Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
File: P5YkCZj85BJMPLTfusuw7RYYQFo.mft (raw, json)
Hash identifier: 7dNixmWQLxggkPo/XIpNR6mgS8mQdoZZ9t9fcBAYLKE=
Subject key identifier: 29:F7:38:33:49:CF:83:92:66:1C:D5:64:3E:9F:6C:DD:97:48:C8:B2
Authority key identifier: 3F:96:24:09:98:FC:E4:12:4C:3C:B4:DF:BA:CB:B0:ED:16:18:40:5A
Certificate issuer: /CN=3f96240998fce4124c3cb4dfbacbb0ed1618405a
Certificate serial: 0198D7A9017044216301E4A5E707ED8D82A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P5YkCZj85BJMPLTfusuw7RYYQFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 16:00:33 +0000
Manifest this update: Sat 23 Aug 2025 16:00:33 +0000
Manifest next update: Sun 24 Aug 2025 16:00:33 +0000
Files and hashes: 1: P5YkCZj85BJMPLTfusuw7RYYQFo.crl (hash: tT+F2CBtJvLvB3orL+KNefGhuaYITu/t3cm5Imob7KE=)
2: UXaxt-b39pINfZ1Y1ojLfS7SwMw.roa (hash: IC6xINcQpVjUgVum+7114aRM3S8XEivwvk3gYzMafvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/P5YkCZj85BJMPLTfusuw7RYYQFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a9:01:70:44:21:63:01:e4:a5:e7:07:ed:8d:82:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f96240998fce4124c3cb4dfbacbb0ed1618405a
Validity
Not Before: Aug 23 16:00:33 2025 GMT
Not After : Aug 24 16:00:33 2025 GMT
Subject: CN=29f7383349cf8392661cd5643e9f6cdd9748c8b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c0:1d:a2:b6:65:13:4a:9b:37:ec:19:ed:35:
cb:d6:ec:a7:cd:61:8a:95:ce:98:53:bb:b7:e4:b1:
0c:18:ab:e2:56:d6:a1:c5:7d:db:3d:b1:e3:e3:10:
21:fa:f2:2a:27:c1:97:74:d5:6d:45:72:b6:84:00:
f0:67:b8:f8:7e:40:72:76:bf:81:92:83:53:9a:6c:
81:71:75:be:f9:69:12:10:83:1e:0b:f1:42:8b:7f:
62:e5:fb:a5:84:85:0e:0c:de:4d:23:5f:b3:a9:f5:
d6:6d:44:a3:aa:39:d4:8b:de:fd:d5:39:1c:32:5a:
7c:34:1d:a4:1a:e8:a5:ff:70:39:9e:19:b0:6a:f1:
5a:d5:0a:26:ce:13:75:8c:14:ab:3e:e6:08:7c:08:
ee:f2:3f:5b:0d:f4:b6:71:a9:97:b8:38:fa:e3:9a:
49:13:fe:6c:7e:69:15:1c:4f:f3:24:49:29:6f:7d:
e9:47:9a:c1:f5:e4:20:f9:bd:6b:85:0b:48:61:25:
e7:89:ca:8e:85:e5:f9:fd:8a:10:2a:02:6f:e4:4e:
74:02:51:95:62:cd:46:11:25:45:3d:ed:33:83:f1:
e3:6c:e6:9c:20:18:62:ca:fa:f4:a5:08:3c:91:85:
ff:2a:8d:1c:e0:39:30:f9:9f:0a:ff:1c:5f:0c:6d:
be:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F7:38:33:49:CF:83:92:66:1C:D5:64:3E:9F:6C:DD:97:48:C8:B2
X509v3 Authority Key Identifier:
keyid:3F:96:24:09:98:FC:E4:12:4C:3C:B4:DF:BA:CB:B0:ED:16:18:40:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P5YkCZj85BJMPLTfusuw7RYYQFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:17:2b:e4:e7:3d:5f:fe:0e:c7:5e:eb:e0:24:81:4d:4a:1d:
10:70:3e:49:66:73:2e:dc:df:2b:58:f0:05:d3:0a:02:ec:1b:
5c:5e:5c:98:f9:bc:55:6f:5c:d3:c8:f4:7f:13:15:1c:d6:8c:
9e:0b:92:d7:24:4e:71:ac:ab:aa:8e:91:98:12:6b:a2:b7:32:
45:38:20:57:f8:2f:d5:23:2a:65:77:63:dc:36:3e:8d:ec:cb:
86:d9:75:87:a6:d3:5f:a8:cd:10:48:d8:73:bf:22:37:39:1b:
bc:9e:48:b0:7c:0a:3a:b1:e5:72:52:0e:c2:ec:c2:4c:9c:dd:
9b:b1:fe:70:ae:f5:f1:8d:17:f7:b9:04:b9:39:de:2d:18:e6:
aa:97:ef:8e:c0:0a:74:ff:d8:52:80:dc:a8:7c:dd:1b:b8:9b:
57:6d:00:d4:81:9f:e5:27:86:cb:1b:d4:3f:81:9a:31:5b:7b:
0d:47:a2:7f:ba:7e:b7:56:88:4a:c4:02:a0:8a:14:4d:73:a6:
99:70:de:c1:88:3f:36:9e:ec:8c:9c:96:8b:bf:55:63:26:f2:
15:3c:5a:b0:51:dd:03:a6:09:84:1f:7d:47:ca:0c:40:d4:db:
7b:9d:ad:e8:f5:87:60:bc:ab:aa:30:c1:64:4b:6c:8d:55:db:
39:6c:ad:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXqQFwRCFjAeSl5wftjYKgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmOTYyNDA5OThmY2U0MTI0YzNjYjRkZmJhY2JiMGVkMTYx
ODQwNWEwHhcNMjUwODIzMTYwMDMzWhcNMjUwODI0MTYwMDMzWjAzMTEwLwYDVQQD
EygyOWY3MzgzMzQ5Y2Y4MzkyNjYxY2Q1NjQzZTlmNmNkZDk3NDhjOGIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzsAdorZlE0qbN+wZ7TXL1uynzWGK
lc6YU7u35LEMGKviVtahxX3bPbHj4xAh+vIqJ8GXdNVtRXK2hADwZ7j4fkBydr+B
koNTmmyBcXW++WkSEIMeC/FCi39i5fulhIUODN5NI1+zqfXWbUSjqjnUi9791Tkc
Mlp8NB2kGuil/3A5nhmwavFa1QomzhN1jBSrPuYIfAju8j9bDfS2camXuDj645pJ
E/5sfmkVHE/zJEkpb33pR5rB9eQg+b1rhQtIYSXnicqOheX5/YoQKgJv5E50AlGV
Ys1GESVFPe0zg/HjbOacIBhiyvr0pQg8kYX/Ko0c4Dkw+Z8K/xxfDG2+gQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCn3ODNJz4OSZhzVZD6fbN2XSMiyMB8GA1UdIwQY
MBaAFD+WJAmY/OQSTDy037rLsO0WGEBaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDVZa0Naajg1QkpNUExUZnVzdXc3UllZUUZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi82MGZlYzctMGI1MS00NDQ2LTliNWQt
Yzc0MWMyN2I0ZTIyLzEvUDVZa0Naajg1QkpNUExUZnVzdXc3UllZUUZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi82MGZlYzctMGI1MS00NDQ2LTliNWQtYzc0MWMyN2I0ZTIy
LzEvUDVZa0Naajg1QkpNUExUZnVzdXc3UllZUUZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAShcr5Oc9
X/4Ox17r4CSBTUodEHA+SWZzLtzfK1jwBdMKAuwbXF5cmPm8VW9c08j0fxMVHNaM
nguS1yROcayrqo6RmBJrorcyRTggV/gv1SMqZXdj3DY+jezLhtl1h6bTX6jNEEjY
c78iNzkbvJ5IsHwKOrHlclIOwuzCTJzdm7H+cK718Y0X97kEuTneLRjmqpfvjsAK
dP/YUoDcqHzdG7ibV20A1IGf5SeGyxvUP4GaMVt7DUeif7p+t1aISsQCoIoUTXOm
mXDewYg/Np7sjJyWi79VYybyFTxasFHdA6YJhB99R8oMQNTbe52t6PWHYLyrqjDB
ZEtsjVXbOWytrw==
-----END CERTIFICATE-----
Generated at Sun Aug 24 00:22:05 2025 by rpki-client