Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.mft
File: _a9B0EvGh9D_mK19QHaEdRxGyj4.mft (raw, json)
Hash identifier: BmPf+mySeM7xIkYzE5UcFK9tzAmK1iVRxG7GGngDQfI=
Subject key identifier: 0C:3F:91:CD:7D:EB:EB:9D:F0:8F:75:99:A5:10:95:FC:A2:BB:11:5D
Authority key identifier: FD:AF:41:D0:4B:C6:87:D0:FF:98:AD:7D:40:76:84:75:1C:46:CA:3E
Certificate issuer: /CN=fdaf41d04bc687d0ff98ad7d407684751c46ca3e
Certificate serial: 0198D4E08EC62D312E2A22A378BBFC66B3EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_a9B0EvGh9D_mK19QHaEdRxGyj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.mft
Manifest number: DE
Signing time: Sat 23 Aug 2025 03:02:22 +0000
Manifest this update: Sat 23 Aug 2025 03:02:22 +0000
Manifest next update: Sun 24 Aug 2025 03:02:22 +0000
Files and hashes: 1: KAVL6kTny8TDOYbmZPaPDwl2wXM.roa (hash: aJfitKEgdn0yPAeBVox/YEVRIDod3KCN4Iqb7ST2CSs=)
2: Z_12fyPWjJvCb6FBNMUkeSsk2Qk.roa (hash: a0cw7dhkqyFjfij3KupwibkS70jrF4XOR8zbXlfILTw=)
3: _a9B0EvGh9D_mK19QHaEdRxGyj4.crl (hash: ArZAlhvhAH0T701sOVZzMny7TlSFjtd0cSUwGqY4fVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/_a9B0EvGh9D_mK19QHaEdRxGyj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:8e:c6:2d:31:2e:2a:22:a3:78:bb:fc:66:b3:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdaf41d04bc687d0ff98ad7d407684751c46ca3e
Validity
Not Before: Aug 23 03:02:22 2025 GMT
Not After : Aug 24 03:02:22 2025 GMT
Subject: CN=0c3f91cd7debeb9df08f7599a51095fca2bb115d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c5:47:cd:45:b0:fb:57:f9:83:0e:3d:ec:ea:
ff:48:6d:8b:19:de:55:84:7c:97:29:0a:e3:67:68:
53:13:c7:3a:3b:4b:87:02:87:a2:b8:e8:01:e0:61:
80:3d:9c:8c:91:bc:04:76:e7:66:cb:c2:b1:44:0a:
d1:9d:79:26:36:e0:02:1b:27:4e:a9:5b:cd:d5:24:
e8:f2:b2:54:b6:a6:5f:70:d9:02:9a:04:93:56:a3:
3e:1f:c7:80:7d:6b:39:07:06:b6:0b:ec:88:6d:c1:
12:c4:65:a2:55:38:0b:ea:59:57:6c:b5:2c:9e:51:
7b:01:8a:be:33:b1:b9:11:09:2d:94:8b:61:1a:88:
73:bd:c4:b3:2e:a5:fb:54:ff:60:ad:b9:d6:1a:87:
e0:64:50:b2:0d:6d:1b:48:17:5b:7b:fd:0d:30:ce:
08:15:da:99:9f:cb:38:92:31:01:19:a2:dd:4e:5e:
d7:73:55:93:52:c6:0f:bf:e9:93:ae:22:c0:97:e3:
80:4d:58:89:22:1a:eb:79:c9:51:64:a5:01:0c:91:
cf:4c:d1:90:b5:0c:e9:25:53:12:8c:12:f3:c9:dc:
1a:9f:c9:91:b5:b9:84:a1:55:eb:53:4b:e1:5e:83:
17:93:b3:3c:bf:d1:13:cc:11:47:50:a5:88:f2:0e:
64:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:3F:91:CD:7D:EB:EB:9D:F0:8F:75:99:A5:10:95:FC:A2:BB:11:5D
X509v3 Authority Key Identifier:
keyid:FD:AF:41:D0:4B:C6:87:D0:FF:98:AD:7D:40:76:84:75:1C:46:CA:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_a9B0EvGh9D_mK19QHaEdRxGyj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:c7:9b:db:02:32:d5:cd:f1:7a:f0:b3:13:8e:b4:f4:00:99:
1a:a2:d8:be:6b:2f:c9:a4:25:3d:d6:20:d7:cd:81:00:df:13:
bb:bf:93:20:02:9e:6f:d1:8a:0d:bc:ca:5b:0f:b9:0b:32:82:
fd:a3:93:9b:3c:16:6b:6a:f3:d0:93:2b:3e:9d:e2:9e:82:d8:
07:b4:ad:c4:25:a8:cb:27:0f:7f:b9:e9:81:ee:8d:60:97:62:
3c:1b:fe:05:7b:60:d7:a5:2d:d6:23:6a:21:9d:cf:6a:1a:cd:
39:d5:57:c2:79:48:8b:e4:88:8f:14:77:c4:05:d6:dd:2c:30:
39:b9:12:69:11:8b:22:2e:85:f1:06:b9:b0:5e:6e:a2:2d:ba:
13:2e:e2:ce:2d:76:1f:ae:a5:aa:c0:bd:1a:a6:64:3c:ce:58:
40:87:92:dd:6e:ad:2f:3a:00:f8:72:6f:92:ca:1e:ed:c6:cc:
ec:90:9e:3b:e1:eb:d1:78:f0:52:86:59:60:6a:3b:7b:3b:16:
e9:19:ee:85:47:00:95:7e:bf:c4:1e:04:e9:61:1f:3b:03:e7:
30:f6:47:f7:82:b4:17:73:3c:4b:be:d1:64:58:e7:93:1a:e3:
16:fe:14:7a:72:41:8b:1f:b9:01:f2:18:30:f3:d8:6a:12:11:
0f:85:83:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4I7GLTEuKiKjeLv8ZrPqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkYWY0MWQwNGJjNjg3ZDBmZjk4YWQ3ZDQwNzY4NDc1MWM0
NmNhM2UwHhcNMjUwODIzMDMwMjIyWhcNMjUwODI0MDMwMjIyWjAzMTEwLwYDVQQD
EygwYzNmOTFjZDdkZWJlYjlkZjA4Zjc1OTlhNTEwOTVmY2EyYmIxMTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8VHzUWw+1f5gw497Or/SG2LGd5V
hHyXKQrjZ2hTE8c6O0uHAoeiuOgB4GGAPZyMkbwEdudmy8KxRArRnXkmNuACGydO
qVvN1STo8rJUtqZfcNkCmgSTVqM+H8eAfWs5Bwa2C+yIbcESxGWiVTgL6llXbLUs
nlF7AYq+M7G5EQktlIthGohzvcSzLqX7VP9grbnWGofgZFCyDW0bSBdbe/0NMM4I
FdqZn8s4kjEBGaLdTl7Xc1WTUsYPv+mTriLAl+OATViJIhrreclRZKUBDJHPTNGQ
tQzpJVMSjBLzydwan8mRtbmEoVXrU0vhXoMXk7M8v9ETzBFHUKWI8g5k3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAw/kc196+ud8I91maUQlfyiuxFdMB8GA1UdIwQY
MBaAFP2vQdBLxofQ/5itfUB2hHUcRso+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2E5QjBFdkdoOURfbUsxOVFIYUVkUnhHeWo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8xNmNkZmEtNmFiOS00N2ZhLWI4NzEt
ZWEyMDIxODAwMzQyLzEvX2E5QjBFdkdoOURfbUsxOVFIYUVkUnhHeWo0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi8xNmNkZmEtNmFiOS00N2ZhLWI4NzEtZWEyMDIxODAwMzQy
LzEvX2E5QjBFdkdoOURfbUsxOVFIYUVkUnhHeWo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtceb2wIy
1c3xevCzE4609ACZGqLYvmsvyaQlPdYg182BAN8Tu7+TIAKeb9GKDbzKWw+5CzKC
/aOTmzwWa2rz0JMrPp3inoLYB7StxCWoyycPf7npge6NYJdiPBv+BXtg16Ut1iNq
IZ3PahrNOdVXwnlIi+SIjxR3xAXW3SwwObkSaRGLIi6F8Qa5sF5uoi26Ey7izi12
H66lqsC9GqZkPM5YQIeS3W6tLzoA+HJvksoe7cbM7JCeO+Hr0XjwUoZZYGo7ezsW
6RnuhUcAlX6/xB4E6WEfOwPnMPZH94K0F3M8S77RZFjnkxrjFv4UenJBix+5AfIY
MPPYahIRD4WDrw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:20:44 2025 by rpki-client