Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
File: cHl9sHv21Fl6wtyL40-JKYAI8s0.mft (raw, json)
Hash identifier: 1eRmKO7HAX6CcpfVlHZCH8CCxXkZOENFekcKP6ZLPgA=
Subject key identifier: 84:D1:DB:B7:EB:FF:E5:65:2F:06:26:5C:C8:AF:6A:7F:13:FA:BD:78
Authority key identifier: 70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
Certificate issuer: /CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Certificate serial: 0198D5F1404BDBF5164F7F30B7B2008DC483
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
Manifest number: 164E
Signing time: Sat 23 Aug 2025 08:00:14 +0000
Manifest this update: Sat 23 Aug 2025 08:00:14 +0000
Manifest next update: Sun 24 Aug 2025 08:00:14 +0000
Files and hashes: 1: aSlfyLBw9tgMgXUQzZob6GMDMuM.roa (hash: DQ6riuAx/+y5wvPOEmkDzdZnToFJiPSBUt3sxo+9O3s=)
2: cHl9sHv21Fl6wtyL40-JKYAI8s0.crl (hash: c2rCnRrVgS8OQxbmNQih19sLjObk+8GMgiPr7jA1q68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:40:4b:db:f5:16:4f:7f:30:b7:b2:00:8d:c4:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Validity
Not Before: Aug 23 08:00:14 2025 GMT
Not After : Aug 24 08:00:14 2025 GMT
Subject: CN=84d1dbb7ebffe5652f06265cc8af6a7f13fabd78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a2:a0:ee:d8:14:10:75:f3:6b:ce:d0:f8:cb:
84:db:a6:5d:6d:a6:0f:11:34:ef:9c:53:98:62:03:
ea:6c:a3:22:53:6e:56:4f:df:bd:af:a4:53:55:e0:
bf:7a:07:1a:b6:0f:58:dd:04:7e:5d:2b:38:a4:94:
16:7c:89:14:50:37:60:f2:1a:dc:bd:01:d1:43:c6:
03:19:e4:23:94:bb:af:d7:aa:42:ea:2c:08:5b:09:
eb:02:2d:b1:6a:f3:9e:42:11:de:27:ae:2e:8c:fc:
47:db:e5:5b:70:5e:85:c4:39:ec:62:60:e9:e2:d6:
15:b4:ae:ea:1e:9d:b7:bb:1c:0c:6d:d1:45:26:21:
0b:4b:0f:0a:33:54:15:17:db:3e:75:40:b6:72:a7:
a9:c5:4a:b6:ea:ea:b6:40:e1:2a:53:70:ba:fc:f9:
94:31:e0:0f:aa:6a:4b:2c:94:ca:16:75:97:03:b0:
45:a8:24:85:72:a3:d5:80:18:2c:ec:4e:5c:01:17:
02:ea:8f:0f:cc:6c:66:fb:7e:1b:45:04:b8:26:05:
2e:1a:fa:2e:f0:da:02:a7:53:17:4c:e9:9b:e3:ec:
53:a5:20:0b:d4:65:d4:3a:b4:e1:d2:b7:06:90:bc:
eb:8a:b8:16:04:25:10:0a:b4:de:84:57:21:7e:56:
8e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D1:DB:B7:EB:FF:E5:65:2F:06:26:5C:C8:AF:6A:7F:13:FA:BD:78
X509v3 Authority Key Identifier:
keyid:70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:15:6b:62:0c:90:9f:18:d9:ff:7f:63:2a:bd:11:8c:1e:64:
90:5b:2b:08:3f:33:3a:84:65:6e:61:db:67:b8:5e:5f:0f:c2:
b5:7e:8a:1a:70:a6:73:fe:52:8b:0c:e1:dd:2c:05:21:43:cf:
fd:22:ac:80:96:fe:69:8c:d0:5b:d4:4e:7b:61:56:2b:a6:fe:
e5:0d:41:2b:7e:e3:28:10:63:8d:f2:fb:03:81:75:6f:23:c6:
e5:3e:18:8b:59:39:16:6e:b7:9d:8e:ab:d0:50:b5:61:7a:0d:
6d:8a:96:23:b3:b1:e2:73:35:3e:51:75:55:b7:c1:42:16:0b:
d2:1d:1c:94:8a:9f:18:39:91:da:5c:6f:9a:92:fb:6d:57:f7:
1b:b6:e0:9c:0e:1b:ad:a2:91:3f:9d:50:16:aa:b7:fd:45:1d:
6f:68:c1:db:84:0d:25:72:f6:1b:85:00:2d:3f:30:ab:b3:24:
6f:c6:8b:3c:64:3f:e0:89:99:3d:5a:0d:6a:28:c4:d5:36:80:
29:06:98:ad:1d:bd:b0:0a:a4:0d:60:66:1b:5b:68:19:95:3f:
3a:c7:fe:f0:dd:2a:f1:b5:4d:35:67:1c:8a:9e:9d:5f:23:25:
35:ba:63:83:df:5b:fd:00:51:84:36:61:82:14:93:a7:e0:69:
70:71:4e:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjV8UBL2/UWT38wt7IAjcSDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwNzk3ZGIwN2JmNmQ0NTk3YWMyZGM4YmUzNGY4OTI5ODAw
OGYyY2QwHhcNMjUwODIzMDgwMDE0WhcNMjUwODI0MDgwMDE0WjAzMTEwLwYDVQQD
Eyg4NGQxZGJiN2ViZmZlNTY1MmYwNjI2NWNjOGFmNmE3ZjEzZmFiZDc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkqKg7tgUEHXza87Q+MuE26ZdbaYP
ETTvnFOYYgPqbKMiU25WT9+9r6RTVeC/egcatg9Y3QR+XSs4pJQWfIkUUDdg8hrc
vQHRQ8YDGeQjlLuv16pC6iwIWwnrAi2xavOeQhHeJ64ujPxH2+VbcF6FxDnsYmDp
4tYVtK7qHp23uxwMbdFFJiELSw8KM1QVF9s+dUC2cqepxUq26uq2QOEqU3C6/PmU
MeAPqmpLLJTKFnWXA7BFqCSFcqPVgBgs7E5cARcC6o8PzGxm+34bRQS4JgUuGvou
8NoCp1MXTOmb4+xTpSAL1GXUOrTh0rcGkLzrirgWBCUQCrTehFchflaO2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFITR27fr/+VlLwYmXMivan8T+r14MB8GA1UdIwQY
MBaAFHB5fbB79tRZesLci+NPiSmACPLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9jMmVlN2EtY2JiNy00NzBlLWI5NjUt
OTA3ZGFhNDY0NjNiLzEvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS9jMmVlN2EtY2JiNy00NzBlLWI5NjUtOTA3ZGFhNDY0NjNi
LzEvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbBVrYgyQ
nxjZ/39jKr0RjB5kkFsrCD8zOoRlbmHbZ7heXw/CtX6KGnCmc/5Siwzh3SwFIUPP
/SKsgJb+aYzQW9ROe2FWK6b+5Q1BK37jKBBjjfL7A4F1byPG5T4Yi1k5Fm63nY6r
0FC1YXoNbYqWI7Ox4nM1PlF1VbfBQhYL0h0clIqfGDmR2lxvmpL7bVf3G7bgnA4b
raKRP51QFqq3/UUdb2jB24QNJXL2G4UALT8wq7Mkb8aLPGQ/4ImZPVoNaijE1TaA
KQaYrR29sAqkDWBmG1toGZU/Osf+8N0q8bVNNWccip6dXyMlNbpjg99b/QBRhDZh
ghSTp+BpcHFOHQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:27:27 2025 by rpki-client