Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json)
Hash identifier: 3AsvRY6pok4PVBupSsziUat/9GvA/3/N5RDhxqovi68=
Subject key identifier: 54:8B:33:F4:82:B2:4A:15:1A:4E:86:A5:FD:17:40:EB:46:1D:13:DC
Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Certificate serial: 0198D850852B3511482B7D3473741601B05A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
Manifest number: 1498
Signing time: Sat 23 Aug 2025 19:03:32 +0000
Manifest this update: Sat 23 Aug 2025 19:03:32 +0000
Manifest next update: Sun 24 Aug 2025 19:03:32 +0000
Files and hashes: 1: hDoqXFR8UibPRuqFY2xn-m_-15I.roa (hash: qknu8HOpVZZ1hKraF3WMV/fgLgKt1U80KJN/d09ixdI=)
2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: PTImBIi9bvABfNU4u5IvFBJnHgIvtPfeLAY8FMVsIzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:50:85:2b:35:11:48:2b:7d:34:73:74:16:01:b0:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Validity
Not Before: Aug 23 19:03:32 2025 GMT
Not After : Aug 24 19:03:32 2025 GMT
Subject: CN=548b33f482b24a151a4e86a5fd1740eb461d13dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:55:2d:8e:d7:96:89:92:c6:d8:92:59:c1:db:
98:65:23:d2:48:02:f2:79:56:6e:66:b4:61:8f:48:
69:06:77:45:d1:93:12:ae:49:b0:6e:e8:58:67:a0:
59:46:bd:6a:5f:55:e6:2a:e3:d6:bf:46:fd:38:c3:
d7:54:6a:ca:86:3a:c5:1d:fb:4a:be:46:b1:dc:b6:
73:dd:60:c7:aa:7a:9f:a5:14:ed:81:32:f9:3d:b6:
d7:05:ff:ed:46:9f:1d:b4:a2:0e:10:eb:06:f5:9d:
cc:90:87:ed:6f:6c:4a:38:5d:fe:b9:f1:f9:be:b2:
96:36:57:8f:52:fd:f7:1c:4a:a9:b7:e5:c4:c1:38:
6f:fd:a1:80:90:5f:17:65:49:37:a7:2a:eb:37:1a:
91:16:7e:e1:54:c9:6b:6d:da:0c:fa:c9:e9:53:73:
84:7b:15:82:44:e5:42:e1:1b:5a:93:9f:da:ac:ec:
a1:17:ea:ae:6e:c6:6c:0c:3a:f6:86:e4:ce:b6:dd:
1d:60:31:2f:49:6e:98:49:c1:d3:03:cf:10:55:e4:
ef:9c:74:2c:76:84:65:6f:8a:9b:b8:dd:93:43:ee:
2e:f9:92:e8:99:64:1f:a9:0d:2b:f3:54:43:20:f8:
00:e1:50:e8:47:ce:57:4e:dd:cd:9a:03:6e:90:da:
28:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:8B:33:F4:82:B2:4A:15:1A:4E:86:A5:FD:17:40:EB:46:1D:13:DC
X509v3 Authority Key Identifier:
keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:1d:21:90:77:cc:6e:b6:1d:8a:bc:3d:3c:4f:ad:8b:01:73:
42:7d:9a:26:ad:62:4b:5e:d5:50:6a:55:d2:f2:b4:4e:88:66:
33:28:55:d2:1d:1e:be:96:6c:16:8a:ee:d8:80:c6:b9:7b:be:
9a:07:28:f8:ca:8f:68:7a:48:17:fb:07:90:76:52:cd:17:29:
03:cd:39:47:11:fc:01:75:23:2b:e0:b2:bd:44:32:33:21:50:
b8:f6:cf:5b:b6:c9:7f:09:83:55:3d:2d:5f:a1:53:46:84:21:
51:8c:d7:e6:2b:0c:48:e1:0e:f4:e6:e9:8b:49:f7:73:6c:3c:
fd:89:17:85:10:58:a2:73:26:75:ec:c9:2a:1f:0b:f3:4c:db:
5a:77:b1:8c:c7:c0:b9:ef:9f:b4:90:d8:4a:13:c2:a4:31:6f:
fb:26:01:3d:7d:34:2d:ab:eb:98:fc:28:3a:a0:94:bd:a6:a2:
99:2e:43:f1:d6:11:31:78:a7:c0:5f:90:6c:3f:48:c4:cf:b7:
2f:5f:47:6c:9f:a7:dc:f3:ab:82:bf:c2:e0:76:63:12:2a:fd:
fb:2d:9e:e5:3b:15:d1:57:02:fa:b4:74:a1:39:ed:51:bf:cc:
5f:90:8f:7c:37:5d:04:77:8f:2f:9d:c7:1e:27:eb:c2:36:aa:
8c:2b:e8:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjYUIUrNRFIK300c3QWAbBaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxZDJlNjgxZmYyM2RkZGYzZDUxNzg1OGUxYzY0YTFkYWQy
OTg3MjkwHhcNMjUwODIzMTkwMzMyWhcNMjUwODI0MTkwMzMyWjAzMTEwLwYDVQQD
Eyg1NDhiMzNmNDgyYjI0YTE1MWE0ZTg2YTVmZDE3NDBlYjQ2MWQxM2RjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzFUtjteWiZLG2JJZwduYZSPSSALy
eVZuZrRhj0hpBndF0ZMSrkmwbuhYZ6BZRr1qX1XmKuPWv0b9OMPXVGrKhjrFHftK
vkax3LZz3WDHqnqfpRTtgTL5PbbXBf/tRp8dtKIOEOsG9Z3MkIftb2xKOF3+ufH5
vrKWNlePUv33HEqpt+XEwThv/aGAkF8XZUk3pyrrNxqRFn7hVMlrbdoM+snpU3OE
exWCROVC4Rtak5/arOyhF+qubsZsDDr2huTOtt0dYDEvSW6YScHTA88QVeTvnHQs
doRlb4qbuN2TQ+4u+ZLomWQfqQ0r81RDIPgA4VDoR85XTt3NmgNukNooVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFSLM/SCskoVGk6Gpf0XQOtGHRPcMB8GA1UdIwQY
MBaAFLHS5oH/I93fPVF4WOHGSh2tKYcpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2RMbWdmOGozZDg5VVhoWTRjWktIYTBwaHlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9kNTY4ZWQtMTc4MC00ZDYwLWE2Zjct
NWE4MzYwZGVhM2EzLzEvc2RMbWdmOGozZDg5VVhoWTRjWktIYTBwaHlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy9kNTY4ZWQtMTc4MC00ZDYwLWE2ZjctNWE4MzYwZGVhM2Ez
LzEvc2RMbWdmOGozZDg5VVhoWTRjWktIYTBwaHlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUB0hkHfM
brYdirw9PE+tiwFzQn2aJq1iS17VUGpV0vK0TohmMyhV0h0evpZsForu2IDGuXu+
mgco+MqPaHpIF/sHkHZSzRcpA805RxH8AXUjK+CyvUQyMyFQuPbPW7bJfwmDVT0t
X6FTRoQhUYzX5isMSOEO9Obpi0n3c2w8/YkXhRBYonMmdezJKh8L80zbWnexjMfA
ue+ftJDYShPCpDFv+yYBPX00LavrmPwoOqCUvaaimS5D8dYRMXinwF+QbD9IxM+3
L19HbJ+n3POrgr/C4HZjEir9+y2e5TsV0VcC+rR0oTntUb/MX5CPfDddBHePL53H
HifrwjaqjCvoKw==
-----END CERTIFICATE-----
Generated at Sun Aug 24 00:25:36 2025 by rpki-client