Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: qQ7L22bWt1kHp9UH4FA9rDUvP4ReQ4qdEdPIPkRbkRI=
Subject key identifier: 99:81:29:71:26:95:D3:5E:3A:0A:8C:E5:6A:61:FF:FB:4A:FC:EF:CE
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 0198D5BB7E084D2560DAD833E3971122CFC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 0A38
Signing time: Sat 23 Aug 2025 07:01:31 +0000
Manifest this update: Sat 23 Aug 2025 07:01:31 +0000
Manifest next update: Sun 24 Aug 2025 07:01:31 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: Y6fYzSk79RYjb0YcmBnBOkwS1ZqbPtDILe8Mo2I+ztg=)
2: bDkAt0CCYnB2xqRfpALpEK1gmgo.roa (hash: HzyjrIASJdGjjHtk6b54LHkaX+3Gt8eRcO+z/aYxOaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:7e:08:4d:25:60:da:d8:33:e3:97:11:22:cf:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: Aug 23 07:01:31 2025 GMT
Not After : Aug 24 07:01:31 2025 GMT
Subject: CN=998129712695d35e3a0a8ce56a61fffb4afcefce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2f:51:27:aa:b9:f3:07:98:b9:cd:f0:8f:25:
55:c5:14:76:12:d5:c0:2e:8c:e0:72:fc:4a:4d:39:
b8:7a:73:bd:a3:e6:b7:f1:a4:cc:b8:7c:cc:d8:00:
0a:aa:dd:db:9a:76:48:91:06:89:23:c9:4c:b0:a9:
6d:70:b6:fc:52:da:b3:32:6b:27:dc:5c:ab:bf:79:
95:fb:a4:9f:04:27:af:e8:4b:18:26:82:be:de:0a:
24:cf:c5:12:4d:5e:0d:a4:bb:85:0a:8d:d2:8d:70:
93:4c:0b:a5:a8:60:17:9e:25:09:2b:85:b3:f3:63:
4d:e6:50:6c:1a:fc:fa:29:76:3c:ff:4d:e1:9b:c6:
21:62:ed:57:72:60:16:cc:17:e8:54:4d:e1:61:10:
9a:a5:af:88:98:0a:b6:f8:a2:fa:2a:3e:73:64:ea:
1f:1c:e7:b0:39:50:78:3d:5c:f6:da:0b:71:6b:f5:
24:82:1b:9e:17:13:5c:da:9a:d8:4b:dd:08:2e:51:
d5:aa:f6:20:c2:92:22:ab:d3:53:d6:8a:0a:94:2f:
30:41:d8:67:f9:e7:90:bb:c3:86:76:0b:b4:f1:0a:
c5:b9:a2:6d:00:ae:5f:e2:0e:a5:8a:b5:b0:5f:8d:
ef:48:03:06:20:85:b7:b3:b5:a4:97:66:a3:44:06:
f0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:81:29:71:26:95:D3:5E:3A:0A:8C:E5:6A:61:FF:FB:4A:FC:EF:CE
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:f7:ed:6c:aa:ab:31:00:b4:59:2b:f5:de:e1:ed:95:3a:08:
7b:5e:55:12:29:a4:d8:1d:34:8d:74:df:ea:d3:01:f7:1b:b0:
17:8b:9a:ef:fb:fd:13:e1:9f:97:56:ab:c6:ac:28:78:d5:9d:
f5:c9:0c:b4:be:31:38:df:59:06:c6:9e:f5:7c:af:8f:69:ca:
f3:ca:3b:e3:21:c8:c5:c3:ac:d3:b9:5f:b3:f7:74:4f:1b:6f:
69:04:77:13:9d:70:6d:cf:af:5c:70:36:b7:ff:17:f9:23:54:
8e:0e:d3:5a:ec:24:bf:a3:8f:8d:4f:a6:82:e5:24:f6:63:a0:
cf:20:78:0d:a2:3a:71:6c:75:2f:d8:a8:c1:b8:22:cf:da:60:
a5:a4:30:6c:a5:09:5b:15:15:00:f6:b5:7d:74:6d:34:51:10:
14:46:a0:d4:b9:16:28:fa:88:09:a0:65:3d:2d:dd:8b:cd:b7:
26:d8:8e:a0:d6:33:80:c7:af:c4:02:26:de:81:d2:91:32:0b:
82:31:76:f4:a1:42:71:a7:ee:ca:a4:8a:39:22:38:23:b5:ac:
0a:32:7c:6f:e5:bb:0c:b0:88:20:54:2e:c1:29:53:85:54:67:
4c:6c:05:f2:d3:b0:50:6b:e4:79:cc:ea:37:c1:9e:57:7c:89:
2f:b8:e7:5a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu34ITSVg2tgz45cRIs/FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YTNiNjE2NDA3Yjk3ZTI2MTE2MzM0ODc3YzZhYTkyOGFh
YWVlYjIwHhcNMjUwODIzMDcwMTMxWhcNMjUwODI0MDcwMTMxWjAzMTEwLwYDVQQD
Eyg5OTgxMjk3MTI2OTVkMzVlM2EwYThjZTU2YTYxZmZmYjRhZmNlZmNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlC9RJ6q58weYuc3wjyVVxRR2EtXA
LozgcvxKTTm4enO9o+a38aTMuHzM2AAKqt3bmnZIkQaJI8lMsKltcLb8UtqzMmsn
3Fyrv3mV+6SfBCev6EsYJoK+3gokz8USTV4NpLuFCo3SjXCTTAulqGAXniUJK4Wz
82NN5lBsGvz6KXY8/03hm8YhYu1XcmAWzBfoVE3hYRCapa+ImAq2+KL6Kj5zZOof
HOewOVB4PVz22gtxa/UkghueFxNc2prYS90ILlHVqvYgwpIiq9NT1ooKlC8wQdhn
+eeQu8OGdgu08QrFuaJtAK5f4g6lirWwX43vSAMGIIW3s7Wkl2ajRAbwFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJmBKXEmldNeOgqM5Wph//tK/O/OMB8GA1UdIwQY
MBaAFAWjthZAe5fiYRYzSHfGqpKKqu6yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmFPMkZrQjdsLUpoRmpOSWQ4YXFrb3FxN3JJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi82NDFmNDUtYjkzMy00MDE5LWFhN2Et
YWQ1MTM1NzRhNDA0LzEvQmFPMkZrQjdsLUpoRmpOSWQ4YXFrb3FxN3JJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi82NDFmNDUtYjkzMy00MDE5LWFhN2EtYWQ1MTM1NzRhNDA0
LzEvQmFPMkZrQjdsLUpoRmpOSWQ4YXFrb3FxN3JJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM/ftbKqr
MQC0WSv13uHtlToIe15VEimk2B00jXTf6tMB9xuwF4ua7/v9E+Gfl1arxqwoeNWd
9ckMtL4xON9ZBsae9Xyvj2nK88o74yHIxcOs07lfs/d0TxtvaQR3E51wbc+vXHA2
t/8X+SNUjg7TWuwkv6OPjU+mguUk9mOgzyB4DaI6cWx1L9iowbgiz9pgpaQwbKUJ
WxUVAPa1fXRtNFEQFEag1LkWKPqICaBlPS3di823JtiOoNYzgMevxAIm3oHSkTIL
gjF29KFCcafuyqSKOSI4I7WsCjJ8b+W7DLCIIFQuwSlThVRnTGwF8tOwUGvkeczq
N8GeV3yJL7jnWg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:27:04 2025 by rpki-client