Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
File: aOlYF0Bglex8tceyhrETM0l7lFE.mft (raw, json)
Hash identifier: odiiNGpKnuk/fppDv5Ibgfl3s0hCtu43BacJvfYEIDo=
Subject key identifier: F5:E3:1B:E5:69:65:BE:FA:2B:64:3F:B9:D7:AE:D2:88:E7:6A:65:C9
Authority key identifier: 68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
Certificate issuer: /CN=68e95817406095ec7cb5c7b286b11333497b9451
Certificate serial: 0198D7A94586FE7649C57D27D3BCA8200D6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
Manifest number: 0856
Signing time: Sat 23 Aug 2025 16:00:51 +0000
Manifest this update: Sat 23 Aug 2025 16:00:51 +0000
Manifest next update: Sun 24 Aug 2025 16:00:51 +0000
Files and hashes: 1: ExEAGmrTaGZYkgcoaaGfFiacDZM.roa (hash: vfQhBpcBjSjG95UQaSsBC3edgr1xXnN4hhJBHCKa+Vc=)
2: aOlYF0Bglex8tceyhrETM0l7lFE.crl (hash: YxIoQk2ST+it+E8PL7anP+v87XLbz3COTcbsLgHKzjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a9:45:86:fe:76:49:c5:7d:27:d3:bc:a8:20:0d:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e95817406095ec7cb5c7b286b11333497b9451
Validity
Not Before: Aug 23 16:00:51 2025 GMT
Not After : Aug 24 16:00:51 2025 GMT
Subject: CN=f5e31be56965befa2b643fb9d7aed288e76a65c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e6:04:8b:5c:66:db:17:3e:bc:ea:37:2c:2e:
98:d2:36:43:d6:c4:3d:ba:85:f4:3f:fb:a3:6d:e7:
72:78:db:8f:7b:f6:79:58:8a:e9:dd:99:52:08:c0:
97:da:e1:f5:44:67:4f:8e:cd:7b:e7:15:7f:3d:53:
23:90:cd:ee:a0:3f:fa:a2:de:87:2b:7a:26:c3:bd:
ac:cb:58:f7:5a:0b:cc:df:db:3e:1d:e8:18:90:04:
a1:25:a9:b4:d9:ee:ef:ec:1c:4f:9a:b7:8e:c1:c4:
a9:6d:bc:12:c5:ac:c7:61:5b:8e:ec:7a:e0:af:cf:
93:df:a0:a4:ae:40:a3:52:1f:34:75:9a:0d:5b:e1:
ee:4b:fd:9e:9d:74:4f:cd:a9:20:9d:35:42:f8:9a:
a9:2d:41:d8:11:96:e6:45:71:30:09:1a:f5:cc:f9:
ef:15:19:34:64:05:c8:56:4e:fe:42:41:3d:f1:44:
32:5b:c0:50:f5:46:ec:de:fd:a4:eb:13:46:c8:0f:
33:f5:05:ed:4c:26:32:76:be:bb:2c:bb:2f:a9:f4:
56:6d:d4:f4:15:c1:21:8c:b2:eb:3b:47:b2:db:60:
57:69:27:1a:41:23:f0:f8:fd:07:83:9c:61:0e:d2:
1a:05:cc:69:a2:2c:f0:2a:53:4b:99:96:6e:09:e7:
5b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E3:1B:E5:69:65:BE:FA:2B:64:3F:B9:D7:AE:D2:88:E7:6A:65:C9
X509v3 Authority Key Identifier:
keyid:68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:41:6d:ac:84:fc:cf:4a:81:93:c0:54:ff:5a:4d:bb:a3:ac:
ec:fd:65:40:de:50:db:2c:c6:89:5e:a4:39:42:2b:d2:a0:16:
de:e8:e0:02:53:7a:bb:17:1c:2b:60:4e:ae:d1:08:89:36:09:
ca:df:a0:08:ac:ef:eb:74:2f:f8:f4:69:67:1d:f1:1b:a1:25:
9d:d9:2f:8d:3e:e3:45:6f:74:d3:94:34:2a:5b:55:7b:17:b0:
64:5e:0f:db:ca:b9:a7:e6:e6:ae:0e:a7:23:45:11:be:76:82:
20:22:44:9a:19:1b:72:54:39:33:b9:15:7c:1e:2d:50:d5:ce:
30:fd:af:49:1a:35:4f:56:2d:fd:11:dd:69:ae:de:d9:92:20:
37:69:dc:18:8f:b1:f3:52:b2:ee:7e:7b:b7:10:ec:db:22:6b:
f6:44:8b:d2:99:fd:c2:1f:4f:44:24:b4:5c:3b:80:e5:70:dd:
3f:0c:bb:d7:91:e8:b5:41:ea:8b:a6:b6:8f:fc:55:18:ba:9f:
0b:5e:a6:f6:52:81:f9:64:b5:1e:9c:d7:96:50:40:5c:dd:2c:
b4:e3:67:1b:31:01:60:cd:14:a9:37:64:bf:c6:76:45:a0:25:
a0:e2:19:da:4a:0b:9e:6c:e1:3e:76:34:7c:31:dc:3e:43:26:
05:79:a9:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXqUWG/nZJxX0n07yoIA1uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZTk1ODE3NDA2MDk1ZWM3Y2I1YzdiMjg2YjExMzMzNDk3
Yjk0NTEwHhcNMjUwODIzMTYwMDUxWhcNMjUwODI0MTYwMDUxWjAzMTEwLwYDVQQD
EyhmNWUzMWJlNTY5NjViZWZhMmI2NDNmYjlkN2FlZDI4OGU3NmE2NWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1uYEi1xm2xc+vOo3LC6Y0jZD1sQ9
uoX0P/ujbedyeNuPe/Z5WIrp3ZlSCMCX2uH1RGdPjs175xV/PVMjkM3uoD/6ot6H
K3omw72sy1j3WgvM39s+HegYkAShJam02e7v7BxPmreOwcSpbbwSxazHYVuO7Hrg
r8+T36CkrkCjUh80dZoNW+HuS/2enXRPzakgnTVC+JqpLUHYEZbmRXEwCRr1zPnv
FRk0ZAXIVk7+QkE98UQyW8BQ9Ubs3v2k6xNGyA8z9QXtTCYydr67LLsvqfRWbdT0
FcEhjLLrO0ey22BXaScaQSPw+P0Hg5xhDtIaBcxpoizwKlNLmZZuCedbvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPXjG+VpZb76K2Q/udeu0ojnamXJMB8GA1UdIwQY
MBaAFGjpWBdAYJXsfLXHsoaxEzNJe5RRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU9sWUYwQmdsZXg4dGNleWhyRVRNMGw3bEZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy80YTVkNzEtZTExZC00ZDMyLWI1OTct
MDE5ZWM5ZDlhNzU4LzEvYU9sWUYwQmdsZXg4dGNleWhyRVRNMGw3bEZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy80YTVkNzEtZTExZC00ZDMyLWI1OTctMDE5ZWM5ZDlhNzU4
LzEvYU9sWUYwQmdsZXg4dGNleWhyRVRNMGw3bEZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMEFtrIT8
z0qBk8BU/1pNu6Os7P1lQN5Q2yzGiV6kOUIr0qAW3ujgAlN6uxccK2BOrtEIiTYJ
yt+gCKzv63Qv+PRpZx3xG6ElndkvjT7jRW9005Q0KltVexewZF4P28q5p+bmrg6n
I0URvnaCICJEmhkbclQ5M7kVfB4tUNXOMP2vSRo1T1Yt/RHdaa7e2ZIgN2ncGI+x
81Ky7n57txDs2yJr9kSL0pn9wh9PRCS0XDuA5XDdPwy715HotUHqi6a2j/xVGLqf
C16m9lKB+WS1HpzXllBAXN0stONnGzEBYM0UqTdkv8Z2RaAloOIZ2koLnmzhPnY0
fDHcPkMmBXmpCw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 19:37:23 2025 by rpki-client