Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: fXtLBYCrHNwqUzkhGnVprCAwv+s7M3OcJmnGMl2Y8ds=
Subject key identifier: FB:78:85:73:1B:CD:65:0F:F6:12:AF:5A:BD:3A:5D:2D:2E:EF:52:27
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 0198D8848352E5B937D5A35F2B21258D5DC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 20:00:19 +0000
Manifest this update: Sat 23 Aug 2025 20:00:19 +0000
Manifest next update: Sun 24 Aug 2025 20:00:19 +0000
Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: 8b5ErEKFYpklq2HllxvsMg+TleuUe6F7sC9grCEWLSo=)
2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:84:83:52:e5:b9:37:d5:a3:5f:2b:21:25:8d:5d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Aug 23 20:00:19 2025 GMT
Not After : Aug 24 20:00:19 2025 GMT
Subject: CN=fb7885731bcd650ff612af5abd3a5d2d2eef5227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6e:74:6b:c9:4d:40:ec:76:82:86:77:b4:ed:
36:e6:bc:22:64:5f:89:a6:71:df:ff:a5:18:52:b4:
47:22:2a:08:4f:ee:5b:e7:86:d9:18:6b:20:a5:00:
13:27:f1:3c:f7:50:1e:a5:84:89:a4:33:fb:bf:52:
dc:96:cd:b1:91:86:6f:83:cd:81:ac:7e:a3:ad:4c:
e4:5e:53:aa:0d:d8:79:fd:17:e6:29:b3:36:ac:a3:
7f:07:09:7f:80:64:d7:2e:59:43:11:95:3b:46:07:
e0:7a:3a:8d:6c:67:4a:09:bf:49:3d:06:8b:c5:b0:
2b:71:f4:7f:be:bc:ff:ec:d8:d9:24:0c:49:15:68:
4e:22:ba:d4:85:00:d8:94:2e:41:48:33:5e:6d:62:
81:59:32:24:f8:0b:35:7e:c6:dd:78:1c:4f:5a:e4:
bb:3d:74:0e:43:cf:b6:cd:0f:30:93:50:84:d8:57:
68:ca:02:4e:2f:73:c9:91:93:66:b0:5a:b7:f4:97:
6e:20:60:be:51:66:88:ab:4f:9e:c6:b4:c4:fc:6e:
5a:5f:b3:4c:c2:45:23:04:fb:9e:e1:11:fe:2a:11:
17:46:5b:7f:49:c5:1f:c1:06:59:16:be:38:bb:40:
4f:56:c1:53:ff:ea:bb:d0:7f:27:0d:95:9d:83:b0:
16:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:78:85:73:1B:CD:65:0F:F6:12:AF:5A:BD:3A:5D:2D:2E:EF:52:27
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:51:9a:08:c2:a2:86:ff:9b:7a:9a:e9:62:33:31:ed:f4:3d:
d6:91:e1:a6:c8:17:d8:2d:54:bf:5f:de:c4:24:81:e6:be:84:
24:30:92:d8:90:50:94:85:b1:88:80:71:e1:90:e4:fc:1a:0c:
33:a3:49:3d:b5:18:a2:7e:a8:0d:86:4d:21:87:82:d0:ee:fb:
52:e4:51:a1:c4:3c:98:b8:45:e2:59:1e:2c:f5:4c:04:2d:59:
01:08:ba:56:fc:8e:6f:b1:3f:88:7a:c6:e7:67:7d:85:5a:67:
40:d7:8a:b4:f5:de:01:8a:fd:6d:4b:cf:18:51:a8:a5:a8:fc:
ee:55:94:8f:58:27:62:9d:08:4c:72:f0:34:0e:d0:dc:4b:18:
5c:f5:f1:36:46:e7:ac:f5:31:57:17:e9:85:d4:ec:f8:ff:41:
92:e2:9a:0e:01:65:9b:81:1c:6c:c9:8d:36:33:d3:7b:87:dc:
a8:88:fd:86:e2:5c:3e:c5:19:15:9a:8f:5d:63:89:58:0b:bb:
26:54:76:c3:37:e6:a9:06:67:ea:05:9b:f9:6c:ec:43:f5:ca:
88:17:2b:2b:56:77:82:ed:e8:66:e9:39:cc:b9:cd:c6:d1:94:
e3:81:04:5a:44:1d:83:dc:50:cb:27:e3:e4:4b:88:c9:98:5b:
79:85:8e:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjYhINS5bk31aNfKyEljV3GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzMzkzNDNjYzZkNTFkZGI4ZTM2MzgyOTlhMWJiNDk1ZjQ1
ODA5MjEwHhcNMjUwODIzMjAwMDE5WhcNMjUwODI0MjAwMDE5WjAzMTEwLwYDVQQD
EyhmYjc4ODU3MzFiY2Q2NTBmZjYxMmFmNWFiZDNhNWQyZDJlZWY1MjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv250a8lNQOx2goZ3tO025rwiZF+J
pnHf/6UYUrRHIioIT+5b54bZGGsgpQATJ/E891AepYSJpDP7v1Lcls2xkYZvg82B
rH6jrUzkXlOqDdh5/RfmKbM2rKN/Bwl/gGTXLllDEZU7RgfgejqNbGdKCb9JPQaL
xbArcfR/vrz/7NjZJAxJFWhOIrrUhQDYlC5BSDNebWKBWTIk+As1fsbdeBxPWuS7
PXQOQ8+2zQ8wk1CE2FdoygJOL3PJkZNmsFq39JduIGC+UWaIq0+exrTE/G5aX7NM
wkUjBPue4RH+KhEXRlt/ScUfwQZZFr44u0BPVsFT/+q70H8nDZWdg7AWNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPt4hXMbzWUP9hKvWr06XS0u71InMB8GA1UdIwQY
MBaAFPM5NDzG1R3bjjY4KZobtJX0WAkhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDIt
Mzc3ZDI1YmU1OTRkLzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDItMzc3ZDI1YmU1OTRk
LzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV1GaCMKi
hv+beprpYjMx7fQ91pHhpsgX2C1Uv1/exCSB5r6EJDCS2JBQlIWxiIBx4ZDk/BoM
M6NJPbUYon6oDYZNIYeC0O77UuRRocQ8mLhF4lkeLPVMBC1ZAQi6VvyOb7E/iHrG
52d9hVpnQNeKtPXeAYr9bUvPGFGopaj87lWUj1gnYp0ITHLwNA7Q3EsYXPXxNkbn
rPUxVxfphdTs+P9BkuKaDgFlm4EcbMmNNjPTe4fcqIj9huJcPsUZFZqPXWOJWAu7
JlR2wzfmqQZn6gWb+WzsQ/XKiBcrK1Z3gu3oZuk5zLnNxtGU44EEWkQdg9xQyyfj
5EuIyZhbeYWOpw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 21:48:00 2025 by rpki-client