Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
File: aNogbIPVBeJUs-88dlD5-5NFNDU.mft (raw, json)
Hash identifier: FiZ60oxLVXP9PDcN4FeStnpD/SCGGudPAipqjCL5tZY=
Subject key identifier: A4:A9:A8:F7:EF:C7:8E:22:B2:34:E8:DE:57:3B:82:5F:E1:A9:BC:68
Authority key identifier: 68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35
Certificate issuer: /CN=68da206c83d505e254b3ef3c7650f9fb93453435
Certificate serial: 0198D4E05845ED74C7A2A7F63F4E4EEFDC1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
Manifest number: 0938
Signing time: Sat 23 Aug 2025 03:02:09 +0000
Manifest this update: Sat 23 Aug 2025 03:02:09 +0000
Manifest next update: Sun 24 Aug 2025 03:02:09 +0000
Files and hashes: 1: 9yjOyCjaNQvZmslgCNfY4UdjDvM.roa (hash: BLcuMbjq4mGuK5Vn41A+M+OAou14cd2H96ukojI5mmM=)
2: aNogbIPVBeJUs-88dlD5-5NFNDU.crl (hash: 06XXyAZzUKYCfnA0nlEfBIjOqS17KChaXZ2PUyQpiXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:58:45:ed:74:c7:a2:a7:f6:3f:4e:4e:ef:dc:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68da206c83d505e254b3ef3c7650f9fb93453435
Validity
Not Before: Aug 23 03:02:09 2025 GMT
Not After : Aug 24 03:02:09 2025 GMT
Subject: CN=a4a9a8f7efc78e22b234e8de573b825fe1a9bc68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f2:68:44:c0:e0:7b:21:7a:98:87:50:5c:e7:
1f:83:94:fd:4a:c5:8c:97:31:f2:c1:bd:f7:21:9f:
b9:45:89:7e:25:0a:dd:d0:c0:12:88:9b:8a:5d:09:
fa:27:20:1e:39:94:fb:ee:03:ea:6d:d8:90:8b:4e:
4e:c3:04:8d:00:0b:b9:5c:fb:f7:33:a4:99:94:f9:
af:b8:06:df:6b:31:14:0c:b7:e8:ce:c6:f7:f8:a0:
04:9e:2c:2a:7d:f4:b0:db:73:72:d9:e8:f1:45:f0:
e3:42:c3:d6:25:92:d7:17:92:f6:f5:6d:ef:58:9d:
74:c9:49:ff:ae:ac:4a:1d:50:c9:ff:dc:0d:59:66:
56:19:77:67:27:b0:be:a1:b6:bc:9c:d5:3e:b4:7d:
5b:b0:eb:11:9c:bb:5d:ff:a1:3a:49:ac:63:7c:96:
70:7b:cb:79:46:63:7b:f2:41:74:89:16:50:60:9d:
53:00:a8:21:4d:90:88:e3:bf:cb:3e:86:11:a3:4a:
11:59:02:cd:34:64:57:55:b9:41:43:08:cc:ba:5a:
c1:65:64:5c:23:f7:ca:25:84:31:1d:3a:71:59:62:
0e:75:19:c1:e2:b5:c4:42:af:ce:1b:cf:f7:b8:ca:
d5:56:ef:6e:e3:4b:64:25:93:23:dc:29:fa:06:ca:
15:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A9:A8:F7:EF:C7:8E:22:B2:34:E8:DE:57:3B:82:5F:E1:A9:BC:68
X509v3 Authority Key Identifier:
keyid:68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:26:63:9b:f6:24:a4:6c:32:36:d7:eb:89:61:33:a7:c2:8f:
f0:54:56:41:bf:7b:bb:78:3e:64:d2:0a:8e:03:75:1c:a4:a9:
75:9a:45:2d:c3:a1:ef:1c:e5:08:bb:3a:2a:5f:20:5d:c7:4d:
b4:58:a0:da:35:0a:b9:42:06:d2:04:aa:e0:eb:4f:ce:5a:7f:
b5:5b:41:b1:be:9d:ee:ee:af:16:7d:96:cf:4a:65:40:4c:05:
f7:6c:0a:7d:b6:30:c0:5e:67:9e:b5:73:07:50:4e:ca:9c:8c:
65:b3:96:06:d3:ca:fd:da:1d:28:1d:bc:04:2d:63:e8:64:5e:
f0:db:23:32:f0:bf:77:b0:d6:48:ba:a5:8e:3a:15:00:a7:2a:
c6:a3:a5:8d:9b:62:1e:42:05:05:ef:00:d9:0f:26:0a:b2:38:
08:50:d3:46:f6:94:2f:e9:bd:50:32:87:0a:33:76:b8:df:42:
17:b9:b6:a6:87:af:ff:8d:0a:26:b4:6b:c1:3f:66:d4:e7:1e:
de:c2:6d:98:dc:ea:a1:27:99:9c:64:c5:c1:07:d6:08:e5:7b:
f9:f1:37:77:54:2b:95:fb:1a:18:1c:b8:97:d1:f0:81:d9:25:
8b:58:9a:9f:1c:67:1b:00:8b:84:69:38:10:59:78:f4:c7:7a:
ef:9b:b4:fe
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4FhF7XTHoqf2P05O79weMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZGEyMDZjODNkNTA1ZTI1NGIzZWYzYzc2NTBmOWZiOTM0
NTM0MzUwHhcNMjUwODIzMDMwMjA5WhcNMjUwODI0MDMwMjA5WjAzMTEwLwYDVQQD
EyhhNGE5YThmN2VmYzc4ZTIyYjIzNGU4ZGU1NzNiODI1ZmUxYTliYzY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0/JoRMDgeyF6mIdQXOcfg5T9SsWM
lzHywb33IZ+5RYl+JQrd0MASiJuKXQn6JyAeOZT77gPqbdiQi05OwwSNAAu5XPv3
M6SZlPmvuAbfazEUDLfozsb3+KAEniwqffSw23Ny2ejxRfDjQsPWJZLXF5L29W3v
WJ10yUn/rqxKHVDJ/9wNWWZWGXdnJ7C+oba8nNU+tH1bsOsRnLtd/6E6SaxjfJZw
e8t5RmN78kF0iRZQYJ1TAKghTZCI47/LPoYRo0oRWQLNNGRXVblBQwjMulrBZWRc
I/fKJYQxHTpxWWIOdRnB4rXEQq/OG8/3uMrVVu9u40tkJZMj3Cn6BsoVuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKSpqPfvx44isjTo3lc7gl/hqbxoMB8GA1UdIwQY
MBaAFGjaIGyD1QXiVLPvPHZQ+fuTRTQ1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU5vZ2JJUFZCZUpVcy04OGRsRDUtNU5GTkRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9iYjI5OGItM2MzOS00OWIyLWFiYjEt
MTFkNjM2YjU2ZGFiLzEvYU5vZ2JJUFZCZUpVcy04OGRsRDUtNU5GTkRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS9iYjI5OGItM2MzOS00OWIyLWFiYjEtMTFkNjM2YjU2ZGFi
LzEvYU5vZ2JJUFZCZUpVcy04OGRsRDUtNU5GTkRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACSZjm/Yk
pGwyNtfriWEzp8KP8FRWQb97u3g+ZNIKjgN1HKSpdZpFLcOh7xzlCLs6Kl8gXcdN
tFig2jUKuUIG0gSq4OtPzlp/tVtBsb6d7u6vFn2Wz0plQEwF92wKfbYwwF5nnrVz
B1BOypyMZbOWBtPK/dodKB28BC1j6GRe8NsjMvC/d7DWSLqljjoVAKcqxqOljZti
HkIFBe8A2Q8mCrI4CFDTRvaUL+m9UDKHCjN2uN9CF7m2poev/40KJrRrwT9m1Oce
3sJtmNzqoSeZnGTFwQfWCOV7+fE3d1QrlfsaGBy4l9Hwgdkli1ianxxnGwCLhGk4
EFl49Md675u0/g==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:25 2025 by rpki-client