Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
File: D8lnTtVfCnZcpdocb6-k3SXioXg.mft (raw, json)
Hash identifier: 8WAzMLpbB7EDQFG+lyg4scJS5lBvh7cQtgc/FZWCF84=
Subject key identifier: 44:20:3B:FB:E8:C5:31:7D:81:0F:3B:93:6D:A8:39:01:BB:34:01:FC
Authority key identifier: 0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
Certificate issuer: /CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Certificate serial: 0198D5155F1D814B00D0AF753CAE274C5ABE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
Manifest number: 072E
Signing time: Sat 23 Aug 2025 04:00:04 +0000
Manifest this update: Sat 23 Aug 2025 04:00:04 +0000
Manifest next update: Sun 24 Aug 2025 04:00:04 +0000
Files and hashes: 1: D8lnTtVfCnZcpdocb6-k3SXioXg.crl (hash: V18BKsoWIDYJB9mBbDGjBTB0sg9DkM5+xv78onthrWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:5f:1d:81:4b:00:d0:af:75:3c:ae:27:4c:5a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Validity
Not Before: Aug 23 04:00:04 2025 GMT
Not After : Aug 24 04:00:04 2025 GMT
Subject: CN=44203bfbe8c5317d810f3b936da83901bb3401fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:28:aa:6c:26:98:a7:1c:bb:11:98:3b:52:00:
ec:66:f6:b7:0d:3a:f9:d1:59:de:2f:ac:9f:4d:a0:
9d:54:12:50:ff:96:85:b0:97:b2:a9:fa:d5:6f:2a:
9e:d6:1b:58:9e:31:44:0d:65:14:e1:71:81:38:4e:
08:92:69:aa:a6:10:c7:c6:8a:67:c1:0c:27:8b:54:
de:36:2b:f6:76:57:c6:1b:9b:50:78:43:1b:ff:5a:
99:d5:08:8d:0a:85:11:02:08:18:a3:b3:7d:f8:77:
01:2b:f6:ab:bd:1b:d5:4f:17:51:a2:dc:f9:c9:cd:
32:fa:bc:ac:6d:13:82:d4:3d:7c:d3:85:d8:23:13:
75:1d:20:5c:45:c9:cb:55:33:94:d9:49:c3:77:40:
cf:3a:e9:52:31:df:22:3c:62:f4:3e:c1:3e:ac:ad:
3c:1b:91:0c:5d:81:96:77:93:48:af:9a:9c:9a:87:
94:5f:a0:43:37:76:04:45:74:8d:f7:75:96:01:ea:
3d:9b:42:32:a1:b8:90:12:04:51:62:25:16:3d:5d:
38:19:a0:66:79:48:47:7b:15:c7:ff:74:77:b4:34:
1e:01:b9:3a:3c:1e:80:7c:3d:e0:c4:0c:60:35:09:
c1:6b:1d:20:2d:7d:fb:43:cd:67:e6:2e:a8:e8:97:
db:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:20:3B:FB:E8:C5:31:7D:81:0F:3B:93:6D:A8:39:01:BB:34:01:FC
X509v3 Authority Key Identifier:
keyid:0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:14:e9:6a:4b:cc:b3:f9:ea:24:3b:8a:ee:06:84:49:8f:75:
6c:df:e3:14:86:65:58:f9:88:97:0f:22:a3:c2:13:b1:7d:b7:
3f:9b:60:12:c3:57:cc:d5:a5:45:e7:fe:4d:bc:74:d0:d7:a9:
63:ac:6b:9c:f6:53:f7:c1:df:3b:8a:53:24:57:37:24:86:8c:
21:ec:a2:dc:a5:0c:a6:ca:31:aa:19:5b:77:c0:4a:e7:26:a3:
0b:6c:77:bf:13:37:ed:3d:f6:83:db:3d:b9:34:b4:6f:83:64:
d4:66:b6:a9:81:46:9f:03:09:87:9c:8c:36:49:32:e2:9b:b2:
7f:6d:b9:a8:8b:b5:b9:da:1d:09:c2:e3:c1:2a:68:a0:4c:c7:
f7:f6:f6:ed:0d:d4:cd:67:5e:81:62:90:0e:77:5d:a4:e2:02:
c3:07:d2:e7:d0:7e:af:6c:ca:61:eb:ca:79:c2:72:63:6a:00:
c6:2b:d8:4c:ff:fc:2d:c4:9a:8f:e5:2c:93:a7:5d:a8:1b:9d:
39:67:6b:86:6e:f0:9a:ca:be:7b:99:2e:41:c4:b3:f4:3a:22:
5a:59:2a:58:63:79:83:df:7b:8f:d2:7c:52:ab:40:01:9c:b8:
7a:55:74:6e:0c:bb:ff:b9:d2:74:e9:71:14:f1:b8:d0:21:f9:
8f:19:e9:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFV8dgUsA0K91PK4nTFq+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmYzk2NzRlZDU1ZjBhNzY1Y2E1ZGExYzZmYWZhNGRkMjVl
MmExNzgwHhcNMjUwODIzMDQwMDA0WhcNMjUwODI0MDQwMDA0WjAzMTEwLwYDVQQD
Eyg0NDIwM2JmYmU4YzUzMTdkODEwZjNiOTM2ZGE4MzkwMWJiMzQwMWZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0CiqbCaYpxy7EZg7UgDsZva3DTr5
0VneL6yfTaCdVBJQ/5aFsJeyqfrVbyqe1htYnjFEDWUU4XGBOE4IkmmqphDHxopn
wQwni1TeNiv2dlfGG5tQeEMb/1qZ1QiNCoURAggYo7N9+HcBK/arvRvVTxdRotz5
yc0y+rysbROC1D1804XYIxN1HSBcRcnLVTOU2UnDd0DPOulSMd8iPGL0PsE+rK08
G5EMXYGWd5NIr5qcmoeUX6BDN3YERXSN93WWAeo9m0IyobiQEgRRYiUWPV04GaBm
eUhHexXH/3R3tDQeAbk6PB6AfD3gxAxgNQnBax0gLX37Q81n5i6o6JfbdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEQgO/voxTF9gQ87k22oOQG7NAH8MB8GA1UdIwQY
MBaAFA/JZ07VXwp2XKXaHG+vpN0l4qF4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDhsblR0VmZDblpjcGRvY2I2LWszU1hpb1hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC84YWIyYTMtMDg4ZS00ZTBjLWJlOWEt
NGE5NDZjNTJmYmMyLzEvRDhsblR0VmZDblpjcGRvY2I2LWszU1hpb1hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC84YWIyYTMtMDg4ZS00ZTBjLWJlOWEtNGE5NDZjNTJmYmMy
LzEvRDhsblR0VmZDblpjcGRvY2I2LWszU1hpb1hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzRTpakvM
s/nqJDuK7gaESY91bN/jFIZlWPmIlw8io8ITsX23P5tgEsNXzNWlRef+Tbx00Nep
Y6xrnPZT98HfO4pTJFc3JIaMIeyi3KUMpsoxqhlbd8BK5yajC2x3vxM37T32g9s9
uTS0b4Nk1Ga2qYFGnwMJh5yMNkky4puyf225qIu1udodCcLjwSpooEzH9/b27Q3U
zWdegWKQDnddpOICwwfS59B+r2zKYevKecJyY2oAxivYTP/8LcSaj+Usk6ddqBud
OWdrhm7wmsq+e5kuQcSz9DoiWlkqWGN5g997j9J8UqtAAZy4elV0bgy7/7nSdOlx
FPG40CH5jxnpSA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:12:59 2025 by rpki-client