Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.mft
File: ba7zApYp3gKduYq3tOm9IhwomRw.mft (raw, json)
Hash identifier: H5gKgkL/wzLIrB5PM1003xMnmSNRKARqi/Bt+HBqkZU=
Subject key identifier: 39:B5:AA:4A:77:EC:A5:EE:28:33:05:B4:6E:93:38:19:59:AB:87:F3
Authority key identifier: 6D:AE:F3:02:96:29:DE:02:9D:B9:8A:B7:B4:E9:BD:22:1C:28:99:1C
Certificate issuer: /CN=6daef3029629de029db98ab7b4e9bd221c28991c
Certificate serial: 0198A04DEB22884FBAD1628F5DA9278B373C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ba7zApYp3gKduYq3tOm9IhwomRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.mft
Manifest number: 0C17
Signing time: Tue 12 Aug 2025 22:01:57 +0000
Manifest this update: Tue 12 Aug 2025 22:01:57 +0000
Manifest next update: Wed 13 Aug 2025 22:01:57 +0000
Files and hashes: 1: ba7zApYp3gKduYq3tOm9IhwomRw.crl (hash: NZ9EQpXFF+hhvHoPkcDGorvy+yycEHLaVCdXfLHRcYA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ba7zApYp3gKduYq3tOm9IhwomRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4d:eb:22:88:4f:ba:d1:62:8f:5d:a9:27:8b:37:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6daef3029629de029db98ab7b4e9bd221c28991c
Validity
Not Before: Aug 12 22:01:57 2025 GMT
Not After : Aug 13 22:01:57 2025 GMT
Subject: CN=39b5aa4a77eca5ee283305b46e93381959ab87f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7b:c6:7c:0a:23:f3:a3:78:d8:95:40:82:97:
d8:12:6c:43:95:1f:91:d7:96:26:ed:69:47:3f:a1:
64:69:3b:d1:4f:e6:da:c6:a2:3e:7d:45:e7:86:ce:
a8:5f:54:6e:02:c5:3f:d5:ae:6e:a5:06:e5:38:a5:
61:64:98:84:e1:2d:6c:95:0c:b8:6f:fb:9d:e3:81:
62:bc:7b:0c:ec:fc:84:41:0b:f5:0d:c7:d0:2d:4f:
4f:a2:0f:af:28:d1:7c:ba:2b:dd:f4:fe:24:b9:21:
7a:ed:6c:93:fa:7e:00:38:f3:99:f5:8e:79:4b:ce:
55:d2:ca:8f:a0:21:cc:b5:6a:98:43:f4:10:e1:76:
d2:63:1c:dc:fd:95:38:52:d9:a9:7d:70:7b:43:33:
83:67:03:7e:b6:d4:8a:56:77:16:7f:7f:68:a5:8b:
ee:50:63:86:27:3f:df:48:d3:7f:13:d8:e2:ea:11:
fd:4a:63:8c:45:24:15:ee:19:b3:6c:69:20:80:38:
b2:e6:eb:d6:80:3b:e3:db:d7:d4:65:f3:53:87:e1:
07:e0:3d:27:c3:c5:39:1f:80:94:48:fd:6d:3c:0e:
ab:c2:b4:43:dc:56:0b:3a:f1:43:13:96:fc:c0:10:
98:89:65:9b:df:6e:a1:6a:42:0a:6d:af:fc:26:e5:
c2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B5:AA:4A:77:EC:A5:EE:28:33:05:B4:6E:93:38:19:59:AB:87:F3
X509v3 Authority Key Identifier:
keyid:6D:AE:F3:02:96:29:DE:02:9D:B9:8A:B7:B4:E9:BD:22:1C:28:99:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba7zApYp3gKduYq3tOm9IhwomRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:1a:0c:4b:5a:92:41:f3:04:01:99:40:58:cd:dd:57:1a:78:
1a:b3:a0:38:ff:02:b3:73:fa:f6:f5:c7:1a:b0:ef:67:2e:a3:
63:5c:26:b1:46:50:03:01:91:f6:45:6b:43:a9:7c:83:7c:f6:
7f:d1:a9:72:7e:d4:72:16:df:8a:d1:29:36:3f:71:75:ac:c5:
65:75:09:1a:f1:7b:4f:8c:59:86:d5:da:95:81:81:15:33:22:
43:db:3c:13:94:71:eb:ad:ad:da:1f:ce:ac:09:0b:02:1c:03:
69:a3:8e:2b:0b:55:a4:98:42:21:fc:96:45:15:e0:46:15:85:
e3:4d:0d:15:ad:3f:02:99:cc:18:73:3e:65:ab:30:32:5d:26:
ab:13:66:d2:46:64:65:a8:f9:d5:c9:e8:69:20:e8:9a:6d:66:
c4:40:33:0d:1c:eb:78:7f:37:44:72:60:b4:45:eb:6e:0c:36:
f3:1f:e2:5e:12:ca:86:53:1a:a6:99:e1:f9:28:e9:49:1b:47:
99:00:0e:c6:ac:00:28:4f:ab:e6:95:81:39:ea:90:b0:bd:d0:
19:a5:f8:98:8d:54:3b:1a:bf:85:18:a8:9c:fa:42:d5:81:17:
57:35:37:ad:1e:1e:ca:df:2b:a4:f3:aa:33:f0:d4:08:d4:2b:
63:fc:62:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZigTesiiE+60WKPXaknizc8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkYWVmMzAyOTYyOWRlMDI5ZGI5OGFiN2I0ZTliZDIyMWMy
ODk5MWMwHhcNMjUwODEyMjIwMTU3WhcNMjUwODEzMjIwMTU3WjAzMTEwLwYDVQQD
EygzOWI1YWE0YTc3ZWNhNWVlMjgzMzA1YjQ2ZTkzMzgxOTU5YWI4N2YzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnvGfAoj86N42JVAgpfYEmxDlR+R
15Ym7WlHP6FkaTvRT+baxqI+fUXnhs6oX1RuAsU/1a5upQblOKVhZJiE4S1slQy4
b/ud44FivHsM7PyEQQv1DcfQLU9Pog+vKNF8uivd9P4kuSF67WyT+n4AOPOZ9Y55
S85V0sqPoCHMtWqYQ/QQ4XbSYxzc/ZU4UtmpfXB7QzODZwN+ttSKVncWf39opYvu
UGOGJz/fSNN/E9ji6hH9SmOMRSQV7hmzbGkggDiy5uvWgDvj29fUZfNTh+EH4D0n
w8U5H4CUSP1tPA6rwrRD3FYLOvFDE5b8wBCYiWWb326hakIKba/8JuXCnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDm1qkp37KXuKDMFtG6TOBlZq4fzMB8GA1UdIwQY
MBaAFG2u8wKWKd4CnbmKt7TpvSIcKJkcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmE3ekFwWXAzZ0tkdVlxM3RPbTlJaHdvbVJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iNzM0MTEtY2Y0ZS00OTk5LTlmNDIt
Y2RlNDA0ODA1YjEwLzEvYmE3ekFwWXAzZ0tkdVlxM3RPbTlJaHdvbVJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9iNzM0MTEtY2Y0ZS00OTk5LTlmNDItY2RlNDA0ODA1YjEw
LzEvYmE3ekFwWXAzZ0tkdVlxM3RPbTlJaHdvbVJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARhoMS1qS
QfMEAZlAWM3dVxp4GrOgOP8Cs3P69vXHGrDvZy6jY1wmsUZQAwGR9kVrQ6l8g3z2
f9Gpcn7UchbfitEpNj9xdazFZXUJGvF7T4xZhtXalYGBFTMiQ9s8E5Rx662t2h/O
rAkLAhwDaaOOKwtVpJhCIfyWRRXgRhWF400NFa0/ApnMGHM+ZaswMl0mqxNm0kZk
Zaj51cnoaSDomm1mxEAzDRzreH83RHJgtEXrbgw28x/iXhLKhlMappnh+SjpSRtH
mQAOxqwAKE+r5pWBOeqQsL3QGaX4mI1UOxq/hRionPpC1YEXVzU3rR4eyt8rpPOq
M/DUCNQrY/xisw==
-----END CERTIFICATE-----
Generated at Wed Aug 13 07:37:11 2025 by rpki-client