Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
File: tWpL1vXr8vf_2ajRzZparN5iKFw.mft (raw, json)
Hash identifier: Yx0xhp9gBD6HXPazEh8UTQMFvtZ7tdH3kSWO3TTuZmo=
Subject key identifier: 9A:9D:4A:25:DC:1C:31:1E:3C:00:FC:CC:F8:FD:A4:C1:9E:76:03:D6
Authority key identifier: B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C
Certificate issuer: /CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c
Certificate serial: 0198D5161A718A5134A51F6A37594E6E84EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
Manifest number: 0803
Signing time: Sat 23 Aug 2025 04:00:52 +0000
Manifest this update: Sat 23 Aug 2025 04:00:52 +0000
Manifest next update: Sun 24 Aug 2025 04:00:52 +0000
Files and hashes: 1: tWpL1vXr8vf_2ajRzZparN5iKFw.crl (hash: Fj0lIYXfI2E7bRDY2vqrt3hIBoFfiTfGMZZdZHRUa3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:1a:71:8a:51:34:a5:1f:6a:37:59:4e:6e:84:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c
Validity
Not Before: Aug 23 04:00:52 2025 GMT
Not After : Aug 24 04:00:52 2025 GMT
Subject: CN=9a9d4a25dc1c311e3c00fcccf8fda4c19e7603d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:79:ea:7c:84:34:ad:f9:11:0e:de:ba:62:be:
ae:07:8a:da:10:e6:33:86:12:8a:7a:2e:73:74:83:
ed:15:13:4d:2c:bd:0f:f8:6a:92:a2:f3:6c:de:da:
90:d0:b2:a6:56:b9:a1:af:7a:b0:79:39:c5:87:91:
1c:5c:af:48:2f:e8:84:8e:b0:06:34:1d:a1:e7:a7:
0c:09:31:e8:f3:cc:09:34:8a:b7:84:34:aa:a1:e0:
85:72:4b:f3:9f:30:52:ee:90:a0:9d:ae:db:8c:35:
c7:c7:fa:46:4a:6f:8d:ee:d8:13:51:01:5a:c7:74:
5d:4f:82:fb:9a:32:d9:85:f7:6c:d8:be:ec:dc:6f:
42:14:e2:67:c4:fb:02:49:05:54:2b:1d:ad:db:4c:
85:42:38:9d:7d:ab:2a:c9:94:11:df:82:2d:84:f2:
65:44:19:28:84:5d:9d:b7:44:64:48:d7:60:8d:86:
49:7d:00:7b:2a:a3:06:0e:e1:a6:e0:a5:fa:8d:f2:
dd:ce:44:b0:48:28:4e:4d:a0:5e:97:3d:4a:54:fd:
f2:d6:4c:24:2d:32:f5:0b:5a:a0:03:1b:29:9a:dc:
ae:63:cf:d7:8d:31:06:22:42:76:72:00:dd:b4:c9:
49:43:98:39:1e:a7:a1:be:52:67:7e:63:46:be:23:
a8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:9D:4A:25:DC:1C:31:1E:3C:00:FC:CC:F8:FD:A4:C1:9E:76:03:D6
X509v3 Authority Key Identifier:
keyid:B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:dd:f8:22:1d:c3:07:5a:f1:c3:07:d4:b5:08:52:7f:65:cd:
ce:d4:13:0f:ca:74:36:51:a1:2e:4a:5e:8e:7e:8b:f0:29:49:
7f:3f:bb:e7:91:8b:93:2e:32:1f:c6:54:d1:09:53:79:cb:4a:
4d:ce:d1:7a:39:c5:42:49:39:fd:9a:5b:17:ae:72:80:aa:c8:
d6:7b:72:d0:73:24:4d:ea:90:f2:fd:a8:fe:15:fa:d1:bf:ab:
96:88:e4:6c:06:3d:ea:72:f0:a0:ef:a8:6b:4c:ea:73:0e:4e:
6f:59:88:3a:d3:06:40:3e:5c:1e:73:20:a7:b0:bb:9d:48:70:
59:6c:73:6e:3c:57:45:eb:14:d0:8c:50:d4:4b:3a:81:dc:8a:
e7:79:d9:b2:5e:ce:49:49:30:47:fb:1e:c2:d8:1e:fd:c0:43:
a6:bc:92:af:89:fd:07:16:6e:87:a3:06:db:a1:c0:78:94:49:
9b:80:dd:79:a8:3e:b6:65:5a:fe:f7:0b:84:f3:bd:74:63:a8:
91:8b:01:f7:a7:be:8f:99:a6:b1:ea:6b:66:c1:a8:07:6b:69:
ff:b3:38:84:f7:cc:38:12:ad:36:e8:a6:5f:f1:88:bd:9a:aa:
e4:75:83:78:fa:6a:32:32:43:a7:a0:30:51:25:c5:08:62:e2:
32:08:8e:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFhpxilE0pR9qN1lOboTrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NmE0YmQ2ZjVlYmYyZjdmZmQ5YThkMWNkOWE1YWFjZGU2
MjI4NWMwHhcNMjUwODIzMDQwMDUyWhcNMjUwODI0MDQwMDUyWjAzMTEwLwYDVQQD
Eyg5YTlkNGEyNWRjMWMzMTFlM2MwMGZjY2NmOGZkYTRjMTllNzYwM2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3nqfIQ0rfkRDt66Yr6uB4raEOYz
hhKKei5zdIPtFRNNLL0P+GqSovNs3tqQ0LKmVrmhr3qweTnFh5EcXK9IL+iEjrAG
NB2h56cMCTHo88wJNIq3hDSqoeCFckvznzBS7pCgna7bjDXHx/pGSm+N7tgTUQFa
x3RdT4L7mjLZhfds2L7s3G9CFOJnxPsCSQVUKx2t20yFQjidfasqyZQR34IthPJl
RBkohF2dt0RkSNdgjYZJfQB7KqMGDuGm4KX6jfLdzkSwSChOTaBelz1KVP3y1kwk
LTL1C1qgAxspmtyuY8/XjTEGIkJ2cgDdtMlJQ5g5HqehvlJnfmNGviOoKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJqdSiXcHDEePAD8zPj9pMGedgPWMB8GA1UdIwQY
MBaAFLVqS9b16/L3/9mo0c2aWqzeYihcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMt
MDgyZTExMzYzZjBhLzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMtMDgyZTExMzYzZjBh
LzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc934Ih3D
B1rxwwfUtQhSf2XNztQTD8p0NlGhLkpejn6L8ClJfz+755GLky4yH8ZU0QlTectK
Tc7RejnFQkk5/ZpbF65ygKrI1nty0HMkTeqQ8v2o/hX60b+rlojkbAY96nLwoO+o
a0zqcw5Ob1mIOtMGQD5cHnMgp7C7nUhwWWxzbjxXResU0IxQ1Es6gdyK53nZsl7O
SUkwR/sewtge/cBDprySr4n9BxZuh6MG26HAeJRJm4Ddeag+tmVa/vcLhPO9dGOo
kYsB96e+j5mmseprZsGoB2tp/7M4hPfMOBKtNuimX/GIvZqq5HWDePpqMjJDp6Aw
USXFCGLiMgiO6A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 09:38:07 2025 by rpki-client