Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
File: aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft (raw, json)
Hash identifier: hd58/wRkW6a5AhvcH/wEwtCWMrNZztH4FgjDnxx3TMI=
Subject key identifier: F6:0F:36:06:9D:93:E4:B3:7E:4B:30:3D:8E:43:2A:CB:3F:6F:97:47
Authority key identifier: 68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
Certificate issuer: /CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Certificate serial: 0198D66131F675FF32439388B29F95B47576
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
Manifest number: 15DD
Signing time: Sat 23 Aug 2025 10:02:30 +0000
Manifest this update: Sat 23 Aug 2025 10:02:30 +0000
Manifest next update: Sun 24 Aug 2025 10:02:30 +0000
Files and hashes: 1: aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl (hash: d0jP3s1uTxihvqsVltAKxYLyN9i56KJeiVv0jtJHAzM=)
2: c3cfCpPele1fDi8UyS3_TO9IOZU.roa (hash: x4G7KBYVMCONibc2Rol9WiF29BGQsdbC/SUMmPlKdpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:31:f6:75:ff:32:43:93:88:b2:9f:95:b4:75:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Validity
Not Before: Aug 23 10:02:30 2025 GMT
Not After : Aug 24 10:02:30 2025 GMT
Subject: CN=f60f36069d93e4b37e4b303d8e432acb3f6f9747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3b:44:4f:64:1c:66:59:4f:03:3a:ed:21:71:
e7:65:be:5d:e9:77:65:a1:d6:ee:0a:79:0a:3f:ff:
83:49:17:1c:bb:81:b2:6a:df:aa:14:44:4d:db:14:
1b:74:b3:6e:7d:c0:90:4c:fb:ee:23:fb:ed:83:59:
90:e4:37:70:0d:04:c4:ae:5f:9b:7b:e9:4c:f2:36:
44:2e:16:d4:c2:c7:03:ce:c8:0e:83:d9:bb:db:a2:
a2:a6:6f:8d:1c:f5:4c:ee:f7:41:55:b8:a2:90:51:
af:5c:11:f3:2d:10:29:86:0a:44:b8:36:e9:62:73:
e4:0f:cf:0d:a6:0d:c7:ac:e8:46:c8:6b:fd:76:d6:
48:ef:7e:54:8a:9c:22:06:ac:7d:81:d8:97:84:d2:
87:a6:60:51:cc:1e:b7:d7:11:8c:00:ed:16:ea:b4:
83:64:c2:4b:98:7f:21:3e:a0:0f:95:10:05:e2:e9:
7d:05:6d:7f:c7:ba:bc:10:38:19:3a:51:86:93:36:
4f:67:30:fe:fc:40:24:31:a1:33:f6:a3:14:36:c8:
3e:29:22:27:8e:d7:34:dd:ce:a0:f2:11:8c:4b:b6:
13:c8:6b:3f:63:58:5d:a6:23:90:97:f0:e9:29:3c:
57:3e:fa:fd:b2:3e:aa:21:b5:7e:ee:5c:b3:57:26:
36:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:0F:36:06:9D:93:E4:B3:7E:4B:30:3D:8E:43:2A:CB:3F:6F:97:47
X509v3 Authority Key Identifier:
keyid:68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:e9:f8:a0:d8:3f:69:29:81:c9:e8:8c:ff:5a:79:3e:fc:4c:
de:7d:14:47:ef:8f:8e:d8:b9:05:f9:e4:c1:85:bb:7e:2f:a4:
92:e1:46:97:9f:ff:2e:56:8b:14:3e:e5:44:37:d3:f2:12:9e:
14:7f:97:f8:cc:11:13:b2:4c:a0:59:4a:06:7b:63:3b:c2:8a:
02:3f:6e:1a:99:5b:56:1c:11:34:91:f3:41:87:78:71:35:92:
9c:8b:17:70:3f:91:56:8f:2d:ef:fa:ab:98:f4:3b:8c:af:57:
1e:59:ef:e5:cd:bc:14:c5:d6:32:40:c0:13:61:4f:ed:0c:d9:
1a:64:81:81:cd:53:4b:60:1e:d9:6f:2d:b2:f1:9d:3a:3a:49:
a2:73:04:6d:9a:ba:f9:b2:7c:3b:d2:f4:7f:60:bc:90:b9:80:
bc:e2:b4:6a:33:90:54:d6:30:39:d5:ef:79:6c:66:e2:f0:83:
33:ff:46:0d:b5:3f:fc:20:61:d0:75:ba:d6:55:fe:16:90:8d:
63:e2:ff:56:94:4f:db:70:14:03:d6:d5:81:82:00:cf:3e:dd:
ff:ec:72:b2:d2:d8:1a:cb:ea:b0:f4:17:ad:36:c2:23:1a:94:
22:e7:9e:a9:ea:bb:23:ba:8b:52:62:0b:72:73:4d:2f:de:2e:
98:3b:8a:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYTH2df8yQ5OIsp+VtHV2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4OTZlNzYzZjg5YzcyMGU4N2NlNGQ3OWY4YzA5ZDA3ZjJm
YTYzOTIwHhcNMjUwODIzMTAwMjMwWhcNMjUwODI0MTAwMjMwWjAzMTEwLwYDVQQD
EyhmNjBmMzYwNjlkOTNlNGIzN2U0YjMwM2Q4ZTQzMmFjYjNmNmY5NzQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjtET2QcZllPAzrtIXHnZb5d6Xdl
odbuCnkKP/+DSRccu4Gyat+qFERN2xQbdLNufcCQTPvuI/vtg1mQ5DdwDQTErl+b
e+lM8jZELhbUwscDzsgOg9m726Kipm+NHPVM7vdBVbiikFGvXBHzLRAphgpEuDbp
YnPkD88Npg3HrOhGyGv9dtZI735UipwiBqx9gdiXhNKHpmBRzB631xGMAO0W6rSD
ZMJLmH8hPqAPlRAF4ul9BW1/x7q8EDgZOlGGkzZPZzD+/EAkMaEz9qMUNsg+KSIn
jtc03c6g8hGMS7YTyGs/Y1hdpiOQl/DpKTxXPvr9sj6qIbV+7lyzVyY29QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPYPNgadk+SzfkswPY5DKss/b5dHMB8GA1UdIwQY
MBaAFGiW52P4nHIOh85NefjAnQfy+mOSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUpibllfaWNjZzZIemsxNS1NQ2RCX0w2WTVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9iNDA4ZDctMDEyYy00OGMzLWE3ZWEt
Yzg4NDBmYTg1MTQxLzEvYUpibllfaWNjZzZIemsxNS1NQ2RCX0w2WTVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9iNDA4ZDctMDEyYy00OGMzLWE3ZWEtYzg4NDBmYTg1MTQx
LzEvYUpibllfaWNjZzZIemsxNS1NQ2RCX0w2WTVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGun4oNg/
aSmByeiM/1p5PvxM3n0UR++Pjti5BfnkwYW7fi+kkuFGl5//LlaLFD7lRDfT8hKe
FH+X+MwRE7JMoFlKBntjO8KKAj9uGplbVhwRNJHzQYd4cTWSnIsXcD+RVo8t7/qr
mPQ7jK9XHlnv5c28FMXWMkDAE2FP7QzZGmSBgc1TS2Ae2W8tsvGdOjpJonMEbZq6
+bJ8O9L0f2C8kLmAvOK0ajOQVNYwOdXveWxm4vCDM/9GDbU//CBh0HW61lX+FpCN
Y+L/VpRP23AUA9bVgYIAzz7d/+xystLYGsvqsPQXrTbCIxqUIueeqeq7I7qLUmIL
cnNNL94umDuKJQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:37:13 2025 by rpki-client