Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
File: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft (raw, json)
Hash identifier: jnYpxvgkt5ippL7dVuh3aZe8Jo2XfiiLiQJfBwMwBSY=
Subject key identifier: 7A:A9:1C:31:4A:3F:34:13:0F:79:BC:D8:4B:70:07:EB:3F:D9:AD:DD
Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Certificate serial: 0199FC213CE415EE24F2D9332D7B8B7BBD09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 11:01:00 +0000
Manifest this update: Sun 19 Oct 2025 11:01:00 +0000
Manifest next update: Mon 20 Oct 2025 11:01:00 +0000
Files and hashes: 1: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl (hash: OujUneh5s7nrZ2BMNwK84Gj7XfSuj+VZiRdrgiBOBUc=)
2: xQ3PdmMDye_3ODxtjF3bxTEbrgU.roa (hash: OnYXJU1mRvo0V2FhsSO8D1b8k47DbXdYSrQ7JN4NAuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:3c:e4:15:ee:24:f2:d9:33:2d:7b:8b:7b:bd:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Validity
Not Before: Oct 19 11:01:00 2025 GMT
Not After : Oct 20 11:01:00 2025 GMT
Subject: CN=7aa91c314a3f34130f79bcd84b7007eb3fd9addd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:68:6b:c8:f8:97:a1:53:e4:d9:aa:e7:50:e6:
e3:ce:b1:8c:f8:1e:db:c4:22:69:2b:41:3f:cf:0a:
a9:4b:0e:53:6a:02:bb:86:cf:b4:d3:56:56:11:cc:
38:20:85:18:74:0d:9e:d8:8c:2c:58:9c:b3:ac:77:
ba:81:e7:b8:2f:9d:a1:e8:18:6d:57:5d:35:ef:18:
b9:47:90:32:f2:a1:09:80:f1:dc:b3:bf:cd:b7:d4:
6a:df:71:e0:b5:c0:2f:07:34:14:6c:ff:de:27:5c:
b4:e9:2d:c5:e5:da:fe:ab:45:5b:1a:8c:57:e6:c4:
fb:ca:3a:13:c3:f0:d4:7f:fb:f7:f7:07:34:ab:0d:
b4:ee:27:04:26:77:21:58:52:39:09:18:2f:22:97:
36:bc:46:73:ef:ab:b1:a1:04:47:2f:62:26:dd:12:
44:66:51:1c:d6:60:8f:fe:3c:68:5d:40:ff:37:cd:
bb:3a:8b:7b:0f:a9:ad:c0:6f:00:e2:cd:42:99:db:
0a:d4:3f:01:75:04:85:be:df:4c:42:87:61:85:31:
a5:85:90:51:41:04:2d:aa:37:5f:8a:bd:37:34:59:
be:ac:dc:35:f8:98:8c:0f:31:82:a7:56:63:7e:6a:
e8:4e:22:20:db:b5:5e:b7:aa:8e:6e:95:05:58:0b:
ee:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A9:1C:31:4A:3F:34:13:0F:79:BC:D8:4B:70:07:EB:3F:D9:AD:DD
X509v3 Authority Key Identifier:
keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:b7:61:58:f0:51:18:6b:6a:c0:9b:2c:0c:fc:8e:9d:d5:9c:
a8:8e:ea:33:dd:98:01:e1:b7:c8:45:fc:3c:8d:73:ab:a8:fc:
ef:ed:b2:ea:35:cb:8a:eb:cb:4c:03:aa:8b:8f:91:d0:9b:65:
3f:64:28:72:d2:7f:b5:11:0e:07:45:88:de:83:b1:4a:3a:ec:
a8:18:f8:98:f4:04:56:75:b4:13:f0:82:19:7e:e1:70:09:40:
e6:6b:43:89:3f:3c:a1:01:fe:e8:49:fe:be:cb:c8:18:03:9e:
30:75:48:d4:90:2a:95:bf:a3:99:c9:7f:86:ae:d9:8a:0d:00:
f2:a4:d7:b6:24:d1:44:cf:75:41:e7:1e:3b:10:dd:d2:ed:b9:
3b:60:89:bd:92:c7:55:80:65:7d:af:77:fd:7a:97:47:ef:3d:
39:e8:63:21:d0:3f:63:23:6e:5e:c0:a5:ce:34:aa:f5:0d:6b:
a5:80:51:8b:b5:c1:32:bc:c8:bc:1e:9b:21:cd:89:af:ca:cf:
41:23:42:5f:a5:22:a3:07:0e:fb:0c:02:17:a6:2d:3b:33:02:
66:bc:6e:18:87:ea:e9:7f:1e:bf:81:be:e8:c8:cf:e8:5a:0c:
b9:7d:6e:93:99:84:c3:f8:30:4f:c0:3b:10:bd:cb:45:bf:a1:
cc:2b:ed:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8ITzkFe4k8tkzLXuLe70JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YWU1ZjIzZGI5ODNmZDEzNmFlOWQ3MWU4N2UxZTUxMzBi
Y2Y2ZDQwHhcNMjUxMDE5MTEwMTAwWhcNMjUxMDIwMTEwMTAwWjAzMTEwLwYDVQQD
Eyg3YWE5MWMzMTRhM2YzNDEzMGY3OWJjZDg0YjcwMDdlYjNmZDlhZGRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWhryPiXoVPk2arnUObjzrGM+B7b
xCJpK0E/zwqpSw5TagK7hs+001ZWEcw4IIUYdA2e2IwsWJyzrHe6gee4L52h6Bht
V1017xi5R5Ay8qEJgPHcs7/Nt9Rq33HgtcAvBzQUbP/eJ1y06S3F5dr+q0VbGoxX
5sT7yjoTw/DUf/v39wc0qw207icEJnchWFI5CRgvIpc2vEZz76uxoQRHL2Im3RJE
ZlEc1mCP/jxoXUD/N827Oot7D6mtwG8A4s1CmdsK1D8BdQSFvt9MQodhhTGlhZBR
QQQtqjdfir03NFm+rNw1+JiMDzGCp1ZjfmroTiIg27Vet6qObpUFWAvu0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHqpHDFKPzQTD3m82EtwB+s/2a3dMB8GA1UdIwQY
MBaAFAWuXyPbmD/RNq6dceh+HlEwvPbUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmE1Zkk5dVlQOUUycnAxeDZINGVVVEM4OXRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS83NDVmY2ItZjQ3Mi00MDM5LThiMWQt
NDRlZmQxMzA2NTljLzEvQmE1Zkk5dVlQOUUycnAxeDZINGVVVEM4OXRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS83NDVmY2ItZjQ3Mi00MDM5LThiMWQtNDRlZmQxMzA2NTlj
LzEvQmE1Zkk5dVlQOUUycnAxeDZINGVVVEM4OXRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW7dhWPBR
GGtqwJssDPyOndWcqI7qM92YAeG3yEX8PI1zq6j87+2y6jXLiuvLTAOqi4+R0Jtl
P2QoctJ/tREOB0WI3oOxSjrsqBj4mPQEVnW0E/CCGX7hcAlA5mtDiT88oQH+6En+
vsvIGAOeMHVI1JAqlb+jmcl/hq7Zig0A8qTXtiTRRM91QeceOxDd0u25O2CJvZLH
VYBlfa93/XqXR+89OehjIdA/YyNuXsClzjSq9Q1rpYBRi7XBMrzIvB6bIc2Jr8rP
QSNCX6UiowcO+wwCF6YtOzMCZrxuGIfq6X8ev4G+6MjP6FoMuX1uk5mEw/gwT8A7
EL3LRb+hzCvtFQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:43:02 2025 by rpki-client