Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: 54qlPOZftbH225JL705OqvxuZmQtv5X0XpKam9twats=
Subject key identifier: E1:AC:B0:E3:6A:AE:43:39:0C:AF:C9:20:FE:B9:A4:AC:6D:BC:FA:FF
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 0197B7EAA44ECB890688B5F2966EE824AEDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 09A4
Signing time: Sat 28 Jun 2025 19:01:37 +0000
Manifest this update: Sat 28 Jun 2025 19:01:37 +0000
Manifest next update: Sun 29 Jun 2025 19:01:37 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: GXegCnQxSY8BXNE2qWIex07IR7unYlzMdG7Z+cTe7+0=)
2: bDkAt0CCYnB2xqRfpALpEK1gmgo.roa (hash: HzyjrIASJdGjjHtk6b54LHkaX+3Gt8eRcO+z/aYxOaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:a4:4e:cb:89:06:88:b5:f2:96:6e:e8:24:ae:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: Jun 28 19:01:37 2025 GMT
Not After : Jun 29 19:01:37 2025 GMT
Subject: CN=e1acb0e36aae43390cafc920feb9a4ac6dbcfaff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a9:1b:c3:29:86:86:c8:ad:da:b3:89:66:79:
e0:e8:fc:b6:15:45:6b:35:56:62:f4:e1:e3:0f:f4:
05:52:e2:46:25:c9:07:bc:82:d2:37:e7:dd:87:64:
cb:5a:8e:6d:51:6f:1d:83:ec:67:6b:64:a7:e2:35:
8d:8d:8d:65:2c:6c:24:bc:14:a2:9c:67:de:61:c4:
f8:e1:d0:80:31:93:c5:60:78:a8:bb:fa:77:29:d2:
ea:ce:06:09:55:a2:28:03:a3:61:c3:57:85:66:32:
f1:f7:a3:9c:1e:18:f4:f2:44:be:15:b1:48:e2:7a:
95:b2:91:5f:a5:fc:01:47:ff:20:33:fe:7c:22:3c:
95:ce:ec:36:fc:b1:47:4e:93:c9:b1:91:59:3b:72:
67:0c:2a:84:50:45:ba:27:ff:8d:19:0b:79:b2:23:
35:0e:cf:9d:ac:1c:42:bf:b3:63:a7:b7:f2:52:96:
0a:0b:77:26:56:d3:9b:b9:3a:0a:2c:5d:c7:40:ab:
2a:bd:2d:66:33:2f:60:e8:77:71:f2:69:2d:c7:06:
61:78:38:37:94:87:9c:f0:8a:e1:cc:8a:ef:74:8c:
8e:bf:25:80:4b:cd:98:2f:dd:5b:1b:03:e3:f5:03:
e8:d0:a0:11:ee:09:1f:a0:ee:9f:34:56:a9:17:f1:
43:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:AC:B0:E3:6A:AE:43:39:0C:AF:C9:20:FE:B9:A4:AC:6D:BC:FA:FF
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:90:3f:f5:fd:9f:14:16:b7:04:c9:39:f3:2c:f2:22:52:a1:
4f:83:32:0b:43:c1:f8:db:c4:09:48:8d:30:ee:04:d1:c8:11:
e0:16:b7:e8:e1:5d:24:ad:53:a6:a2:a9:92:5a:f6:79:26:7d:
84:59:32:59:83:59:7c:5a:fe:93:13:08:e4:72:b8:57:b9:7d:
b9:51:1f:bd:4d:f9:0f:07:fa:1a:3c:d3:fa:e8:46:0c:c4:e2:
03:8d:28:51:94:01:ee:cf:71:ea:e9:96:24:1a:ef:2c:60:f8:
c4:1f:c1:79:a0:c0:32:8f:3f:e3:3f:0b:f3:31:33:40:33:4f:
ec:f1:d8:73:e1:3f:cc:62:44:36:d0:4c:b8:a9:4d:f4:37:a7:
b4:9c:5b:ab:ca:c6:f5:94:f9:e2:92:0b:6a:47:2e:4c:de:dc:
4a:86:c4:5e:a2:50:fd:d5:d7:80:cf:5e:52:af:7d:50:6e:c3:
22:8d:2d:7a:79:38:07:ef:46:76:cf:56:4a:cd:7f:c7:46:ea:
83:2d:bd:e4:e2:21:50:8e:42:07:c4:29:18:06:91:56:dd:61:
85:a3:8f:95:9a:4b:75:99:47:61:05:41:be:b7:a7:9c:62:cc:
5b:86:15:be:5d:ae:da:6f:3b:31:ea:9a:f0:d8:38:5f:e1:4d:
84:8e:04:03
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36qROy4kGiLXylm7oJK7aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YTNiNjE2NDA3Yjk3ZTI2MTE2MzM0ODc3YzZhYTkyOGFh
YWVlYjIwHhcNMjUwNjI4MTkwMTM3WhcNMjUwNjI5MTkwMTM3WjAzMTEwLwYDVQQD
EyhlMWFjYjBlMzZhYWU0MzM5MGNhZmM5MjBmZWI5YTRhYzZkYmNmYWZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi6kbwymGhsit2rOJZnng6Py2FUVr
NVZi9OHjD/QFUuJGJckHvILSN+fdh2TLWo5tUW8dg+xna2Sn4jWNjY1lLGwkvBSi
nGfeYcT44dCAMZPFYHiou/p3KdLqzgYJVaIoA6Nhw1eFZjLx96OcHhj08kS+FbFI
4nqVspFfpfwBR/8gM/58IjyVzuw2/LFHTpPJsZFZO3JnDCqEUEW6J/+NGQt5siM1
Ds+drBxCv7Njp7fyUpYKC3cmVtObuToKLF3HQKsqvS1mMy9g6Hdx8mktxwZheDg3
lIec8IrhzIrvdIyOvyWAS82YL91bGwPj9QPo0KAR7gkfoO6fNFapF/FDjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOGssONqrkM5DK/JIP65pKxtvPr/MB8GA1UdIwQY
MBaAFAWjthZAe5fiYRYzSHfGqpKKqu6yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmFPMkZrQjdsLUpoRmpOSWQ4YXFrb3FxN3JJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi82NDFmNDUtYjkzMy00MDE5LWFhN2Et
YWQ1MTM1NzRhNDA0LzEvQmFPMkZrQjdsLUpoRmpOSWQ4YXFrb3FxN3JJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi82NDFmNDUtYjkzMy00MDE5LWFhN2EtYWQ1MTM1NzRhNDA0
LzEvQmFPMkZrQjdsLUpoRmpOSWQ4YXFrb3FxN3JJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFJA/9f2f
FBa3BMk58yzyIlKhT4MyC0PB+NvECUiNMO4E0cgR4Ba36OFdJK1TpqKpklr2eSZ9
hFkyWYNZfFr+kxMI5HK4V7l9uVEfvU35Dwf6GjzT+uhGDMTiA40oUZQB7s9x6umW
JBrvLGD4xB/BeaDAMo8/4z8L8zEzQDNP7PHYc+E/zGJENtBMuKlN9DentJxbq8rG
9ZT54pILakcuTN7cSobEXqJQ/dXXgM9eUq99UG7DIo0tenk4B+9Gds9WSs1/x0bq
gy295OIhUI5CB8QpGAaRVt1hhaOPlZpLdZlHYQVBvrennGLMW4YVvl2u2m87Meqa
8Ng4X+FNhI4EAw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:15:28 2025 by rpki-client