Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
File: Cga2XLuXZnq9_5uGGiL50B0dRss.mft (raw, json)
Hash identifier: ZU/D3Y5CNiZx9b6pyN0EP8CY9d0nEZBqjwofGbFkxXI=
Subject key identifier: 8B:0D:01:B8:94:18:AF:14:B9:23:38:28:A5:FA:D7:AF:4E:71:AE:F8
Authority key identifier: 0A:06:B6:5C:BB:97:66:7A:BD:FF:9B:86:1A:22:F9:D0:1D:1D:46:CB
Certificate issuer: /CN=0a06b65cbb97667abdff9b861a22f9d01d1d46cb
Certificate serial: 0198D73AF49608A8EC90BACF276C7E24B6B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 14:00:21 +0000
Manifest this update: Sat 23 Aug 2025 14:00:21 +0000
Manifest next update: Sun 24 Aug 2025 14:00:21 +0000
Files and hashes: 1: Cga2XLuXZnq9_5uGGiL50B0dRss.crl (hash: o07+sJOrkSd4hym9BacGkBtHOXfSGJYRcTXxPKyPjWk=)
2: xnuUEnVXaSzz9cF5USCrsyD97so.roa (hash: j10VBwI4MUaDD8l8nXJ3vdwJpNrClSEXJCQ84BCSTro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3a:f4:96:08:a8:ec:90:ba:cf:27:6c:7e:24:b6:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a06b65cbb97667abdff9b861a22f9d01d1d46cb
Validity
Not Before: Aug 23 14:00:21 2025 GMT
Not After : Aug 24 14:00:21 2025 GMT
Subject: CN=8b0d01b89418af14b9233828a5fad7af4e71aef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:16:62:0e:da:84:45:f6:04:16:b6:bd:d3:ff:
7e:6d:18:05:39:a3:b9:3a:6d:b9:9c:48:b2:3a:31:
7b:f4:7e:87:96:3d:0c:ff:d9:af:56:97:e1:70:c8:
37:82:85:1a:64:ec:c0:9a:b5:36:bf:57:c6:80:84:
87:01:b3:6f:65:47:08:d1:31:60:1c:6d:bb:d6:11:
24:52:ae:e7:70:e8:be:a3:a5:41:d8:cf:b1:9f:b9:
81:ff:a1:61:b1:b4:b0:b6:80:b5:6c:b9:9a:cc:59:
f1:99:c4:1e:07:01:15:a2:07:e8:ba:11:48:0b:38:
d7:f1:71:e9:ff:93:e7:25:83:8d:a5:28:28:89:7f:
06:a6:ca:17:54:be:03:ef:79:cd:26:2e:84:90:1f:
b0:e9:86:32:80:d9:57:0b:5d:52:fe:e0:23:0a:94:
f8:c5:f4:cb:96:49:06:41:c7:59:64:e3:76:96:70:
5a:76:15:02:57:80:40:f2:90:a5:44:d5:83:66:34:
d5:8e:75:11:cc:21:0a:cd:70:7d:70:1e:7f:44:09:
bc:ae:91:41:28:a9:9f:f5:1f:78:58:0b:a1:e8:c0:
97:04:fb:df:a1:bb:87:3a:9a:b7:09:c5:6c:f0:ca:
ae:5b:6e:89:bf:a5:c1:fb:c8:a9:18:1d:23:a5:fe:
fa:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:0D:01:B8:94:18:AF:14:B9:23:38:28:A5:FA:D7:AF:4E:71:AE:F8
X509v3 Authority Key Identifier:
keyid:0A:06:B6:5C:BB:97:66:7A:BD:FF:9B:86:1A:22:F9:D0:1D:1D:46:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dc:6c:e5:72:13:bc:3d:ef:1b:6c:05:54:b0:ea:32:cb:2f:f0:
cf:d6:0f:c3:05:7b:6a:f2:b8:01:6e:26:4e:e8:32:2f:34:51:
48:76:c0:28:0b:ee:fa:df:73:83:36:74:5a:e1:0f:e0:47:b1:
29:06:81:b7:3d:6d:b0:23:21:cb:00:ed:20:1d:3b:6b:68:c3:
98:3a:71:13:23:11:81:31:b2:ba:3a:69:09:5e:ab:d0:4e:63:
c3:b0:ed:7e:b3:cb:52:92:5a:b6:7e:e3:75:02:c1:d3:1f:9e:
76:4a:f8:0a:08:00:e7:27:32:93:c1:b7:8a:e2:04:be:d2:6f:
26:ac:b0:7b:42:18:c5:f2:6b:8a:86:89:f2:02:49:16:c5:f8:
8b:34:d6:86:bd:40:77:01:13:93:aa:99:94:f8:ed:66:ec:c7:
75:1f:8a:3a:fb:30:3a:23:35:9e:f3:02:8c:b2:32:a5:c3:1e:
51:48:a2:af:dc:fa:e6:c9:7c:3b:f1:7e:40:a7:cd:6e:e1:93:
3f:c2:3a:ee:99:9f:4c:2f:79:de:35:78:74:74:a4:28:66:19:
e1:60:64:e2:bc:2c:c3:45:96:13:97:fb:f0:f0:11:d1:ec:55:
43:6d:ff:ed:1a:a0:3c:e8:62:d7:9a:03:ee:30:7b:07:3e:e5:
34:6b:23:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXOvSWCKjskLrPJ2x+JLa4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhMDZiNjVjYmI5NzY2N2FiZGZmOWI4NjFhMjJmOWQwMWQx
ZDQ2Y2IwHhcNMjUwODIzMTQwMDIxWhcNMjUwODI0MTQwMDIxWjAzMTEwLwYDVQQD
Eyg4YjBkMDFiODk0MThhZjE0YjkyMzM4MjhhNWZhZDdhZjRlNzFhZWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzxZiDtqERfYEFra90/9+bRgFOaO5
Om25nEiyOjF79H6Hlj0M/9mvVpfhcMg3goUaZOzAmrU2v1fGgISHAbNvZUcI0TFg
HG271hEkUq7ncOi+o6VB2M+xn7mB/6FhsbSwtoC1bLmazFnxmcQeBwEVogfouhFI
CzjX8XHp/5PnJYONpSgoiX8GpsoXVL4D73nNJi6EkB+w6YYygNlXC11S/uAjCpT4
xfTLlkkGQcdZZON2lnBadhUCV4BA8pClRNWDZjTVjnURzCEKzXB9cB5/RAm8rpFB
KKmf9R94WAuh6MCXBPvfobuHOpq3CcVs8MquW26Jv6XB+8ipGB0jpf76xQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIsNAbiUGK8UuSM4KKX6169Oca74MB8GA1UdIwQY
MBaAFAoGtly7l2Z6vf+bhhoi+dAdHUbLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2dhMlhMdVhabnE5XzV1R0dpTDUwQjBkUnNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8yZTE4ZjctMDljNy00NWIxLWJjYjct
OWY2Njg2ZTQyODAwLzEvQ2dhMlhMdVhabnE5XzV1R0dpTDUwQjBkUnNzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC8yZTE4ZjctMDljNy00NWIxLWJjYjctOWY2Njg2ZTQyODAw
LzEvQ2dhMlhMdVhabnE5XzV1R0dpTDUwQjBkUnNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3GzlchO8
Pe8bbAVUsOoyyy/wz9YPwwV7avK4AW4mTugyLzRRSHbAKAvu+t9zgzZ0WuEP4Eex
KQaBtz1tsCMhywDtIB07a2jDmDpxEyMRgTGyujppCV6r0E5jw7DtfrPLUpJatn7j
dQLB0x+edkr4CggA5ycyk8G3iuIEvtJvJqywe0IYxfJrioaJ8gJJFsX4izTWhr1A
dwETk6qZlPjtZuzHdR+KOvswOiM1nvMCjLIypcMeUUiir9z65sl8O/F+QKfNbuGT
P8I67pmfTC953jV4dHSkKGYZ4WBk4rwsw0WWE5f78PAR0exVQ23/7RqgPOhi15oD
7jB7Bz7lNGsjDg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 18:29:12 2025 by rpki-client