Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
File: 1-puJ82fU-5UCh3AfYtSgObf2yyA.mft (raw, json)
Hash identifier: 9KPJkd6ILUO58I6MNsEx79iiWeQ5Tk4eA1hD/MLpwLA=
Subject key identifier: E7:2D:9F:32:4B:FA:A2:DE:7D:18:0E:43:F7:47:57:7C:BA:1E:E1:60
Authority key identifier: FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
Certificate issuer: /CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Certificate serial: 0198D5BB80BFEF47C3CFA435FBC1496CEE36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
Manifest number: 1457
Signing time: Sat 23 Aug 2025 07:01:31 +0000
Manifest this update: Sat 23 Aug 2025 07:01:31 +0000
Manifest next update: Sun 24 Aug 2025 07:01:31 +0000
Files and hashes: 1: 1-puJ82fU-5UCh3AfYtSgObf2yyA.crl (hash: 00ZksDKzu8dbyTYS3/19EEM/nQpeZxLDd3b0ZJWvwnI=)
2: BkhUnEeKLpdw7zqQsCW8fb_TG_I.roa (hash: krWgcFHtgzZmGIlUNG6InVr0KfezPC+cFYoPcdTkKaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:80:bf:ef:47:c3:cf:a4:35:fb:c1:49:6c:ee:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Validity
Not Before: Aug 23 07:01:31 2025 GMT
Not After : Aug 24 07:01:31 2025 GMT
Subject: CN=e72d9f324bfaa2de7d180e43f747577cba1ee160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:f5:4c:f2:d5:f0:15:8b:dd:ba:30:77:d4:61:
fd:c7:15:89:db:af:42:20:28:d4:fb:d9:00:0b:80:
71:85:80:5d:a0:31:70:40:c9:66:54:b6:c9:65:09:
d4:2b:67:8b:83:0c:1e:5d:a2:29:6b:9f:64:90:54:
66:b0:60:59:2a:91:c3:8e:14:20:d3:09:e6:1d:07:
12:b1:af:a4:5b:7e:00:ef:cc:1d:b7:69:87:35:a1:
95:19:d2:6d:21:1c:fb:b4:1e:5f:83:45:18:dc:36:
35:ab:34:ad:73:83:5b:c5:21:5c:58:af:2c:49:48:
5d:29:82:73:fa:65:18:c2:ea:a5:81:fa:a7:37:ec:
b8:8d:55:eb:82:28:0b:19:02:58:4b:3f:9c:61:e7:
8f:e7:e9:70:9f:21:b6:f3:27:dd:46:f9:ec:23:75:
5d:c8:9b:72:38:89:bd:a2:e9:f8:d2:85:a2:69:a2:
cc:24:02:38:fd:16:83:61:6e:c9:6b:67:3d:70:3d:
3b:e2:58:ba:be:8d:90:a9:44:58:a7:8d:2c:2e:75:
80:eb:22:a7:3c:04:c6:87:b4:80:28:90:91:47:7c:
80:fa:78:41:77:69:53:61:e7:3f:cb:4e:ce:fd:92:
57:2f:a7:6c:2b:3a:38:99:ab:f1:47:0a:fe:25:d1:
6c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2D:9F:32:4B:FA:A2:DE:7D:18:0E:43:F7:47:57:7C:BA:1E:E1:60
X509v3 Authority Key Identifier:
keyid:FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:b8:29:50:96:89:57:7f:66:e5:b7:e5:b2:f4:e4:f5:a1:c1:
2f:50:fd:64:f0:5e:8e:31:44:c9:92:33:1d:f6:89:fb:24:1e:
5d:da:07:c6:ab:06:69:18:e1:51:2d:6e:76:d3:88:eb:34:cf:
e1:75:ab:73:72:78:d1:d1:e9:90:2f:5a:b0:2a:e4:bb:ac:b8:
5c:a3:f4:76:63:f9:bb:ca:23:c6:7b:90:3b:c2:88:14:cb:dd:
fb:22:bb:db:b2:3b:a5:dd:81:d8:5c:29:22:c7:c0:b1:ac:34:
e7:35:bf:43:8d:a0:2d:56:ec:1a:d6:3e:92:2d:97:cc:1c:b8:
e5:c6:9b:a5:83:44:8b:2a:79:e3:0a:66:df:45:97:e1:f8:cd:
9e:cb:2b:20:2e:7c:b2:49:c8:47:e8:e6:df:1c:4e:89:7f:20:
d5:b6:b7:ee:17:7b:e7:8b:04:2c:25:fb:ca:df:40:ff:40:bb:
73:f7:02:06:c4:9c:fe:4c:9f:c3:55:3a:b1:49:c4:32:ba:8b:
4a:f3:db:35:d2:0b:e8:a2:e7:4c:6e:3b:96:70:cd:ea:c0:74:
f4:43:4b:82:64:2d:6d:0f:39:44:b9:ec:e0:ef:ba:9f:31:28:
b8:35:09:93:f1:32:33:a2:c5:2f:a5:35:d9:c3:f3:81:1d:16:
66:e0:b0:d6
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZjVu4C/70fDz6Q1+8FJbO42MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhOWI4OWYzNjdkNGZiOTUwMjg3NzAxZjYyZDRhMDM5Yjdm
NmNiMjAwHhcNMjUwODIzMDcwMTMxWhcNMjUwODI0MDcwMTMxWjAzMTEwLwYDVQQD
EyhlNzJkOWYzMjRiZmFhMmRlN2QxODBlNDNmNzQ3NTc3Y2JhMWVlMTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5/VM8tXwFYvdujB31GH9xxWJ269C
ICjU+9kAC4BxhYBdoDFwQMlmVLbJZQnUK2eLgwweXaIpa59kkFRmsGBZKpHDjhQg
0wnmHQcSsa+kW34A78wdt2mHNaGVGdJtIRz7tB5fg0UY3DY1qzStc4NbxSFcWK8s
SUhdKYJz+mUYwuqlgfqnN+y4jVXrgigLGQJYSz+cYeeP5+lwnyG28yfdRvnsI3Vd
yJtyOIm9oun40oWiaaLMJAI4/RaDYW7Ja2c9cD074li6vo2QqURYp40sLnWA6yKn
PATGh7SAKJCRR3yA+nhBd2lTYec/y07O/ZJXL6dsKzo4mavxRwr+JdFslwIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFOctnzJL+qLefRgOQ/dHV3y6HuFgMB8GA1UdIwQY
MBaAFPqbifNn1PuVAodwH2LUoDm39ssgMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1wdUo4MmZVLTVVQ2gzQWZZdFNnT2JmMnl5QS5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUvOTg5MzNhLTc1ODEtNDk3OS05MTIx
LTBlMWE2OGM3NTYzYi8xLzEtcHVKODJmVS01VUNoM0FmWXRTZ09iZjJ5eUEubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxULzY1Lzk4OTMzYS03NTgxLTQ5NzktOTEyMS0wZTFhNjhjNzU2
M2IvMS8xLXB1SjgyZlUtNVVDaDNBZll0U2dPYmYyeXlBLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAALgp
UJaJV39m5bflsvTk9aHBL1D9ZPBejjFEyZIzHfaJ+yQeXdoHxqsGaRjhUS1udtOI
6zTP4XWrc3J40dHpkC9asCrku6y4XKP0dmP5u8ojxnuQO8KIFMvd+yK727I7pd2B
2FwpIsfAsaw05zW/Q42gLVbsGtY+ki2XzBy45cabpYNEiyp54wpm30WX4fjNnssr
IC58sknIR+jm3xxOiX8g1ba37hd754sELCX7yt9A/0C7c/cCBsSc/kyfw1U6sUnE
MrqLSvPbNdIL6KLnTG47lnDN6sB09ENLgmQtbQ85RLns4O+6nzEouDUJk/EyM6LF
L6U12cPzgR0WZuCw1g==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:34:33 2025 by rpki-client