Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
File: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft (raw, json)
Hash identifier: PTOUYcjc44lubpXaDvh2Mfo2y1ST6Nvt+Zw1rVohs00=
Subject key identifier: A6:3D:05:87:86:31:5C:55:8E:E2:45:C5:88:71:12:6F:7A:F3:54:D9
Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Certificate serial: 0198D4A813126E53E5F217C571F00E7DE024
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 02:00:41 +0000
Manifest this update: Sat 23 Aug 2025 02:00:41 +0000
Manifest next update: Sun 24 Aug 2025 02:00:41 +0000
Files and hashes: 1: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl (hash: SyBuLaAU+QnH+ZsdQtkknABREee1raGpOzhw9V26iYY=)
2: xQ3PdmMDye_3ODxtjF3bxTEbrgU.roa (hash: OnYXJU1mRvo0V2FhsSO8D1b8k47DbXdYSrQ7JN4NAuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:13:12:6e:53:e5:f2:17:c5:71:f0:0e:7d:e0:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Validity
Not Before: Aug 23 02:00:41 2025 GMT
Not After : Aug 24 02:00:41 2025 GMT
Subject: CN=a63d058786315c558ee245c58871126f7af354d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:2e:73:a6:ed:4b:1c:84:32:ee:bc:f1:f0:41:
d8:10:6b:0d:35:e7:0c:e0:39:d9:06:a0:3a:3d:78:
c8:42:d9:d0:b8:ed:72:e6:46:e5:09:3f:9a:10:07:
d2:cc:d4:36:b1:75:6b:ff:d7:d5:14:90:86:4a:c5:
cc:d2:ab:67:fa:8b:81:5d:77:6d:eb:11:cd:78:b9:
c8:a9:98:ee:2b:9b:a5:93:b6:36:e0:86:b0:a5:59:
13:32:4d:3a:dd:98:7d:64:52:cd:3f:e7:e9:9d:eb:
69:07:12:23:e9:c3:1e:01:77:60:d6:63:4e:b3:d6:
ae:b4:66:06:04:d4:7b:0c:8c:c7:e5:f0:54:20:bb:
0b:3d:22:d7:46:0c:08:68:fb:af:59:28:88:6f:24:
6a:13:6a:12:11:02:21:94:78:a6:86:b3:c9:da:f2:
41:f8:13:cb:cb:d0:13:1b:04:48:8b:19:ed:00:a7:
69:66:64:02:1a:c2:25:e2:b8:4d:d9:d7:0b:47:58:
bf:e2:7b:47:51:fd:ee:a8:c5:c9:18:d9:1f:22:16:
9a:ac:3b:ce:e6:fc:0e:f1:e5:9e:1d:44:aa:a1:ab:
07:a4:4b:51:94:e2:89:98:89:2c:5d:1f:4f:59:a3:
df:e3:0d:ee:de:c9:dc:7d:95:a7:21:b9:f6:78:31:
05:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:3D:05:87:86:31:5C:55:8E:E2:45:C5:88:71:12:6F:7A:F3:54:D9
X509v3 Authority Key Identifier:
keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:41:c8:c5:a5:90:c9:f5:42:2e:5e:7f:93:c0:27:77:65:a3:
d6:0b:9c:18:9c:94:1a:a2:dd:72:3c:4f:3c:af:ca:8f:b9:98:
15:a5:6a:05:4e:2e:f3:3d:5c:33:b0:72:fd:dc:f5:ea:86:fd:
ec:ea:bc:84:5d:79:16:54:a9:6e:a9:a8:36:ce:07:f9:64:04:
62:db:20:c6:d9:34:59:aa:18:10:34:7c:4f:42:8b:03:dc:b4:
fa:17:5e:15:43:4c:c3:28:57:e6:9f:26:5c:e3:bb:53:85:59:
e2:a8:c6:93:62:19:af:a4:86:6f:f4:69:16:60:6d:1d:3b:b6:
f1:b5:9c:ec:00:22:a1:b4:11:95:fe:49:6f:93:2a:94:f0:79:
fa:f5:42:0c:4d:ca:24:ec:21:84:d4:6e:fc:e0:ab:04:92:0b:
23:2e:96:c4:c2:35:cd:3d:d0:4a:8a:62:7c:f1:fb:87:76:1a:
de:63:18:1f:7f:a6:99:04:69:25:57:68:26:59:bb:9e:0e:5b:
d9:41:e7:43:a7:d6:1b:d0:86:2d:db:13:fa:fa:d7:c5:43:14:
0a:e6:a9:e3:b5:83:f0:c1:26:71:c4:e8:43:f7:54:82:49:a9:
52:7b:f0:36:e6:29:a9:33:d0:8e:76:46:5e:dd:70:21:20:aa:
cb:ce:6f:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:40:26 2025 by rpki-client