Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
File: FMFDiPKGLX4nqH_m9gHjTzRXI04.mft (raw, json)
Hash identifier: Hv4xbISjr7y0FRSYZacA9Oq0HdbCOgrSsFD9gouwk4s=
Subject key identifier: 78:6A:D6:02:25:1B:A8:90:27:49:13:47:3F:63:87:DA:57:75:5B:72
Authority key identifier: 14:C1:43:88:F2:86:2D:7E:27:A8:7F:E6:F6:01:E3:4F:34:57:23:4E
Certificate issuer: /CN=14c14388f2862d7e27a87fe6f601e34f3457234e
Certificate serial: 0198D6CD9D8791F0FF8CAA6BA5E13132F12D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FMFDiPKGLX4nqH_m9gHjTzRXI04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
Manifest number: 0AC3
Signing time: Sat 23 Aug 2025 12:00:56 +0000
Manifest this update: Sat 23 Aug 2025 12:00:56 +0000
Manifest next update: Sun 24 Aug 2025 12:00:56 +0000
Files and hashes: 1: FMFDiPKGLX4nqH_m9gHjTzRXI04.crl (hash: khD9m0hTGy8/BLFrTC0tXHm1WiqAOk9+D59ut8ppgvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
rsync://rpki.ripe.net/repository/DEFAULT/FMFDiPKGLX4nqH_m9gHjTzRXI04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:9d:87:91:f0:ff:8c:aa:6b:a5:e1:31:32:f1:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14c14388f2862d7e27a87fe6f601e34f3457234e
Validity
Not Before: Aug 23 12:00:56 2025 GMT
Not After : Aug 24 12:00:56 2025 GMT
Subject: CN=786ad602251ba890274913473f6387da57755b72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e4:e1:12:f4:9c:86:dc:88:05:60:30:75:a2:
59:f9:cb:ca:33:70:eb:68:30:7d:94:2a:2a:77:87:
0f:5d:03:87:62:76:17:5f:b6:22:f3:94:4a:0a:e6:
e3:9b:4f:39:ae:7e:9e:98:54:3b:fa:40:3e:e5:26:
90:7d:a1:5b:c8:58:95:94:6a:d4:9f:3b:13:cd:18:
31:8e:f0:d3:8e:aa:70:4d:ef:58:a8:f9:8f:11:54:
91:32:2f:a5:5c:6f:a3:f7:be:c3:1f:64:bf:74:a2:
e8:4b:20:c8:fb:30:40:57:c9:dd:c4:67:c5:b6:cf:
9c:8c:9a:29:eb:ea:80:fd:b3:c0:25:e5:ce:fe:51:
54:ad:94:4f:62:92:81:f5:1f:4e:ef:5f:21:10:5a:
cc:86:14:97:13:b5:84:0a:25:43:31:d6:b3:d2:2c:
f8:b0:8b:e2:6b:a9:db:a4:08:b0:4f:af:24:7e:40:
83:5d:e4:be:6d:31:8d:7c:60:9a:a5:17:94:43:2d:
f4:7c:dd:5b:38:ce:b9:23:ef:fe:19:93:2d:5d:3f:
c1:48:40:6c:7d:4d:5b:9e:73:5f:21:f5:8c:fa:7b:
af:fb:7f:6b:14:ac:4c:38:73:f0:6c:9e:61:6a:54:
5e:fd:be:5d:cc:70:04:62:e9:b9:c2:bb:cc:fe:29:
8b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:6A:D6:02:25:1B:A8:90:27:49:13:47:3F:63:87:DA:57:75:5B:72
X509v3 Authority Key Identifier:
keyid:14:C1:43:88:F2:86:2D:7E:27:A8:7F:E6:F6:01:E3:4F:34:57:23:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMFDiPKGLX4nqH_m9gHjTzRXI04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:8b:74:5d:26:3a:f8:47:b2:79:c5:5a:db:95:44:95:cb:48:
27:9e:86:2d:5b:31:0d:83:23:1c:84:5d:72:e3:c4:84:c3:fb:
04:e8:50:9b:0c:a5:48:8e:0b:cc:c2:3e:ee:0a:f9:9a:18:b6:
ee:2b:13:5c:8a:29:42:9e:a3:5b:c2:06:02:9e:e9:1c:35:37:
8c:ee:97:03:08:ca:02:f4:04:f8:ea:e9:d8:e1:0b:db:d4:08:
00:ed:08:d4:7e:8b:9b:ee:fa:03:54:32:bd:fb:c3:e7:d2:4b:
91:16:12:0b:4e:fb:73:9c:76:07:a9:e9:d0:78:2b:55:85:94:
65:9d:41:36:3c:ba:42:b3:22:53:52:4e:5b:30:8d:31:b0:61:
a1:07:e2:47:f0:18:61:56:82:d4:25:c4:8d:f2:a6:79:dc:4d:
28:81:36:53:7b:68:bf:25:87:9b:3a:e2:2a:31:00:44:eb:49:
16:00:cf:04:b2:76:f9:04:3a:14:09:07:4b:99:99:37:d0:ff:
2f:ff:b7:d6:30:52:71:30:5c:30:f4:98:55:d0:46:0a:48:57:
f8:bd:e8:d6:6d:2c:56:fa:fa:f7:44:a5:b5:41:e9:8a:d3:00:
7c:95:f0:06:d1:f6:42:41:ca:ee:0a:63:f3:63:9e:33:d6:f4:
bf:2d:b1:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzZ2HkfD/jKprpeExMvEtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0YzE0Mzg4ZjI4NjJkN2UyN2E4N2ZlNmY2MDFlMzRmMzQ1
NzIzNGUwHhcNMjUwODIzMTIwMDU2WhcNMjUwODI0MTIwMDU2WjAzMTEwLwYDVQQD
Eyg3ODZhZDYwMjI1MWJhODkwMjc0OTEzNDczZjYzODdkYTU3NzU1YjcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+ThEvSchtyIBWAwdaJZ+cvKM3Dr
aDB9lCoqd4cPXQOHYnYXX7Yi85RKCubjm085rn6emFQ7+kA+5SaQfaFbyFiVlGrU
nzsTzRgxjvDTjqpwTe9YqPmPEVSRMi+lXG+j977DH2S/dKLoSyDI+zBAV8ndxGfF
ts+cjJop6+qA/bPAJeXO/lFUrZRPYpKB9R9O718hEFrMhhSXE7WECiVDMdaz0iz4
sIvia6nbpAiwT68kfkCDXeS+bTGNfGCapReUQy30fN1bOM65I+/+GZMtXT/BSEBs
fU1bnnNfIfWM+nuv+39rFKxMOHPwbJ5halRe/b5dzHAEYum5wrvM/imLxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHhq1gIlG6iQJ0kTRz9jh9pXdVtyMB8GA1UdIwQY
MBaAFBTBQ4jyhi1+J6h/5vYB4080VyNOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRk1GRGlQS0dMWDRucUhfbTlnSGpUelJYSTA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9iYTZhMGYtYjljNy00ZjQwLTllM2Mt
ODhhNGJlN2E0Y2IzLzEvRk1GRGlQS0dMWDRucUhfbTlnSGpUelJYSTA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9iYTZhMGYtYjljNy00ZjQwLTllM2MtODhhNGJlN2E0Y2Iz
LzEvRk1GRGlQS0dMWDRucUhfbTlnSGpUelJYSTA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFIt0XSY6
+EeyecVa25VElctIJ56GLVsxDYMjHIRdcuPEhMP7BOhQmwylSI4LzMI+7gr5mhi2
7isTXIopQp6jW8IGAp7pHDU3jO6XAwjKAvQE+Orp2OEL29QIAO0I1H6Lm+76A1Qy
vfvD59JLkRYSC077c5x2B6np0HgrVYWUZZ1BNjy6QrMiU1JOWzCNMbBhoQfiR/AY
YVaC1CXEjfKmedxNKIE2U3tovyWHmzriKjEAROtJFgDPBLJ2+QQ6FAkHS5mZN9D/
L/+31jBScTBcMPSYVdBGCkhX+L3o1m0sVvr690SltUHpitMAfJXwBtH2QkHK7gpj
82OeM9b0vy2xew==
-----END CERTIFICATE-----
Generated at Sat Aug 23 18:31:23 2025 by rpki-client