Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
File: CFeH5l60_NZuM0C2Kt5HygCRnc4.mft (raw, json)
Hash identifier: zaKSXZCvMYtEY1r8PoIv84OnMyeOAPwUmfYZ3icILT8=
Subject key identifier: 5F:98:5A:3C:41:A5:CD:3F:85:C5:B3:97:68:E3:92:86:82:26:76:7B
Authority key identifier: 08:57:87:E6:5E:B4:FC:D6:6E:33:40:B6:2A:DE:47:CA:00:91:9D:CE
Certificate issuer: /CN=085787e65eb4fcd66e3340b62ade47ca00919dce
Certificate serial: 0198D629900011F555C682325DE26496856E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
Manifest number: 05BA
Signing time: Sat 23 Aug 2025 09:01:44 +0000
Manifest this update: Sat 23 Aug 2025 09:01:44 +0000
Manifest next update: Sun 24 Aug 2025 09:01:44 +0000
Files and hashes: 1: ADwJyFTnSoqJo76cybY4gze7w-A.roa (hash: ywnZb2Gs7P4sK9InqI7FaEEZlSRwjtQHnM1qlayDDgw=)
2: CFeH5l60_NZuM0C2Kt5HygCRnc4.crl (hash: XtecUjgkd3HNPp0FL9ywirXXBmEwhcYafJ9BUFt3cjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 09:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:29:90:00:11:f5:55:c6:82:32:5d:e2:64:96:85:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=085787e65eb4fcd66e3340b62ade47ca00919dce
Validity
Not Before: Aug 23 09:01:44 2025 GMT
Not After : Aug 24 09:01:44 2025 GMT
Subject: CN=5f985a3c41a5cd3f85c5b39768e392868226767b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9e:d1:26:08:e4:f5:0a:15:ef:6d:74:ff:bd:
7e:c2:7e:2d:1c:f2:9b:ae:d0:ed:5a:11:5c:73:d2:
7f:36:87:dd:86:4b:da:4b:bf:a3:60:e5:98:a7:49:
8c:a8:bd:d1:95:cc:6c:e0:ca:af:d2:94:2e:d9:e5:
03:f4:9e:0e:bc:dc:7a:91:be:ba:83:0a:9c:2f:4d:
7c:e6:ab:b5:1f:48:92:c4:21:05:e1:26:b5:4a:70:
6b:a8:08:07:2d:2e:b0:d3:b3:24:8a:16:4e:57:08:
3f:6a:e9:00:90:92:2c:25:4b:bc:d2:bd:6b:6f:48:
e1:28:4a:96:a4:ee:61:3b:a2:10:fd:29:37:04:9f:
10:b6:2c:a3:08:68:77:ba:aa:37:7e:06:5c:bf:14:
32:bb:8b:ad:d6:7b:71:73:0c:43:47:de:dc:a1:6a:
80:cf:54:5b:be:91:fa:7a:92:e9:7a:5b:ef:d8:71:
b2:de:f6:ca:f5:43:a3:b1:b2:e6:cd:16:ad:50:78:
32:f8:de:67:88:67:c5:37:79:52:4c:8a:dd:5f:37:
d0:a0:ed:b8:ce:ba:0a:6d:8a:76:3b:77:6f:73:15:
eb:9e:6b:d7:06:1a:3f:43:be:4d:5a:ce:3f:52:03:
37:d7:96:6a:11:61:0f:0a:05:b4:e0:90:ae:0b:a9:
ab:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:98:5A:3C:41:A5:CD:3F:85:C5:B3:97:68:E3:92:86:82:26:76:7B
X509v3 Authority Key Identifier:
keyid:08:57:87:E6:5E:B4:FC:D6:6E:33:40:B6:2A:DE:47:CA:00:91:9D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:79:96:f4:57:26:59:1d:85:2b:73:50:2b:b2:95:3e:42:eb:
d6:d1:c0:da:79:3e:52:28:8a:91:63:99:d1:99:ba:74:89:0b:
64:b3:0d:3b:12:dc:ff:08:ce:4e:6a:bc:74:cd:1f:2b:5a:e7:
b8:b4:fc:8a:36:f3:05:80:fe:b2:10:df:fa:a7:d9:d8:3f:6c:
39:a3:34:bd:7b:55:f7:71:4d:40:41:5d:5e:96:14:b3:59:1b:
c5:91:a8:b4:3b:35:3e:29:29:68:af:95:71:e4:c9:03:f1:a3:
03:c1:db:7b:4a:22:eb:58:78:ad:51:26:24:33:dd:2e:1a:3f:
0f:ca:c3:34:8a:1c:e4:c5:dd:4a:cf:b5:6d:4f:97:93:1b:0c:
d8:17:8a:38:bc:ea:83:62:02:d4:98:a7:bd:66:eb:26:6b:2f:
4e:32:b8:39:88:e6:5a:67:27:e0:36:d6:2b:22:71:ea:9a:17:
98:c3:c1:ba:3f:38:48:50:56:8c:da:19:0e:fa:65:bc:81:34:
16:9f:fc:ad:16:d8:3f:a0:a4:e9:a8:93:49:e9:ce:36:e8:c9:
bf:89:59:cb:34:5a:45:4e:d5:55:92:3b:a0:af:66:ce:fa:00:
da:b5:48:68:ec:f8:9e:ad:0d:31:ed:1e:f4:dd:df:f3:09:d0:
09:56:9d:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWKZAAEfVVxoIyXeJkloVuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4NTc4N2U2NWViNGZjZDY2ZTMzNDBiNjJhZGU0N2NhMDA5
MTlkY2UwHhcNMjUwODIzMDkwMTQ0WhcNMjUwODI0MDkwMTQ0WjAzMTEwLwYDVQQD
Eyg1Zjk4NWEzYzQxYTVjZDNmODVjNWIzOTc2OGUzOTI4NjgyMjY3NjdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJ7RJgjk9QoV7210/71+wn4tHPKb
rtDtWhFcc9J/NofdhkvaS7+jYOWYp0mMqL3Rlcxs4Mqv0pQu2eUD9J4OvNx6kb66
gwqcL0185qu1H0iSxCEF4Sa1SnBrqAgHLS6w07MkihZOVwg/aukAkJIsJUu80r1r
b0jhKEqWpO5hO6IQ/Sk3BJ8QtiyjCGh3uqo3fgZcvxQyu4ut1ntxcwxDR97coWqA
z1RbvpH6epLpelvv2HGy3vbK9UOjsbLmzRatUHgy+N5niGfFN3lSTIrdXzfQoO24
zroKbYp2O3dvcxXrnmvXBho/Q75NWs4/UgM315ZqEWEPCgW04JCuC6mriwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF+YWjxBpc0/hcWzl2jjkoaCJnZ7MB8GA1UdIwQY
MBaAFAhXh+ZetPzWbjNAtireR8oAkZ3OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0ZlSDVsNjBfTlp1TTBDMkt0NUh5Z0NSbmM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9kMmJiZjYtM2I2OS00NDJlLWI0OTAt
N2U1NGMzMmFiZWQ4LzEvQ0ZlSDVsNjBfTlp1TTBDMkt0NUh5Z0NSbmM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy9kMmJiZjYtM2I2OS00NDJlLWI0OTAtN2U1NGMzMmFiZWQ4
LzEvQ0ZlSDVsNjBfTlp1TTBDMkt0NUh5Z0NSbmM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe3mW9Fcm
WR2FK3NQK7KVPkLr1tHA2nk+UiiKkWOZ0Zm6dIkLZLMNOxLc/wjOTmq8dM0fK1rn
uLT8ijbzBYD+shDf+qfZ2D9sOaM0vXtV93FNQEFdXpYUs1kbxZGotDs1PikpaK+V
ceTJA/GjA8Hbe0oi61h4rVEmJDPdLho/D8rDNIoc5MXdSs+1bU+XkxsM2BeKOLzq
g2IC1JinvWbrJmsvTjK4OYjmWmcn4DbWKyJx6poXmMPBuj84SFBWjNoZDvplvIE0
Fp/8rRbYP6Ck6aiTSenONujJv4lZyzRaRU7VVZI7oK9mzvoA2rVIaOz4nq0NMe0e
9N3f8wnQCVadsA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:41:26 2025 by rpki-client