Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.mft
File: soWZKSpjJCl-Av_zxRGb7gsxdUg.mft (raw, json)
Hash identifier: yKpwluH+XpoKT5DLHr1n96J4vcWRNQs+P1X1v4iKnXA=
Subject key identifier: F9:55:3A:51:81:9B:E4:1D:5A:92:CD:06:01:DD:8D:6C:06:8C:EE:8A
Authority key identifier: B2:85:99:29:2A:63:24:29:7E:02:FF:F3:C5:11:9B:EE:0B:31:75:48
Certificate issuer: /CN=b28599292a6324297e02fff3c5119bee0b317548
Certificate serial: 0198D84FA5330F9B2D6F2B056A8201109976
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soWZKSpjJCl-Av_zxRGb7gsxdUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 19:02:34 +0000
Manifest this update: Sat 23 Aug 2025 19:02:34 +0000
Manifest next update: Sun 24 Aug 2025 19:02:34 +0000
Files and hashes: 1: G4p3T3vKIJwpoVG087GbMaXF5PU.roa (hash: S1k3o+lhMdQMdnd1dbHX7NQg9XvE842LHxXNFh07jnY=)
2: soWZKSpjJCl-Av_zxRGb7gsxdUg.crl (hash: 66RIRvpUCcUSZI5VM9Rg02dnQtKbtHTXkuhBc+fwIDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.mft
rsync://rpki.ripe.net/repository/DEFAULT/soWZKSpjJCl-Av_zxRGb7gsxdUg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:4f:a5:33:0f:9b:2d:6f:2b:05:6a:82:01:10:99:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28599292a6324297e02fff3c5119bee0b317548
Validity
Not Before: Aug 23 19:02:34 2025 GMT
Not After : Aug 24 19:02:34 2025 GMT
Subject: CN=f9553a51819be41d5a92cd0601dd8d6c068cee8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:4c:b1:ff:8e:4c:60:a2:f2:1a:0c:61:0e:ef:
d9:d1:58:98:7b:07:93:1f:9f:7b:34:41:97:2f:15:
b8:30:9a:63:70:da:f7:a6:c6:77:7f:cb:44:0a:35:
dc:0f:86:65:9a:d5:5a:5c:80:57:db:87:75:47:14:
ec:3c:63:8d:e7:3d:80:7b:ba:c6:13:79:49:a0:0c:
fa:27:17:51:e2:e9:4a:dd:af:e0:f5:92:e4:40:13:
80:bb:16:ed:a9:70:27:71:ac:61:f6:d8:a7:89:3f:
ea:b9:0c:ab:65:1c:b1:7f:36:23:79:14:57:55:71:
c3:80:88:71:65:36:13:61:06:96:ee:5e:5f:32:41:
d1:50:81:f4:27:3d:0b:25:a2:f2:96:3c:d7:39:dd:
70:be:a2:cb:84:cc:db:ba:59:41:9e:22:fa:c9:7e:
d9:1d:66:1f:25:9f:51:77:6e:5d:0c:25:aa:ba:fd:
ef:a4:5d:c6:60:d2:62:de:0b:57:5b:bb:7d:fb:d9:
c1:69:1e:0e:91:09:77:1a:c2:6f:ba:60:8b:41:88:
70:48:b2:a1:be:06:81:ae:fb:b8:6f:82:5d:13:e7:
36:7e:0a:27:b4:f0:f1:b7:38:02:88:6e:43:e1:0c:
67:47:7f:0e:96:3c:06:3b:91:4f:8b:9b:fa:03:69:
10:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:55:3A:51:81:9B:E4:1D:5A:92:CD:06:01:DD:8D:6C:06:8C:EE:8A
X509v3 Authority Key Identifier:
keyid:B2:85:99:29:2A:63:24:29:7E:02:FF:F3:C5:11:9B:EE:0B:31:75:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soWZKSpjJCl-Av_zxRGb7gsxdUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:28:ae:85:76:2f:62:b9:f7:23:d2:95:9b:48:00:1e:e4:58:
4d:58:4a:75:2b:ce:84:e7:b9:a9:db:85:4b:29:84:b5:24:6d:
be:6a:3f:7d:69:aa:69:d9:32:09:66:70:dc:2a:e8:69:8b:0d:
b9:8e:68:89:09:e4:77:63:8c:23:79:7d:3b:87:a5:ec:96:f5:
89:5d:81:47:dd:86:07:a7:d9:be:31:bb:12:f6:67:48:e1:2a:
17:cb:41:6a:af:f1:3c:7c:d3:8e:ab:a9:8f:ea:e8:98:c7:24:
28:4d:fb:36:5d:eb:80:51:ad:3a:67:84:4e:25:bd:6d:98:21:
67:e4:8a:14:f1:c4:21:b8:97:aa:d8:dc:b2:32:0d:42:7b:77:
bf:9c:c4:87:1f:b4:15:85:d3:32:c6:d7:4d:b4:27:b4:7c:af:
85:2d:72:dc:7b:88:df:9b:bf:86:9e:85:cf:ed:a7:13:f8:df:
d7:b6:9a:37:66:61:60:94:d4:94:47:83:d5:62:a4:01:37:9c:
7f:43:73:b8:7c:d5:e0:5a:f4:21:7a:0c:29:03:94:03:40:d7:
3d:d3:9d:43:f5:eb:8e:00:e3:ac:30:af:55:ec:7e:6c:6c:b9:
af:8f:65:c1:dc:99:8e:6a:08:91:70:b0:fe:1d:ac:73:b4:19:
c3:8f:39:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjYT6UzD5stbysFaoIBEJl2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyODU5OTI5MmE2MzI0Mjk3ZTAyZmZmM2M1MTE5YmVlMGIz
MTc1NDgwHhcNMjUwODIzMTkwMjM0WhcNMjUwODI0MTkwMjM0WjAzMTEwLwYDVQQD
EyhmOTU1M2E1MTgxOWJlNDFkNWE5MmNkMDYwMWRkOGQ2YzA2OGNlZThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA70yx/45MYKLyGgxhDu/Z0ViYeweT
H597NEGXLxW4MJpjcNr3psZ3f8tECjXcD4ZlmtVaXIBX24d1RxTsPGON5z2Ae7rG
E3lJoAz6JxdR4ulK3a/g9ZLkQBOAuxbtqXAncaxh9tiniT/quQyrZRyxfzYjeRRX
VXHDgIhxZTYTYQaW7l5fMkHRUIH0Jz0LJaLyljzXOd1wvqLLhMzbullBniL6yX7Z
HWYfJZ9Rd25dDCWquv3vpF3GYNJi3gtXW7t9+9nBaR4OkQl3GsJvumCLQYhwSLKh
vgaBrvu4b4JdE+c2fgontPDxtzgCiG5D4QxnR38OljwGO5FPi5v6A2kQkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPlVOlGBm+QdWpLNBgHdjWwGjO6KMB8GA1UdIwQY
MBaAFLKFmSkqYyQpfgL/88URm+4LMXVIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc29XWktTcGpKQ2wtQXZfenhSR2I3Z3N4ZFVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9lNTUyZjQtOTZjYS00MjU5LWE4MmEt
ZTM1YTY3ZTVkOWUyLzEvc29XWktTcGpKQ2wtQXZfenhSR2I3Z3N4ZFVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS9lNTUyZjQtOTZjYS00MjU5LWE4MmEtZTM1YTY3ZTVkOWUy
LzEvc29XWktTcGpKQ2wtQXZfenhSR2I3Z3N4ZFVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWyiuhXYv
Yrn3I9KVm0gAHuRYTVhKdSvOhOe5qduFSymEtSRtvmo/fWmqadkyCWZw3CroaYsN
uY5oiQnkd2OMI3l9O4el7Jb1iV2BR92GB6fZvjG7EvZnSOEqF8tBaq/xPHzTjqup
j+romMckKE37Nl3rgFGtOmeETiW9bZghZ+SKFPHEIbiXqtjcsjINQnt3v5zEhx+0
FYXTMsbXTbQntHyvhS1y3HuI35u/hp6Fz+2nE/jf17aaN2ZhYJTUlEeD1WKkATec
f0NzuHzV4Fr0IXoMKQOUA0DXPdOdQ/XrjgDjrDCvVex+bGy5r49lwdyZjmoIkXCw
/h2sc7QZw485fw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 21:56:40 2025 by rpki-client