Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
File: a0I7KaGCk2si34-YJt1YOgBZE0o.mft (raw, json)
Hash identifier: rbOp2ZU9w5mACB0OsIU+PqPGlkayp4rYR1wMIzIvGdc=
Subject key identifier: 84:60:BC:4E:75:A3:09:26:C0:ED:CA:32:1F:EA:71:F8:DD:89:82:E8
Authority key identifier: 6B:42:3B:29:A1:82:93:6B:22:DF:8F:98:26:DD:58:3A:00:59:13:4A
Certificate issuer: /CN=6b423b29a182936b22df8f9826dd583a0059134a
Certificate serial: 019896A5BE16352B14244DAF38333FE63FE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
Manifest number: 074E
Signing time: Mon 11 Aug 2025 01:01:41 +0000
Manifest this update: Mon 11 Aug 2025 01:01:41 +0000
Manifest next update: Tue 12 Aug 2025 01:01:41 +0000
Files and hashes: 1: U_Lbl4dQRImqSP6zV_MXvnCzVro.roa (hash: k+fOfvjUjOj8hU8vOKkhlBwBO0V4NXX3JC8vdkG/viY=)
2: a0I7KaGCk2si34-YJt1YOgBZE0o.crl (hash: ZhULCYAB7kuJj1I2Pgmxju7I9cdUzqqRgN2St1QqNRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a5:be:16:35:2b:14:24:4d:af:38:33:3f:e6:3f:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b423b29a182936b22df8f9826dd583a0059134a
Validity
Not Before: Aug 11 01:01:41 2025 GMT
Not After : Aug 12 01:01:41 2025 GMT
Subject: CN=8460bc4e75a30926c0edca321fea71f8dd8982e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:26:47:c2:07:2d:18:8c:e8:a6:5a:6d:a2:6e:
2e:a7:c2:16:74:ef:b9:c4:2c:f6:18:cf:d0:2c:f9:
62:bb:45:6e:e6:09:41:b1:e4:7f:b4:1b:b2:ba:2b:
44:3b:5c:7d:67:27:d7:7b:bd:6b:e0:23:05:9b:d2:
8e:90:b1:99:70:1c:2e:4b:7d:3c:07:56:15:02:f9:
9b:11:0d:16:f5:51:e7:c0:a1:24:88:2e:f1:ae:75:
2b:4d:b9:2f:6c:ac:a3:37:80:66:5a:84:2c:d4:0f:
cd:c8:ea:f8:6a:2a:e4:8f:24:c6:26:48:dd:3c:4f:
c5:3d:a8:78:19:ee:2e:33:b9:79:d4:44:04:8c:ca:
f3:43:99:86:77:9c:0a:89:1f:29:3c:f7:35:b2:c9:
cb:0e:ff:28:00:b7:6a:30:69:0a:98:85:88:ab:18:
15:4b:cb:6e:e0:c5:67:a2:a3:0b:5d:72:77:6e:a0:
25:9a:91:f9:5d:4c:ab:48:1b:ee:e0:a8:d3:92:77:
46:4d:a4:92:f2:24:03:95:70:e3:f9:ee:1b:c1:6f:
e7:a4:a5:e3:0e:7c:07:07:57:0c:96:3e:1f:c2:c5:
e4:93:5e:51:07:80:49:81:e4:ed:61:e0:74:76:2e:
d5:6d:89:d0:9e:ae:d8:7c:38:18:64:7f:19:06:57:
6e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:60:BC:4E:75:A3:09:26:C0:ED:CA:32:1F:EA:71:F8:DD:89:82:E8
X509v3 Authority Key Identifier:
keyid:6B:42:3B:29:A1:82:93:6B:22:DF:8F:98:26:DD:58:3A:00:59:13:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:9f:4d:77:d3:c6:44:f7:b5:d5:0e:6a:ea:50:18:0b:6e:02:
7c:91:7d:5d:9e:53:fa:0d:71:68:e3:df:c7:01:32:ed:1f:44:
4f:e3:bc:8b:f7:ff:5a:fa:9f:f2:67:38:f7:fc:5f:78:0b:a3:
0c:72:9e:bc:23:3b:39:c1:cd:2b:a4:aa:a5:df:ed:8c:22:ea:
d8:06:c9:e4:4e:98:ff:41:e8:c0:87:85:f7:ea:21:d8:07:ec:
b6:f1:dd:45:d0:2e:9f:2a:4a:b8:99:1e:c0:3b:1f:b1:3e:6d:
43:ff:76:27:4a:69:9f:36:85:d9:a8:87:bd:5b:cc:7f:5c:11:
5e:2c:01:22:26:6e:e9:4a:d9:cc:e2:7a:e7:de:46:44:ec:62:
e1:0b:88:b3:d4:d4:f0:c1:ef:f1:a7:1c:96:32:2e:7a:a3:42:
96:68:45:1e:c3:87:7c:fa:9f:79:58:c9:8e:4a:cb:4a:32:2d:
a1:fd:20:80:04:bc:55:87:f0:52:e3:d4:37:e9:25:d4:02:09:
79:6a:8d:c0:fd:8e:eb:bf:b2:db:8c:be:0f:16:5c:85:45:d4:
74:26:a4:1d:75:f3:47:03:c1:f5:d3:98:8f:16:ce:80:46:b7:
52:a2:9a:5f:8e:3d:19:6a:0c:5f:54:db:e6:96:78:d1:e8:7e:
ea:32:78:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiWpb4WNSsUJE2vODM/5j/oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiNDIzYjI5YTE4MjkzNmIyMmRmOGY5ODI2ZGQ1ODNhMDA1
OTEzNGEwHhcNMjUwODExMDEwMTQxWhcNMjUwODEyMDEwMTQxWjAzMTEwLwYDVQQD
Eyg4NDYwYmM0ZTc1YTMwOTI2YzBlZGNhMzIxZmVhNzFmOGRkODk4MmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqSZHwgctGIzoplptom4up8IWdO+5
xCz2GM/QLPliu0Vu5glBseR/tBuyuitEO1x9ZyfXe71r4CMFm9KOkLGZcBwuS308
B1YVAvmbEQ0W9VHnwKEkiC7xrnUrTbkvbKyjN4BmWoQs1A/NyOr4airkjyTGJkjd
PE/FPah4Ge4uM7l51EQEjMrzQ5mGd5wKiR8pPPc1ssnLDv8oALdqMGkKmIWIqxgV
S8tu4MVnoqMLXXJ3bqAlmpH5XUyrSBvu4KjTkndGTaSS8iQDlXDj+e4bwW/npKXj
DnwHB1cMlj4fwsXkk15RB4BJgeTtYeB0di7VbYnQnq7YfDgYZH8ZBldu9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIRgvE51owkmwO3KMh/qcfjdiYLoMB8GA1UdIwQY
MBaAFGtCOymhgpNrIt+PmCbdWDoAWRNKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTBJN0thR0NrMnNpMzQtWUp0MVlPZ0JaRTBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9iYTBmZjAtMmJlMi00Mjg2LWEyZDct
NThhOGEzM2Q1NGE2LzEvYTBJN0thR0NrMnNpMzQtWUp0MVlPZ0JaRTBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC9iYTBmZjAtMmJlMi00Mjg2LWEyZDctNThhOGEzM2Q1NGE2
LzEvYTBJN0thR0NrMnNpMzQtWUp0MVlPZ0JaRTBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWJ9Nd9PG
RPe11Q5q6lAYC24CfJF9XZ5T+g1xaOPfxwEy7R9ET+O8i/f/Wvqf8mc49/xfeAuj
DHKevCM7OcHNK6Sqpd/tjCLq2AbJ5E6Y/0HowIeF9+oh2AfstvHdRdAunypKuJke
wDsfsT5tQ/92J0ppnzaF2aiHvVvMf1wRXiwBIiZu6UrZzOJ6595GROxi4QuIs9TU
8MHv8accljIueqNClmhFHsOHfPqfeVjJjkrLSjItof0ggAS8VYfwUuPUN+kl1AIJ
eWqNwP2O67+y24y+DxZchUXUdCakHXXzRwPB9dOYjxbOgEa3UqKaX449GWoMX1Tb
5pZ40eh+6jJ4JQ==
-----END CERTIFICATE-----
Generated at Mon Aug 11 04:06:13 2025 by rpki-client