Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft
File: pWT0IqqXs96coPZ5Gfv4LrH93dI.mft (raw, json)
Hash identifier: Yur0jeHOc4LLpHZ1RooQPt+RXI/2BaKlhmzZ1mN8HoA=
Subject key identifier: B2:A3:23:B3:54:57:F8:21:99:B4:19:84:BD:01:0B:86:D9:D3:97:61
Authority key identifier: A5:64:F4:22:AA:97:B3:DE:9C:A0:F6:79:19:FB:F8:2E:B1:FD:DD:D2
Certificate issuer: /CN=a564f422aa97b3de9ca0f67919fbf82eb1fdddd2
Certificate serial: 0198D6604B43FE4B986C9D213C67FE22DCDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWT0IqqXs96coPZ5Gfv4LrH93dI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft
Manifest number: 0674
Signing time: Sat 23 Aug 2025 10:01:31 +0000
Manifest this update: Sat 23 Aug 2025 10:01:31 +0000
Manifest next update: Sun 24 Aug 2025 10:01:31 +0000
Files and hashes: 1: pWT0IqqXs96coPZ5Gfv4LrH93dI.crl (hash: h2vHi7jV/i0XBDshBeiYBQQ9MdDD4Zi9cSl/OAJ40Yc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pWT0IqqXs96coPZ5Gfv4LrH93dI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:4b:43:fe:4b:98:6c:9d:21:3c:67:fe:22:dc:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a564f422aa97b3de9ca0f67919fbf82eb1fdddd2
Validity
Not Before: Aug 23 10:01:31 2025 GMT
Not After : Aug 24 10:01:31 2025 GMT
Subject: CN=b2a323b35457f82199b41984bd010b86d9d39761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f2:93:35:c1:b7:42:5f:bf:39:cb:bb:7c:5a:
7d:a9:d0:aa:18:9a:a9:50:2d:99:3d:22:c8:0a:fe:
84:b9:5b:9f:8c:43:ad:c2:72:bb:5e:49:7d:ac:dd:
a8:08:af:d6:66:9f:d5:8f:d5:97:dc:2c:0a:82:8a:
4c:bb:47:80:72:e0:1a:b8:a7:da:80:f9:69:dc:2a:
85:01:d2:97:a9:19:40:84:63:39:09:6a:30:17:ec:
e0:ee:09:98:aa:a2:92:84:f6:9f:25:09:ef:d5:62:
6f:91:2f:02:82:1a:bb:e0:88:1b:c2:f6:ea:c6:95:
d8:88:5e:8d:c9:cd:27:3e:8c:67:a5:0c:8c:5f:f4:
03:cb:14:dc:59:4e:a0:2f:9f:e5:59:91:21:9c:0b:
31:f7:f1:24:a6:97:ab:b7:8b:2b:6d:c4:7f:dd:34:
29:9b:3a:18:3b:ea:63:56:32:e8:b4:59:a9:74:2b:
b0:b9:a8:15:4d:bd:46:fc:c9:8d:5a:62:ec:71:77:
b9:e3:3a:3b:3b:76:bc:ff:ac:a1:7b:ce:a8:a6:12:
e0:36:98:32:29:30:54:b2:6c:7b:73:bc:ff:1c:cc:
2b:43:3c:fd:15:54:8d:89:f0:1b:79:ac:7e:8c:83:
2b:74:b5:73:72:ec:dd:02:4e:93:f5:50:83:42:0c:
c9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:A3:23:B3:54:57:F8:21:99:B4:19:84:BD:01:0B:86:D9:D3:97:61
X509v3 Authority Key Identifier:
keyid:A5:64:F4:22:AA:97:B3:DE:9C:A0:F6:79:19:FB:F8:2E:B1:FD:DD:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWT0IqqXs96coPZ5Gfv4LrH93dI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:3d:f4:cf:5c:05:2b:87:a2:29:9a:07:53:b3:20:b2:ca:3a:
60:89:61:63:b2:aa:01:ba:d8:78:38:ee:31:36:3e:ae:a8:78:
7c:50:93:28:ae:45:88:1d:a3:d2:ce:6d:b7:ab:01:15:7b:78:
67:c9:e8:04:e1:dc:4d:89:bb:20:2d:c7:96:de:5a:ba:6b:07:
d3:8d:9e:92:90:5e:27:4b:55:0a:bf:7a:f8:c7:a3:0d:27:17:
3f:2c:43:4c:7f:b8:96:36:c0:64:f2:ef:d5:58:fa:ba:a6:4f:
14:70:b3:a1:ac:a5:22:86:32:3b:bf:6a:e6:5c:bf:3e:17:9a:
92:84:b6:c8:ae:54:2e:50:41:f5:77:73:5e:da:0a:86:5f:fd:
45:2a:d9:d2:be:44:73:da:99:74:10:e0:d3:f4:eb:9e:e0:5e:
df:e3:d0:3c:1a:d0:47:3e:ba:90:54:54:61:2b:43:46:57:2c:
97:60:ed:be:fe:30:76:b4:91:aa:59:3f:8b:24:50:20:fb:9d:
ab:6b:08:74:fa:1f:95:51:0c:9e:a2:27:35:7e:d3:fe:12:16:
5f:ed:5e:0b:29:08:38:d2:f9:f7:ac:07:4f:39:fd:7f:c5:44:
42:7e:f4:df:f2:77:0c:0a:a4:f8:5c:f1:e6:f4:cf:9b:35:6b:
e8:88:e0:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYEtD/kuYbJ0hPGf+ItzaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1NjRmNDIyYWE5N2IzZGU5Y2EwZjY3OTE5ZmJmODJlYjFm
ZGRkZDIwHhcNMjUwODIzMTAwMTMxWhcNMjUwODI0MTAwMTMxWjAzMTEwLwYDVQQD
EyhiMmEzMjNiMzU0NTdmODIxOTliNDE5ODRiZDAxMGI4NmQ5ZDM5NzYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPKTNcG3Ql+/Ocu7fFp9qdCqGJqp
UC2ZPSLICv6EuVufjEOtwnK7Xkl9rN2oCK/WZp/Vj9WX3CwKgopMu0eAcuAauKfa
gPlp3CqFAdKXqRlAhGM5CWowF+zg7gmYqqKShPafJQnv1WJvkS8Cghq74Igbwvbq
xpXYiF6Nyc0nPoxnpQyMX/QDyxTcWU6gL5/lWZEhnAsx9/Ekppert4srbcR/3TQp
mzoYO+pjVjLotFmpdCuwuagVTb1G/MmNWmLscXe54zo7O3a8/6yhe86ophLgNpgy
KTBUsmx7c7z/HMwrQzz9FVSNifAbeax+jIMrdLVzcuzdAk6T9VCDQgzJ6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLKjI7NUV/ghmbQZhL0BC4bZ05dhMB8GA1UdIwQY
MBaAFKVk9CKql7PenKD2eRn7+C6x/d3SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFdUMElxcVhzOTZjb1BaNUdmdjRMckg5M2RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kNTllOTgtMjEwZi00YjU1LWFjNGEt
MDI2ODM4MTEwN2FmLzEvcFdUMElxcVhzOTZjb1BaNUdmdjRMckg5M2RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi9kNTllOTgtMjEwZi00YjU1LWFjNGEtMDI2ODM4MTEwN2Fm
LzEvcFdUMElxcVhzOTZjb1BaNUdmdjRMckg5M2RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgz30z1wF
K4eiKZoHU7Mgsso6YIlhY7KqAbrYeDjuMTY+rqh4fFCTKK5FiB2j0s5tt6sBFXt4
Z8noBOHcTYm7IC3Hlt5aumsH042ekpBeJ0tVCr96+MejDScXPyxDTH+4ljbAZPLv
1Vj6uqZPFHCzoaylIoYyO79q5ly/PheakoS2yK5ULlBB9XdzXtoKhl/9RSrZ0r5E
c9qZdBDg0/TrnuBe3+PQPBrQRz66kFRUYStDRlcsl2Dtvv4wdrSRqlk/iyRQIPud
q2sIdPoflVEMnqInNX7T/hIWX+1eCykIONL596wHTzn9f8VEQn703/J3DAqk+Fzx
5vTPmzVr6Ijgag==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:37:46 2025 by rpki-client