Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
File: aKUCPY4CESaZfXkmpHcBYIqs48c.mft (raw, json)
Hash identifier: 6KZPBZxTaUfoHJcjkvBy7WXOLb9tKwvKSYbFShYPMJc=
Subject key identifier: D2:13:4B:1E:55:B6:04:72:6F:BA:F8:1A:92:60:A5:0C:9C:A4:2C:A3
Authority key identifier: 68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
Certificate issuer: /CN=68a5023d8e021126997d7926a47701608aace3c7
Certificate serial: 0198D4E0E7350F0F53230847DD1A58B3FC9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
Manifest number: 07BA
Signing time: Sat 23 Aug 2025 03:02:45 +0000
Manifest this update: Sat 23 Aug 2025 03:02:45 +0000
Manifest next update: Sun 24 Aug 2025 03:02:45 +0000
Files and hashes: 1: aKUCPY4CESaZfXkmpHcBYIqs48c.crl (hash: D35+opWLLTqhQeYfb9QklXxM7nmhuqAw3pHtfc+7MM4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:e7:35:0f:0f:53:23:08:47:dd:1a:58:b3:fc:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a5023d8e021126997d7926a47701608aace3c7
Validity
Not Before: Aug 23 03:02:45 2025 GMT
Not After : Aug 24 03:02:45 2025 GMT
Subject: CN=d2134b1e55b604726fbaf81a9260a50c9ca42ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:de:74:32:33:94:79:e6:93:ba:2f:e3:45:3f:
89:dd:89:cd:1f:4a:90:7c:7c:05:80:4c:cc:03:a7:
43:9c:80:81:68:b8:16:3a:be:0a:56:d8:8f:11:4b:
66:f6:86:b6:f5:9b:f4:dc:7b:d6:11:d7:c5:78:33:
cf:d1:88:10:bd:11:4c:f8:6a:a8:9a:b5:54:ac:f8:
a8:0f:13:6c:b5:d4:91:c8:62:c6:e6:e7:d2:f6:e6:
a9:e9:7d:d0:6f:1d:99:aa:de:25:2f:de:01:56:53:
a1:c3:11:7a:c1:49:8c:f5:2a:bf:1a:3f:1f:9a:b6:
e9:21:96:e3:8e:39:ad:fc:2b:dc:c9:45:8c:37:6c:
d1:c4:62:b1:0e:20:29:a0:85:be:f5:59:15:9b:22:
f4:2c:6a:b5:d3:54:91:52:e6:6e:51:a2:43:49:3b:
fb:23:32:d6:a7:c1:35:c8:df:ed:f7:8d:3f:88:0b:
5c:fa:f0:d1:b9:76:37:10:f5:cc:d5:5c:ef:6d:4b:
f0:16:af:eb:a0:85:12:84:ff:cf:b8:cc:0f:e6:b6:
cb:4a:6e:88:8e:d3:cf:71:78:36:0c:99:f5:87:a3:
a3:ab:e3:bf:e1:90:7f:a4:6e:b3:e6:af:04:ae:8e:
3e:60:ed:3f:34:d0:d5:f8:a2:10:fb:16:0b:54:60:
04:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:13:4B:1E:55:B6:04:72:6F:BA:F8:1A:92:60:A5:0C:9C:A4:2C:A3
X509v3 Authority Key Identifier:
keyid:68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:6c:08:36:c2:a5:09:7c:78:70:07:5f:9f:d4:56:52:1a:39:
da:71:a1:27:65:ea:01:24:d2:8e:dd:33:b5:97:a6:4c:aa:ee:
d6:fd:c1:63:d0:c9:d2:85:ab:bd:e1:fa:3c:60:06:f3:d8:b8:
ca:e8:93:17:7d:64:fe:06:bc:a2:c4:1e:0b:63:c1:04:da:16:
90:de:46:ba:4d:40:f1:54:53:9b:65:21:f8:f6:79:54:e4:9b:
30:3e:08:4c:eb:03:99:4d:8a:48:cd:0d:cd:1c:f3:d5:da:f9:
14:66:ef:29:01:64:80:b3:e3:e2:78:0a:c5:fc:7f:49:a8:40:
f9:29:87:e5:31:e8:51:e5:85:d2:88:4b:87:fd:78:f4:ad:23:
16:be:dc:b0:16:b4:68:dd:e9:03:fb:61:bc:4e:a4:e7:fd:4a:
87:7c:9f:fd:f8:be:b9:fe:cb:01:f4:a7:37:02:39:bc:01:25:
dc:5a:26:e1:c7:8c:36:fb:b2:0f:29:e0:4b:5b:ca:5b:c9:41:
ae:9b:32:c7:ff:a3:65:5a:6f:08:ec:5a:69:8c:45:73:00:84:
8e:1f:17:b7:8f:4e:4f:61:19:6f:97:f8:0e:21:fa:46:6f:91:
75:d8:e8:b0:96:49:7b:b5:da:ce:6f:a0:27:58:73:da:2b:84:
d9:27:2e:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4Oc1Dw9TIwhH3RpYs/yaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YTUwMjNkOGUwMjExMjY5OTdkNzkyNmE0NzcwMTYwOGFh
Y2UzYzcwHhcNMjUwODIzMDMwMjQ1WhcNMjUwODI0MDMwMjQ1WjAzMTEwLwYDVQQD
EyhkMjEzNGIxZTU1YjYwNDcyNmZiYWY4MWE5MjYwYTUwYzljYTQyY2EzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxt50MjOUeeaTui/jRT+J3YnNH0qQ
fHwFgEzMA6dDnICBaLgWOr4KVtiPEUtm9oa29Zv03HvWEdfFeDPP0YgQvRFM+Gqo
mrVUrPioDxNstdSRyGLG5ufS9uap6X3Qbx2Zqt4lL94BVlOhwxF6wUmM9Sq/Gj8f
mrbpIZbjjjmt/CvcyUWMN2zRxGKxDiApoIW+9VkVmyL0LGq101SRUuZuUaJDSTv7
IzLWp8E1yN/t940/iAtc+vDRuXY3EPXM1VzvbUvwFq/roIUShP/PuMwP5rbLSm6I
jtPPcXg2DJn1h6Ojq+O/4ZB/pG6z5q8Ero4+YO0/NNDV+KIQ+xYLVGAE3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNITSx5VtgRyb7r4GpJgpQycpCyjMB8GA1UdIwQY
MBaAFGilAj2OAhEmmX15JqR3AWCKrOPHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUtVQ1BZNENFU2FaZlhrbXBIY0JZSXFzNDhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84NjBiZWItMmVkYi00Y2UwLWE1NWUt
ODQ4MWU2YzMzZTNjLzEvYUtVQ1BZNENFU2FaZlhrbXBIY0JZSXFzNDhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC84NjBiZWItMmVkYi00Y2UwLWE1NWUtODQ4MWU2YzMzZTNj
LzEvYUtVQ1BZNENFU2FaZlhrbXBIY0JZSXFzNDhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA2wINsKl
CXx4cAdfn9RWUho52nGhJ2XqASTSjt0ztZemTKru1v3BY9DJ0oWrveH6PGAG89i4
yuiTF31k/ga8osQeC2PBBNoWkN5Guk1A8VRTm2Uh+PZ5VOSbMD4ITOsDmU2KSM0N
zRzz1dr5FGbvKQFkgLPj4ngKxfx/SahA+SmH5THoUeWF0ohLh/149K0jFr7csBa0
aN3pA/thvE6k5/1Kh3yf/fi+uf7LAfSnNwI5vAEl3Fom4ceMNvuyDyngS1vKW8lB
rpsyx/+jZVpvCOxaaYxFcwCEjh8Xt49OT2EZb5f4DiH6Rm+RddjosJZJe7Xazm+g
J1hz2iuE2ScuQQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:06 2025 by rpki-client