Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
File: pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft (raw, json)
Hash identifier: 9rxfqqEOpDzWfmk6klDhoTGqjXIq97/CjtbUo2PE+hc=
Subject key identifier: 2F:6E:D2:64:8A:98:81:70:0A:79:0E:AA:A7:A7:02:C2:C5:93:70:41
Authority key identifier: A5:0C:D3:B9:FB:64:64:91:5A:D0:D3:76:09:34:C0:18:28:89:F1:FB
Certificate issuer: /CN=a50cd3b9fb6464915ad0d3760934c0182889f1fb
Certificate serial: 0198D515C42509FD3D36B7726A3790A83FDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
Manifest number: 0ADC
Signing time: Sat 23 Aug 2025 04:00:30 +0000
Manifest this update: Sat 23 Aug 2025 04:00:30 +0000
Manifest next update: Sun 24 Aug 2025 04:00:30 +0000
Files and hashes: 1: LPRtA19ISdoMAcOg5dTdVh6L9Jk.roa (hash: yfplS3KyTgY8se7AVlwzcVLsAsein115ckLeaHyCF6w=)
2: pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl (hash: UD0ZJxFuFQ2kPgIrBW2u7xdafHfxN+g5YkulI4BZilE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:c4:25:09:fd:3d:36:b7:72:6a:37:90:a8:3f:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a50cd3b9fb6464915ad0d3760934c0182889f1fb
Validity
Not Before: Aug 23 04:00:30 2025 GMT
Not After : Aug 24 04:00:30 2025 GMT
Subject: CN=2f6ed2648a9881700a790eaaa7a702c2c5937041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b1:de:7b:82:3e:56:ee:c0:d9:d7:fe:26:38:
7f:2b:03:48:cf:7a:bc:2d:cb:fa:be:f7:76:21:41:
f7:e4:fa:e8:48:86:58:2c:90:1d:8a:36:0d:6c:83:
41:41:bc:1e:77:c4:54:51:f9:44:64:37:f8:84:f2:
c7:74:76:48:b3:78:91:b2:cf:00:c2:98:aa:03:65:
e0:1d:45:7b:ea:30:60:01:c1:36:ed:41:33:74:b6:
e2:62:5f:19:0d:6e:90:3c:84:3a:a6:47:fe:4f:28:
71:5e:3d:f0:9b:30:50:6f:d9:d5:f3:52:d2:60:77:
bb:19:fa:7d:8e:a5:cc:1c:4e:4c:5d:b9:43:1a:31:
58:91:27:ee:de:b0:a6:0b:81:69:54:be:14:70:d4:
4f:12:54:62:fa:77:c9:d3:a1:32:72:74:44:a4:fb:
17:b5:73:3c:4d:2f:3d:9b:db:7a:25:43:b0:9b:7b:
30:a1:5f:89:88:e6:a2:26:bb:e0:9a:3f:77:69:8a:
e1:30:58:16:ff:c8:0d:f0:d6:d9:05:ab:94:ee:ff:
76:67:7c:61:1c:80:f2:8d:87:e4:03:36:80:43:e6:
4a:59:ad:97:51:b2:d7:ab:9a:63:84:7a:ae:08:7b:
27:a8:74:31:7d:c5:d3:71:da:cf:20:12:d7:1b:c1:
40:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:6E:D2:64:8A:98:81:70:0A:79:0E:AA:A7:A7:02:C2:C5:93:70:41
X509v3 Authority Key Identifier:
keyid:A5:0C:D3:B9:FB:64:64:91:5A:D0:D3:76:09:34:C0:18:28:89:F1:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:4b:0a:1d:32:50:67:ac:5b:12:e7:a7:da:ac:55:c8:5b:b2:
31:97:fa:96:b2:e0:4a:2e:c8:8d:70:84:df:17:99:1d:62:93:
e0:5d:ea:68:83:87:cd:8e:6d:ce:cd:93:7b:7f:f1:b2:2f:cf:
69:b4:56:2a:5c:e3:ae:85:5e:fe:0b:6c:02:ed:a7:42:48:e3:
83:7f:9a:8a:f1:ab:f2:26:31:8a:4b:f9:26:8b:ef:1b:a3:9c:
ec:9f:5d:49:34:d2:ab:b4:43:94:d9:80:89:55:22:22:9f:53:
0e:a8:03:a8:49:4b:e4:28:62:1c:6c:68:9a:5f:d7:df:aa:6a:
a6:7e:45:ba:e2:6e:1e:b9:ae:2c:16:ae:de:7a:72:93:8c:01:
89:fe:a7:0c:b4:da:c3:51:ff:fc:23:0c:af:75:43:7f:0d:50:
db:23:75:af:ee:a0:cd:91:9e:a7:68:48:b7:cf:df:22:8a:b8:
02:c0:85:fa:93:e8:aa:00:f0:03:32:4c:18:60:ef:0c:4d:66:
50:d8:dd:76:f9:e9:4b:79:42:4c:60:f4:2b:15:b9:72:79:5c:
d1:de:6a:da:7a:8e:bd:67:1f:b0:8f:c4:e5:40:29:17:b2:b4:
34:4f:b5:33:06:89:b4:a2:8b:fd:40:75:bc:49:87:4b:f6:ae:
3f:79:8a:a5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFcQlCf09NrdyajeQqD/bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MGNkM2I5ZmI2NDY0OTE1YWQwZDM3NjA5MzRjMDE4Mjg4
OWYxZmIwHhcNMjUwODIzMDQwMDMwWhcNMjUwODI0MDQwMDMwWjAzMTEwLwYDVQQD
EygyZjZlZDI2NDhhOTg4MTcwMGE3OTBlYWFhN2E3MDJjMmM1OTM3MDQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqLHee4I+Vu7A2df+Jjh/KwNIz3q8
Lcv6vvd2IUH35ProSIZYLJAdijYNbINBQbwed8RUUflEZDf4hPLHdHZIs3iRss8A
wpiqA2XgHUV76jBgAcE27UEzdLbiYl8ZDW6QPIQ6pkf+TyhxXj3wmzBQb9nV81LS
YHe7Gfp9jqXMHE5MXblDGjFYkSfu3rCmC4FpVL4UcNRPElRi+nfJ06EycnREpPsX
tXM8TS89m9t6JUOwm3swoV+JiOaiJrvgmj93aYrhMFgW/8gN8NbZBauU7v92Z3xh
HIDyjYfkAzaAQ+ZKWa2XUbLXq5pjhHquCHsnqHQxfcXTcdrPIBLXG8FA1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC9u0mSKmIFwCnkOqqenAsLFk3BBMB8GA1UdIwQY
MBaAFKUM07n7ZGSRWtDTdgk0wBgoifH7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFF6VHVmdGtaSkZhME5OMkNUVEFHQ2lKOGZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8zYzkyZmEtYzNkNS00YTM2LTllMTct
MzdlOWU4NmE5Mjc5LzEvcFF6VHVmdGtaSkZhME5OMkNUVEFHQ2lKOGZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8zYzkyZmEtYzNkNS00YTM2LTllMTctMzdlOWU4NmE5Mjc5
LzEvcFF6VHVmdGtaSkZhME5OMkNUVEFHQ2lKOGZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUEsKHTJQ
Z6xbEuen2qxVyFuyMZf6lrLgSi7IjXCE3xeZHWKT4F3qaIOHzY5tzs2Te3/xsi/P
abRWKlzjroVe/gtsAu2nQkjjg3+aivGr8iYxikv5JovvG6Oc7J9dSTTSq7RDlNmA
iVUiIp9TDqgDqElL5ChiHGxoml/X36pqpn5FuuJuHrmuLBau3npyk4wBif6nDLTa
w1H//CMMr3VDfw1Q2yN1r+6gzZGep2hIt8/fIoq4AsCF+pPoqgDwAzJMGGDvDE1m
UNjddvnpS3lCTGD0KxW5cnlc0d5q2nqOvWcfsI/E5UApF7K0NE+1MwaJtKKL/UB1
vEmHS/auP3mKpQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:16 2025 by rpki-client