
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.mft
File: 1peKb6yHM4CG9TacW0AhsIBhHlc.mft (raw, json)
Hash identifier: rB+3u/Vw7kClaLoC7+WUlGuUdfP62gKWamijlArvNys=
Subject key identifier: A7:FF:77:D4:43:5F:C7:D9:CC:C4:BC:DD:01:C8:1B:8B:7F:75:A7:A0
Authority key identifier: D6:97:8A:6F:AC:87:33:80:86:F5:36:9C:5B:40:21:B0:80:61:1E:57
Certificate issuer: /CN=d6978a6fac87338086f5369c5b4021b080611e57
Certificate serial: 0198D515AA07F868C5E0FE35F43DF9DE4B52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1peKb6yHM4CG9TacW0AhsIBhHlc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.mft
Manifest number: 0281
Signing time: Sat 23 Aug 2025 04:00:23 +0000
Manifest this update: Sat 23 Aug 2025 04:00:23 +0000
Manifest next update: Sun 24 Aug 2025 04:00:23 +0000
Files and hashes: 1: 1peKb6yHM4CG9TacW0AhsIBhHlc.crl (hash: MYaHfXhrkVSGMwgfM3aoOyP2MTgEOvUg1/aM7D33IDY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.mft
rsync://rpki.ripe.net/repository/DEFAULT/1peKb6yHM4CG9TacW0AhsIBhHlc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:aa:07:f8:68:c5:e0:fe:35:f4:3d:f9:de:4b:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6978a6fac87338086f5369c5b4021b080611e57
Validity
Not Before: Aug 23 04:00:23 2025 GMT
Not After : Aug 24 04:00:23 2025 GMT
Subject: CN=a7ff77d4435fc7d9ccc4bcdd01c81b8b7f75a7a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ad:6c:0d:33:9d:c1:fa:50:4b:c5:bb:fb:8c:
1a:48:e9:d8:2d:58:3f:08:81:7d:35:bb:c4:af:a4:
f1:4c:3b:6b:62:89:80:fc:ae:0b:14:af:4c:a5:3a:
d4:50:99:4c:6a:48:9f:ea:ad:37:80:5b:c6:74:bf:
1c:70:54:ec:e2:8a:db:07:78:29:0c:65:60:22:d3:
42:8a:43:fd:56:74:f3:e1:ab:eb:a8:eb:ed:b0:7b:
0e:22:86:f8:6a:d6:ef:ac:b9:a6:0c:25:10:05:d5:
9e:12:af:7b:36:a3:c6:83:d0:6f:d3:b4:64:fa:7c:
84:27:c1:53:b1:2f:27:94:8d:72:f8:aa:f2:17:b5:
c1:4b:58:2d:d4:6e:b5:a8:a4:63:02:37:e4:8c:4e:
39:47:c4:47:72:e9:73:44:39:0d:ee:74:2c:e8:2c:
74:6f:56:4c:9d:5c:b0:3e:75:b1:c8:d0:4e:fa:57:
ff:bf:34:f2:40:98:d1:37:5b:be:22:dc:84:8a:aa:
5a:b2:e2:6e:d8:bf:63:ee:3b:7b:2a:e9:1d:72:fd:
6d:04:7c:8e:c6:13:ee:c6:2c:2d:f3:c1:a8:d0:10:
ac:b8:61:40:eb:dc:2a:5a:29:27:35:ac:5b:ba:2b:
af:4a:c2:76:5e:41:8f:c3:47:82:42:54:eb:c6:6f:
3c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:FF:77:D4:43:5F:C7:D9:CC:C4:BC:DD:01:C8:1B:8B:7F:75:A7:A0
X509v3 Authority Key Identifier:
keyid:D6:97:8A:6F:AC:87:33:80:86:F5:36:9C:5B:40:21:B0:80:61:1E:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1peKb6yHM4CG9TacW0AhsIBhHlc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:e2:db:13:53:1d:97:7d:70:1a:c8:cb:dd:37:7b:9b:bb:ea:
3d:bf:0b:ac:c9:93:53:6f:f6:5e:d4:76:37:c2:dd:ac:17:26:
52:97:ab:ed:3e:28:f7:ae:c8:84:b0:bc:84:75:7a:93:76:11:
c8:70:f9:2e:f6:12:97:06:e9:2d:6f:da:e9:85:7b:38:0f:84:
fe:db:67:69:0c:5a:25:e8:49:44:be:65:a7:57:69:b6:83:0a:
be:75:8c:1f:84:a2:aa:d1:65:d5:f7:1d:c7:cb:e9:cf:64:27:
41:20:90:86:28:f5:43:ce:3c:7d:85:7a:bf:a1:08:dc:9d:2b:
b6:a1:6b:5a:16:66:2b:af:b4:6a:ba:ba:b3:7e:20:79:f3:3a:
af:70:34:f4:ef:86:ed:fc:fb:b6:43:ea:58:42:26:99:b2:9b:
99:27:40:de:02:9c:9b:32:7f:a3:a9:4e:b6:bc:61:84:88:15:
2c:02:18:e5:d4:2e:cd:4f:23:ed:6b:5b:3f:81:09:b1:b3:93:
b5:a5:da:0d:0e:12:42:18:7b:78:13:ab:e9:5c:07:1d:5b:34:
12:1c:22:45:8f:d3:55:2e:05:8f:4d:ff:09:e6:ba:1c:47:c5:
a1:16:1c:64:96:9b:48:fd:68:16:87:3e:6b:6f:2a:1b:4a:2e:
b4:c6:bd:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFaoH+GjF4P419D353ktSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2OTc4YTZmYWM4NzMzODA4NmY1MzY5YzViNDAyMWIwODA2
MTFlNTcwHhcNMjUwODIzMDQwMDIzWhcNMjUwODI0MDQwMDIzWjAzMTEwLwYDVQQD
EyhhN2ZmNzdkNDQzNWZjN2Q5Y2NjNGJjZGQwMWM4MWI4YjdmNzVhN2EwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxa1sDTOdwfpQS8W7+4waSOnYLVg/
CIF9NbvEr6TxTDtrYomA/K4LFK9MpTrUUJlMakif6q03gFvGdL8ccFTs4orbB3gp
DGVgItNCikP9VnTz4avrqOvtsHsOIob4atbvrLmmDCUQBdWeEq97NqPGg9Bv07Rk
+nyEJ8FTsS8nlI1y+KryF7XBS1gt1G61qKRjAjfkjE45R8RHculzRDkN7nQs6Cx0
b1ZMnVywPnWxyNBO+lf/vzTyQJjRN1u+ItyEiqpasuJu2L9j7jt7Kukdcv1tBHyO
xhPuxiwt88Go0BCsuGFA69wqWiknNaxbuiuvSsJ2XkGPw0eCQlTrxm88RQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKf/d9RDX8fZzMS83QHIG4t/daegMB8GA1UdIwQY
MBaAFNaXim+shzOAhvU2nFtAIbCAYR5XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXBlS2I2eUhNNENHOVRhY1cwQWhzSUJoSGxjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi84NzA1OTYtOThhZC00N2I5LWE3ODgt
NDNlNzA5NzdhNzBlLzEvMXBlS2I2eUhNNENHOVRhY1cwQWhzSUJoSGxjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi84NzA1OTYtOThhZC00N2I5LWE3ODgtNDNlNzA5NzdhNzBl
LzEvMXBlS2I2eUhNNENHOVRhY1cwQWhzSUJoSGxjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFuLbE1Md
l31wGsjL3Td7m7vqPb8LrMmTU2/2XtR2N8LdrBcmUper7T4o967IhLC8hHV6k3YR
yHD5LvYSlwbpLW/a6YV7OA+E/ttnaQxaJehJRL5lp1dptoMKvnWMH4SiqtFl1fcd
x8vpz2QnQSCQhij1Q848fYV6v6EI3J0rtqFrWhZmK6+0arq6s34gefM6r3A09O+G
7fz7tkPqWEImmbKbmSdA3gKcmzJ/o6lOtrxhhIgVLAIY5dQuzU8j7WtbP4EJsbOT
taXaDQ4SQhh7eBOr6VwHHVs0EhwiRY/TVS4Fj03/Cea6HEfFoRYcZJabSP1oFoc+
a28qG0outMa9dQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:02:33 2025 by rpki-client