Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft
File: jR3ulkqib4m9ECJ21GVjP7guqig.mft (raw, json)
Hash identifier: 7KLZs00JuodcLVthBlInSxd49mvoVSZcngQW78FrJpQ=
Subject key identifier: 9F:7A:32:A8:6B:97:72:49:7D:16:F5:77:5A:16:6B:89:B2:B9:1B:D0
Authority key identifier: 8D:1D:EE:96:4A:A2:6F:89:BD:10:22:76:D4:65:63:3F:B8:2E:AA:28
Certificate issuer: /CN=8d1dee964aa26f89bd102276d465633fb82eaa28
Certificate serial: 0198D515A7CDD1B612719ED53B4B71E4F85B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft
Manifest number: 0AA9
Signing time: Sat 23 Aug 2025 04:00:22 +0000
Manifest this update: Sat 23 Aug 2025 04:00:22 +0000
Manifest next update: Sun 24 Aug 2025 04:00:22 +0000
Files and hashes: 1: jR3ulkqib4m9ECJ21GVjP7guqig.crl (hash: kKwk2O2bq+9PH7Ov1JmonIqI4rOpuXhx7olV5GZhi8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft
rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:a7:cd:d1:b6:12:71:9e:d5:3b:4b:71:e4:f8:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1dee964aa26f89bd102276d465633fb82eaa28
Validity
Not Before: Aug 23 04:00:22 2025 GMT
Not After : Aug 24 04:00:22 2025 GMT
Subject: CN=9f7a32a86b9772497d16f5775a166b89b2b91bd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f3:4f:ff:56:eb:cd:ed:0b:34:3d:a3:4c:c7:
08:82:e1:62:1a:d9:6c:1e:9d:96:bf:d9:87:d9:5a:
3d:59:f5:5a:46:64:9a:76:2a:41:49:c1:55:6d:ce:
55:b4:19:aa:08:04:46:72:27:0d:06:2c:98:12:bd:
ae:b2:99:51:4d:7c:0b:8b:ee:cb:b4:d7:25:d4:d5:
80:06:83:f2:9d:07:2a:45:9f:0c:27:7c:96:df:f9:
4c:db:8e:7c:81:71:48:a8:06:d8:e6:be:2d:3e:cc:
4e:41:eb:85:ef:63:05:90:9d:9d:5a:99:35:bc:c6:
43:48:d7:5f:cf:0a:0d:a1:6f:0f:91:8b:65:58:30:
0e:f0:ea:1b:b7:e2:9b:5b:43:01:38:1b:38:f9:ac:
32:2f:b1:7c:b6:01:f6:7a:f2:db:62:9b:42:14:7a:
5d:01:cb:16:db:e9:46:8e:0d:38:0b:5d:86:cb:c3:
a7:1d:26:00:7a:ba:4f:b4:42:91:ce:ad:df:38:6e:
86:e8:cf:6f:f1:09:fb:28:91:a5:35:6b:b9:9f:e1:
d9:1d:81:00:03:bd:19:86:46:b8:a0:64:bc:cb:7d:
ab:48:78:45:18:99:88:d0:f0:d0:74:90:74:43:87:
cb:0e:92:04:1d:b1:69:c9:28:e8:84:79:b9:3d:e2:
f9:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:7A:32:A8:6B:97:72:49:7D:16:F5:77:5A:16:6B:89:B2:B9:1B:D0
X509v3 Authority Key Identifier:
keyid:8D:1D:EE:96:4A:A2:6F:89:BD:10:22:76:D4:65:63:3F:B8:2E:AA:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:78:fb:6a:50:45:37:32:ba:6e:b0:c7:a1:26:9b:18:b5:31:
22:c8:ce:c4:fd:04:61:f7:07:71:fb:f5:fb:d4:cc:cf:f8:c8:
7a:44:71:ef:9b:c6:b8:e0:a9:c3:37:d1:61:67:8a:85:2e:5d:
e8:07:14:4b:da:c2:06:b8:df:d6:39:9c:6a:e4:14:11:5a:16:
30:a6:40:e1:42:ca:79:d3:82:35:8c:d8:c2:bd:f6:49:e4:2e:
31:54:bb:82:bc:90:1b:36:b1:8b:9b:77:8e:da:1a:35:13:41:
7c:f5:7c:22:6a:76:ce:16:2b:41:da:82:cf:1a:e0:c7:70:3d:
a3:3a:5a:1f:da:83:3b:6c:48:ee:cf:82:c5:7a:f6:8e:e5:3b:
37:1b:0b:e4:9a:c7:a0:67:90:32:fe:eb:cf:cd:40:b9:6d:dd:
7b:3b:e8:77:d4:8e:b6:0d:00:54:0d:4d:11:a7:4f:44:4b:a2:
84:08:0f:61:5a:d1:95:b0:0c:f5:a8:79:a4:03:3b:7b:de:7c:
5c:64:11:4b:ba:3c:c4:fc:4a:00:17:0d:d9:35:67:44:d8:76:
b0:5e:3e:bd:fa:d5:09:12:dd:13:82:38:01:d9:35:1e:e1:6e:
09:3a:9b:ca:14:0b:09:58:46:ad:53:38:cb:4f:9b:cd:5e:a8:
35:81:c4:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFafN0bYScZ7VO0tx5PhbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMWRlZTk2NGFhMjZmODliZDEwMjI3NmQ0NjU2MzNmYjgy
ZWFhMjgwHhcNMjUwODIzMDQwMDIyWhcNMjUwODI0MDQwMDIyWjAzMTEwLwYDVQQD
Eyg5ZjdhMzJhODZiOTc3MjQ5N2QxNmY1Nzc1YTE2NmI4OWIyYjkxYmQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPNP/1brze0LND2jTMcIguFiGtls
Hp2Wv9mH2Vo9WfVaRmSadipBScFVbc5VtBmqCARGcicNBiyYEr2usplRTXwLi+7L
tNcl1NWABoPynQcqRZ8MJ3yW3/lM2458gXFIqAbY5r4tPsxOQeuF72MFkJ2dWpk1
vMZDSNdfzwoNoW8PkYtlWDAO8Oobt+KbW0MBOBs4+awyL7F8tgH2evLbYptCFHpd
AcsW2+lGjg04C12Gy8OnHSYAerpPtEKRzq3fOG6G6M9v8Qn7KJGlNWu5n+HZHYEA
A70Zhka4oGS8y32rSHhFGJmI0PDQdJB0Q4fLDpIEHbFpySjohHm5PeL5HQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ96Mqhrl3JJfRb1d1oWa4myuRvQMB8GA1UdIwQY
MBaAFI0d7pZKom+JvRAidtRlYz+4LqooMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalIzdWxrcWliNG05RUNKMjFHVmpQN2d1cWlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy81NDkzNjMtMTIyOS00MTE0LWE5OTYt
MjU5NDIwZDMyNDcyLzEvalIzdWxrcWliNG05RUNKMjFHVmpQN2d1cWlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy81NDkzNjMtMTIyOS00MTE0LWE5OTYtMjU5NDIwZDMyNDcy
LzEvalIzdWxrcWliNG05RUNKMjFHVmpQN2d1cWlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgnj7alBF
NzK6brDHoSabGLUxIsjOxP0EYfcHcfv1+9TMz/jIekRx75vGuOCpwzfRYWeKhS5d
6AcUS9rCBrjf1jmcauQUEVoWMKZA4ULKedOCNYzYwr32SeQuMVS7gryQGzaxi5t3
jtoaNRNBfPV8Imp2zhYrQdqCzxrgx3A9ozpaH9qDO2xI7s+CxXr2juU7NxsL5JrH
oGeQMv7rz81AuW3dezvod9SOtg0AVA1NEadPREuihAgPYVrRlbAM9ah5pAM7e958
XGQRS7o8xPxKABcN2TVnRNh2sF4+vfrVCRLdE4I4Adk1HuFuCTqbyhQLCVhGrVM4
y0+bzV6oNYHE8Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:10:38 2025 by rpki-client