Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
File: rONjRGSGG9S_jFvH48m_09JGpN0.mft (raw, json)
Hash identifier: cpe9dol/kmT6TDTPU4B/Dokieb/cA1HaDflUkwapnUk=
Subject key identifier: 60:2A:D1:EE:B8:A4:57:6F:DD:2E:BC:81:A6:01:6F:42:3A:AE:0D:F7
Authority key identifier: AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
Certificate issuer: /CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Certificate serial: 019A258A53D9547BE8395A3157D95DCAA572
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
Manifest number: 16F8
Signing time: Mon 27 Oct 2025 12:00:13 +0000
Manifest this update: Mon 27 Oct 2025 12:00:13 +0000
Manifest next update: Tue 28 Oct 2025 12:00:13 +0000
Files and hashes: 1: Obsiy3NGEoUjL-DLQo0yhLx4KAI.roa (hash: p9j2sVfI93AXLXtc3YNcT/Xcs3W13x3825+kRDw3Ko8=)
2: rONjRGSGG9S_jFvH48m_09JGpN0.crl (hash: Qo7aVZrrz9FzR9gOKSPTr9190NRgEJjARLvSgB+3IF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 12:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:8a:53:d9:54:7b:e8:39:5a:31:57:d9:5d:ca:a5:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Validity
Not Before: Oct 27 12:00:13 2025 GMT
Not After : Oct 28 12:00:13 2025 GMT
Subject: CN=602ad1eeb8a4576fdd2ebc81a6016f423aae0df7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:82:fe:a8:5c:c1:0f:c5:82:79:4a:08:2a:b4:
a8:41:64:a0:a6:36:a9:db:8e:7e:87:24:af:c6:ff:
c5:f1:bf:3e:a4:7d:6f:ee:12:b1:99:b0:78:21:55:
67:27:c4:64:86:00:80:cd:2e:19:2c:99:f6:e0:60:
bc:18:09:f9:52:5f:59:7a:35:18:6a:60:31:08:d6:
2a:8e:25:45:fd:30:07:b7:71:96:61:84:47:dc:8f:
72:cf:36:13:32:fe:44:ba:5b:b2:12:22:3d:d8:f8:
3b:bf:6b:16:3c:75:d2:c4:a3:67:97:de:65:bd:03:
0f:89:d4:e2:ed:f9:2b:be:db:8f:c2:51:44:f0:ae:
97:77:86:1d:46:dd:a7:82:d3:e0:1a:1b:34:72:af:
28:87:86:01:fa:bb:94:f3:43:89:54:1f:e0:4b:83:
b7:69:c3:9c:5b:51:6c:ea:36:2b:b1:aa:96:c3:6c:
bb:34:a0:a5:e2:46:ce:b2:fa:8c:75:8a:01:32:bf:
0e:a6:2d:a2:46:4c:51:04:63:20:0c:72:88:ac:fb:
95:89:0d:99:d1:46:a7:68:6a:18:f8:83:00:01:e0:
fe:5f:33:a6:1d:44:c7:a0:a0:b9:39:2b:20:ac:c9:
a0:c4:5d:95:65:97:88:70:aa:86:66:5a:42:08:c2:
a1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:2A:D1:EE:B8:A4:57:6F:DD:2E:BC:81:A6:01:6F:42:3A:AE:0D:F7
X509v3 Authority Key Identifier:
keyid:AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:1f:92:ad:5a:89:86:37:1c:f9:26:1d:9f:8d:39:47:88:6f:
cb:d0:4b:41:b1:4a:bb:e7:79:6b:2f:0f:bb:a5:a1:8f:cc:52:
59:2d:b9:b8:24:06:78:22:a5:e7:31:55:0d:e0:31:51:88:4b:
0e:d2:70:e9:7c:71:6c:88:a3:f3:10:68:12:39:42:18:38:72:
87:b1:44:2f:16:f4:1d:ae:86:4f:fd:51:93:b8:83:6c:1a:2c:
55:e5:35:0a:36:dd:43:b9:b7:68:e4:80:a7:4b:19:2a:36:0d:
bb:17:54:7b:d5:66:9e:56:d9:51:a7:c7:57:62:1e:36:8f:e5:
ec:c5:24:76:8b:9f:b6:d2:e0:e6:9d:6a:fa:12:b7:dc:5f:56:
2f:91:9a:24:9b:29:55:4c:1e:55:4b:69:d8:3f:47:7a:14:79:
a3:b7:96:ea:e0:4a:17:95:9f:d2:8e:df:ed:34:d1:50:2d:59:
a5:28:a3:1e:ea:84:64:7e:75:45:30:54:c3:3a:87:78:40:73:
3a:7c:63:c2:9b:0f:8a:2d:0d:e8:86:13:c8:cf:df:96:0c:9a:
47:94:e3:70:d8:77:79:5c:29:40:c3:12:f4:62:42:92:12:be:
02:89:d5:a3:7e:64:6d:88:82:55:87:11:6d:1f:44:ea:c9:2e:
e1:72:6d:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZolilPZVHvoOVoxV9ldyqVyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjZTM2MzQ0NjQ4NjFiZDRiZjhjNWJjN2UzYzliZmQzZDI0
NmE0ZGQwHhcNMjUxMDI3MTIwMDEzWhcNMjUxMDI4MTIwMDEzWjAzMTEwLwYDVQQD
Eyg2MDJhZDFlZWI4YTQ1NzZmZGQyZWJjODFhNjAxNmY0MjNhYWUwZGY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlIL+qFzBD8WCeUoIKrSoQWSgpjap
245+hySvxv/F8b8+pH1v7hKxmbB4IVVnJ8RkhgCAzS4ZLJn24GC8GAn5Ul9ZejUY
amAxCNYqjiVF/TAHt3GWYYRH3I9yzzYTMv5EuluyEiI92Pg7v2sWPHXSxKNnl95l
vQMPidTi7fkrvtuPwlFE8K6Xd4YdRt2ngtPgGhs0cq8oh4YB+ruU80OJVB/gS4O3
acOcW1Fs6jYrsaqWw2y7NKCl4kbOsvqMdYoBMr8Opi2iRkxRBGMgDHKIrPuViQ2Z
0UanaGoY+IMAAeD+XzOmHUTHoKC5OSsgrMmgxF2VZZeIcKqGZlpCCMKhrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGAq0e64pFdv3S68gaYBb0I6rg33MB8GA1UdIwQY
MBaAFKzjY0RkhhvUv4xbx+PJv9PSRqTdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvck9OalJHU0dHOVNfakZ2SDQ4bV8wOUpHcE4wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9iMGVmNTktMTg0Mi00Y2EzLTk4NjUt
MDY3Y2M0NDI2YzI4LzEvck9OalJHU0dHOVNfakZ2SDQ4bV8wOUpHcE4wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9iMGVmNTktMTg0Mi00Y2EzLTk4NjUtMDY3Y2M0NDI2YzI4
LzEvck9OalJHU0dHOVNfakZ2SDQ4bV8wOUpHcE4wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAh+SrVqJ
hjcc+SYdn405R4hvy9BLQbFKu+d5ay8Pu6Whj8xSWS25uCQGeCKl5zFVDeAxUYhL
DtJw6XxxbIij8xBoEjlCGDhyh7FELxb0Ha6GT/1Rk7iDbBosVeU1CjbdQ7m3aOSA
p0sZKjYNuxdUe9VmnlbZUafHV2IeNo/l7MUkdoufttLg5p1q+hK33F9WL5GaJJsp
VUweVUtp2D9HehR5o7eW6uBKF5Wf0o7f7TTRUC1ZpSijHuqEZH51RTBUwzqHeEBz
OnxjwpsPii0N6IYTyM/flgyaR5TjcNh3eVwpQMMS9GJCkhK+AonVo35kbYiCVYcR
bR9E6sku4XJtAA==
-----END CERTIFICATE-----
Generated at Mon Oct 27 15:46:06 2025 by rpki-client