Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
File: jTUmuzG54wxJBF9DaMYC7pi-wBo.mft (raw, json)
Hash identifier: JdteKbj7bRHB5jcvphSEsJD8wi8C+IDd3YfrWMdL/Zo=
Subject key identifier: 6B:20:6E:1F:45:08:1C:C3:07:45:5A:8D:60:E6:A1:BB:4A:AD:58:31
Authority key identifier: 8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
Certificate issuer: /CN=8d3526bb31b9e30c49045f4368c602ee98bec01a
Certificate serial: 0198D4A81DCA969256374929CDFB68C54AF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
Manifest number: 0397
Signing time: Sat 23 Aug 2025 02:00:44 +0000
Manifest this update: Sat 23 Aug 2025 02:00:44 +0000
Manifest next update: Sun 24 Aug 2025 02:00:44 +0000
Files and hashes: 1: e6xoJBVIfdJmiKe2nJgRQGtQ5ww.roa (hash: JfuVzsuhmGpnCucojoUfItSJOnwkZRw4nitsAmYaRLg=)
2: jTUmuzG54wxJBF9DaMYC7pi-wBo.crl (hash: xohZNTySgM0oYR2F477N9RRQv77z10OJy19gP0wmPz0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:1d:ca:96:92:56:37:49:29:cd:fb:68:c5:4a:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d3526bb31b9e30c49045f4368c602ee98bec01a
Validity
Not Before: Aug 23 02:00:44 2025 GMT
Not After : Aug 24 02:00:44 2025 GMT
Subject: CN=6b206e1f45081cc307455a8d60e6a1bb4aad5831
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:6d:32:8e:de:0e:ca:18:d1:71:52:b5:7d:02:
1f:6d:a4:9e:af:91:f8:99:3b:25:8e:11:56:5b:c3:
b7:9a:7c:66:35:19:52:0b:0c:99:77:86:6b:31:55:
0f:0d:b0:f7:cf:ed:c3:61:56:aa:0d:c3:91:53:b1:
90:aa:86:a6:f6:2d:77:5d:c4:18:b8:8e:36:41:a1:
d7:0a:b7:6f:40:d4:a8:61:08:7d:1b:d7:23:a1:ac:
54:b9:db:8c:cf:b4:ce:4e:5e:e0:99:2c:1a:14:01:
f1:b4:9b:7f:71:a7:b0:ff:13:02:89:34:42:82:ca:
56:a0:81:07:0c:27:03:15:2f:53:65:b4:96:2a:28:
33:93:75:2c:db:70:0c:8f:19:5e:ad:ae:00:a8:1c:
39:2e:ea:ec:f5:13:80:47:e2:f3:ff:8a:cb:3b:2a:
7f:21:ed:5f:1c:e4:c2:4a:7a:45:ce:99:0b:ad:35:
94:b4:c6:3d:8f:b3:a3:b4:31:b9:9a:71:82:2b:39:
ab:fa:d1:47:0e:a5:40:9d:32:31:4e:0e:37:e8:cf:
86:b8:66:87:f0:54:30:7f:7b:2b:93:ee:23:d3:eb:
ec:99:e5:ea:ab:4d:f9:2c:97:2d:8c:2b:c9:7b:d9:
06:24:c3:84:24:8b:ba:35:e4:2c:9a:c0:d8:a4:51:
1c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:20:6E:1F:45:08:1C:C3:07:45:5A:8D:60:E6:A1:BB:4A:AD:58:31
X509v3 Authority Key Identifier:
keyid:8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:a6:9c:77:3c:89:b1:ba:16:e4:02:d1:25:34:56:bd:40:1c:
ec:50:ca:c2:68:62:82:73:1f:5a:9e:6a:cf:55:60:14:13:fe:
bb:f2:e9:d1:79:ee:bc:38:4a:c7:ff:1e:5c:31:d5:bf:8e:85:
81:6f:68:9a:6c:13:b7:1c:78:e9:e7:c8:75:80:be:ae:7b:28:
b7:70:be:70:f1:23:35:9c:9a:ab:38:8d:b6:34:92:27:bf:f8:
64:83:15:1e:75:74:d0:be:c9:aa:08:c2:39:e6:67:85:31:8a:
95:df:1d:73:fe:8d:ff:ca:8d:0f:55:8a:08:8c:a8:4d:e5:03:
31:d8:78:e8:0f:6c:83:f4:26:e7:c6:43:a8:a6:de:61:8b:42:
10:53:f6:c5:c3:ed:3c:b5:97:e0:42:f6:41:2a:75:e5:fc:0d:
4f:cb:7c:dc:45:05:c9:fa:0e:93:fe:ca:8b:64:d6:82:7e:0e:
df:b9:40:d6:0f:68:05:6a:29:6b:e8:48:c2:2c:11:83:4b:c4:
48:18:dc:a1:b6:6e:9f:b6:ab:0f:d9:17:21:59:d5:75:ef:4d:
43:e9:72:50:9b:e7:6b:4a:5a:57:7f:60:0f:ad:87:72:f4:87:
b5:b8:5b:4e:1b:8c:e4:55:48:06:20:91:aa:a6:17:9e:40:f3:
e9:44:7e:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUqB3KlpJWN0kpzftoxUr3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMzUyNmJiMzFiOWUzMGM0OTA0NWY0MzY4YzYwMmVlOThi
ZWMwMWEwHhcNMjUwODIzMDIwMDQ0WhcNMjUwODI0MDIwMDQ0WjAzMTEwLwYDVQQD
Eyg2YjIwNmUxZjQ1MDgxY2MzMDc0NTVhOGQ2MGU2YTFiYjRhYWQ1ODMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjm0yjt4OyhjRcVK1fQIfbaSer5H4
mTsljhFWW8O3mnxmNRlSCwyZd4ZrMVUPDbD3z+3DYVaqDcORU7GQqoam9i13XcQY
uI42QaHXCrdvQNSoYQh9G9cjoaxUuduMz7TOTl7gmSwaFAHxtJt/caew/xMCiTRC
gspWoIEHDCcDFS9TZbSWKigzk3Us23AMjxlera4AqBw5Lurs9ROAR+Lz/4rLOyp/
Ie1fHOTCSnpFzpkLrTWUtMY9j7OjtDG5mnGCKzmr+tFHDqVAnTIxTg436M+GuGaH
8FQwf3srk+4j0+vsmeXqq035LJctjCvJe9kGJMOEJIu6NeQsmsDYpFEcvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGsgbh9FCBzDB0VajWDmobtKrVgxMB8GA1UdIwQY
MBaAFI01JrsxueMMSQRfQ2jGAu6YvsAaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalRVbXV6RzU0d3hKQkY5RGFNWUM3cGktd0JvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS8xYTRiMjEtZmRhMy00YzhhLWFlZTAt
NzI1M2RhMzUxMGVlLzEvalRVbXV6RzU0d3hKQkY5RGFNWUM3cGktd0JvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS8xYTRiMjEtZmRhMy00YzhhLWFlZTAtNzI1M2RhMzUxMGVl
LzEvalRVbXV6RzU0d3hKQkY5RGFNWUM3cGktd0JvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyKacdzyJ
sboW5ALRJTRWvUAc7FDKwmhignMfWp5qz1VgFBP+u/Lp0XnuvDhKx/8eXDHVv46F
gW9ommwTtxx46efIdYC+rnsot3C+cPEjNZyaqziNtjSSJ7/4ZIMVHnV00L7JqgjC
OeZnhTGKld8dc/6N/8qND1WKCIyoTeUDMdh46A9sg/Qm58ZDqKbeYYtCEFP2xcPt
PLWX4EL2QSp15fwNT8t83EUFyfoOk/7Ki2TWgn4O37lA1g9oBWopa+hIwiwRg0vE
SBjcobZun7arD9kXIVnVde9NQ+lyUJvna0paV39gD62HcvSHtbhbThuM5FVIBiCR
qqYXnkDz6UR+Ww==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:27:27 2025 by rpki-client