Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
File: tRYDJr5-XNw1tcA2RBFjzSWkl00.mft (raw, json)
Hash identifier: Uwlc6S1EnYVGC9IB4X/7RPjYS+0MV5nZsEyhqhwFy88=
Subject key identifier: D6:DF:C6:A4:79:8E:BE:63:FB:17:FE:B8:5F:B2:00:F8:64:F4:97:6F
Authority key identifier: B5:16:03:26:BE:7E:5C:DC:35:B5:C0:36:44:11:63:CD:25:A4:97:4D
Certificate issuer: /CN=b5160326be7e5cdc35b5c036441163cd25a4974d
Certificate serial: 0198D5F15B9E24732AEB46E1424FA563B303
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 08:00:21 +0000
Manifest this update: Sat 23 Aug 2025 08:00:21 +0000
Manifest next update: Sun 24 Aug 2025 08:00:21 +0000
Files and hashes: 1: 8ia-FfbPiHzFeisz5Ltz_iH4NuE.roa (hash: 2vUluYbn/ZjPa8MjPMnro3n0N0IitO4q9I7893CE2pw=)
2: tRYDJr5-XNw1tcA2RBFjzSWkl00.crl (hash: CXgr1NIehTOEEC/go+No3c0X3OCinaGKtFNTuKW8hlE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:5b:9e:24:73:2a:eb:46:e1:42:4f:a5:63:b3:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5160326be7e5cdc35b5c036441163cd25a4974d
Validity
Not Before: Aug 23 08:00:21 2025 GMT
Not After : Aug 24 08:00:21 2025 GMT
Subject: CN=d6dfc6a4798ebe63fb17feb85fb200f864f4976f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:cf:7a:2e:39:ab:d9:15:e5:64:0f:81:6d:31:
fc:b7:c1:0d:9b:86:3c:a2:49:ce:3f:4a:a8:f6:12:
36:96:8b:4f:5c:ae:91:78:7a:3f:0d:e5:da:e8:82:
25:83:66:f0:7d:9f:d6:75:4c:f8:d6:01:6d:d4:16:
49:8a:b6:99:27:6b:fb:36:06:e9:3a:09:ad:94:b8:
58:a3:62:9a:ae:8e:b4:83:e7:c5:b9:b7:cf:cd:a3:
64:6a:59:9d:ab:3f:9d:60:ea:8a:7d:64:2a:94:37:
05:58:ea:8b:4c:5f:83:ce:58:17:58:d3:e9:07:12:
e9:0e:cd:a6:2d:21:0f:2b:21:9e:eb:18:27:ea:e2:
1a:14:41:90:90:27:68:ed:7a:65:1b:4d:97:23:50:
62:94:cf:f4:a0:15:a9:d0:1f:2f:2f:8e:0c:6e:3e:
4d:e9:77:cf:2f:24:40:20:6b:d2:5f:2c:71:74:53:
dd:3a:52:4b:2c:dd:a0:1a:df:c1:75:1d:7e:a0:28:
fb:11:c4:d2:c4:10:b3:f5:e5:33:1b:97:64:67:7d:
40:e6:e4:b5:83:03:08:af:3a:10:00:dc:cb:30:95:
d0:8c:cf:58:ad:c9:49:e4:55:ed:86:b4:84:94:5f:
7b:b6:39:e6:8b:0f:87:11:8d:a6:67:69:52:b0:b7:
bd:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:DF:C6:A4:79:8E:BE:63:FB:17:FE:B8:5F:B2:00:F8:64:F4:97:6F
X509v3 Authority Key Identifier:
keyid:B5:16:03:26:BE:7E:5C:DC:35:B5:C0:36:44:11:63:CD:25:A4:97:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:75:7f:1d:f0:2f:53:e5:c6:e3:ff:0d:0b:a7:6e:26:ba:8c:
37:72:65:76:ec:e3:f9:74:25:57:bb:1a:cd:dc:73:96:b2:da:
9f:e9:36:54:75:83:0a:09:db:a7:54:3f:31:65:72:9f:99:2a:
16:55:e1:b0:cd:64:f8:ca:9b:32:78:3e:ba:2d:60:5e:28:8c:
4e:e2:a4:3e:b9:44:99:a9:0e:1e:7b:11:b2:18:1d:d5:da:bd:
19:b0:3b:c1:aa:f6:4c:86:e1:b2:88:75:db:7b:14:2d:cf:83:
31:a8:c7:6a:90:99:d2:2e:11:9d:9b:50:aa:88:b8:97:70:e8:
c7:f5:58:84:84:4e:a5:29:c5:ae:ce:27:23:bb:0b:d9:3f:30:
37:3e:ef:9a:ef:c8:b8:1f:3d:90:8e:c9:3d:47:b0:b5:40:06:
f2:ab:b4:68:ae:56:5b:dc:76:e1:42:c4:1b:d0:c1:84:07:c9:
74:6b:69:58:2c:e5:9e:48:c5:19:b3:32:03:f4:60:f9:ce:32:
09:e6:76:7d:b9:b0:c7:b3:34:1e:b2:b6:f7:61:db:f3:2a:2a:
79:95:08:70:6a:a8:78:7e:db:27:d1:1c:a1:1a:b4:d2:65:f5:
f6:63:21:d8:66:cf:bf:9d:6d:24:b7:c1:53:12:d4:ff:b1:59:
d7:4d:01:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjV8VueJHMq60bhQk+lY7MDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1MTYwMzI2YmU3ZTVjZGMzNWI1YzAzNjQ0MTE2M2NkMjVh
NDk3NGQwHhcNMjUwODIzMDgwMDIxWhcNMjUwODI0MDgwMDIxWjAzMTEwLwYDVQQD
EyhkNmRmYzZhNDc5OGViZTYzZmIxN2ZlYjg1ZmIyMDBmODY0ZjQ5NzZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+M96Ljmr2RXlZA+BbTH8t8ENm4Y8
oknOP0qo9hI2lotPXK6ReHo/DeXa6IIlg2bwfZ/WdUz41gFt1BZJiraZJ2v7Ngbp
OgmtlLhYo2Karo60g+fFubfPzaNkalmdqz+dYOqKfWQqlDcFWOqLTF+DzlgXWNPp
BxLpDs2mLSEPKyGe6xgn6uIaFEGQkCdo7XplG02XI1BilM/0oBWp0B8vL44Mbj5N
6XfPLyRAIGvSXyxxdFPdOlJLLN2gGt/BdR1+oCj7EcTSxBCz9eUzG5dkZ31A5uS1
gwMIrzoQANzLMJXQjM9YrclJ5FXthrSElF97tjnmiw+HEY2mZ2lSsLe9xwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNbfxqR5jr5j+xf+uF+yAPhk9JdvMB8GA1UdIwQY
MBaAFLUWAya+flzcNbXANkQRY80lpJdNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFJZREpyNS1YTncxdGNBMlJCRmp6U1drbDAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8wZTVhYTItODQwOS00N2EwLWI0Nzkt
ZjQ4YWEyZTc1NGU1LzEvdFJZREpyNS1YTncxdGNBMlJCRmp6U1drbDAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi8wZTVhYTItODQwOS00N2EwLWI0NzktZjQ4YWEyZTc1NGU1
LzEvdFJZREpyNS1YTncxdGNBMlJCRmp6U1drbDAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATXV/HfAv
U+XG4/8NC6duJrqMN3Jlduzj+XQlV7sazdxzlrLan+k2VHWDCgnbp1Q/MWVyn5kq
FlXhsM1k+MqbMng+ui1gXiiMTuKkPrlEmakOHnsRshgd1dq9GbA7war2TIbhsoh1
23sULc+DMajHapCZ0i4RnZtQqoi4l3Dox/VYhIROpSnFrs4nI7sL2T8wNz7vmu/I
uB89kI7JPUewtUAG8qu0aK5WW9x24ULEG9DBhAfJdGtpWCzlnkjFGbMyA/Rg+c4y
CeZ2fbmwx7M0HrK292Hb8yoqeZUIcGqoeH7bJ9EcoRq00mX19mMh2GbPv51tJLfB
UxLU/7FZ100BsQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:41:11 2025 by rpki-client