
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
File: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft (raw, json)
Hash identifier: RP+GHvdLSHyw0wUQ1Ws9znyRlOakvSZ5XorvZEvDB6k=
Subject key identifier: 2B:22:2F:1F:54:50:E8:A7:76:93:0E:7E:C7:3C:05:B3:E7:26:22:F9
Authority key identifier: BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49
Certificate issuer: /CN=bf56ba98c6745a63026d78fc284722399d2eb849
Certificate serial: 01987419316C4576626BA88C4B42622E01BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
Manifest number: 1052
Signing time: Mon 04 Aug 2025 08:01:04 +0000
Manifest this update: Mon 04 Aug 2025 08:01:04 +0000
Manifest next update: Tue 05 Aug 2025 08:01:04 +0000
Files and hashes: 1: 5XEV-gEMIErGK0axVAW_a3kFgdQ.roa (hash: zrBYoY+XDrWBTYUlEabBJW1Q13TMvp0kauzANBjQtoQ=)
2: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl (hash: 4nzHjkXQ9DmGdKjn3FYT772/GRLVFTL5pzEVZUzOBWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 08:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:19:31:6c:45:76:62:6b:a8:8c:4b:42:62:2e:01:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf56ba98c6745a63026d78fc284722399d2eb849
Validity
Not Before: Aug 4 08:01:04 2025 GMT
Not After : Aug 5 08:01:04 2025 GMT
Subject: CN=2b222f1f5450e8a776930e7ec73c05b3e72622f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e8:1e:86:23:69:02:8c:cd:bc:c3:65:7a:72:
6e:ce:f7:3f:b4:ce:c7:8c:17:6c:53:d2:de:54:1d:
22:c6:95:22:a7:9b:e5:d1:ae:09:4b:0f:92:77:b0:
e9:f7:3d:38:85:ee:f1:05:31:1c:ab:5a:6d:94:88:
ff:5b:07:97:6c:6e:48:3a:0f:53:89:cb:2d:33:e8:
ad:7b:b2:88:a3:91:39:9d:ab:26:e9:e0:14:79:6e:
03:67:41:5f:cd:a9:55:9a:a2:35:79:42:96:a3:cb:
8e:ed:e5:bc:13:8c:d5:89:c0:4e:c3:8a:40:40:d9:
b0:a8:9b:97:54:a7:b9:4f:7c:24:51:cb:36:5c:c6:
00:1c:bf:9b:57:89:e9:50:13:2f:ba:8c:c1:6b:8c:
0e:67:e9:84:d6:21:0c:70:f7:08:32:86:62:28:9e:
0d:a6:80:a9:26:c4:e2:eb:e9:fb:61:cb:c3:de:da:
20:c1:37:53:2e:71:90:19:2f:ff:68:8b:24:4b:c9:
09:80:9b:71:1c:7e:19:32:a6:17:08:0b:b4:08:a1:
51:80:7b:d5:e1:df:c3:e2:f3:99:3f:de:1f:fa:d8:
9d:ac:31:d2:78:0b:ad:c7:1d:9b:e7:63:cd:00:3a:
d2:4d:1f:1d:4b:bd:87:78:58:48:26:64:ba:3b:81:
c5:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:22:2F:1F:54:50:E8:A7:76:93:0E:7E:C7:3C:05:B3:E7:26:22:F9
X509v3 Authority Key Identifier:
keyid:BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:3c:2c:58:77:22:c5:50:7d:62:eb:d6:64:a0:6f:10:39:ea:
8f:e3:3b:7d:dd:a6:84:d4:69:12:bd:68:a5:c9:fb:44:17:11:
f1:86:a5:65:52:b4:77:ef:b6:d4:47:46:8b:eb:ff:ad:6b:a5:
4d:d3:03:43:16:a9:0b:ca:19:a3:46:11:8c:c9:9f:b6:dd:d5:
70:c8:49:74:2e:fb:15:1e:30:67:14:bd:f7:d7:f1:28:61:14:
3a:e3:12:ef:54:68:20:31:c0:eb:a8:d3:f9:f9:c6:3d:17:44:
52:38:76:4e:d7:a3:6c:66:c0:d8:f6:3d:59:19:5f:26:86:6d:
d7:82:1b:73:32:e4:e6:ae:5c:1b:68:76:29:c5:6f:0d:3f:e7:
87:35:a8:04:96:7f:05:05:cb:11:53:29:c9:15:b5:e1:6b:3b:
46:40:76:05:a0:5a:a4:ef:d5:70:83:16:38:83:93:5b:fb:b6:
d3:44:81:9b:fb:6c:de:07:4b:af:80:f4:25:8b:a8:a8:c1:f0:
36:97:6c:b4:b5:7a:f9:bd:5b:6e:3d:ef:c3:36:6f:c7:e5:92:
67:a9:ec:f6:8f:80:c0:23:e4:53:be:8c:8e:d8:4a:2b:c9:3d:
96:fd:ce:fd:10:f3:cf:88:1e:8f:5f:46:57:3f:ff:df:4a:2c:
d9:c8:f8:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0GTFsRXZia6iMS0JiLgG9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmNTZiYTk4YzY3NDVhNjMwMjZkNzhmYzI4NDcyMjM5OWQy
ZWI4NDkwHhcNMjUwODA0MDgwMTA0WhcNMjUwODA1MDgwMTA0WjAzMTEwLwYDVQQD
EygyYjIyMmYxZjU0NTBlOGE3NzY5MzBlN2VjNzNjMDViM2U3MjYyMmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtegehiNpAozNvMNlenJuzvc/tM7H
jBdsU9LeVB0ixpUip5vl0a4JSw+Sd7Dp9z04he7xBTEcq1ptlIj/WweXbG5IOg9T
icstM+ite7KIo5E5nasm6eAUeW4DZ0FfzalVmqI1eUKWo8uO7eW8E4zVicBOw4pA
QNmwqJuXVKe5T3wkUcs2XMYAHL+bV4npUBMvuozBa4wOZ+mE1iEMcPcIMoZiKJ4N
poCpJsTi6+n7YcvD3togwTdTLnGQGS//aIskS8kJgJtxHH4ZMqYXCAu0CKFRgHvV
4d/D4vOZP94f+tidrDHSeAutxx2b52PNADrSTR8dS72HeFhIJmS6O4HFHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCsiLx9UUOindpMOfsc8BbPnJiL5MB8GA1UdIwQY
MBaAFL9WupjGdFpjAm14/ChHIjmdLrhJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjFhNm1NWjBXbU1DYlhqOEtFY2lPWjB1dUVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8zMzQzZDItNTI1My00MjQzLWEwMWYt
NTg3ZmM4NGFjZWZlLzEvdjFhNm1NWjBXbU1DYlhqOEtFY2lPWjB1dUVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy8zMzQzZDItNTI1My00MjQzLWEwMWYtNTg3ZmM4NGFjZWZl
LzEvdjFhNm1NWjBXbU1DYlhqOEtFY2lPWjB1dUVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANTwsWHci
xVB9YuvWZKBvEDnqj+M7fd2mhNRpEr1opcn7RBcR8YalZVK0d++21EdGi+v/rWul
TdMDQxapC8oZo0YRjMmftt3VcMhJdC77FR4wZxS999fxKGEUOuMS71RoIDHA66jT
+fnGPRdEUjh2TtejbGbA2PY9WRlfJoZt14IbczLk5q5cG2h2KcVvDT/nhzWoBJZ/
BQXLEVMpyRW14Ws7RkB2BaBapO/VcIMWOIOTW/u200SBm/ts3gdLr4D0JYuoqMHw
NpdstLV6+b1bbj3vwzZvx+WSZ6ns9o+AwCPkU76MjthKK8k9lv3O/RDzz4gej19G
Vz//30os2cj4Qw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 16:11:35 2025 by rpki-client