Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/6ff22e-853c-4bab-84cc-1aebca4b6db8/1/b20hysOH8-N4uiOkynfeyTA7qS0.mft
File: b20hysOH8-N4uiOkynfeyTA7qS0.mft (raw, json)
Hash identifier: QmIl1Zuu83wRT2CgIJ+4ppBJgNVtZ+A8saRUStDq9xY=
Subject key identifier: 88:47:AD:BF:6F:C2:04:4D:B6:72:BF:D1:68:64:C3:C3:CB:73:3D:49
Authority key identifier: 6F:6D:21:CA:C3:87:F3:E3:78:BA:23:A4:CA:77:DE:C9:30:3B:A9:2D
Certificate issuer: /CN=6f6d21cac387f3e378ba23a4ca77dec9303ba92d
Certificate serial: 0198D515FC42BE1A916234B53261658B287A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b20hysOH8-N4uiOkynfeyTA7qS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/6ff22e-853c-4bab-84cc-1aebca4b6db8/1/b20hysOH8-N4uiOkynfeyTA7qS0.mft
Manifest number: 1645
Signing time: Sat 23 Aug 2025 04:00:44 +0000
Manifest this update: Sat 23 Aug 2025 04:00:44 +0000
Manifest next update: Sun 24 Aug 2025 04:00:44 +0000
Files and hashes: 1: b20hysOH8-N4uiOkynfeyTA7qS0.crl (hash: JRNVm4a3B21K8GoAW03cQIW1CRyqS2KktlN221mNJ58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/6ff22e-853c-4bab-84cc-1aebca4b6db8/1/b20hysOH8-N4uiOkynfeyTA7qS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/6ff22e-853c-4bab-84cc-1aebca4b6db8/1/b20hysOH8-N4uiOkynfeyTA7qS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/b20hysOH8-N4uiOkynfeyTA7qS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:fc:42:be:1a:91:62:34:b5:32:61:65:8b:28:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f6d21cac387f3e378ba23a4ca77dec9303ba92d
Validity
Not Before: Aug 23 04:00:44 2025 GMT
Not After : Aug 24 04:00:44 2025 GMT
Subject: CN=8847adbf6fc2044db672bfd16864c3c3cb733d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:34:80:e5:e0:09:fb:75:32:58:ce:23:e6:46:
8c:33:b1:a0:4e:cc:b0:3a:81:91:9d:c2:c1:8f:de:
fa:b8:2d:5b:ed:e0:12:ed:1b:15:c8:0a:44:36:88:
ad:de:87:0b:0d:7a:20:30:b8:7b:df:29:65:60:c8:
e9:90:9f:21:34:08:7e:f6:c3:c9:b0:a8:8f:f5:12:
69:3c:ac:49:e6:e3:64:a3:e8:7d:dc:ed:10:b5:c0:
01:a3:35:4a:f2:96:2c:15:a2:f3:08:3a:d6:80:41:
4b:21:2d:8c:43:4b:3e:8e:cb:b3:4e:58:93:d1:4b:
c6:a5:90:47:7c:87:47:a7:03:ee:82:af:bb:82:42:
3d:9c:58:87:f5:27:79:8f:64:05:04:4a:db:99:35:
5a:5e:14:57:a0:a9:82:6e:e5:fa:e6:95:5a:35:3a:
5c:34:c9:6c:41:1e:b7:4f:9e:4d:3f:4e:8c:61:25:
43:62:4f:c9:7d:1f:54:c7:c2:07:79:23:02:fa:7d:
ed:a0:12:ff:11:25:1d:db:dd:fc:19:d7:07:5c:07:
b1:2a:22:e9:ce:83:de:14:35:15:1e:e0:1a:ce:c8:
e9:8c:01:e5:19:24:72:06:23:73:2b:dd:e9:01:2a:
6d:65:36:24:49:d1:50:a0:40:53:2b:d2:2b:30:3b:
c7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:47:AD:BF:6F:C2:04:4D:B6:72:BF:D1:68:64:C3:C3:CB:73:3D:49
X509v3 Authority Key Identifier:
keyid:6F:6D:21:CA:C3:87:F3:E3:78:BA:23:A4:CA:77:DE:C9:30:3B:A9:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b20hysOH8-N4uiOkynfeyTA7qS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/6ff22e-853c-4bab-84cc-1aebca4b6db8/1/b20hysOH8-N4uiOkynfeyTA7qS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/6ff22e-853c-4bab-84cc-1aebca4b6db8/1/b20hysOH8-N4uiOkynfeyTA7qS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:d0:e8:d0:b0:22:7c:62:d4:26:39:45:bc:8a:cc:ef:9c:42:
be:57:5e:a8:f2:7d:15:06:73:aa:e1:1a:a0:11:09:57:d3:76:
25:f0:35:a9:ab:fc:36:e1:0b:84:bd:e2:ab:50:56:2c:8f:59:
06:cb:b0:4e:71:51:be:bf:ff:9e:50:30:1b:8c:c7:5f:be:02:
a2:7f:cf:17:58:40:19:c2:99:39:d0:77:6c:99:26:dc:01:7f:
e4:22:ac:d2:8e:c9:b7:42:ff:ca:19:88:9b:c7:c2:9a:8a:ad:
d1:c3:0f:02:08:4b:63:85:28:22:87:3e:33:9c:39:bb:3a:2d:
01:bb:99:cf:a9:30:4a:38:04:93:92:f7:64:a4:27:cc:ef:b0:
06:f5:93:3f:c7:a2:20:ae:f6:82:a5:97:70:e1:e6:b7:44:bb:
03:4a:18:86:bc:87:03:1c:0d:4f:ac:ec:3a:41:36:13:10:e4:
8f:46:f5:c7:2f:a5:14:f0:d1:4a:98:64:7a:68:b1:df:d3:d6:
3b:db:8a:e9:ce:af:55:6f:8a:3a:eb:e0:a7:f2:f5:f0:03:d3:
b1:9d:43:7e:00:64:2d:e8:5a:db:94:c5:08:d1:62:ef:72:30:
6a:1b:ae:a1:08:9d:ac:3b:cb:45:5c:b3:28:37:77:3d:19:d9:
9f:e8:f7:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFfxCvhqRYjS1MmFliyh6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmNmQyMWNhYzM4N2YzZTM3OGJhMjNhNGNhNzdkZWM5MzAz
YmE5MmQwHhcNMjUwODIzMDQwMDQ0WhcNMjUwODI0MDQwMDQ0WjAzMTEwLwYDVQQD
Eyg4ODQ3YWRiZjZmYzIwNDRkYjY3MmJmZDE2ODY0YzNjM2NiNzMzZDQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkzSA5eAJ+3UyWM4j5kaMM7GgTsyw
OoGRncLBj976uC1b7eAS7RsVyApENoit3ocLDXogMLh73yllYMjpkJ8hNAh+9sPJ
sKiP9RJpPKxJ5uNko+h93O0QtcABozVK8pYsFaLzCDrWgEFLIS2MQ0s+jsuzTliT
0UvGpZBHfIdHpwPugq+7gkI9nFiH9Sd5j2QFBErbmTVaXhRXoKmCbuX65pVaNTpc
NMlsQR63T55NP06MYSVDYk/JfR9Ux8IHeSMC+n3toBL/ESUd2938GdcHXAexKiLp
zoPeFDUVHuAazsjpjAHlGSRyBiNzK93pASptZTYkSdFQoEBTK9IrMDvH3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIhHrb9vwgRNtnK/0Whkw8PLcz1JMB8GA1UdIwQY
MBaAFG9tIcrDh/PjeLojpMp33skwO6ktMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjIwaHlzT0g4LU40dWlPa3luZmV5VEE3cVMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi82ZmYyMmUtODUzYy00YmFiLTg0Y2Mt
MWFlYmNhNGI2ZGI4LzEvYjIwaHlzT0g4LU40dWlPa3luZmV5VEE3cVMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi82ZmYyMmUtODUzYy00YmFiLTg0Y2MtMWFlYmNhNGI2ZGI4
LzEvYjIwaHlzT0g4LU40dWlPa3luZmV5VEE3cVMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQdDo0LAi
fGLUJjlFvIrM75xCvldeqPJ9FQZzquEaoBEJV9N2JfA1qav8NuELhL3iq1BWLI9Z
BsuwTnFRvr//nlAwG4zHX74Con/PF1hAGcKZOdB3bJkm3AF/5CKs0o7Jt0L/yhmI
m8fCmoqt0cMPAghLY4UoIoc+M5w5uzotAbuZz6kwSjgEk5L3ZKQnzO+wBvWTP8ei
IK72gqWXcOHmt0S7A0oYhryHAxwNT6zsOkE2ExDkj0b1xy+lFPDRSphkemix39PW
O9uK6c6vVW+KOuvgp/L18APTsZ1DfgBkLeha25TFCNFi73IwahuuoQidrDvLRVyz
KDd3PRnZn+j3qQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:18 2025 by rpki-client