf:ec:37:ae:97:
85:1d:93:3d:ac:30:de:03:8d:47:c5:b3:be:7b:af:d2:39:1a:
f4:eb:70:b2:06:d9:73:e1:7a:33:69:cb:ee:1d:14:00:b9:2f:
77:54:62:20:8d:7f:8a:3f:39:7c:38:10:8b:83:0a:2e:b5:1d:
0c:52:d5:e1:57:99:a0:d2:9f:25:05:f5:c7:50:b2:99:08:d7:
6b:23:0d:8f:77:46:14:6f:ca:09:fa:08:e0:cb:dd:d4:5e:08:
70:34:9c:54:30:a4:c5:89:58:c5:24:1d:2a:c6:86:03:c3:07:
7d:d1:cc:1e:bb:c3:8d:55:eb:a9:74:77:59:2d:5f:1c:30:1e:
c8:4e:c1:07:bf:77:d2:a5:78:dc:d0:9d:b7:39:de:ed:b8:69:
15:c4:82:9a:94:89:6a:9f:ec:22:a8:76:78:eb:d3:62:54:75:
64:d9:09:be:22:9f:12:71:7b:49:81:4b:f9:ce:31:7b:9f:7b:
d5:38:ca:39:5b:e5:56:20:68:26:a1:05:cd:f6:37:89:a7:23:
f1:34:3a:03:52:08:da:98:43:ed:b3:01:e1:6f:07:5c:03:f6:
66:83:47:e0:66:79:90:e2:71:ba:02:97:91:31:c1:75:11:1d:
c2:cb:2d:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYRzKgc91dBfx0E57gUhxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxZGY2Yzc1M2VhMDg1YmVmMzcyYjM5MjYzMGY3NGJhNTc2
OTZlZTUwHhcNMjUwODIzMTAwMjI1WhcNMjUwODI0MTAwMjI1WjAzMTEwLwYDVQQD
EygyY2EwMjJiNDM5MGIyODJlODViOWEzOWZjNWE3ODcxNTMwMGJiZGY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAukGzaS5ExAPxXTEhCyWgMRuGr4NN
pbxuHw8ER2vOsVBIkoqEn/YhYCnBRRAjQL3W8QhJ8vk4XHsDyaVdHv5uuLPaaqpz
djdCgh3Aq01zB8GWEDjlc+EUo5OzhnWr/3o6J7Owi8b42AEJtmRRLTHVgHghDDn+
k81DM9N8A8ySCUuOy74RUk86hAGmXfBLgeK3y+jbiUiyVG+Pd/3R8I+NFsouepe5
uuJO0x2+CcDCJTaXlFAOYgG60yhNDtMaVVa5crVM/KqK+VHO7Yp2PvGaxMwVXuIE
asa8ZfptBQ874PVJXog7AyH6kJgQUzTTPSEcvQjgQBgIBm31ccJnoun2hQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCygIrQ5Cyguhbmjn8WnhxUwC732MB8GA1UdIwQY
MBaAFHHfbHU+oIW+83KzkmMPdLpXaW7lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9jNTk0ODQtYjA3YS00Y2ExLWFiY2Qt
YTgzODQ1Y2FhYzIxLzEvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy9jNTk0ODQtYjA3YS00Y2ExLWFiY2QtYTgzODQ1Y2FhYzIx
LzEvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEL54JiUn
lcQG1XN1Xr/sN66XhR2TPaww3gONR8Wzvnuv0jka9OtwsgbZc+F6M2nL7h0UALkv
d1RiII1/ij85fDgQi4MKLrUdDFLV4VeZoNKfJQX1x1CymQjXayMNj3dGFG/KCfoI
4Mvd1F4IcDScVDCkxYlYxSQdKsaGA8MHfdHMHrvDjVXrqXR3WS1fHDAeyE7BB793
0qV43NCdtzne7bhpFcSCmpSJap/sIqh2eOvTYlR1ZNkJviKfEnF7SYFL+c4xe597
1TjKOVvlViBoJqEFzfY3iacj8TQ6A1II2phD7bMB4W8HXAP2ZoNH4GZ5kOJxugKX
kTHBdREdwsstFA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:49:03 2025 by rpki-client