Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json)
Hash identifier: G28dcdGA+bLJGRpxz9GbzSFHQF4sSCGpAlCEIosLT7U=
Subject key identifier: 69:E4:68:DA:69:5C:16:8D:CF:9D:48:6F:E6:CE:3E:03:FF:04:C8:B9
Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Certificate serial: 0198D54E7FB0B0D3018514C83CD8295E895A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
Manifest number: 037A
Signing time: Sat 23 Aug 2025 05:02:28 +0000
Manifest this update: Sat 23 Aug 2025 05:02:28 +0000
Manifest next update: Sun 24 Aug 2025 05:02:28 +0000
Files and hashes: 1: kdQZ4QS0sUqXnywKZ8M79hUmfTA.roa (hash: xGG3G4XfdVhcDuFzw8EOPzLUi5vn/b3D8pkyEY9PSkc=)
2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: Naz9dcEQNyc4x82+fQbEpHKK15hJY3HdP5qIacR3myM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:7f:b0:b0:d3:01:85:14:c8:3c:d8:29:5e:89:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Validity
Not Before: Aug 23 05:02:28 2025 GMT
Not After : Aug 24 05:02:28 2025 GMT
Subject: CN=69e468da695c168dcf9d486fe6ce3e03ff04c8b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:94:a7:a0:59:87:34:14:88:d6:13:b2:b6:7f:
74:09:3a:ba:d7:7e:df:30:bf:cf:96:22:d2:af:c4:
2b:06:70:f0:f1:d0:c4:f9:3c:71:fe:db:24:b6:7d:
a6:8b:88:9c:61:b1:59:56:c9:4c:68:79:82:fb:18:
0b:ae:58:cc:4a:d4:d8:08:49:8e:0b:26:37:a7:4a:
cb:b4:b7:33:df:6d:ce:f6:ee:9f:e0:f2:a7:b8:66:
41:a9:f4:74:d8:f9:37:88:e7:5c:ce:80:75:6e:86:
d6:6b:cd:e2:f0:09:f2:0a:5d:11:70:46:fe:a1:e1:
6f:48:35:c2:a5:f2:0e:61:8a:a6:4d:e9:0f:3e:ed:
04:60:d4:73:59:49:cc:a6:48:1a:20:56:8e:73:a3:
d8:d6:c2:a3:30:3f:5f:b2:5e:c0:89:16:c8:85:ba:
32:d9:d1:a9:c7:79:dc:3d:6e:00:aa:5a:12:b9:ab:
60:2b:43:3b:4c:2c:26:9e:17:2b:d1:69:d3:06:fd:
84:bd:c0:e7:30:55:4f:3b:37:d7:50:ea:a9:4c:41:
ea:8c:d9:f0:86:17:39:bd:82:2a:d3:5b:3c:85:bf:
63:2f:00:69:30:60:3f:50:b1:ff:fb:48:78:93:e3:
98:19:c8:e6:e1:ce:98:75:e9:1d:0a:65:d0:be:bc:
72:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E4:68:DA:69:5C:16:8D:CF:9D:48:6F:E6:CE:3E:03:FF:04:C8:B9
X509v3 Authority Key Identifier:
keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:d8:f9:a1:bf:4e:60:90:d6:2f:f3:f1:ec:9f:94:2a:7c:c3:
af:01:31:f4:d4:58:84:f1:00:7b:61:42:f9:d1:60:9c:0a:e0:
3b:f5:27:52:61:67:15:3b:07:7e:5b:18:01:d0:99:22:c7:9a:
30:cb:68:a5:1b:b5:6e:e0:93:13:bf:09:77:e8:bb:fb:62:af:
15:ca:1f:6a:75:09:3a:f4:47:6b:6c:a1:aa:86:77:d8:24:27:
ef:29:1d:57:7d:14:8a:f7:6d:f9:8a:e7:ca:ec:69:70:1b:75:
67:62:bb:4d:63:59:e6:e6:86:09:10:ae:2c:29:7a:99:ff:2b:
eb:ec:98:05:d0:ff:83:0d:5d:94:16:23:0a:40:d8:0a:13:e3:
05:b6:49:19:88:fd:e6:8b:33:18:6d:2e:2e:b9:e3:82:ae:56:
6d:72:0f:59:f5:2f:3d:2c:f1:0d:b8:c8:f6:2a:83:00:40:84:
18:3c:95:0d:23:cf:68:4a:d9:7f:45:0b:7e:f2:3d:99:93:e5:
97:4e:0e:bb:78:11:35:a6:9a:3b:7d:3c:ad:f8:dc:7d:09:b5:
6e:ff:53:36:02:5f:8c:ff:ae:ad:a9:f3:55:8c:a9:4a:36:61:
ae:6d:58:04:92:99:3b:16:e0:cb:d3:00:b2:04:90:da:ea:68:
ce:86:bf:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTn+wsNMBhRTIPNgpXolaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MzZjMGYwZWM4YmJlZGYwZjYwODQ0ZGZlNGZlOTM5MzY5
YTRiNDAwHhcNMjUwODIzMDUwMjI4WhcNMjUwODI0MDUwMjI4WjAzMTEwLwYDVQQD
Eyg2OWU0NjhkYTY5NWMxNjhkY2Y5ZDQ4NmZlNmNlM2UwM2ZmMDRjOGI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJSnoFmHNBSI1hOytn90CTq6137f
ML/PliLSr8QrBnDw8dDE+Txx/tsktn2mi4icYbFZVslMaHmC+xgLrljMStTYCEmO
CyY3p0rLtLcz323O9u6f4PKnuGZBqfR02Pk3iOdczoB1bobWa83i8AnyCl0RcEb+
oeFvSDXCpfIOYYqmTekPPu0EYNRzWUnMpkgaIFaOc6PY1sKjMD9fsl7AiRbIhboy
2dGpx3ncPW4AqloSuatgK0M7TCwmnhcr0WnTBv2EvcDnMFVPOzfXUOqpTEHqjNnw
hhc5vYIq01s8hb9jLwBpMGA/ULH/+0h4k+OYGcjm4c6YdekdCmXQvrxyPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGnkaNppXBaNz51Ib+bOPgP/BMi5MB8GA1UdIwQY
MBaAFLQ2wPDsi77fD2CETf5P6Tk2mktAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kYjY2YWItNzBhYy00MWFkLTk5NTgt
ZGQ4YjVhZmNlZTNiLzEvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9kYjY2YWItNzBhYy00MWFkLTk5NTgtZGQ4YjVhZmNlZTNi
LzEvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAotj5ob9O
YJDWL/Px7J+UKnzDrwEx9NRYhPEAe2FC+dFgnArgO/UnUmFnFTsHflsYAdCZIsea
MMtopRu1buCTE78Jd+i7+2KvFcofanUJOvRHa2yhqoZ32CQn7ykdV30Uivdt+Yrn
yuxpcBt1Z2K7TWNZ5uaGCRCuLCl6mf8r6+yYBdD/gw1dlBYjCkDYChPjBbZJGYj9
5oszGG0uLrnjgq5WbXIPWfUvPSzxDbjI9iqDAECEGDyVDSPPaErZf0ULfvI9mZPl
l04Ou3gRNaaaO308rfjcfQm1bv9TNgJfjP+uranzVYypSjZhrm1YBJKZOxbgy9MA
sgSQ2upozoa/+Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:05:23 2025 by rpki-client