Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft
File: a1Y13TgCFaA8kwfaViBsVms4o88.mft (raw, json)
Hash identifier: Tn1dbA6JhyKW4JSxAsAoXRpHvY7EBuxbSYg0AD5SxuY=
Subject key identifier: 48:8C:E1:FB:71:E6:37:3F:A6:81:E2:E2:CC:45:99:AF:57:FE:3B:E3
Authority key identifier: 6B:56:35:DD:38:02:15:A0:3C:93:07:DA:56:20:6C:56:6B:38:A3:CF
Certificate issuer: /CN=6b5635dd380215a03c9307da56206c566b38a3cf
Certificate serial: 0198D472D771461A85718E4E342991BAF9A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft
Manifest number: 1384
Signing time: Sat 23 Aug 2025 01:02:32 +0000
Manifest this update: Sat 23 Aug 2025 01:02:32 +0000
Manifest next update: Sun 24 Aug 2025 01:02:32 +0000
Files and hashes: 1: a1Y13TgCFaA8kwfaViBsVms4o88.crl (hash: SRF2s0KPHrWAqHVIAOZ5QwJyhYGtA9S5CcaHodqZJCM=)
2: pXEOVL3s29ntjLGWnEad02SClcY.roa (hash: 5uijVm/LhBI/XgHLC1W0ZRQPeN6iEyHoyVbJwCUVIKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:d7:71:46:1a:85:71:8e:4e:34:29:91:ba:f9:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5635dd380215a03c9307da56206c566b38a3cf
Validity
Not Before: Aug 23 01:02:32 2025 GMT
Not After : Aug 24 01:02:32 2025 GMT
Subject: CN=488ce1fb71e6373fa681e2e2cc4599af57fe3be3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:01:e2:e9:49:45:60:91:40:59:66:ef:2a:9a:
86:e1:5f:c9:20:e8:dc:0d:54:23:84:65:b3:7f:32:
d1:f4:19:47:c4:ae:b6:17:36:32:b0:05:7d:16:ab:
ae:b1:13:ff:93:af:65:83:2c:ab:6a:03:ba:53:6f:
d0:1f:70:2e:e2:eb:18:7f:8c:dd:b7:26:3a:b7:86:
78:ba:7d:2d:7d:ff:b3:27:b5:a8:3f:7f:c9:a1:22:
a3:03:1f:2d:fb:c8:82:8c:27:aa:eb:68:eb:08:b4:
1d:89:45:b7:5a:8f:25:bc:ba:85:9c:b5:cd:83:c7:
d2:96:fe:53:8c:c2:40:73:10:3f:08:98:02:2c:d8:
c7:b8:3f:d3:c8:c9:ee:1e:3f:4d:54:99:04:e5:97:
c4:cb:13:24:25:ee:8c:c5:0f:10:0a:61:67:5e:c2:
8b:a1:85:1f:fe:44:c8:14:44:e9:bd:b9:37:a8:88:
7c:da:6c:63:d1:ef:86:03:f2:2c:e6:da:ef:2f:b1:
3a:a8:f3:99:80:31:b9:4b:b5:1b:03:63:d4:00:6b:
75:f2:b8:4c:25:23:32:88:a5:de:7b:4a:29:60:28:
cb:bb:f5:fc:c0:07:22:7a:08:0b:da:a6:80:88:c5:
3c:c5:25:01:72:bc:36:93:17:b1:3e:aa:3e:62:7a:
26:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8C:E1:FB:71:E6:37:3F:A6:81:E2:E2:CC:45:99:AF:57:FE:3B:E3
X509v3 Authority Key Identifier:
keyid:6B:56:35:DD:38:02:15:A0:3C:93:07:DA:56:20:6C:56:6B:38:A3:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:7d:d7:f0:05:87:66:ee:12:f5:46:87:9c:76:4f:ef:c4:a8:
2a:a5:a1:38:7f:b7:0d:79:84:17:2e:d5:e4:01:17:68:20:2e:
ea:6e:a5:d6:a6:a9:a7:f8:b3:69:f9:3b:72:85:44:5e:79:72:
98:aa:d7:94:87:d4:dd:c6:64:bc:aa:33:a1:37:9a:31:03:98:
c3:27:07:86:54:f8:14:49:37:24:f5:fd:e0:f6:bf:f4:30:c3:
5e:16:aa:50:26:7d:34:5a:ae:f5:5c:26:41:cf:b5:29:ef:3f:
ae:30:34:4c:2b:be:ff:bd:39:db:9b:52:90:e5:e1:b1:e6:0b:
45:60:d4:90:37:ec:57:62:b8:40:12:17:d4:0c:67:b3:ad:38:
83:f9:44:b7:de:a1:ec:e9:65:02:dd:4f:56:46:73:59:e0:bd:
8a:24:b3:b8:03:78:d5:5b:b3:90:46:83:f5:81:02:f9:91:3f:
ec:41:ec:05:89:68:81:54:a5:46:7a:ff:86:b2:63:bc:dd:e5:
62:0b:85:5e:18:a5:9d:3d:fb:74:b1:71:f6:78:ab:28:91:0e:
ad:f5:b2:64:01:ae:79:e5:53:35:9c:88:b0:23:c9:7a:0c:6d:
7f:3f:ef:7a:1e:80:86:8a:c7:25:14:4e:f0:14:85:3b:d6:43:
94:b1:77:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUctdxRhqFcY5ONCmRuvmgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiNTYzNWRkMzgwMjE1YTAzYzkzMDdkYTU2MjA2YzU2NmIz
OGEzY2YwHhcNMjUwODIzMDEwMjMyWhcNMjUwODI0MDEwMjMyWjAzMTEwLwYDVQQD
Eyg0ODhjZTFmYjcxZTYzNzNmYTY4MWUyZTJjYzQ1OTlhZjU3ZmUzYmUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0gHi6UlFYJFAWWbvKpqG4V/JIOjc
DVQjhGWzfzLR9BlHxK62FzYysAV9FquusRP/k69lgyyragO6U2/QH3Au4usYf4zd
tyY6t4Z4un0tff+zJ7WoP3/JoSKjAx8t+8iCjCeq62jrCLQdiUW3Wo8lvLqFnLXN
g8fSlv5TjMJAcxA/CJgCLNjHuD/TyMnuHj9NVJkE5ZfEyxMkJe6MxQ8QCmFnXsKL
oYUf/kTIFETpvbk3qIh82mxj0e+GA/Is5trvL7E6qPOZgDG5S7UbA2PUAGt18rhM
JSMyiKXee0opYCjLu/X8wAcieggL2qaAiMU8xSUBcrw2kxexPqo+Ynom8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEiM4ftx5jc/poHi4sxFma9X/jvjMB8GA1UdIwQY
MBaAFGtWNd04AhWgPJMH2lYgbFZrOKPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTFZMTNUZ0NGYUE4a3dmYVZpQnNWbXM0bzg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC9hYzE3MzgtNmM2Ny00MjA0LTg5MDEt
NzQ3NDhiYzkzYmNhLzEvYTFZMTNUZ0NGYUE4a3dmYVZpQnNWbXM0bzg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC9hYzE3MzgtNmM2Ny00MjA0LTg5MDEtNzQ3NDhiYzkzYmNh
LzEvYTFZMTNUZ0NGYUE4a3dmYVZpQnNWbXM0bzg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqX3X8AWH
Zu4S9UaHnHZP78SoKqWhOH+3DXmEFy7V5AEXaCAu6m6l1qapp/izafk7coVEXnly
mKrXlIfU3cZkvKozoTeaMQOYwycHhlT4FEk3JPX94Pa/9DDDXhaqUCZ9NFqu9Vwm
Qc+1Ke8/rjA0TCu+/70525tSkOXhseYLRWDUkDfsV2K4QBIX1Axns604g/lEt96h
7OllAt1PVkZzWeC9iiSzuAN41VuzkEaD9YEC+ZE/7EHsBYlogVSlRnr/hrJjvN3l
YguFXhilnT37dLFx9nirKJEOrfWyZAGueeVTNZyIsCPJegxtfz/veh6AhorHJRRO
8BSFO9ZDlLF35w==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:32 2025 by rpki-client