Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/b195e7-b804-4594-965e-3fd14b936eb4/1/_sQT3TZn54GV5SaKooWupRa8sZk.mft
File: _sQT3TZn54GV5SaKooWupRa8sZk.mft (raw, json)
Hash identifier: 223Q7/8XmJQV7gzHnzm9YIFCSgqK1yLqSajY5lOtArA=
Subject key identifier: 2F:81:BA:6F:62:1A:99:8E:82:93:FF:5F:29:1B:9C:9D:D1:CE:05:82
Authority key identifier: FE:C4:13:DD:36:67:E7:81:95:E5:26:8A:A2:85:AE:A5:16:BC:B1:99
Certificate issuer: /CN=fec413dd3667e78195e5268aa285aea516bcb199
Certificate serial: 0198D5BBF9F45B9B433C327C0C7EF0581DB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_sQT3TZn54GV5SaKooWupRa8sZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/b195e7-b804-4594-965e-3fd14b936eb4/1/_sQT3TZn54GV5SaKooWupRa8sZk.mft
Manifest number: 1373
Signing time: Sat 23 Aug 2025 07:02:02 +0000
Manifest this update: Sat 23 Aug 2025 07:02:02 +0000
Manifest next update: Sun 24 Aug 2025 07:02:02 +0000
Files and hashes: 1: _sQT3TZn54GV5SaKooWupRa8sZk.crl (hash: 1sz4mtXLxZdORcwHdxWZL0IIExyGexpQx572zpeBSfM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/b195e7-b804-4594-965e-3fd14b936eb4/1/_sQT3TZn54GV5SaKooWupRa8sZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/b195e7-b804-4594-965e-3fd14b936eb4/1/_sQT3TZn54GV5SaKooWupRa8sZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/_sQT3TZn54GV5SaKooWupRa8sZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:f9:f4:5b:9b:43:3c:32:7c:0c:7e:f0:58:1d:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fec413dd3667e78195e5268aa285aea516bcb199
Validity
Not Before: Aug 23 07:02:02 2025 GMT
Not After : Aug 24 07:02:02 2025 GMT
Subject: CN=2f81ba6f621a998e8293ff5f291b9c9dd1ce0582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fc:e1:d6:4f:24:0a:5f:d0:f0:6b:7b:d9:51:
f4:a3:1a:cc:8f:85:f8:86:e4:c6:c4:11:de:82:96:
34:f9:c1:4e:22:6a:39:cc:90:8d:0c:f5:8e:d3:ec:
45:cc:68:09:fa:04:1e:da:b8:c8:27:77:aa:a1:67:
99:c4:1f:7a:dc:03:9f:19:61:0c:e1:81:19:29:f2:
af:bf:ae:92:7c:f3:1e:30:16:84:d8:b4:92:29:6f:
95:5f:b3:cf:25:7e:6d:ac:a4:99:24:8d:dc:06:db:
55:48:95:b6:4a:c6:0b:e1:91:76:cd:a8:cf:8a:ce:
23:00:4b:e5:b7:c2:8b:c8:a0:cd:ea:ec:64:56:7c:
05:6a:ac:2d:41:42:58:b7:98:39:df:06:c9:87:5e:
98:23:35:d6:b7:7f:12:71:4d:24:2d:99:d8:bd:fa:
c0:36:4c:ea:ba:15:64:1c:8c:9c:a7:a2:7f:d2:f1:
4e:9d:dc:81:cb:bf:8d:fe:94:94:4c:06:af:5c:c5:
fc:f3:13:56:fc:da:62:2c:ad:8a:19:c9:f9:9e:ac:
bb:9e:7a:9b:b1:32:fa:51:36:7c:86:c6:f4:3f:7d:
df:25:e5:ab:73:a6:ef:f0:ba:65:ec:4f:86:3f:af:
87:00:4d:a3:49:e2:7f:fa:6d:43:be:59:a5:03:fd:
02:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:81:BA:6F:62:1A:99:8E:82:93:FF:5F:29:1B:9C:9D:D1:CE:05:82
X509v3 Authority Key Identifier:
keyid:FE:C4:13:DD:36:67:E7:81:95:E5:26:8A:A2:85:AE:A5:16:BC:B1:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_sQT3TZn54GV5SaKooWupRa8sZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/b195e7-b804-4594-965e-3fd14b936eb4/1/_sQT3TZn54GV5SaKooWupRa8sZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/b195e7-b804-4594-965e-3fd14b936eb4/1/_sQT3TZn54GV5SaKooWupRa8sZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:15:6f:06:f5:a2:f4:35:04:ab:c4:94:3a:37:01:46:3a:3a:
16:eb:ac:e1:2c:f7:ed:9b:cd:fa:f6:08:a5:1a:9b:30:88:2a:
b2:bf:77:7e:17:15:13:8f:b5:49:f6:f9:41:1e:6b:9a:0a:e2:
1e:cd:c0:c2:1a:01:7f:c4:8c:ca:83:2f:33:8c:da:58:64:c5:
a6:b3:fa:f8:2d:de:1b:3c:89:1b:8d:da:59:aa:43:a9:15:fd:
54:16:4a:44:13:db:f9:73:22:d0:67:a1:75:c4:77:e2:f5:4c:
1e:eb:90:5e:ae:0e:01:48:6a:46:5a:30:0f:aa:8e:9f:56:0c:
9a:7a:4a:c1:88:c8:1d:82:ea:26:16:2d:f5:a3:2e:0e:5c:d9:
31:59:50:c2:34:34:75:79:d9:c0:b8:c9:11:01:ba:77:a3:70:
5b:c5:b6:e8:ed:a6:05:9e:4e:61:9d:26:3c:2c:66:10:f2:1f:
ce:4e:b7:6f:29:52:28:08:77:8b:35:6e:5d:8d:b9:f6:a6:a5:
48:77:a9:f8:3d:37:d6:b1:a2:da:0f:30:d5:84:3b:ca:bb:49:
06:1c:9d:fe:d7:be:88:94:bc:54:60:03:91:e2:6e:04:4a:dc:
05:f6:71:53:d7:c8:d9:25:ce:c6:4f:b0:e8:0b:a7:67:2d:15:
1d:66:34:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu/n0W5tDPDJ8DH7wWB2xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlYzQxM2RkMzY2N2U3ODE5NWU1MjY4YWEyODVhZWE1MTZi
Y2IxOTkwHhcNMjUwODIzMDcwMjAyWhcNMjUwODI0MDcwMjAyWjAzMTEwLwYDVQQD
EygyZjgxYmE2ZjYyMWE5OThlODI5M2ZmNWYyOTFiOWM5ZGQxY2UwNTgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfzh1k8kCl/Q8Gt72VH0oxrMj4X4
huTGxBHegpY0+cFOImo5zJCNDPWO0+xFzGgJ+gQe2rjIJ3eqoWeZxB963AOfGWEM
4YEZKfKvv66SfPMeMBaE2LSSKW+VX7PPJX5trKSZJI3cBttVSJW2SsYL4ZF2zajP
is4jAEvlt8KLyKDN6uxkVnwFaqwtQUJYt5g53wbJh16YIzXWt38ScU0kLZnYvfrA
NkzquhVkHIycp6J/0vFOndyBy7+N/pSUTAavXMX88xNW/NpiLK2KGcn5nqy7nnqb
sTL6UTZ8hsb0P33fJeWrc6bv8Lpl7E+GP6+HAE2jSeJ/+m1DvlmlA/0ChwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC+Bum9iGpmOgpP/XykbnJ3RzgWCMB8GA1UdIwQY
MBaAFP7EE902Z+eBleUmiqKFrqUWvLGZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3NRVDNUWm41NEdWNVNhS29vV3VwUmE4c1prLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9iMTk1ZTctYjgwNC00NTk0LTk2NWUt
M2ZkMTRiOTM2ZWI0LzEvX3NRVDNUWm41NEdWNVNhS29vV3VwUmE4c1prLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy9iMTk1ZTctYjgwNC00NTk0LTk2NWUtM2ZkMTRiOTM2ZWI0
LzEvX3NRVDNUWm41NEdWNVNhS29vV3VwUmE4c1prLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApxVvBvWi
9DUEq8SUOjcBRjo6Fuus4Sz37ZvN+vYIpRqbMIgqsr93fhcVE4+1Sfb5QR5rmgri
Hs3AwhoBf8SMyoMvM4zaWGTFprP6+C3eGzyJG43aWapDqRX9VBZKRBPb+XMi0Geh
dcR34vVMHuuQXq4OAUhqRlowD6qOn1YMmnpKwYjIHYLqJhYt9aMuDlzZMVlQwjQ0
dXnZwLjJEQG6d6NwW8W26O2mBZ5OYZ0mPCxmEPIfzk63bylSKAh3izVuXY259qal
SHep+D031rGi2g8w1YQ7yrtJBhyd/te+iJS8VGADkeJuBErcBfZxU9fI2SXOxk+w
6AunZy0VHWY0Tw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:49:51 2025 by rpki-client