Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft
File: eY97H9gCs9xqvXpc2nhqYxHh1j0.mft (raw, json)
Hash identifier: g95NLPUa27q3bkqgnglv5XpKNruHzM/sPc+SKsTSyCc=
Subject key identifier: FC:09:46:42:7F:2C:6C:65:69:AB:AD:1C:28:17:2E:B5:CD:63:86:27
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 0198D73B5035D7BC767BAEBAC84AFA7F5B78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft
Manifest number: 0E90
Signing time: Sat 23 Aug 2025 14:00:45 +0000
Manifest this update: Sat 23 Aug 2025 14:00:45 +0000
Manifest next update: Sun 24 Aug 2025 14:00:45 +0000
Files and hashes: 1: eY97H9gCs9xqvXpc2nhqYxHh1j0.crl (hash: XlEA39rQfA0crIv1bpf5DcEpRBqZ7NL9qmLWxIlSeD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft
rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:50:35:d7:bc:76:7b:ae:ba:c8:4a:fa:7f:5b:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: Aug 23 14:00:45 2025 GMT
Not After : Aug 24 14:00:45 2025 GMT
Subject: CN=fc0946427f2c6c6569abad1c28172eb5cd638627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:03:36:c6:c0:3d:f8:da:1d:a2:c3:09:38:04:
35:35:1c:29:ba:9e:2f:2b:f4:09:fb:f5:ee:91:60:
ad:05:9c:fe:a0:5e:36:e9:21:7f:4c:db:7e:39:be:
5a:40:cf:1a:ca:30:9c:92:a5:41:c6:ec:bd:6b:74:
a6:e5:16:47:2c:a7:2a:cb:5a:35:5c:0f:38:f4:08:
b0:77:95:50:2e:d4:ce:f5:24:1b:0c:64:46:07:c7:
ee:72:68:a7:c3:98:dd:1d:9e:cf:4c:8b:0e:1a:16:
e7:c3:9d:d0:cf:cd:b6:f0:7d:27:c9:c8:02:d1:7e:
77:da:87:2d:2b:8f:07:ca:ac:5c:30:1f:4a:5f:63:
62:e9:7b:89:9b:79:1f:66:1e:14:a6:41:43:78:38:
12:86:6f:b8:80:15:55:e6:c7:dd:5b:96:d8:41:f8:
a3:18:1d:05:ba:00:72:30:1f:e5:3a:61:ed:43:91:
dc:50:6a:b5:8b:e3:e8:68:58:11:6d:e2:70:e1:ff:
11:0c:3e:2c:e0:39:fe:0e:b7:22:4c:1a:8d:75:57:
a0:b6:e2:35:3d:96:ee:b5:94:04:3a:8d:7f:41:58:
24:1c:ed:13:03:73:8f:86:47:ec:c2:c8:7e:83:0e:
fa:98:2e:89:78:88:bf:c1:b5:63:c9:f5:b9:e8:90:
d4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:09:46:42:7F:2C:6C:65:69:AB:AD:1C:28:17:2E:B5:CD:63:86:27
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:61:37:20:88:3d:a6:72:54:c9:c8:9e:0b:d1:76:63:2e:9f:
41:fb:b0:d2:41:c5:3a:b4:c0:96:fd:d9:3e:79:95:3a:3d:fa:
04:96:11:b3:11:37:04:ce:5a:c9:e4:a5:23:9f:ae:81:a2:8d:
2c:1f:86:71:da:5c:63:e1:ad:80:b7:a3:49:15:47:3d:a1:90:
10:13:e6:da:74:7e:ca:8d:77:dc:4c:24:a1:10:a4:b0:70:f8:
f7:de:a8:31:ac:b5:9b:fe:9b:82:1f:24:91:e5:ea:3d:f2:77:
fb:f5:3b:04:ab:41:32:f4:63:1f:65:e4:90:a8:29:3f:74:69:
36:4f:a7:fb:93:00:1f:90:c4:8a:36:86:89:39:6b:e2:ef:98:
b9:1b:62:07:2c:40:6e:7b:fd:bc:f9:86:49:07:2d:0b:f0:28:
63:c3:1e:a0:a5:41:6a:30:97:5a:3e:75:67:4b:6a:41:b7:4e:
94:a9:6e:b1:cd:60:b7:ac:29:05:83:0e:41:b2:ca:c6:c0:92:
4a:9a:c6:bf:f7:14:0a:90:be:61:6b:de:86:0c:18:c6:e4:df:
ad:e9:9d:90:05:09:3c:bc:7a:ff:46:d0:a1:82:2a:9f:6f:3f:
64:bc:62:6d:db:36:84:c4:c4:25:a5:42:5e:a7:f2:9d:61:56:
e5:d6:99:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXO1A117x2e666yEr6f1t4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5OGY3YjFmZDgwMmIzZGM2YWJkN2E1Y2RhNzg2YTYzMTFl
MWQ2M2QwHhcNMjUwODIzMTQwMDQ1WhcNMjUwODI0MTQwMDQ1WjAzMTEwLwYDVQQD
EyhmYzA5NDY0MjdmMmM2YzY1NjlhYmFkMWMyODE3MmViNWNkNjM4NjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4QM2xsA9+NodosMJOAQ1NRwpup4v
K/QJ+/XukWCtBZz+oF426SF/TNt+Ob5aQM8ayjCckqVBxuy9a3Sm5RZHLKcqy1o1
XA849Aiwd5VQLtTO9SQbDGRGB8fucminw5jdHZ7PTIsOGhbnw53Qz8228H0nycgC
0X532octK48HyqxcMB9KX2Ni6XuJm3kfZh4UpkFDeDgShm+4gBVV5sfdW5bYQfij
GB0FugByMB/lOmHtQ5HcUGq1i+PoaFgRbeJw4f8RDD4s4Dn+DrciTBqNdVegtuI1
PZbutZQEOo1/QVgkHO0TA3OPhkfswsh+gw76mC6JeIi/wbVjyfW56JDUxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPwJRkJ/LGxlaautHCgXLrXNY4YnMB8GA1UdIwQY
MBaAFHmPex/YArPcar16XNp4amMR4dY9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVk5N0g5Z0NzOXhxdlhwYzJuaHFZeEhoMWowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My8zMDg4M2EtMTZkNy00MjEyLTkxOTkt
MDlkMGFhMjhlNTUxLzEvZVk5N0g5Z0NzOXhxdlhwYzJuaHFZeEhoMWowLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My8zMDg4M2EtMTZkNy00MjEyLTkxOTktMDlkMGFhMjhlNTUx
LzEvZVk5N0g5Z0NzOXhxdlhwYzJuaHFZeEhoMWowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA2E3IIg9
pnJUycieC9F2Yy6fQfuw0kHFOrTAlv3ZPnmVOj36BJYRsxE3BM5ayeSlI5+ugaKN
LB+GcdpcY+GtgLejSRVHPaGQEBPm2nR+yo133EwkoRCksHD4996oMay1m/6bgh8k
keXqPfJ3+/U7BKtBMvRjH2XkkKgpP3RpNk+n+5MAH5DEijaGiTlr4u+YuRtiByxA
bnv9vPmGSQctC/AoY8MeoKVBajCXWj51Z0tqQbdOlKlusc1gt6wpBYMOQbLKxsCS
SprGv/cUCpC+YWvehgwYxuTfremdkAUJPLx6/0bQoYIqn28/ZLxibds2hMTEJaVC
XqfynWFW5daZGg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:53:22 2025 by rpki-client