Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json)
Hash identifier: pDL7qRNEbKpm8Ts8/ueS/TzEFmy3J9ATFyXmPWAyg/Q=
Subject key identifier: 8A:FB:BE:56:DA:3D:9C:36:69:EC:4C:8D:41:00:27:FF:48:98:45:FE
Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Certificate serial: 0198D65FF22C921CEA24188C4F034F3E1D4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
Manifest number: 05EE
Signing time: Sat 23 Aug 2025 10:01:08 +0000
Manifest this update: Sat 23 Aug 2025 10:01:08 +0000
Manifest next update: Sun 24 Aug 2025 10:01:08 +0000
Files and hashes: 1: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: ch4M1QKoHlZKSZapIUQzXNI7TETviLve197U6DzX1IQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:f2:2c:92:1c:ea:24:18:8c:4f:03:4f:3e:1d:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Validity
Not Before: Aug 23 10:01:08 2025 GMT
Not After : Aug 24 10:01:08 2025 GMT
Subject: CN=8afbbe56da3d9c3669ec4c8d410027ff489845fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d1:99:d0:fa:d5:f5:80:37:94:8f:cb:86:95:
a9:45:4b:ff:54:7f:d5:74:d7:82:2a:f8:ca:7f:43:
2a:43:73:72:59:68:7c:d0:86:22:e0:36:e3:17:db:
7b:2c:1a:50:9e:72:9e:6f:f7:55:5a:a1:09:dd:75:
f3:ee:1e:9c:e4:03:5b:b3:bc:df:ee:63:fc:3a:de:
a0:da:89:b3:30:91:c2:c8:4d:ce:fd:3a:c6:76:6d:
43:6d:02:80:d7:34:c5:ce:1c:01:61:50:23:5a:dd:
0d:35:99:d4:04:c2:1b:64:6b:4b:db:9a:5c:97:a5:
5a:77:4b:7f:38:f2:5a:16:78:87:5f:e7:d3:dc:b7:
29:3f:be:a9:c8:7e:ca:b4:a1:59:d9:e4:31:fa:27:
53:ab:8d:d2:08:42:b6:5f:67:9f:24:48:08:d7:89:
2a:dc:a0:f4:e7:8f:0d:bb:d3:d8:18:13:61:e6:99:
92:51:3f:ec:89:69:dc:f8:7d:68:be:20:24:b5:5a:
c4:e9:6f:75:95:fb:f8:36:92:71:25:c7:3f:78:ff:
c4:fa:97:94:86:88:84:3c:27:44:6f:cd:c5:3f:bf:
63:2b:40:21:02:9f:2f:d2:7e:21:89:bb:cd:db:42:
37:28:9e:05:e3:99:87:ca:be:67:d0:c2:44:9b:c4:
b8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:FB:BE:56:DA:3D:9C:36:69:EC:4C:8D:41:00:27:FF:48:98:45:FE
X509v3 Authority Key Identifier:
keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:6b:a2:fc:46:16:c3:e9:43:0b:54:cc:ef:74:a2:f2:16:0c:
71:19:da:32:ae:a8:ec:fe:48:44:e0:06:c9:f4:2f:63:3c:46:
52:b3:47:ca:e6:e8:9f:62:d0:9d:67:53:d4:a3:48:5a:f0:f6:
d0:bc:cf:b9:d4:6f:35:50:c1:f5:af:8b:3d:c9:35:4f:49:05:
e7:95:ad:59:7e:8d:e3:2b:e0:a0:91:6a:ab:21:b4:9c:e4:e5:
61:66:37:5c:40:e4:0c:62:43:80:19:e1:6e:1d:f4:3f:ca:74:
da:fd:74:76:af:9b:ca:fa:12:18:18:29:79:05:a0:e2:72:fe:
f2:ac:cb:c6:40:15:be:fe:6b:07:5c:35:f0:a1:d7:83:b0:d8:
86:db:3a:83:55:41:ac:20:e5:54:0e:a5:25:96:d3:53:15:5c:
dc:ef:fd:63:b7:80:d5:08:c0:85:40:1e:41:dc:22:36:fd:4e:
60:ee:47:cd:61:83:ca:1c:4c:f9:5a:f3:04:a9:82:49:86:12:
ef:84:e0:99:c0:46:93:38:93:0f:8b:ed:5a:8d:99:0c:50:4a:
9d:77:53:8e:a6:95:ee:81:e1:6b:70:34:b5:ba:13:2b:ab:6a:
87:51:c6:e4:ce:e8:04:3c:27:18:ec:b1:66:b7:42:da:c5:25:
ab:f0:c1:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX/IskhzqJBiMTwNPPh1LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjYTU5ODMyMmE2OTkwNWE1YzZlMDI5NWEwY2ExZmI1NTY2
NmMxNGIwHhcNMjUwODIzMTAwMTA4WhcNMjUwODI0MTAwMTA4WjAzMTEwLwYDVQQD
Eyg4YWZiYmU1NmRhM2Q5YzM2NjllYzRjOGQ0MTAwMjdmZjQ4OTg0NWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNGZ0PrV9YA3lI/LhpWpRUv/VH/V
dNeCKvjKf0MqQ3NyWWh80IYi4DbjF9t7LBpQnnKeb/dVWqEJ3XXz7h6c5ANbs7zf
7mP8Ot6g2omzMJHCyE3O/TrGdm1DbQKA1zTFzhwBYVAjWt0NNZnUBMIbZGtL25pc
l6Vad0t/OPJaFniHX+fT3LcpP76pyH7KtKFZ2eQx+idTq43SCEK2X2efJEgI14kq
3KD0548Nu9PYGBNh5pmSUT/siWnc+H1oviAktVrE6W91lfv4NpJxJcc/eP/E+peU
hoiEPCdEb83FP79jK0AhAp8v0n4hibvN20I3KJ4F45mHyr5n0MJEm8S4fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIr7vlbaPZw2aexMjUEAJ/9ImEX+MB8GA1UdIwQY
MBaAFHylmDIqaZBaXG4ClaDKH7VWZsFLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUt
NTgwZDg3Njg4NWExLzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUtNTgwZDg3Njg4NWEx
LzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACGui/EYW
w+lDC1TM73Si8hYMcRnaMq6o7P5IROAGyfQvYzxGUrNHyubon2LQnWdT1KNIWvD2
0LzPudRvNVDB9a+LPck1T0kF55WtWX6N4yvgoJFqqyG0nOTlYWY3XEDkDGJDgBnh
bh30P8p02v10dq+byvoSGBgpeQWg4nL+8qzLxkAVvv5rB1w18KHXg7DYhts6g1VB
rCDlVA6lJZbTUxVc3O/9Y7eA1QjAhUAeQdwiNv1OYO5HzWGDyhxM+VrzBKmCSYYS
74TgmcBGkziTD4vtWo2ZDFBKnXdTjqaV7oHha3A0tboTK6tqh1HG5M7oBDwnGOyx
ZrdC2sUlq/DByA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 16:07:56 2025 by rpki-client