Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
File: k680jsWk5l4MsTeCGuahOe1_rAA.mft (raw, json)
Hash identifier: Yi8u3REp1NFQW8dSKVml3C/qcNVMpGWzWyvWiiwBVSQ=
Subject key identifier: F7:BA:D8:3B:4E:0A:F5:11:7F:5E:C7:DC:FC:A4:E0:DD:90:C8:CA:28
Authority key identifier: 93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
Certificate issuer: /CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Certificate serial: 0198D5BC143C80EDD6AEF9182C532B7AE16E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
Manifest number: 15DA
Signing time: Sat 23 Aug 2025 07:02:09 +0000
Manifest this update: Sat 23 Aug 2025 07:02:09 +0000
Manifest next update: Sun 24 Aug 2025 07:02:09 +0000
Files and hashes: 1: gKy-M4ArOB2uxqprqRJ6fbGyEC8.roa (hash: MC8Gw1INJPJBRmJZki75GCuCmqozYCvUY/UxQ+rSFh0=)
2: k680jsWk5l4MsTeCGuahOe1_rAA.crl (hash: yT/6rC9PYb2gF6FBZU4ihQ9WYyb5DMJD7b9HK8jQ9MU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:14:3c:80:ed:d6:ae:f9:18:2c:53:2b:7a:e1:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Validity
Not Before: Aug 23 07:02:09 2025 GMT
Not After : Aug 24 07:02:09 2025 GMT
Subject: CN=f7bad83b4e0af5117f5ec7dcfca4e0dd90c8ca28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:81:da:e3:20:4a:88:24:57:d1:4c:19:1c:ab:
7f:46:37:35:10:60:5b:c1:2b:4f:e6:a3:82:ee:47:
40:ed:2c:9d:53:35:c9:3d:5f:89:99:72:df:a7:c5:
78:c1:26:0e:f6:42:63:a0:67:ef:2d:d9:ee:84:44:
98:97:c3:32:62:d8:aa:b0:23:7a:23:11:a9:55:14:
44:5d:df:32:9d:32:2d:b9:24:88:26:75:89:4f:57:
5c:45:ab:a8:62:16:8b:2b:3d:6f:00:62:5e:4f:55:
45:40:78:0e:0b:60:4e:3d:83:4d:10:de:62:2f:fc:
db:32:e6:0d:cd:c4:2b:82:27:53:46:68:59:4b:35:
1f:c3:90:e5:69:0a:28:fb:d6:4e:35:29:a0:8d:fa:
5e:24:57:f7:34:9b:1f:ef:a4:ef:ba:b6:0a:97:0a:
6f:8f:80:dd:3d:e8:31:a0:f7:d7:aa:be:ad:8c:c3:
a3:1d:e9:ad:e5:8f:54:3f:fe:40:30:be:b9:f2:d3:
27:5e:8e:07:e3:bf:2f:ac:b1:49:e6:d2:c0:0f:8b:
5c:60:40:ff:40:f3:6a:15:07:de:99:e6:05:09:a5:
af:74:de:04:8e:f9:68:97:43:1a:68:6e:45:e8:90:
41:9e:0e:80:40:a1:39:82:4a:21:22:48:b4:e5:85:
b0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:BA:D8:3B:4E:0A:F5:11:7F:5E:C7:DC:FC:A4:E0:DD:90:C8:CA:28
X509v3 Authority Key Identifier:
keyid:93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:65:b7:4e:43:fd:12:28:33:4f:28:62:31:31:c2:11:30:34:
ae:bb:72:d1:0a:8a:c4:60:c1:10:0e:c0:c1:f3:fe:71:1a:4b:
33:48:fc:d9:e8:0a:bb:8c:eb:b9:fa:6e:84:1a:67:1c:c8:b1:
39:76:0a:0c:76:a2:1a:8a:ef:a7:4b:8a:d4:12:b9:4b:a0:d0:
eb:63:18:49:52:c3:3c:d8:ef:7e:60:43:fa:1a:d9:a7:bd:50:
01:29:b3:cd:db:1f:27:58:14:cd:20:5d:fb:19:ba:79:1d:81:
d8:42:cf:9c:51:94:ac:9c:35:78:45:ce:bf:54:11:2b:7a:b5:
52:a5:c5:c2:02:a0:4a:96:5f:94:81:e3:b6:f6:3e:a0:eb:7f:
32:a5:0f:05:be:28:69:6e:b6:b2:56:9d:5c:09:fe:46:49:b0:
9f:7e:0a:95:f7:39:35:1f:03:0f:0e:3f:f4:84:dd:07:d4:b5:
22:1d:c6:f3:51:d4:ad:06:2b:56:83:14:c1:3c:cd:23:22:4f:
77:c6:80:94:cc:e8:1a:af:e6:e6:6e:1c:d2:c1:21:31:93:e3:
ca:54:c4:6a:f2:b3:2e:3e:d0:7f:43:03:35:05:0a:b9:e3:0b:
f4:51:18:39:69:cf:8d:0f:68:f7:03:2d:69:2e:23:4e:35:8f:
4c:79:39:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVvBQ8gO3WrvkYLFMreuFuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzYWYzNDhlYzVhNGU2NWUwY2IxMzc4MjFhZTZhMTM5ZWQ3
ZmFjMDAwHhcNMjUwODIzMDcwMjA5WhcNMjUwODI0MDcwMjA5WjAzMTEwLwYDVQQD
EyhmN2JhZDgzYjRlMGFmNTExN2Y1ZWM3ZGNmY2E0ZTBkZDkwYzhjYTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsoHa4yBKiCRX0UwZHKt/Rjc1EGBb
wStP5qOC7kdA7SydUzXJPV+JmXLfp8V4wSYO9kJjoGfvLdnuhESYl8MyYtiqsCN6
IxGpVRREXd8ynTItuSSIJnWJT1dcRauoYhaLKz1vAGJeT1VFQHgOC2BOPYNNEN5i
L/zbMuYNzcQrgidTRmhZSzUfw5DlaQoo+9ZONSmgjfpeJFf3NJsf76TvurYKlwpv
j4DdPegxoPfXqr6tjMOjHemt5Y9UP/5AML658tMnXo4H478vrLFJ5tLAD4tcYED/
QPNqFQfemeYFCaWvdN4Ejvlol0MaaG5F6JBBng6AQKE5gkohIki05YWwjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPe62DtOCvURf17H3Pyk4N2QyMooMB8GA1UdIwQY
MBaAFJOvNI7FpOZeDLE3ghrmoTntf6wAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazY4MGpzV2s1bDRNc1RlQ0d1YWhPZTFfckFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9iZDc4MjAtNWMxYy00ODg0LTlhYjgt
YzVhYjk3ZGJhODk4LzEvazY4MGpzV2s1bDRNc1RlQ0d1YWhPZTFfckFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9iZDc4MjAtNWMxYy00ODg0LTlhYjgtYzVhYjk3ZGJhODk4
LzEvazY4MGpzV2s1bDRNc1RlQ0d1YWhPZTFfckFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO2W3TkP9
EigzTyhiMTHCETA0rrty0QqKxGDBEA7AwfP+cRpLM0j82egKu4zrufpuhBpnHMix
OXYKDHaiGorvp0uK1BK5S6DQ62MYSVLDPNjvfmBD+hrZp71QASmzzdsfJ1gUzSBd
+xm6eR2B2ELPnFGUrJw1eEXOv1QRK3q1UqXFwgKgSpZflIHjtvY+oOt/MqUPBb4o
aW62sladXAn+Rkmwn34Klfc5NR8DDw4/9ITdB9S1Ih3G81HUrQYrVoMUwTzNIyJP
d8aAlMzoGq/m5m4c0sEhMZPjylTEavKzLj7Qf0MDNQUKueML9FEYOWnPjQ9o9wMt
aS4jTjWPTHk5xw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:26:39 2025 by rpki-client