Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
File: sPoMerwQeWkV4zW6GXgORz4CeWk.mft (raw, json)
Hash identifier: BRTlPWxNOA8o3efxli+S2Ae1CWoxIYyyTJsn7Wyrunk=
Subject key identifier: 73:3D:F6:20:EF:3B:3B:3C:16:C4:7F:E0:AF:22:45:08:4E:00:AB:85
Authority key identifier: B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69
Certificate issuer: /CN=b0fa0c7abc10796915e335ba19780e473e027969
Certificate serial: 0198D705BFC3884AF4A2587E7E6E7362224A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
Manifest number: 113C
Signing time: Sat 23 Aug 2025 13:02:14 +0000
Manifest this update: Sat 23 Aug 2025 13:02:14 +0000
Manifest next update: Sun 24 Aug 2025 13:02:14 +0000
Files and hashes: 1: Y9lkKqKsnQqZGmQo1Xo2fiLr5iU.roa (hash: 6A0trmFdZaEK+JW4D/IW96VMnZJTTVLOPMuYPUfapNM=)
2: sPoMerwQeWkV4zW6GXgORz4CeWk.crl (hash: SouWWGYbg3O+GG0NYItOPLpjBrRtcUeGl4sXKV6J3Ow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:bf:c3:88:4a:f4:a2:58:7e:7e:6e:73:62:22:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0fa0c7abc10796915e335ba19780e473e027969
Validity
Not Before: Aug 23 13:02:14 2025 GMT
Not After : Aug 24 13:02:14 2025 GMT
Subject: CN=733df620ef3b3b3c16c47fe0af2245084e00ab85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:45:2c:9b:6a:a8:ee:53:b2:3a:33:2c:c8:9f:
3d:a1:86:41:ac:83:40:38:55:e6:d9:f0:b2:53:23:
b3:2f:e6:85:64:61:4d:06:b9:03:47:cd:ee:63:78:
ee:1e:46:53:7f:54:e3:06:25:0c:13:24:e9:be:49:
13:df:22:e7:63:a9:aa:56:5c:5d:26:82:8c:36:0a:
80:77:3f:01:ab:aa:5d:17:a9:71:ce:29:81:d7:3e:
ad:2c:29:ce:b1:c9:fa:d6:bb:ff:bb:a3:fd:c6:40:
ff:64:70:75:6d:01:5c:cb:37:1a:45:a9:4a:ee:54:
0c:77:e9:2f:fd:9d:a7:2a:e5:0f:3c:ca:ff:b5:a7:
49:37:f0:28:40:59:fa:66:ef:1d:c3:a3:0b:97:85:
6e:4d:a9:62:db:d1:f1:15:b4:97:1f:3b:58:e4:73:
4f:04:27:28:7f:40:65:ac:8d:1d:68:ff:56:0d:f5:
0a:83:d6:5b:9e:82:7b:79:eb:61:f6:f1:93:66:69:
29:82:1d:ae:42:34:8e:89:2e:24:20:c6:c9:8f:a2:
61:d1:84:e2:a7:8f:a8:9d:f2:49:ad:7d:bf:23:31:
a5:b5:82:f6:98:fb:53:68:b9:b8:03:c5:df:18:ac:
c5:a6:11:df:ba:8d:3c:94:21:28:e3:c2:3b:73:a3:
3c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:3D:F6:20:EF:3B:3B:3C:16:C4:7F:E0:AF:22:45:08:4E:00:AB:85
X509v3 Authority Key Identifier:
keyid:B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:bb:3b:cf:39:09:9f:da:eb:f2:0e:8f:e4:6d:7d:74:d0:47:
cf:ec:75:25:da:16:f6:b2:99:37:33:fe:1d:54:ac:e2:c7:76:
96:ce:2d:94:f8:5c:aa:fe:17:e0:40:ee:df:0a:32:2d:76:f0:
c7:42:e9:3e:c7:b7:89:b0:e6:d9:75:c4:39:2b:dc:75:b6:55:
9c:a6:28:50:51:9b:a3:00:72:44:11:1e:1b:d4:6e:2d:ef:d0:
e1:25:19:ab:6b:84:e3:75:58:15:b6:c7:fc:1b:66:f2:34:37:
c7:d2:6f:31:a3:c9:27:bc:15:1a:d1:e7:20:6f:89:a7:c1:f9:
da:d2:9e:a2:23:49:04:44:85:d7:5e:34:5b:93:6b:85:28:c6:
5f:cc:f2:8c:c1:9b:1b:22:29:eb:ea:fb:f8:23:d2:f2:9d:f8:
f8:37:c5:ca:dd:ca:8c:01:21:ee:36:14:b7:ce:d5:2f:f4:97:
fb:5e:80:25:a0:94:50:a8:c3:2f:99:40:75:00:2d:ba:4d:f6:
56:6f:75:7d:a5:15:42:dd:00:3b:7a:cc:7e:0d:75:bc:62:b8:
62:2e:9e:e3:63:dd:ae:72:9d:ef:f2:99:89:d7:91:35:64:f1:
50:be:75:51:64:7c:f3:38:7e:6f:b2:c2:e8:ab:4c:f9:37:79:
34:01:6a:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXBb/DiEr0olh+fm5zYiJKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwZmEwYzdhYmMxMDc5NjkxNWUzMzViYTE5NzgwZTQ3M2Uw
Mjc5NjkwHhcNMjUwODIzMTMwMjE0WhcNMjUwODI0MTMwMjE0WjAzMTEwLwYDVQQD
Eyg3MzNkZjYyMGVmM2IzYjNjMTZjNDdmZTBhZjIyNDUwODRlMDBhYjg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi0Usm2qo7lOyOjMsyJ89oYZBrINA
OFXm2fCyUyOzL+aFZGFNBrkDR83uY3juHkZTf1TjBiUMEyTpvkkT3yLnY6mqVlxd
JoKMNgqAdz8Bq6pdF6lxzimB1z6tLCnOscn61rv/u6P9xkD/ZHB1bQFcyzcaRalK
7lQMd+kv/Z2nKuUPPMr/tadJN/AoQFn6Zu8dw6MLl4VuTali29HxFbSXHztY5HNP
BCcof0BlrI0daP9WDfUKg9ZbnoJ7eeth9vGTZmkpgh2uQjSOiS4kIMbJj6Jh0YTi
p4+onfJJrX2/IzGltYL2mPtTaLm4A8XfGKzFphHfuo08lCEo48I7c6M81QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHM99iDvOzs8FsR/4K8iRQhOAKuFMB8GA1UdIwQY
MBaAFLD6DHq8EHlpFeM1uhl4Dkc+AnlpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1BvTWVyd1FlV2tWNHpXNkdYZ09SejRDZVdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC85NzQ3NDktNGQ3ZS00NDUwLTk3OTMt
ZGY4NTRmNDdiYWY0LzEvc1BvTWVyd1FlV2tWNHpXNkdYZ09SejRDZVdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC85NzQ3NDktNGQ3ZS00NDUwLTk3OTMtZGY4NTRmNDdiYWY0
LzEvc1BvTWVyd1FlV2tWNHpXNkdYZ09SejRDZVdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASrs7zzkJ
n9rr8g6P5G19dNBHz+x1JdoW9rKZNzP+HVSs4sd2ls4tlPhcqv4X4EDu3woyLXbw
x0LpPse3ibDm2XXEOSvcdbZVnKYoUFGbowByRBEeG9RuLe/Q4SUZq2uE43VYFbbH
/Btm8jQ3x9JvMaPJJ7wVGtHnIG+Jp8H52tKeoiNJBESF1140W5NrhSjGX8zyjMGb
GyIp6+r7+CPS8p34+DfFyt3KjAEh7jYUt87VL/SX+16AJaCUUKjDL5lAdQAtuk32
Vm91faUVQt0AO3rMfg11vGK4Yi6e42PdrnKd7/KZideRNWTxUL51UWR88zh+b7LC
6KtM+Td5NAFqhA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:26:20 2025 by rpki-client