Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft
File: D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft (raw, json)
Hash identifier: qB5DfKVDwPRBld6CMQ3bluDHs2zJb7dBP+3fAMRtP7Q=
Subject key identifier: 86:E0:89:E5:00:D3:7B:1D:CD:0E:8A:9F:7E:13:4A:7B:37:EF:B1:F2
Authority key identifier: 0F:B7:F1:FD:87:68:E2:11:63:54:2A:FC:F5:5A:83:C6:98:02:15:A3
Certificate issuer: /CN=0fb7f1fd8768e21163542afcf55a83c6980215a3
Certificate serial: 0198D54DEB84A11D90B1122148423F2641C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D7fx_Ydo4hFjVCr89VqDxpgCFaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft
Manifest number: 07A4
Signing time: Sat 23 Aug 2025 05:01:50 +0000
Manifest this update: Sat 23 Aug 2025 05:01:50 +0000
Manifest next update: Sun 24 Aug 2025 05:01:50 +0000
Files and hashes: 1: D7fx_Ydo4hFjVCr89VqDxpgCFaM.crl (hash: pwLmfCDuBRT+4bwttxHYcMD3VndTsyRuRyChEjDL8mg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/D7fx_Ydo4hFjVCr89VqDxpgCFaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:eb:84:a1:1d:90:b1:12:21:48:42:3f:26:41:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fb7f1fd8768e21163542afcf55a83c6980215a3
Validity
Not Before: Aug 23 05:01:50 2025 GMT
Not After : Aug 24 05:01:50 2025 GMT
Subject: CN=86e089e500d37b1dcd0e8a9f7e134a7b37efb1f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:65:34:fd:88:24:e0:3b:68:ad:2f:3e:93:48:
d9:cf:ac:ad:e0:17:3e:9d:49:45:07:31:ef:21:ae:
2f:52:47:81:69:56:f6:24:05:0e:eb:dd:2b:a0:5e:
79:b6:75:78:1e:9e:ab:5f:d6:1f:a6:3f:45:fb:e4:
74:60:f6:00:74:1f:d2:6d:bb:cd:7b:cc:d2:25:55:
98:de:49:96:35:2a:ba:b7:32:7f:a9:b8:3e:b5:89:
8b:98:46:8b:db:cc:90:4e:15:3c:8a:c5:d7:13:a1:
c0:88:66:fe:42:91:8b:7b:a6:fd:8b:2c:d0:b9:a2:
9b:33:3b:36:e6:c3:66:97:df:6e:32:34:21:3f:49:
22:bc:91:b6:1d:4e:7e:43:ab:6f:5c:c6:d1:d5:d0:
19:94:6b:97:0d:8d:6b:53:ab:10:18:d0:d3:3c:bf:
a8:55:5d:d8:92:c9:b1:84:9b:5e:56:10:3c:e9:f0:
cc:10:51:77:40:19:7d:69:95:c5:3c:21:a3:dc:6d:
dd:21:df:45:4a:ee:06:b9:aa:7b:63:8f:1d:02:bf:
dd:64:45:8f:a5:ad:c3:f2:31:18:e8:4d:2e:10:da:
57:11:74:c1:37:b8:f7:55:09:0d:76:ff:a5:f5:69:
8f:87:d5:09:b8:09:3f:db:d9:f0:1c:a8:b5:bd:a0:
8a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E0:89:E5:00:D3:7B:1D:CD:0E:8A:9F:7E:13:4A:7B:37:EF:B1:F2
X509v3 Authority Key Identifier:
keyid:0F:B7:F1:FD:87:68:E2:11:63:54:2A:FC:F5:5A:83:C6:98:02:15:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D7fx_Ydo4hFjVCr89VqDxpgCFaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/e7c8d0-749b-452d-bff0-a0e28dcfffc7/1/D7fx_Ydo4hFjVCr89VqDxpgCFaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:95:15:f3:c4:fc:14:94:2d:80:3e:0b:10:24:02:be:24:1a:
84:ac:ce:bc:88:23:5f:5b:36:0f:0a:5b:fe:7a:95:47:55:72:
b5:53:d8:bd:1c:18:8f:23:8c:5d:15:28:3e:b3:28:9a:3d:5a:
18:50:99:af:45:a5:1b:14:f2:1c:4e:39:4c:b6:d6:12:03:8c:
2a:5f:66:ad:06:3a:5d:d0:2d:ae:31:28:ff:9d:73:39:bf:e9:
08:57:12:e9:65:cf:bf:0d:c1:f5:c9:3a:51:c0:d0:ea:4b:76:
6f:e6:a5:7e:47:c8:9a:25:b8:63:52:9a:b5:df:d0:65:cb:5c:
ef:66:9f:22:f6:7d:85:94:77:3e:2b:8f:fa:43:1b:a9:c6:f0:
8a:14:7f:8b:c6:e7:34:03:78:9f:bb:1b:a3:28:5b:6b:d9:59:
d2:59:17:f0:2b:f0:6e:5d:15:08:ed:4e:b8:5c:15:bc:22:8f:
a6:ae:5d:25:ca:15:c9:6c:e5:5b:9e:9b:92:89:18:0c:8c:8d:
df:8d:5a:2f:f9:25:7a:c0:a3:e8:61:6f:ea:8b:a7:0c:02:18:
dd:e3:92:84:81:a5:f4:8f:bf:06:8d:af:8b:51:23:5e:50:33:
76:bc:65:47:81:55:4c:0a:ae:71:22:20:20:f7:41:a3:89:74:
71:7f:f2:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTeuEoR2QsRIhSEI/JkHAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmYjdmMWZkODc2OGUyMTE2MzU0MmFmY2Y1NWE4M2M2OTgw
MjE1YTMwHhcNMjUwODIzMDUwMTUwWhcNMjUwODI0MDUwMTUwWjAzMTEwLwYDVQQD
Eyg4NmUwODllNTAwZDM3YjFkY2QwZThhOWY3ZTEzNGE3YjM3ZWZiMWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWU0/Ygk4DtorS8+k0jZz6yt4Bc+
nUlFBzHvIa4vUkeBaVb2JAUO690roF55tnV4Hp6rX9Yfpj9F++R0YPYAdB/SbbvN
e8zSJVWY3kmWNSq6tzJ/qbg+tYmLmEaL28yQThU8isXXE6HAiGb+QpGLe6b9iyzQ
uaKbMzs25sNml99uMjQhP0kivJG2HU5+Q6tvXMbR1dAZlGuXDY1rU6sQGNDTPL+o
VV3YksmxhJteVhA86fDMEFF3QBl9aZXFPCGj3G3dId9FSu4Guap7Y48dAr/dZEWP
pa3D8jEY6E0uENpXEXTBN7j3VQkNdv+l9WmPh9UJuAk/29nwHKi1vaCKtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIbgieUA03sdzQ6Kn34TSns377HyMB8GA1UdIwQY
MBaAFA+38f2HaOIRY1Qq/PVag8aYAhWjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDdmeF9ZZG80aEZqVkNyODlWcUR4cGdDRmFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9lN2M4ZDAtNzQ5Yi00NTJkLWJmZjAt
YTBlMjhkY2ZmZmM3LzEvRDdmeF9ZZG80aEZqVkNyODlWcUR4cGdDRmFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC9lN2M4ZDAtNzQ5Yi00NTJkLWJmZjAtYTBlMjhkY2ZmZmM3
LzEvRDdmeF9ZZG80aEZqVkNyODlWcUR4cGdDRmFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE5UV88T8
FJQtgD4LECQCviQahKzOvIgjX1s2Dwpb/nqVR1VytVPYvRwYjyOMXRUoPrMomj1a
GFCZr0WlGxTyHE45TLbWEgOMKl9mrQY6XdAtrjEo/51zOb/pCFcS6WXPvw3B9ck6
UcDQ6kt2b+alfkfImiW4Y1Katd/QZctc72afIvZ9hZR3PiuP+kMbqcbwihR/i8bn
NAN4n7sboyhba9lZ0lkX8Cvwbl0VCO1OuFwVvCKPpq5dJcoVyWzlW56bkokYDIyN
341aL/klesCj6GFv6ounDAIY3eOShIGl9I+/Bo2vi1EjXlAzdrxlR4FVTAqucSIg
IPdBo4l0cX/yZQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:08:26 2025 by rpki-client