Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
File: TvMzZvDPXk-oBO730eKSlO6lFIw.mft (raw, json)
Hash identifier: T2NrhOWjor88Wv67Wv7YxL8dWpEwa+SBujQcwh/d140=
Subject key identifier: D5:C1:13:6C:61:45:0F:7E:2A:5C:53:F6:BC:B0:3F:0D:E8:EE:C2:81
Authority key identifier: 4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
Certificate issuer: /CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Certificate serial: 0198D5F1A255592609BB34CADDA6D5AF5C86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
Manifest number: 02E3
Signing time: Sat 23 Aug 2025 08:00:39 +0000
Manifest this update: Sat 23 Aug 2025 08:00:39 +0000
Manifest next update: Sun 24 Aug 2025 08:00:39 +0000
Files and hashes: 1: TvMzZvDPXk-oBO730eKSlO6lFIw.crl (hash: UA3XPKVqAuG+Pgiq3+qtHx9aWUMYxhhIxzmRskaPlzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:a2:55:59:26:09:bb:34:ca:dd:a6:d5:af:5c:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Validity
Not Before: Aug 23 08:00:39 2025 GMT
Not After : Aug 24 08:00:39 2025 GMT
Subject: CN=d5c1136c61450f7e2a5c53f6bcb03f0de8eec281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:01:24:2f:fe:9e:7f:7d:6b:97:1c:97:a5:d9:
2e:83:2f:c7:09:5d:a3:f6:7f:2b:e2:fb:d4:9e:0d:
b1:35:e9:61:6e:d4:f5:be:8a:2d:69:eb:0a:42:6f:
94:f8:99:45:01:17:0d:00:fa:25:19:96:9a:9d:2c:
bf:e9:93:89:e5:ca:f5:a2:fe:10:1a:75:35:ce:9d:
61:c2:ee:c5:f0:e6:95:94:fd:1e:ae:00:32:ac:fb:
0a:c8:23:53:02:be:2a:3a:b9:32:fb:59:dd:67:d6:
63:53:11:86:26:b2:8e:fa:07:86:00:8e:4c:2c:f4:
40:fe:4d:15:d2:74:08:2a:53:85:ac:f2:b8:41:13:
3a:43:0a:aa:72:8a:1a:df:79:7c:7b:f0:47:45:83:
f6:8a:e4:cc:cd:30:46:ba:53:12:19:38:1b:cb:5c:
63:3b:8c:60:c4:9d:cb:1d:d3:2b:d5:de:9c:32:19:
2d:77:9d:62:a9:0c:f1:59:6b:6a:2e:a6:78:0c:96:
b5:c3:ad:39:09:00:52:5a:e2:d9:2c:bb:0c:a9:e0:
07:7e:36:6a:28:37:26:2e:63:72:a4:cd:0c:c5:50:
33:d7:ac:e3:91:50:99:04:89:3a:e6:c3:56:b7:e5:
92:c5:4a:44:e3:b0:01:d2:6d:34:dd:16:6a:a4:50:
7a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C1:13:6C:61:45:0F:7E:2A:5C:53:F6:BC:B0:3F:0D:E8:EE:C2:81
X509v3 Authority Key Identifier:
keyid:4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:f0:15:ed:f3:13:b4:43:cb:fb:55:cc:8d:2e:c4:e1:15:61:
91:d9:80:59:bf:95:bf:c0:6c:fc:ec:d3:48:f8:b3:33:ac:bd:
e0:f7:2a:d7:ca:f7:5e:3f:6a:71:2c:fb:73:68:4d:b0:04:0a:
fd:fb:d3:c9:88:0f:42:97:e7:88:b2:f3:2e:4e:fa:e5:b1:f6:
f0:c6:8b:26:3c:f2:cf:2b:3c:78:fd:b9:da:cc:a8:be:f2:12:
bf:02:fb:d9:c0:56:1c:17:29:fb:01:15:7d:02:be:69:58:ab:
4e:62:2c:92:29:9b:92:d8:c1:d6:ac:8f:c8:e7:a3:98:32:fd:
87:ee:40:69:30:c8:4b:0a:12:ce:0a:69:fb:66:aa:f1:78:67:
f1:6a:db:54:9d:4f:6a:1e:f2:64:f8:67:8b:ae:e4:d4:fc:d9:
f9:14:d6:61:1e:c9:13:bb:9b:9b:5d:ae:9a:96:a9:c0:6d:19:
31:fd:14:7c:1c:0d:a2:49:8a:ce:42:62:d7:88:54:12:14:b7:
ee:b7:6b:c7:0c:bb:d9:8f:5a:3c:fa:8b:89:08:ca:0c:48:55:
4f:ab:a0:a0:db:d1:72:01:bf:50:5e:6d:5a:d0:a0:2d:40:e1:
96:15:ef:77:ec:5e:d6:6f:13:1d:31:1c:aa:3e:6a:8e:5a:2b:
49:35:a9:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjV8aJVWSYJuzTK3abVr1yGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlZjMzMzY2ZjBjZjVlNGZhODA0ZWVmN2QxZTI5Mjk0ZWVh
NTE0OGMwHhcNMjUwODIzMDgwMDM5WhcNMjUwODI0MDgwMDM5WjAzMTEwLwYDVQQD
EyhkNWMxMTM2YzYxNDUwZjdlMmE1YzUzZjZiY2IwM2YwZGU4ZWVjMjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQEkL/6ef31rlxyXpdkugy/HCV2j
9n8r4vvUng2xNelhbtT1vootaesKQm+U+JlFARcNAPolGZaanSy/6ZOJ5cr1ov4Q
GnU1zp1hwu7F8OaVlP0ergAyrPsKyCNTAr4qOrky+1ndZ9ZjUxGGJrKO+geGAI5M
LPRA/k0V0nQIKlOFrPK4QRM6Qwqqcooa33l8e/BHRYP2iuTMzTBGulMSGTgby1xj
O4xgxJ3LHdMr1d6cMhktd51iqQzxWWtqLqZ4DJa1w605CQBSWuLZLLsMqeAHfjZq
KDcmLmNypM0MxVAz16zjkVCZBIk65sNWt+WSxUpE47AB0m003RZqpFB6hwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNXBE2xhRQ9+KlxT9rywPw3o7sKBMB8GA1UdIwQY
MBaAFE7zM2bwz15PqATu99HikpTupRSMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8zODQ0OWMtYWFkOC00MDVhLWI3Zjct
NmQ5ZjM4NGQyYmMzLzEvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8zODQ0OWMtYWFkOC00MDVhLWI3ZjctNmQ5ZjM4NGQyYmMz
LzEvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFfAV7fMT
tEPL+1XMjS7E4RVhkdmAWb+Vv8Bs/OzTSPizM6y94Pcq18r3Xj9qcSz7c2hNsAQK
/fvTyYgPQpfniLLzLk765bH28MaLJjzyzys8eP252syovvISvwL72cBWHBcp+wEV
fQK+aVirTmIskimbktjB1qyPyOejmDL9h+5AaTDISwoSzgpp+2aq8Xhn8WrbVJ1P
ah7yZPhni67k1PzZ+RTWYR7JE7ubm12umpapwG0ZMf0UfBwNokmKzkJi14hUEhS3
7rdrxwy72Y9aPPqLiQjKDEhVT6ugoNvRcgG/UF5tWtCgLUDhlhXvd+xe1m8THTEc
qj5qjlorSTWpgQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:26:35 2025 by rpki-client