Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.mft
File: MTZAKhRELms6FTnWQlASjc3R7Ns.mft (raw, json)
Hash identifier: iZ4162Zv9B8BgJ8h+tREgmRuGxU5O20Jij54Qz2MD7M=
Subject key identifier: 3F:96:3C:66:51:4F:0D:45:F3:23:12:A9:3E:B5:04:DE:3D:FE:5C:B0
Authority key identifier: 31:36:40:2A:14:44:2E:6B:3A:15:39:D6:42:50:12:8D:CD:D1:EC:DB
Certificate issuer: /CN=3136402a14442e6b3a1539d64250128dcdd1ecdb
Certificate serial: 0198D660C70179618B8FA841BC33A982DA8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTZAKhRELms6FTnWQlASjc3R7Ns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.mft
Manifest number: 01DB
Signing time: Sat 23 Aug 2025 10:02:03 +0000
Manifest this update: Sat 23 Aug 2025 10:02:03 +0000
Manifest next update: Sun 24 Aug 2025 10:02:03 +0000
Files and hashes: 1: MTZAKhRELms6FTnWQlASjc3R7Ns.crl (hash: UnZz4xkCbqkwf/n/V0UITj6rHRttMwCkqxcdPj2vf/Q=)
2: gk7tvvpNQKzq016DYIQrQnI1zIg.roa (hash: GqU+/Xvx9R7K2mDYSrVU8YpXujBinhqdZQ6UcdPTRQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.mft
rsync://rpki.ripe.net/repository/DEFAULT/MTZAKhRELms6FTnWQlASjc3R7Ns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:c7:01:79:61:8b:8f:a8:41:bc:33:a9:82:da:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3136402a14442e6b3a1539d64250128dcdd1ecdb
Validity
Not Before: Aug 23 10:02:03 2025 GMT
Not After : Aug 24 10:02:03 2025 GMT
Subject: CN=3f963c66514f0d45f32312a93eb504de3dfe5cb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0d:02:06:2b:d0:e0:e0:e7:76:04:0c:35:6d:
30:0a:66:97:d4:df:94:ea:5d:a7:47:78:30:17:2d:
93:9a:e2:17:cf:8b:c2:87:e8:5e:51:a8:25:38:fb:
81:12:8d:94:be:91:93:0b:2a:54:57:02:76:d8:a7:
49:29:6e:89:0e:4e:9f:dd:56:81:8c:07:11:7e:d3:
92:83:6d:60:bb:55:59:1c:02:e3:e4:a2:6b:1e:01:
40:5b:55:ac:ac:9e:1f:01:b4:8e:a5:45:79:b1:f0:
db:57:de:df:39:f9:8a:80:8e:62:cb:3c:b5:9b:4e:
86:df:97:da:1b:de:8e:72:9a:99:15:44:95:8f:1f:
f9:85:97:60:33:da:85:8a:54:bb:e9:fc:78:76:5b:
83:53:39:b0:25:73:28:c6:5c:09:8b:79:5f:88:87:
2a:bd:ad:ba:5b:58:a5:9c:5c:30:30:61:1b:1a:a9:
67:a5:02:d7:86:60:84:2f:f7:af:61:85:8a:0b:a5:
31:cb:70:e8:6f:57:0d:39:30:bb:13:d7:4a:4f:b3:
b0:9e:ac:50:5f:dd:d8:9a:6d:ea:ee:c5:79:4a:aa:
68:f8:46:73:3c:2a:38:3b:f9:9a:87:9a:9f:4b:43:
02:23:29:58:79:0d:91:1e:7e:a7:11:96:bd:28:88:
5a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:96:3C:66:51:4F:0D:45:F3:23:12:A9:3E:B5:04:DE:3D:FE:5C:B0
X509v3 Authority Key Identifier:
keyid:31:36:40:2A:14:44:2E:6B:3A:15:39:D6:42:50:12:8D:CD:D1:EC:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTZAKhRELms6FTnWQlASjc3R7Ns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:5b:91:8c:d1:af:01:58:3d:5b:bd:5f:78:e6:a5:54:65:fa:
a6:fd:00:67:6b:fd:41:41:48:41:bc:e0:c5:ab:7d:bc:bd:63:
4d:6c:9c:e1:a2:c6:c1:c4:d8:e8:73:2e:b1:bc:90:79:de:70:
e3:d0:de:61:64:27:99:55:4f:72:62:59:c0:88:21:c7:14:83:
41:30:cc:fc:e6:f7:d7:74:2c:9c:65:a3:ce:bd:d8:a6:6f:09:
5a:f5:35:ff:a7:83:3f:fd:46:61:04:db:5e:f8:d6:e6:58:db:
66:c7:c5:ad:be:46:4a:2e:73:c2:d3:14:e2:57:ac:8c:6e:a9:
9a:5e:9a:64:5e:40:d3:23:bc:78:55:e4:11:55:68:6f:e0:c5:
c3:e2:c5:8b:2f:2d:5f:8a:ae:85:b1:35:a2:db:ae:04:ca:6c:
f7:e8:2e:ec:24:be:c6:25:d5:46:52:7a:29:20:49:1b:96:76:
fb:4d:bc:90:52:31:e7:0a:37:d4:76:b9:d4:53:ab:43:d8:34:
a2:f3:27:2f:14:19:17:fc:58:c7:35:d6:3c:ca:22:4c:f6:7d:
21:b7:4f:a3:33:69:79:9f:a1:7c:32:cb:2f:12:79:f6:3b:42:
af:50:6a:e5:42:e5:aa:71:ab:45:bd:a5:5d:1c:55:7c:45:d4:
d2:fa:80:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYMcBeWGLj6hBvDOpgtqOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxMzY0MDJhMTQ0NDJlNmIzYTE1MzlkNjQyNTAxMjhkY2Rk
MWVjZGIwHhcNMjUwODIzMTAwMjAzWhcNMjUwODI0MTAwMjAzWjAzMTEwLwYDVQQD
EygzZjk2M2M2NjUxNGYwZDQ1ZjMyMzEyYTkzZWI1MDRkZTNkZmU1Y2IwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAog0CBivQ4ODndgQMNW0wCmaX1N+U
6l2nR3gwFy2TmuIXz4vCh+heUaglOPuBEo2UvpGTCypUVwJ22KdJKW6JDk6f3VaB
jAcRftOSg21gu1VZHALj5KJrHgFAW1WsrJ4fAbSOpUV5sfDbV97fOfmKgI5iyzy1
m06G35faG96OcpqZFUSVjx/5hZdgM9qFilS76fx4dluDUzmwJXMoxlwJi3lfiIcq
va26W1ilnFwwMGEbGqlnpQLXhmCEL/evYYWKC6Uxy3Dob1cNOTC7E9dKT7OwnqxQ
X93Ymm3q7sV5Sqpo+EZzPCo4O/mah5qfS0MCIylYeQ2RHn6nEZa9KIhaAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD+WPGZRTw1F8yMSqT61BN49/lywMB8GA1UdIwQY
MBaAFDE2QCoURC5rOhU51kJQEo3N0ezbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVRaQUtoUkVMbXM2RlRuV1FsQVNqYzNSN05zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9iMDA5Y2YtNTljYS00M2JjLWJkNTEt
YzBhNDI0ZTY1OTczLzEvTVRaQUtoUkVMbXM2RlRuV1FsQVNqYzNSN05zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9iMDA5Y2YtNTljYS00M2JjLWJkNTEtYzBhNDI0ZTY1OTcz
LzEvTVRaQUtoUkVMbXM2RlRuV1FsQVNqYzNSN05zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMFuRjNGv
AVg9W71feOalVGX6pv0AZ2v9QUFIQbzgxat9vL1jTWyc4aLGwcTY6HMusbyQed5w
49DeYWQnmVVPcmJZwIghxxSDQTDM/Ob313QsnGWjzr3Ypm8JWvU1/6eDP/1GYQTb
XvjW5ljbZsfFrb5GSi5zwtMU4lesjG6pml6aZF5A0yO8eFXkEVVob+DFw+LFiy8t
X4quhbE1otuuBMps9+gu7CS+xiXVRlJ6KSBJG5Z2+028kFIx5wo31Ha51FOrQ9g0
ovMnLxQZF/xYxzXWPMoiTPZ9IbdPozNpeZ+hfDLLLxJ59jtCr1Bq5ULlqnGrRb2l
XRxVfEXU0vqAOw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 19:01:47 2025 by rpki-client