Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft
File: APTMQSzDD7L598N8PjkL7F5iVrA.mft (raw, json)
Hash identifier: T2/757iyRganL4dAuIE5kRNb8OAgejwImnDQjA37PaM=
Subject key identifier: 3D:E5:05:75:DD:24:45:A8:A6:44:41:35:07:0E:A4:F8:C2:69:8F:9F
Authority key identifier: 00:F4:CC:41:2C:C3:0F:B2:F9:F7:C3:7C:3E:39:0B:EC:5E:62:56:B0
Certificate issuer: /CN=00f4cc412cc30fb2f9f7c37c3e390bec5e6256b0
Certificate serial: 0198D705FC64F2622DD5223AC0E601CB7AAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft
Manifest number: 1577
Signing time: Sat 23 Aug 2025 13:02:30 +0000
Manifest this update: Sat 23 Aug 2025 13:02:30 +0000
Manifest next update: Sun 24 Aug 2025 13:02:30 +0000
Files and hashes: 1: 5BciwgNYwMNFn5eFGl4Ow7HBSis.roa (hash: 3UceDm6E5z2xuYBvrfaNWIIbAo66nrZeoQOIOFL2Trc=)
2: APTMQSzDD7L598N8PjkL7F5iVrA.crl (hash: +f6/E1gDhcflYsrGjwBWdosj/JxNFVAFFvwhOUBa100=)
3: M7SEgufvftwnRCkx-25asjtCovc.roa (hash: U57VYWY1ePii662SbirLo+F12wZ7w8+u4EylfllvMp4=)
4: ebqyf5BiDM6j62bVjaE6r-bdVhw.roa (hash: +MzGy+AsjXhbDBl5ZXZ0wbyW9k0Dlt1wZj2p77zu+Lc=)
5: hoKOermCUGUXPhGJMB3htCGxKbo.roa (hash: C2bDkxfzxHRN/J0tOztxhLbDgje2XNYFfUjponmFTcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:fc:64:f2:62:2d:d5:22:3a:c0:e6:01:cb:7a:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00f4cc412cc30fb2f9f7c37c3e390bec5e6256b0
Validity
Not Before: Aug 23 13:02:30 2025 GMT
Not After : Aug 24 13:02:30 2025 GMT
Subject: CN=3de50575dd2445a8a6444135070ea4f8c2698f9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:00:22:8d:9f:d7:82:aa:10:59:99:bb:8e:71:
75:a1:db:f9:a8:d6:6d:71:27:1d:45:1b:b6:c6:88:
6d:27:0e:51:c7:5a:6f:cc:52:41:df:68:47:19:05:
da:b9:5f:8f:60:80:73:8b:51:44:08:e8:f3:eb:2f:
da:71:08:b6:f0:0d:3c:d7:94:06:97:60:d2:ca:ae:
05:ed:79:26:9c:b0:32:38:b5:6f:1f:17:73:2d:37:
3a:0e:4d:96:ef:5c:f3:61:ec:77:bf:b8:4c:59:b7:
aa:92:90:58:57:11:6b:ab:2a:23:76:7c:ae:91:db:
60:b3:f8:0a:27:81:05:1b:c9:12:84:90:20:f2:43:
39:9e:ad:e5:f2:f9:ef:96:75:f5:c9:1a:b6:8a:5f:
5e:b6:cd:40:39:80:04:d3:20:5b:16:32:28:2f:0b:
20:07:e3:34:be:db:ab:ea:31:96:c3:99:d3:c2:7b:
80:4b:4d:51:94:ab:63:c0:a5:b3:1c:a0:b3:0c:48:
ed:ea:d9:f1:91:3c:b8:82:3f:6a:d8:a6:e7:21:cd:
3c:9d:ce:9e:18:e0:18:be:79:ec:53:93:aa:e9:68:
69:cb:06:3e:0b:21:f3:ea:16:6e:45:dc:96:1d:5c:
36:08:65:99:31:ba:44:59:08:3f:12:df:29:b8:69:
aa:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E5:05:75:DD:24:45:A8:A6:44:41:35:07:0E:A4:F8:C2:69:8F:9F
X509v3 Authority Key Identifier:
keyid:00:F4:CC:41:2C:C3:0F:B2:F9:F7:C3:7C:3E:39:0B:EC:5E:62:56:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:1c:87:9c:15:1b:74:1a:eb:1d:98:fa:c8:18:4f:a9:97:75:
23:2c:ff:7c:c4:d3:73:37:4a:42:f2:9b:3e:50:4e:4b:f0:aa:
a1:e2:9a:3c:4a:d5:87:da:44:f8:dc:47:83:c9:0c:04:87:64:
c7:7d:11:0e:1e:91:16:b2:55:4e:97:1e:36:a4:a8:73:00:46:
8d:58:4a:91:53:60:a4:19:04:0c:5b:8d:24:89:e4:5d:82:45:
51:40:a2:02:3a:d6:94:0a:72:cf:4b:e6:5e:a5:33:59:e5:40:
2a:dd:3c:82:8d:cc:b3:17:8a:ae:4e:e6:2d:4f:ca:54:d5:43:
fc:bc:80:5b:29:e2:d9:ea:f6:0f:88:ce:0b:fa:32:de:32:8d:
6e:58:8e:97:28:b0:b0:e2:86:b5:43:b4:b4:8b:c6:62:19:fb:
c5:ed:69:e6:3e:79:05:5e:5a:34:26:09:21:c4:02:dd:92:bb:
36:2c:c0:b8:af:46:f2:48:9f:17:80:0c:d8:ce:89:50:9e:4c:
ad:9b:c8:dc:fb:a4:cf:76:39:11:f9:8b:3c:49:14:b0:2f:34:
c1:dd:db:b0:0b:b0:60:37:f8:ea:cc:1a:8e:1c:95:ca:6d:62:
55:cd:54:cc:17:68:ab:42:9c:31:88:75:ad:01:ab:b9:da:29:
b8:ed:25:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXBfxk8mIt1SI6wOYBy3qtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwZjRjYzQxMmNjMzBmYjJmOWY3YzM3YzNlMzkwYmVjNWU2
MjU2YjAwHhcNMjUwODIzMTMwMjMwWhcNMjUwODI0MTMwMjMwWjAzMTEwLwYDVQQD
EygzZGU1MDU3NWRkMjQ0NWE4YTY0NDQxMzUwNzBlYTRmOGMyNjk4ZjlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArgAijZ/XgqoQWZm7jnF1odv5qNZt
cScdRRu2xohtJw5Rx1pvzFJB32hHGQXauV+PYIBzi1FECOjz6y/acQi28A0815QG
l2DSyq4F7XkmnLAyOLVvHxdzLTc6Dk2W71zzYex3v7hMWbeqkpBYVxFrqyojdnyu
kdtgs/gKJ4EFG8kShJAg8kM5nq3l8vnvlnX1yRq2il9ets1AOYAE0yBbFjIoLwsg
B+M0vtur6jGWw5nTwnuAS01RlKtjwKWzHKCzDEjt6tnxkTy4gj9q2KbnIc08nc6e
GOAYvnnsU5Oq6WhpywY+CyHz6hZuRdyWHVw2CGWZMbpEWQg/Et8puGmqVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD3lBXXdJEWopkRBNQcOpPjCaY+fMB8GA1UdIwQY
MBaAFAD0zEEsww+y+ffDfD45C+xeYlawMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVBUTVFTekREN0w1OThOOFBqa0w3RjVpVnJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy85Mzc1YTItM2U2Zi00NTc3LTg1ZDEt
NWYxNDVjZmQyMDcwLzEvQVBUTVFTekREN0w1OThOOFBqa0w3RjVpVnJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy85Mzc1YTItM2U2Zi00NTc3LTg1ZDEtNWYxNDVjZmQyMDcw
LzEvQVBUTVFTekREN0w1OThOOFBqa0w3RjVpVnJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKByHnBUb
dBrrHZj6yBhPqZd1Iyz/fMTTczdKQvKbPlBOS/CqoeKaPErVh9pE+NxHg8kMBIdk
x30RDh6RFrJVTpceNqSocwBGjVhKkVNgpBkEDFuNJInkXYJFUUCiAjrWlApyz0vm
XqUzWeVAKt08go3MsxeKrk7mLU/KVNVD/LyAWyni2er2D4jOC/oy3jKNbliOlyiw
sOKGtUO0tIvGYhn7xe1p5j55BV5aNCYJIcQC3ZK7NizAuK9G8kifF4AM2M6JUJ5M
rZvI3Pukz3Y5EfmLPEkUsC80wd3bsAuwYDf46swajhyVym1iVc1UzBdoq0KcMYh1
rQGrudopuO0leA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:43:14 2025 by rpki-client