Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
File: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft (raw, json)
Hash identifier: wkAqN6vaM0D1iqI9eWU9Ja181MlYtu7RNBsakWp0Qm4=
Subject key identifier: 73:0F:9D:A4:E3:07:82:30:2D:17:F6:7D:82:40:2F:C1:2E:72:0B:98
Authority key identifier: 68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
Certificate issuer: /CN=68a8e93d3f590f4450d1db3c2074598244353e93
Certificate serial: 0198819E277DB247D739A248D252653A1EAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
Manifest number: 162A
Signing time: Wed 06 Aug 2025 23:01:22 +0000
Manifest this update: Wed 06 Aug 2025 23:01:22 +0000
Manifest next update: Thu 07 Aug 2025 23:01:22 +0000
Files and hashes: 1: Mmi06jAh1KR0NNHlTuLcdFXGdm4.roa (hash: Q9joIkxkfDcIZMMuVnLQE37iPkqzALSBCPVV1CY/m7A=)
2: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl (hash: qm7rB8BAIwIfBsJLE74bYhO8dt6Il3RdaRZxxxGrowk=)
3: bObL7vPF35vh9LuEyJYMk5yU3-U.roa (hash: eG1lFL25ltcNTKgnhPFmeY0axMsTOI37jTMaagRA/AM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:9e:27:7d:b2:47:d7:39:a2:48:d2:52:65:3a:1e:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a8e93d3f590f4450d1db3c2074598244353e93
Validity
Not Before: Aug 6 23:01:22 2025 GMT
Not After : Aug 7 23:01:22 2025 GMT
Subject: CN=730f9da4e30782302d17f67d82402fc12e720b98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bd:c9:e8:49:72:7b:f9:a0:79:55:5e:ad:30:
c0:32:02:f4:25:10:0b:c4:be:0e:a2:3a:d0:bd:4a:
98:b3:44:a8:65:e3:14:2f:01:37:b9:49:ad:ba:fe:
b9:7c:90:96:a8:57:eb:12:53:aa:45:39:bf:53:5c:
f8:83:e2:62:d0:a3:8f:af:56:48:7a:29:6c:b2:a9:
a9:89:60:ab:84:ae:f0:0c:07:50:b6:d6:98:a4:55:
fc:81:14:44:f0:f4:d3:7b:ea:37:47:f7:bd:bd:02:
2f:4e:16:34:4f:b7:6c:10:f0:0f:47:c9:9a:08:f9:
66:0e:a9:91:26:cf:31:10:a0:16:58:19:eb:22:42:
c8:f2:7d:64:2c:3f:29:80:88:b8:9e:5d:36:ed:ea:
56:99:d7:a2:4b:49:59:41:e3:6e:a2:72:02:5a:87:
13:10:14:d6:1f:e2:b1:40:ae:d5:14:09:e7:aa:ea:
71:c3:a7:b2:0f:6d:d9:98:4f:e1:64:e0:4a:c4:ba:
ce:69:a8:ae:1d:e2:44:fc:42:7a:e8:94:af:2d:57:
b7:3c:26:0d:e5:24:d3:31:0f:09:12:76:9b:c7:fc:
d0:05:0e:42:ff:e8:97:50:0d:8f:48:8d:3d:c6:b0:
19:67:eb:b8:4a:ae:cd:6d:03:1f:c2:5a:f6:46:6d:
57:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:0F:9D:A4:E3:07:82:30:2D:17:F6:7D:82:40:2F:C1:2E:72:0B:98
X509v3 Authority Key Identifier:
keyid:68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:bd:1e:cc:5f:fe:bb:46:2b:04:03:1f:f9:88:8e:11:c1:58:
60:ed:aa:72:4b:17:9b:b6:18:5a:e6:18:23:e2:82:ce:75:81:
85:ff:c3:f1:94:b2:38:62:81:bd:39:cf:42:b8:cf:7a:90:01:
4a:52:98:77:2e:9e:c0:19:03:f8:b9:eb:e0:16:42:76:31:a3:
9c:91:68:a5:8f:7c:9e:54:3a:6f:f9:c8:9e:37:71:f4:26:15:
ea:08:de:92:27:f6:83:c0:75:f5:24:bd:b1:fd:3a:86:7e:a2:
d4:4b:c9:ec:2c:91:7b:67:02:51:07:3f:1b:ff:e1:1e:87:39:
72:2f:43:9f:c9:64:7f:76:fe:e1:87:7c:6b:c5:dd:52:50:ac:
05:4b:aa:45:25:cb:e0:7b:35:59:65:88:32:d3:0c:b9:a5:a5:
42:50:c7:9a:35:c5:da:ab:b1:69:4e:21:7d:be:d2:60:b5:e9:
ce:05:13:7b:5b:67:ff:99:a8:61:70:c2:4c:67:9b:e8:24:7d:
3b:31:d5:5c:84:a6:fb:83:68:0b:a3:cf:ba:95:f5:10:08:33:
62:13:7b:31:e0:0f:52:cd:80:a8:4e:c2:1b:d4:4d:74:1f:29:
34:a9:02:40:b8:e2:5f:c7:43:55:29:7a:26:67:ca:ee:82:97:
8b:15:87:cb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiBnid9skfXOaJI0lJlOh6uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YThlOTNkM2Y1OTBmNDQ1MGQxZGIzYzIwNzQ1OTgyNDQz
NTNlOTMwHhcNMjUwODA2MjMwMTIyWhcNMjUwODA3MjMwMTIyWjAzMTEwLwYDVQQD
Eyg3MzBmOWRhNGUzMDc4MjMwMmQxN2Y2N2Q4MjQwMmZjMTJlNzIwYjk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu73J6Elye/mgeVVerTDAMgL0JRAL
xL4OojrQvUqYs0SoZeMULwE3uUmtuv65fJCWqFfrElOqRTm/U1z4g+Ji0KOPr1ZI
eilssqmpiWCrhK7wDAdQttaYpFX8gRRE8PTTe+o3R/e9vQIvThY0T7dsEPAPR8ma
CPlmDqmRJs8xEKAWWBnrIkLI8n1kLD8pgIi4nl027epWmdeiS0lZQeNuonICWocT
EBTWH+KxQK7VFAnnqupxw6eyD23ZmE/hZOBKxLrOaaiuHeJE/EJ66JSvLVe3PCYN
5STTMQ8JEnabx/zQBQ5C/+iXUA2PSI09xrAZZ+u4Sq7NbQMfwlr2Rm1X9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHMPnaTjB4IwLRf2fYJAL8EucguYMB8GA1UdIwQY
MBaAFGio6T0/WQ9EUNHbPCB0WYJENT6TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMt
MjVkZDRjYmIzNjk4LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMtMjVkZDRjYmIzNjk4
LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADb0ezF/+
u0YrBAMf+YiOEcFYYO2qcksXm7YYWuYYI+KCznWBhf/D8ZSyOGKBvTnPQrjPepAB
SlKYdy6ewBkD+Lnr4BZCdjGjnJFopY98nlQ6b/nInjdx9CYV6gjekif2g8B19SS9
sf06hn6i1EvJ7CyRe2cCUQc/G//hHoc5ci9Dn8lkf3b+4Yd8a8XdUlCsBUuqRSXL
4Hs1WWWIMtMMuaWlQlDHmjXF2quxaU4hfb7SYLXpzgUTe1tn/5moYXDCTGeb6CR9
OzHVXISm+4NoC6PPupX1EAgzYhN7MeAPUs2AqE7CG9RNdB8pNKkCQLjiX8dDVSl6
JmfK7oKXixWHyw==
-----END CERTIFICATE-----
Generated at Thu Aug 7 05:14:27 2025 by rpki-client