Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
File: 67YrcxkGEIQRy1VV2BvcOj_cbbg.mft (raw, json)
Hash identifier: IPdd2Xvi4pJWacy3etrXHth9X8Rt8Y7f8b9EQBeLebs=
Subject key identifier: 34:09:B1:17:25:D4:22:0A:32:7A:7B:0D:EE:0E:20:18:BD:A7:63:0B
Authority key identifier: EB:B6:2B:73:19:06:10:84:11:CB:55:55:D8:1B:DC:3A:3F:DC:6D:B8
Certificate issuer: /CN=ebb62b731906108411cb5555d81bdc3a3fdc6db8
Certificate serial: 0198D73B167A3043CDA34C1D2CB9A3CC4603
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
Manifest number: F7
Signing time: Sat 23 Aug 2025 14:00:30 +0000
Manifest this update: Sat 23 Aug 2025 14:00:30 +0000
Manifest next update: Sun 24 Aug 2025 14:00:30 +0000
Files and hashes: 1: 67YrcxkGEIQRy1VV2BvcOj_cbbg.crl (hash: JRWNBgOpKPGHKd2I/rKiF+1GI8dWrKiXvVgmCiwwG4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:16:7a:30:43:cd:a3:4c:1d:2c:b9:a3:cc:46:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebb62b731906108411cb5555d81bdc3a3fdc6db8
Validity
Not Before: Aug 23 14:00:30 2025 GMT
Not After : Aug 24 14:00:30 2025 GMT
Subject: CN=3409b11725d4220a327a7b0dee0e2018bda7630b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:74:35:ba:a8:cc:2c:b6:34:57:e9:f4:81:db:
e3:88:e0:aa:70:b0:5b:0c:cb:2f:b1:ea:41:c2:24:
e7:df:60:a0:0c:d2:29:1a:82:b2:df:fe:b6:be:85:
a4:18:fd:c4:88:ae:a9:fe:f6:86:5b:01:84:d6:db:
1d:c0:eb:f8:8a:cc:fb:2d:9c:0a:c7:26:dc:a4:b9:
5d:fa:2f:a0:ab:47:05:3f:c3:1b:e1:0a:42:de:fb:
04:76:53:f7:14:c2:d1:d4:74:f1:41:f2:43:55:d8:
8d:7e:3b:d4:0e:53:05:61:5f:1d:50:72:ea:21:56:
57:05:0d:a1:a0:63:56:fb:1a:01:74:12:d2:2d:0d:
55:5e:40:f7:7a:6a:6b:ba:80:7e:6b:97:e4:1f:94:
0b:80:7c:3e:2e:b9:13:b2:f2:dc:81:b1:3b:93:b7:
69:44:d2:be:fb:38:4c:71:c3:31:94:7b:58:77:bf:
f8:26:af:f9:21:e1:16:5f:a6:33:8c:56:d2:e0:95:
21:8d:d2:53:df:46:27:6b:7b:69:86:97:ab:b9:46:
2f:3c:f0:a2:fc:d3:6d:28:2e:5c:d6:ae:0c:97:cf:
5f:16:fe:a6:9c:fa:db:7a:82:b3:a3:80:f2:6a:86:
68:5b:63:05:9a:7e:62:d6:c3:0e:01:77:78:73:41:
29:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:09:B1:17:25:D4:22:0A:32:7A:7B:0D:EE:0E:20:18:BD:A7:63:0B
X509v3 Authority Key Identifier:
keyid:EB:B6:2B:73:19:06:10:84:11:CB:55:55:D8:1B:DC:3A:3F:DC:6D:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:f7:34:30:2f:be:cf:0e:36:db:0b:83:ae:8c:a0:cd:6c:eb:
64:35:4a:67:1e:db:92:a5:f1:3f:e0:bc:0a:5b:84:b0:5a:48:
f7:27:f9:d9:e7:54:6e:fa:67:75:95:df:7a:e2:7a:0e:60:e5:
80:b0:92:54:50:23:85:c7:7a:39:74:18:d6:97:e6:f3:c2:09:
c5:1b:26:36:ec:10:6b:70:73:78:7e:c7:53:df:f7:83:99:96:
1f:cf:ce:9d:d0:89:20:3d:13:a1:05:b5:78:85:3a:37:a2:b2:
e4:3c:36:f3:ae:5c:31:3d:36:c5:c5:70:56:36:6c:2c:fe:f0:
99:b6:78:a6:a6:20:4f:16:e1:98:d9:2a:33:6e:7a:03:07:88:
1e:c5:01:22:28:c6:20:04:86:5e:17:c6:7d:87:7a:88:d4:e3:
f2:e6:29:6c:e4:75:9f:ae:30:6d:53:5e:12:c3:ec:1f:19:81:
d5:6b:75:88:f9:dd:00:c2:c2:b7:b5:7d:2e:bc:83:2b:29:f5:
fb:ce:30:8d:97:2d:54:09:c9:bc:d7:32:b5:91:7b:22:2b:a0:
44:fb:1d:65:e7:b5:f6:7f:93:60:ec:52:33:7d:5b:7d:0c:d1:
44:7a:2a:21:1e:01:6a:4d:c7:2b:fe:6f:5e:04:e2:38:2f:df:
a2:b9:c4:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXOxZ6MEPNo0wdLLmjzEYDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGViYjYyYjczMTkwNjEwODQxMWNiNTU1NWQ4MWJkYzNhM2Zk
YzZkYjgwHhcNMjUwODIzMTQwMDMwWhcNMjUwODI0MTQwMDMwWjAzMTEwLwYDVQQD
EygzNDA5YjExNzI1ZDQyMjBhMzI3YTdiMGRlZTBlMjAxOGJkYTc2MzBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHQ1uqjMLLY0V+n0gdvjiOCqcLBb
DMsvsepBwiTn32CgDNIpGoKy3/62voWkGP3EiK6p/vaGWwGE1tsdwOv4isz7LZwK
xybcpLld+i+gq0cFP8Mb4QpC3vsEdlP3FMLR1HTxQfJDVdiNfjvUDlMFYV8dUHLq
IVZXBQ2hoGNW+xoBdBLSLQ1VXkD3empruoB+a5fkH5QLgHw+LrkTsvLcgbE7k7dp
RNK++zhMccMxlHtYd7/4Jq/5IeEWX6YzjFbS4JUhjdJT30Yna3tphperuUYvPPCi
/NNtKC5c1q4Ml89fFv6mnPrbeoKzo4DyaoZoW2MFmn5i1sMOAXd4c0EpGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDQJsRcl1CIKMnp7De4OIBi9p2MLMB8GA1UdIwQY
MBaAFOu2K3MZBhCEEctVVdgb3Do/3G24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNjdZcmN4a0dFSVFSeTFWVjJCdmNPal9jYmJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zMzJmMGEtNTdkMS00MGQwLWE4NmIt
NzcyMTNmOTkxZGI5LzEvNjdZcmN4a0dFSVFSeTFWVjJCdmNPal9jYmJnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS8zMzJmMGEtNTdkMS00MGQwLWE4NmItNzcyMTNmOTkxZGI5
LzEvNjdZcmN4a0dFSVFSeTFWVjJCdmNPal9jYmJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi/c0MC++
zw422wuDroygzWzrZDVKZx7bkqXxP+C8CluEsFpI9yf52edUbvpndZXfeuJ6DmDl
gLCSVFAjhcd6OXQY1pfm88IJxRsmNuwQa3BzeH7HU9/3g5mWH8/OndCJID0ToQW1
eIU6N6Ky5Dw2865cMT02xcVwVjZsLP7wmbZ4pqYgTxbhmNkqM256AweIHsUBIijG
IASGXhfGfYd6iNTj8uYpbOR1n64wbVNeEsPsHxmB1Wt1iPndAMLCt7V9LryDKyn1
+84wjZctVAnJvNcytZF7IiugRPsdZee19n+TYOxSM31bfQzRRHoqIR4Bak3HK/5v
XgTiOC/fornEsA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 19:47:48 2025 by rpki-client