Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
File: aKfCyE_6STTPD3PvGhoaM3hzGCY.mft (raw, json)
Hash identifier: GOrM3rGz7m2NP42DZ3RyR9ZC9vx1kWLroqaFDp7G9FQ=
Subject key identifier: 6D:C2:99:78:EB:C6:3F:1F:18:7B:F2:5E:21:59:F0:57:32:C9:CA:B3
Authority key identifier: 68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
Certificate issuer: /CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Certificate serial: 0198D7731C4D52FE9796EEF104721988B8F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
Manifest number: 0D30
Signing time: Sat 23 Aug 2025 15:01:42 +0000
Manifest this update: Sat 23 Aug 2025 15:01:42 +0000
Manifest next update: Sun 24 Aug 2025 15:01:42 +0000
Files and hashes: 1: KnUOYk5bdwDOyPRpWUFQ6FTo7gs.roa (hash: oV64n7K/Nu3TxpzkL+waUqCMMUTsVFeqTi3s1yY0Zn0=)
2: aKfCyE_6STTPD3PvGhoaM3hzGCY.crl (hash: S9+3PymvVKXmih4OnAUscoPxVyy4eVbCDcPTvtrFhqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:1c:4d:52:fe:97:96:ee:f1:04:72:19:88:b8:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Validity
Not Before: Aug 23 15:01:42 2025 GMT
Not After : Aug 24 15:01:42 2025 GMT
Subject: CN=6dc29978ebc63f1f187bf25e2159f05732c9cab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:81:74:19:cd:03:7f:8a:80:45:8f:c0:bb:6a:
f7:81:b2:37:e2:5b:89:07:94:fc:e4:3d:e6:df:73:
a0:c0:db:a5:13:eb:f2:a4:de:dd:9f:61:60:f7:6a:
a5:7f:bb:12:8d:bb:bc:3a:06:56:b2:bc:8f:21:a8:
de:64:12:02:a7:ac:55:f5:29:2f:21:19:5f:ca:78:
24:34:fd:00:d4:37:a5:88:5d:05:73:27:f2:10:9e:
ca:35:2d:43:6d:ab:fb:ed:7e:da:8e:27:ba:cf:58:
05:50:32:1c:fe:0d:0e:35:4c:17:4c:46:fd:6c:00:
f8:6a:f3:2e:ca:eb:9f:a9:e1:ee:f5:3f:80:8b:5e:
aa:c2:be:ac:eb:f8:44:a0:5b:bd:08:0e:dd:aa:6d:
21:2d:17:15:8a:af:b2:d9:eb:91:14:49:7e:2f:76:
02:63:78:35:56:78:23:6c:f3:1e:4f:29:54:b6:58:
e5:72:ba:b4:29:83:a4:8c:65:67:9b:64:da:5f:3a:
fb:f4:9d:0b:cd:75:0d:38:62:53:14:fb:a1:1b:8d:
52:2a:a2:d1:06:bc:0c:93:7e:8f:46:43:af:2c:cf:
a0:7d:04:c5:76:60:05:f7:fa:25:f5:67:c9:bd:17:
79:5c:83:f8:87:70:12:4a:5d:90:33:9f:09:d7:46:
8c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:C2:99:78:EB:C6:3F:1F:18:7B:F2:5E:21:59:F0:57:32:C9:CA:B3
X509v3 Authority Key Identifier:
keyid:68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:5c:83:e7:52:02:ee:0b:a7:88:95:7b:f0:36:13:e3:b3:9a:
4a:66:e4:f9:3a:aa:09:eb:f5:0b:36:07:3f:6c:a4:e9:1d:8f:
0b:71:9a:33:8e:d2:c8:4c:cf:24:ec:8c:19:a1:d0:a2:7f:1d:
71:7f:0b:10:c7:f6:6c:1e:e8:dd:6b:a0:28:e4:c3:3e:35:b8:
e2:01:04:9d:9b:4e:20:27:72:7f:bd:80:fe:53:be:e6:3e:fe:
2c:19:71:09:ad:24:2d:c4:15:24:4f:82:37:7a:0e:84:67:d9:
69:24:c5:ef:85:39:c6:d7:7c:84:a0:34:d2:7b:89:36:fd:2b:
be:10:31:bf:55:c9:9d:80:96:f0:89:1c:66:4e:07:6a:27:15:
0b:57:af:be:43:8f:09:72:47:06:43:bd:e8:c7:17:9c:55:8e:
24:a9:ec:34:7a:35:1c:e0:a4:86:fc:bd:a6:a0:89:27:78:2a:
d0:32:77:42:28:34:89:52:2f:e2:67:08:bb:25:61:89:8d:87:
a9:c5:f6:48:aa:2b:ca:76:95:8d:24:92:cb:a9:43:c7:86:ce:
8f:57:65:18:f6:1b:d3:a7:4c:c3:28:53:6c:cf:36:c5:ed:5a:
63:1c:1c:08:37:d0:30:36:d1:02:74:db:0f:bf:90:a1:fc:0c:
1c:2c:8e:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXcxxNUv6Xlu7xBHIZiLj1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YTdjMmM4NGZmYTQ5MzRjZjBmNzNlZjFhMWExYTMzNzg3
MzE4MjYwHhcNMjUwODIzMTUwMTQyWhcNMjUwODI0MTUwMTQyWjAzMTEwLwYDVQQD
Eyg2ZGMyOTk3OGViYzYzZjFmMTg3YmYyNWUyMTU5ZjA1NzMyYzljYWIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7oF0Gc0Df4qARY/Au2r3gbI34luJ
B5T85D3m33OgwNulE+vypN7dn2Fg92qlf7sSjbu8OgZWsryPIajeZBICp6xV9Skv
IRlfyngkNP0A1DeliF0FcyfyEJ7KNS1Dbav77X7ajie6z1gFUDIc/g0ONUwXTEb9
bAD4avMuyuufqeHu9T+Ai16qwr6s6/hEoFu9CA7dqm0hLRcViq+y2euRFEl+L3YC
Y3g1VngjbPMeTylUtljlcrq0KYOkjGVnm2TaXzr79J0LzXUNOGJTFPuhG41SKqLR
BrwMk36PRkOvLM+gfQTFdmAF9/ol9WfJvRd5XIP4h3ASSl2QM58J10aMPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG3CmXjrxj8fGHvyXiFZ8FcyycqzMB8GA1UdIwQY
MBaAFGinwshP+kk0zw9z7xoaGjN4cxgmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUtmQ3lFXzZTVFRQRDNQdkdob2FNM2h6R0NZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9mZTQ1NWQtZjZjZS00MzZjLTgzMjct
ZGI2ZGRiNGE0NGU1LzEvYUtmQ3lFXzZTVFRQRDNQdkdob2FNM2h6R0NZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9mZTQ1NWQtZjZjZS00MzZjLTgzMjctZGI2ZGRiNGE0NGU1
LzEvYUtmQ3lFXzZTVFRQRDNQdkdob2FNM2h6R0NZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEFyD51IC
7guniJV78DYT47OaSmbk+TqqCev1CzYHP2yk6R2PC3GaM47SyEzPJOyMGaHQon8d
cX8LEMf2bB7o3WugKOTDPjW44gEEnZtOICdyf72A/lO+5j7+LBlxCa0kLcQVJE+C
N3oOhGfZaSTF74U5xtd8hKA00nuJNv0rvhAxv1XJnYCW8IkcZk4HaicVC1evvkOP
CXJHBkO96McXnFWOJKnsNHo1HOCkhvy9pqCJJ3gq0DJ3Qig0iVIv4mcIuyVhiY2H
qcX2SKorynaVjSSSy6lDx4bOj1dlGPYb06dMwyhTbM82xe1aYxwcCDfQMDbRAnTb
D7+QofwMHCyOqA==
-----END CERTIFICATE-----
Generated at Sun Aug 24 00:21:34 2025 by rpki-client