Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
File: rCGhE9G6AdEH_feRMIwKUfPQbdo.mft (raw, json)
Hash identifier: YBwKN1qREAvp/dLSOHvmCqaEnE8OPGn1TF+5MvpjP58=
Subject key identifier: 27:26:E5:4F:3C:CB:BE:75:EE:63:EC:1C:72:70:20:07:EB:68:32:80
Authority key identifier: AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA
Certificate issuer: /CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda
Certificate serial: 0198D70608759597060ABA8C3C29A70344A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
Manifest number: 0533
Signing time: Sat 23 Aug 2025 13:02:33 +0000
Manifest this update: Sat 23 Aug 2025 13:02:33 +0000
Manifest next update: Sun 24 Aug 2025 13:02:33 +0000
Files and hashes: 1: 0Yi_JnLw94TXhrC5nYi7nz8aE9Q.roa (hash: PcfAm6zv9EFMWgISV3l4XmKFXD7W1Vvh/DKcICx2Ck4=)
2: rCGhE9G6AdEH_feRMIwKUfPQbdo.crl (hash: GN3BDmXK8weMeLMx/QOfwFHWx9iJSuCihQ6WZZJ0hwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:06:08:75:95:97:06:0a:ba:8c:3c:29:a7:03:44:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda
Validity
Not Before: Aug 23 13:02:33 2025 GMT
Not After : Aug 24 13:02:33 2025 GMT
Subject: CN=2726e54f3ccbbe75ee63ec1c72702007eb683280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f2:49:2c:59:10:75:a8:e4:6b:67:37:b9:37:
e0:dd:b0:0f:63:07:89:be:49:ca:a3:c0:93:c3:2a:
20:b5:52:88:e8:00:7f:8b:2c:a1:9a:73:ac:e7:fd:
d5:9b:c4:cc:33:7e:14:e9:33:e6:54:f7:b5:45:2e:
f8:c9:25:d5:69:c6:94:90:40:9e:e3:9c:c1:8a:ea:
b6:90:69:3a:a7:8a:ff:a2:23:39:59:78:23:46:8e:
fa:b7:de:86:67:62:0d:15:56:c2:8d:f3:31:0e:26:
66:08:49:91:e1:d5:4a:59:a1:19:f7:a6:9b:bc:81:
74:01:ff:cb:e2:26:2d:fd:df:22:95:45:e8:e6:9d:
13:10:c4:47:8f:54:89:48:89:69:7c:5c:de:af:86:
d5:c0:ef:cd:b5:dd:9c:15:45:d4:4c:3e:e1:e8:a8:
85:77:ef:e3:6c:d9:aa:9f:6d:07:1b:0b:6b:90:a7:
07:00:28:58:8a:ec:12:e6:a9:8b:2c:41:f3:51:a6:
c0:d7:8f:15:bb:01:c9:91:2b:f2:3a:b6:c3:49:fb:
65:75:f6:b7:f1:ed:25:e5:35:3b:d5:15:de:c8:b1:
1b:9a:c4:da:88:17:1c:a4:41:7b:e8:3e:6e:d0:c6:
9b:7e:f4:0e:14:50:46:b0:a7:25:23:bf:27:4c:f8:
9b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:26:E5:4F:3C:CB:BE:75:EE:63:EC:1C:72:70:20:07:EB:68:32:80
X509v3 Authority Key Identifier:
keyid:AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:85:dd:b7:4c:ca:74:55:67:d3:ba:fe:73:29:f8:9b:f1:b2:
2e:4c:54:ca:67:81:9d:96:dc:91:f4:0e:43:31:ac:79:7e:42:
fd:e8:a6:40:92:b5:e3:99:07:a0:6e:06:bf:62:29:f8:c2:26:
2e:df:a9:63:7e:cb:b3:e5:40:2a:86:56:ad:0d:06:b5:41:c4:
b5:61:f6:96:2d:7a:d8:22:34:8d:88:dd:a0:dd:54:46:5c:99:
42:ee:4f:6a:6c:f5:a9:94:9b:f8:f1:1b:fc:01:ea:42:ca:3e:
e4:46:85:9e:f0:c5:5b:db:00:d7:85:83:5c:20:6a:cd:2d:41:
d7:75:1e:8f:3e:75:f5:93:12:d0:4a:5d:fb:86:b4:4b:00:ca:
2b:6f:34:c0:6b:dc:17:dc:58:ca:ba:d4:d2:f7:96:98:80:2a:
4e:7d:d2:ea:58:87:1c:53:e2:5c:29:5b:a5:3d:d1:06:1a:62:
21:9f:e7:af:79:15:5f:a4:9c:a2:07:35:9a:97:90:d4:e8:e9:
28:33:77:41:8f:60:73:ad:cc:c5:a1:0b:d5:76:84:57:9a:47:
2d:e1:1a:1b:82:c4:ec:06:0a:f7:7c:33:19:51:d4:ef:17:2c:
15:21:48:24:9e:fa:20:8d:37:f2:ca:ad:cf:01:6e:f7:30:a2:
a6:91:39:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXBgh1lZcGCrqMPCmnA0SoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjMjFhMTEzZDFiYTAxZDEwN2ZkZjc5MTMwOGMwYTUxZjNk
MDZkZGEwHhcNMjUwODIzMTMwMjMzWhcNMjUwODI0MTMwMjMzWjAzMTEwLwYDVQQD
EygyNzI2ZTU0ZjNjY2JiZTc1ZWU2M2VjMWM3MjcwMjAwN2ViNjgzMjgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPJJLFkQdajka2c3uTfg3bAPYweJ
vknKo8CTwyogtVKI6AB/iyyhmnOs5/3Vm8TMM34U6TPmVPe1RS74ySXVacaUkECe
45zBiuq2kGk6p4r/oiM5WXgjRo76t96GZ2INFVbCjfMxDiZmCEmR4dVKWaEZ96ab
vIF0Af/L4iYt/d8ilUXo5p0TEMRHj1SJSIlpfFzer4bVwO/Ntd2cFUXUTD7h6KiF
d+/jbNmqn20HGwtrkKcHAChYiuwS5qmLLEHzUabA148VuwHJkSvyOrbDSftldfa3
8e0l5TU71RXeyLEbmsTaiBccpEF76D5u0MabfvQOFFBGsKclI78nTPib1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCcm5U88y7517mPsHHJwIAfraDKAMB8GA1UdIwQY
MBaAFKwhoRPRugHRB/33kTCMClHz0G3aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckNHaEU5RzZBZEVIX2ZlUk1Jd0tVZlBRYmRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My81ODkzZjctYjRmMS00OTYxLTk0MjYt
ZmQ3M2I4MDgzM2I3LzEvckNHaEU5RzZBZEVIX2ZlUk1Jd0tVZlBRYmRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My81ODkzZjctYjRmMS00OTYxLTk0MjYtZmQ3M2I4MDgzM2I3
LzEvckNHaEU5RzZBZEVIX2ZlUk1Jd0tVZlBRYmRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnIXdt0zK
dFVn07r+cyn4m/GyLkxUymeBnZbckfQOQzGseX5C/eimQJK145kHoG4Gv2Ip+MIm
Lt+pY37Ls+VAKoZWrQ0GtUHEtWH2li162CI0jYjdoN1URlyZQu5Pamz1qZSb+PEb
/AHqQso+5EaFnvDFW9sA14WDXCBqzS1B13Uejz519ZMS0Epd+4a0SwDKK280wGvc
F9xYyrrU0veWmIAqTn3S6liHHFPiXClbpT3RBhpiIZ/nr3kVX6Scogc1mpeQ1Ojp
KDN3QY9gc63MxaEL1XaEV5pHLeEaG4LE7AYK93wzGVHU7xcsFSFIJJ76II038sqt
zwFu9zCippE5vg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 18:35:30 2025 by rpki-client