Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
File: 23DOek5uSrOk6p8IH1kupfbSuao.mft (raw, json)
Hash identifier: noC/tOqh2kmuAhuYuU+dXA6KV20j+vGz7JrQrf+XLAw=
Subject key identifier: B9:AB:89:78:10:1B:82:99:55:9A:E2:58:50:14:19:40:A3:5D:4F:4E
Authority key identifier: DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
Certificate issuer: /CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Certificate serial: 0198D4E00B3123DE6C16F9E3D7401AD09A51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
Manifest number: 068C
Signing time: Sat 23 Aug 2025 03:01:49 +0000
Manifest this update: Sat 23 Aug 2025 03:01:49 +0000
Manifest next update: Sun 24 Aug 2025 03:01:49 +0000
Files and hashes: 1: 1-zGyc8-sNFoNd9jrRwy0ohv-lr8.roa (hash: X6damPmptp3XphV2HfGbEnZgUQ5Ok8UVDdDjwWdsAA0=)
2: 23DOek5uSrOk6p8IH1kupfbSuao.crl (hash: +7JPAgt+N17q2rojq3aK8OJ4bScuXMqhCsqx+wUZ8h0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:0b:31:23:de:6c:16:f9:e3:d7:40:1a:d0:9a:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Validity
Not Before: Aug 23 03:01:49 2025 GMT
Not After : Aug 24 03:01:49 2025 GMT
Subject: CN=b9ab8978101b8299559ae25850141940a35d4f4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:88:58:6b:1a:b4:4c:fd:7a:4e:e1:b1:be:15:
e3:a0:48:2e:43:6f:6e:31:ed:a8:35:5b:0a:ac:3b:
1c:4c:c6:e3:05:ad:28:3a:52:e8:03:87:70:01:57:
b0:2e:95:bc:cb:5a:ee:ea:cd:d0:74:f1:a4:0d:45:
05:58:2e:c3:f9:da:cf:57:51:2f:12:3d:2c:77:60:
57:e6:3e:cd:ab:6f:63:cf:0c:42:80:a5:d4:73:35:
e3:42:19:fe:01:36:b8:d5:72:0d:23:9d:dd:67:a4:
cd:5e:73:84:c1:46:7f:81:ed:26:b1:22:a9:a7:48:
1b:03:e0:27:ee:f5:64:11:bc:6d:67:d2:4c:53:c3:
e0:d4:59:6f:60:fb:bb:b1:0b:53:a5:df:6a:d1:be:
a4:37:30:b7:86:d4:7d:be:b3:20:b0:61:2f:1a:29:
da:e6:a1:4e:84:56:7d:d6:b1:e4:cc:83:55:0d:51:
90:10:16:6b:ec:62:79:33:00:9f:97:74:09:b8:88:
a9:bd:99:35:2e:72:a1:70:b7:00:3e:1e:f6:d4:77:
1f:49:fa:5a:39:5c:be:22:5b:79:6c:14:69:c7:ed:
45:e1:aa:60:00:75:3a:e0:a1:04:af:20:44:32:0c:
7f:85:03:d8:9f:65:23:d8:8e:49:8c:51:7c:87:a2:
f8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:AB:89:78:10:1B:82:99:55:9A:E2:58:50:14:19:40:A3:5D:4F:4E
X509v3 Authority Key Identifier:
keyid:DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:26:6e:cf:95:e0:ae:ee:9b:a0:79:d1:b2:c6:66:fc:0d:b3:
4f:be:9c:76:6b:7f:f9:ee:4a:f1:56:24:a8:66:1a:67:3d:a6:
b5:45:a3:36:4c:73:15:ba:f8:ad:44:8e:40:bc:c0:ee:44:a6:
d9:43:d2:a3:90:66:dd:48:42:a1:02:c4:38:04:32:77:67:1f:
21:5a:17:8a:fe:59:16:ce:2e:88:21:20:79:99:ea:7a:d9:f9:
84:6a:27:dc:c1:9f:23:f4:d2:58:17:cd:b8:3d:ed:e6:15:11:
e9:a3:f6:3f:b2:fc:5e:bb:85:ae:92:b2:1b:af:ad:69:8e:de:
3c:a7:cb:36:94:b8:ca:c1:1a:ec:75:d8:de:ad:d7:c2:23:33:
50:7e:65:7c:eb:70:7e:a6:93:ac:fb:af:2c:81:4c:ef:3d:a2:
21:82:87:1f:65:39:ea:c3:4c:26:89:a3:4f:73:21:68:90:5c:
bc:1a:f9:9c:c4:70:87:e0:24:c0:80:15:10:4c:c0:9a:b7:69:
f8:d3:e3:82:fa:ab:eb:af:18:d5:48:d7:a2:f6:ca:12:58:ef:
ec:65:13:c0:65:5a:38:45:72:cb:40:71:e5:6d:01:c7:27:ba:
4c:14:16:a0:9b:dd:6c:d2:07:33:77:07:80:24:8f:02:d3:1d:
3d:12:08:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4AsxI95sFvnj10Aa0JpRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiNzBjZTdhNGU2ZTRhYjNhNGVhOWYwODFmNTkyZWE1ZjZk
MmI5YWEwHhcNMjUwODIzMDMwMTQ5WhcNMjUwODI0MDMwMTQ5WjAzMTEwLwYDVQQD
EyhiOWFiODk3ODEwMWI4Mjk5NTU5YWUyNTg1MDE0MTk0MGEzNWQ0ZjRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnIhYaxq0TP16TuGxvhXjoEguQ29u
Me2oNVsKrDscTMbjBa0oOlLoA4dwAVewLpW8y1ru6s3QdPGkDUUFWC7D+drPV1Ev
Ej0sd2BX5j7Nq29jzwxCgKXUczXjQhn+ATa41XINI53dZ6TNXnOEwUZ/ge0msSKp
p0gbA+An7vVkEbxtZ9JMU8Pg1FlvYPu7sQtTpd9q0b6kNzC3htR9vrMgsGEvGina
5qFOhFZ91rHkzINVDVGQEBZr7GJ5MwCfl3QJuIipvZk1LnKhcLcAPh721HcfSfpa
OVy+Ilt5bBRpx+1F4apgAHU64KEEryBEMgx/hQPYn2Uj2I5JjFF8h6L45QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLmriXgQG4KZVZriWFAUGUCjXU9OMB8GA1UdIwQY
MBaAFNtwznpObkqzpOqfCB9ZLqX20rmqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjNET2VrNXVTck9rNnA4SUgxa3VwZmJTdWFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi85ZGE2MDEtNjM1ZS00ZDA3LTgwOTYt
MmNiMTdiN2JjNjE4LzEvMjNET2VrNXVTck9rNnA4SUgxa3VwZmJTdWFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi85ZGE2MDEtNjM1ZS00ZDA3LTgwOTYtMmNiMTdiN2JjNjE4
LzEvMjNET2VrNXVTck9rNnA4SUgxa3VwZmJTdWFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAySZuz5Xg
ru6boHnRssZm/A2zT76cdmt/+e5K8VYkqGYaZz2mtUWjNkxzFbr4rUSOQLzA7kSm
2UPSo5Bm3UhCoQLEOAQyd2cfIVoXiv5ZFs4uiCEgeZnqetn5hGon3MGfI/TSWBfN
uD3t5hUR6aP2P7L8XruFrpKyG6+taY7ePKfLNpS4ysEa7HXY3q3XwiMzUH5lfOtw
fqaTrPuvLIFM7z2iIYKHH2U56sNMJomjT3MhaJBcvBr5nMRwh+AkwIAVEEzAmrdp
+NPjgvqr668Y1UjXovbKEljv7GUTwGVaOEVyy0Bx5W0Bxye6TBQWoJvdbNIHM3cH
gCSPAtMdPRIIYw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:30:33 2025 by rpki-client