Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
File: tDpxymDXTkXSuXSKsQZlKf0BM34.mft (raw, json)
Hash identifier: DF5aztFO1Amfk3Jl2aW8YiRiYWMzYE1KF1GMF+owWrE=
Subject key identifier: EF:52:98:BD:DC:C9:F7:D9:F7:7D:71:ED:1C:F5:0F:55:A3:1B:6D:4F
Authority key identifier: B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
Certificate issuer: /CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Certificate serial: 0198D6606DD7A2F1F22F3DA26062602A4455
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 10:01:40 +0000
Manifest this update: Sat 23 Aug 2025 10:01:40 +0000
Manifest next update: Sun 24 Aug 2025 10:01:40 +0000
Files and hashes: 1: M5_-d1GdbRA2RUGO5npOtRSNEB8.roa (hash: DYZ2j8UdvivRy1b6Q4G0ZdvY6U48+tpNnHP/gql8rCo=)
2: tDpxymDXTkXSuXSKsQZlKf0BM34.crl (hash: cIDWqWdk/kc+uYgF3jM0LlJ3tXnY3emRg0/w94iuVXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:6d:d7:a2:f1:f2:2f:3d:a2:60:62:60:2a:44:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Validity
Not Before: Aug 23 10:01:40 2025 GMT
Not After : Aug 24 10:01:40 2025 GMT
Subject: CN=ef5298bddcc9f7d9f77d71ed1cf50f55a31b6d4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:c5:00:c6:20:ff:c1:92:d8:2b:2b:b9:9d:68:
b2:c5:1a:ed:1d:c5:ad:c8:d4:95:69:d3:00:9b:13:
83:52:0a:9e:6a:5d:9d:87:0b:51:6e:b7:29:bd:3a:
b3:76:74:fa:0b:f3:cd:5e:f2:fe:e8:cf:15:bd:30:
b7:18:50:6e:c2:b3:0c:8d:90:79:3d:e2:af:b3:36:
e3:ba:f6:29:00:e3:a5:65:a5:05:77:13:a7:c0:52:
cc:8b:8e:a3:e0:9e:99:6e:de:16:f7:e1:bf:37:ab:
ee:58:04:a0:98:ee:56:b9:ce:46:5e:96:22:e8:d3:
46:7e:29:41:c8:52:37:a1:21:12:30:a1:dd:ed:1d:
fa:18:00:32:95:b1:e6:05:31:73:7d:6c:c2:10:13:
26:8d:02:09:b7:7e:90:72:07:b4:99:a0:7f:5c:3d:
fc:30:08:49:01:50:83:74:d2:19:63:83:47:f7:04:
4f:75:77:6d:58:6e:6f:40:6b:ec:f7:d5:71:eb:05:
a7:ce:24:a3:53:79:85:84:6c:b3:b8:35:bb:45:44:
20:fd:7e:a6:91:cd:b6:6c:5b:fb:70:e2:1c:03:2f:
77:c5:9d:4c:04:3e:31:d8:73:6a:23:dd:d4:d6:57:
fd:cf:05:cd:9c:a1:c8:a0:7b:86:57:1b:bd:d1:83:
d9:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:52:98:BD:DC:C9:F7:D9:F7:7D:71:ED:1C:F5:0F:55:A3:1B:6D:4F
X509v3 Authority Key Identifier:
keyid:B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:d2:c9:41:53:9c:55:32:b5:c7:73:68:e4:e4:f5:d9:90:8d:
98:1e:4d:fe:dc:e7:ba:d0:12:81:dd:cf:19:ae:d1:af:f5:24:
30:78:59:aa:0e:89:97:fb:2c:5e:5a:d8:e3:52:c2:06:09:39:
f0:60:27:22:a4:f6:05:a5:ba:0d:9a:c7:91:10:ca:ee:26:23:
48:a1:f8:fe:cb:d8:ad:dc:93:1e:be:fc:5c:8c:84:47:cc:05:
72:78:0b:79:af:3d:9a:cf:cf:9e:93:b0:1b:8d:55:5e:50:a8:
64:18:78:be:16:a0:f2:46:d2:ac:ff:8b:a2:04:fd:0f:d8:f3:
09:57:a2:df:c9:8e:c3:c1:ff:e9:02:e9:e7:aa:97:f7:35:29:
cd:c8:bb:cd:08:47:82:b6:0c:9d:9e:43:b9:8d:75:31:25:ee:
b8:3d:00:11:05:61:fc:fa:e5:22:1a:eb:e2:45:11:d1:87:72:
b7:e0:98:9d:7e:e4:2e:51:a9:5e:55:2c:1d:b0:da:32:22:a9:
1d:72:7d:e2:c2:96:fa:a6:0c:89:f5:c1:06:46:0a:6d:6a:2a:
75:a7:0c:93:b4:e8:74:c6:86:62:2e:b7:78:5d:2f:a3:f8:87:
28:eb:7c:4c:92:01:fa:9f:ea:c6:4f:47:bd:f1:33:1a:53:ef:
47:b3:1a:c3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYG3XovHyLz2iYGJgKkRVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0M2E3MWNhNjBkNzRlNDVkMmI5NzQ4YWIxMDY2NTI5ZmQw
MTMzN2UwHhcNMjUwODIzMTAwMTQwWhcNMjUwODI0MTAwMTQwWjAzMTEwLwYDVQQD
EyhlZjUyOThiZGRjYzlmN2Q5Zjc3ZDcxZWQxY2Y1MGY1NWEzMWI2ZDRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2cUAxiD/wZLYKyu5nWiyxRrtHcWt
yNSVadMAmxODUgqeal2dhwtRbrcpvTqzdnT6C/PNXvL+6M8VvTC3GFBuwrMMjZB5
PeKvszbjuvYpAOOlZaUFdxOnwFLMi46j4J6Zbt4W9+G/N6vuWASgmO5Wuc5GXpYi
6NNGfilByFI3oSESMKHd7R36GAAylbHmBTFzfWzCEBMmjQIJt36Qcge0maB/XD38
MAhJAVCDdNIZY4NH9wRPdXdtWG5vQGvs99Vx6wWnziSjU3mFhGyzuDW7RUQg/X6m
kc22bFv7cOIcAy93xZ1MBD4x2HNqI93U1lf9zwXNnKHIoHuGVxu90YPZHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO9SmL3cyffZ931x7Rz1D1WjG21PMB8GA1UdIwQY
MBaAFLQ6ccpg105F0rl0irEGZSn9ATN+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERweHltRFhUa1hTdVhTS3NRWmxLZjBCTTM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS84Y2VmNmYtZmUwOS00ZWY2LThiZjEt
Nzk4YWM0OTI4ZWQ2LzEvdERweHltRFhUa1hTdVhTS3NRWmxLZjBCTTM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS84Y2VmNmYtZmUwOS00ZWY2LThiZjEtNzk4YWM0OTI4ZWQ2
LzEvdERweHltRFhUa1hTdVhTS3NRWmxLZjBCTTM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANtLJQVOc
VTK1x3No5OT12ZCNmB5N/tznutASgd3PGa7Rr/UkMHhZqg6Jl/ssXlrY41LCBgk5
8GAnIqT2BaW6DZrHkRDK7iYjSKH4/svYrdyTHr78XIyER8wFcngLea89ms/PnpOw
G41VXlCoZBh4vhag8kbSrP+LogT9D9jzCVei38mOw8H/6QLp56qX9zUpzci7zQhH
grYMnZ5DuY11MSXuuD0AEQVh/PrlIhrr4kUR0Ydyt+CYnX7kLlGpXlUsHbDaMiKp
HXJ94sKW+qYMifXBBkYKbWoqdacMk7TodMaGYi63eF0vo/iHKOt8TJIB+p/qxk9H
vfEzGlPvR7Maww==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:28:12 2025 by rpki-client