Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.mft
File: R2Bl1x8emPmnynjmFOz19G1aZDw.mft (raw, json)
Hash identifier: aSe9ZxA5EFqnJ038EavlYfmh8czXgsK342ky5w14A/8=
Subject key identifier: 52:93:C3:71:B2:AE:FF:BF:39:08:63:0F:D8:42:FF:94:EE:5C:51:1B
Authority key identifier: 47:60:65:D7:1F:1E:98:F9:A7:CA:78:E6:14:EC:F5:F4:6D:5A:64:3C
Certificate issuer: /CN=476065d71f1e98f9a7ca78e614ecf5f46d5a643c
Certificate serial: 0198D65FD02999EEAA0E2DA25A9661D5BA09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R2Bl1x8emPmnynjmFOz19G1aZDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.mft
Manifest number: E8
Signing time: Sat 23 Aug 2025 10:01:00 +0000
Manifest this update: Sat 23 Aug 2025 10:01:00 +0000
Manifest next update: Sun 24 Aug 2025 10:01:00 +0000
Files and hashes: 1: R2Bl1x8emPmnynjmFOz19G1aZDw.crl (hash: 16liRBGTNxBBauFkGkTYDqa4UHey/EtOvlDLeaHOOuA=)
2: lASkSWhNSFerShHIOly6CM5etwY.roa (hash: eTZvYlddER+/7D2hoV0jNRxfkb0vM+l4ayTlpERiEYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/R2Bl1x8emPmnynjmFOz19G1aZDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:d0:29:99:ee:aa:0e:2d:a2:5a:96:61:d5:ba:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=476065d71f1e98f9a7ca78e614ecf5f46d5a643c
Validity
Not Before: Aug 23 10:01:00 2025 GMT
Not After : Aug 24 10:01:00 2025 GMT
Subject: CN=5293c371b2aeffbf3908630fd842ff94ee5c511b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:75:40:35:8f:20:05:dc:f1:de:03:43:d5:db:
c1:fe:a5:2b:ee:5f:c9:7c:e2:9e:79:d3:cc:57:99:
6f:1c:55:f1:ec:9a:ac:22:ff:43:dc:59:ad:0e:f3:
54:0c:45:b5:92:6a:ba:d2:3e:8c:96:04:da:72:f8:
cc:0b:01:34:4b:df:bd:59:ee:da:70:cc:6d:b4:36:
4c:71:ad:fb:9c:b8:d0:9f:76:a1:53:9e:75:dd:02:
ba:3f:4b:d1:7c:f2:62:34:24:b2:ba:79:cd:7e:b1:
44:f5:11:ce:87:f6:ff:75:2d:ad:93:ca:c6:96:b5:
4d:22:91:62:b4:77:d3:5e:1f:7c:63:96:38:19:05:
65:1b:ca:4e:77:d8:61:3b:ae:6b:ed:3e:02:64:09:
d8:9e:c8:0c:7f:c2:a8:dc:64:06:11:a0:cd:29:0a:
82:86:6d:a5:df:56:b7:80:e6:af:ad:e2:0a:1f:f1:
b8:a0:49:d7:00:ef:d3:79:d5:21:87:a3:98:6c:8e:
b5:65:06:95:e7:65:e9:78:d6:90:c4:1c:b1:6f:42:
93:a6:bb:85:d4:2e:77:14:dc:aa:cf:68:95:05:90:
8e:7e:eb:47:8f:b1:9f:88:fa:db:b1:3a:e0:bc:80:
f2:52:85:ce:57:85:f4:62:54:83:ac:1f:5f:57:93:
12:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:93:C3:71:B2:AE:FF:BF:39:08:63:0F:D8:42:FF:94:EE:5C:51:1B
X509v3 Authority Key Identifier:
keyid:47:60:65:D7:1F:1E:98:F9:A7:CA:78:E6:14:EC:F5:F4:6D:5A:64:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R2Bl1x8emPmnynjmFOz19G1aZDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:14:ab:a6:a5:cb:6e:b0:42:73:8f:72:8e:16:82:73:ca:28:
24:3d:50:7a:bb:1d:c0:9c:f2:eb:41:6e:3e:85:e1:2c:60:bd:
56:7f:01:da:89:e9:65:3f:8b:18:09:37:be:50:65:40:1f:d0:
aa:a0:0e:9e:5b:fa:81:10:2f:69:b6:35:0f:c7:c7:83:1b:f6:
8b:b8:c2:6f:32:9c:9e:ac:9a:2e:13:79:38:de:9c:cf:59:d8:
85:08:14:fe:b6:6a:f6:7c:24:18:b5:15:88:b4:6c:11:87:64:
c0:37:8b:ef:b5:5f:9f:7a:13:69:7b:af:a2:42:63:7c:ab:b1:
e1:76:b7:02:cf:63:73:b6:c7:40:32:19:6d:36:6c:4a:99:4a:
98:0c:7a:5c:5f:25:79:07:36:d7:a2:7f:1b:b9:1c:b7:0a:6a:
95:fd:53:29:f6:4f:24:3a:44:df:ea:85:2b:59:48:95:f6:b5:
c5:bc:1b:7a:f1:4c:f5:bf:b6:f3:70:9f:76:75:8c:da:83:fb:
1c:dc:b4:8c:dc:5f:6c:34:37:c6:af:5d:35:ba:b9:a1:a7:65:
5b:11:c5:5c:63:f0:77:5e:cc:3d:73:7b:70:76:e2:32:78:0e:
7a:4f:7b:a9:51:e3:f8:c8:b3:86:42:49:3d:9b:10:ed:54:6d:
2b:61:7d:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX9Apme6qDi2iWpZh1boJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3NjA2NWQ3MWYxZTk4ZjlhN2NhNzhlNjE0ZWNmNWY0NmQ1
YTY0M2MwHhcNMjUwODIzMTAwMTAwWhcNMjUwODI0MTAwMTAwWjAzMTEwLwYDVQQD
Eyg1MjkzYzM3MWIyYWVmZmJmMzkwODYzMGZkODQyZmY5NGVlNWM1MTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3VANY8gBdzx3gND1dvB/qUr7l/J
fOKeedPMV5lvHFXx7JqsIv9D3FmtDvNUDEW1kmq60j6MlgTacvjMCwE0S9+9We7a
cMxttDZMca37nLjQn3ahU5513QK6P0vRfPJiNCSyunnNfrFE9RHOh/b/dS2tk8rG
lrVNIpFitHfTXh98Y5Y4GQVlG8pOd9hhO65r7T4CZAnYnsgMf8Ko3GQGEaDNKQqC
hm2l31a3gOavreIKH/G4oEnXAO/TedUhh6OYbI61ZQaV52XpeNaQxByxb0KTpruF
1C53FNyqz2iVBZCOfutHj7GfiPrbsTrgvIDyUoXOV4X0YlSDrB9fV5MSiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFKTw3Gyrv+/OQhjD9hC/5TuXFEbMB8GA1UdIwQY
MBaAFEdgZdcfHpj5p8p45hTs9fRtWmQ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUjJCbDF4OGVtUG1ueW5qbUZPejE5RzFhWkR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS81MjZmM2UtODkyNC00OGJkLWE3NzIt
YjUxOTUzMDM3OTkzLzEvUjJCbDF4OGVtUG1ueW5qbUZPejE5RzFhWkR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS81MjZmM2UtODkyNC00OGJkLWE3NzItYjUxOTUzMDM3OTkz
LzEvUjJCbDF4OGVtUG1ueW5qbUZPejE5RzFhWkR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYBSrpqXL
brBCc49yjhaCc8ooJD1QersdwJzy60FuPoXhLGC9Vn8B2onpZT+LGAk3vlBlQB/Q
qqAOnlv6gRAvabY1D8fHgxv2i7jCbzKcnqyaLhN5ON6cz1nYhQgU/rZq9nwkGLUV
iLRsEYdkwDeL77Vfn3oTaXuvokJjfKux4Xa3As9jc7bHQDIZbTZsSplKmAx6XF8l
eQc216J/G7kctwpqlf1TKfZPJDpE3+qFK1lIlfa1xbwbevFM9b+283CfdnWM2oP7
HNy0jNxfbDQ3xq9dNbq5oadlWxHFXGPwd17MPXN7cHbiMngOek97qVHj+MizhkJJ
PZsQ7VRtK2F95A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:38:45 2025 by rpki-client