Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: M7837RlQ+vhQ4jfM34mUYvmeCZTi4HpkXr0B9TEgWqk=
Subject key identifier: 40:1E:41:3A:99:E5:10:B7:3A:FF:1F:15:95:8F:AE:C7:1A:21:CC:B5
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 0199345BF65BE97707846065343231CAD0B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 0A69
Signing time: Wed 10 Sep 2025 16:01:06 +0000
Manifest this update: Wed 10 Sep 2025 16:01:06 +0000
Manifest next update: Thu 11 Sep 2025 16:01:06 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: kF/TZtD8mjCMauMX4v/dilCtO3aRma9Eqv0KLze7C+U=)
2: bDkAt0CCYnB2xqRfpALpEK1gmgo.roa (hash: HzyjrIASJdGjjHtk6b54LHkaX+3Gt8eRcO+z/aYxOaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 16:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:5b:f6:5b:e9:77:07:84:60:65:34:32:31:ca:d0:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: Sep 10 16:01:06 2025 GMT
Not After : Sep 11 16:01:06 2025 GMT
Subject: CN=401e413a99e510b73aff1f15958faec71a21ccb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fd:07:36:fd:7a:b5:bf:0c:cc:7f:5e:c4:00:
d2:88:b6:e8:87:5d:c6:53:b3:07:94:15:93:2e:e2:
f0:57:b2:04:2d:58:58:7b:b6:1f:5e:02:8a:94:93:
cb:e6:c5:7e:fe:0e:fa:ca:21:53:96:3e:74:52:bc:
9b:a8:93:1f:3c:cd:34:93:f3:ec:d2:a9:b3:65:85:
d1:1b:ca:07:a4:ea:ce:3a:93:93:2e:a9:d6:02:cd:
88:bd:a2:8e:ef:ad:83:9d:9a:b9:7e:1b:40:88:7a:
de:fc:64:b3:35:cc:8b:b4:75:b5:1d:84:67:1e:15:
6f:17:0d:ae:ac:a8:92:f6:56:bc:09:a2:16:27:f7:
a2:eb:15:71:a2:bf:04:70:e4:27:3f:99:ab:6e:26:
6e:04:8b:f2:f2:9d:6e:5c:37:31:a1:a5:cb:3f:17:
05:4f:77:4d:3d:66:7e:de:63:2e:16:56:47:c2:6e:
f3:6c:c1:3b:1d:15:a9:b3:0c:3e:d1:d1:2f:50:94:
80:07:92:09:a7:60:dd:ce:dd:e9:1c:5a:e1:6c:7b:
0f:15:ea:16:66:da:8b:c7:20:71:42:03:3b:4b:1e:
a3:dc:58:48:88:10:f9:22:cf:b3:1e:f6:a4:8f:e8:
5a:43:be:db:bc:28:c9:31:aa:ca:33:d6:84:50:b2:
a3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:1E:41:3A:99:E5:10:B7:3A:FF:1F:15:95:8F:AE:C7:1A:21:CC:B5
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:af:75:07:64:69:30:e7:3e:3b:fa:45:b1:53:93:ff:d7:ff:
a7:98:a4:d9:74:1a:bb:74:f8:c2:4f:71:76:43:44:b3:02:f7:
e2:69:e2:b9:d6:60:bb:f2:74:2f:1b:f7:23:9f:0a:01:7a:5a:
e0:05:ea:b8:31:52:a1:fe:55:fa:a6:04:0d:c9:c1:66:89:c1:
58:fa:d7:b3:53:c8:c0:d0:72:2b:07:94:10:5a:58:49:36:1c:
53:28:9a:b8:ff:48:3b:f4:ab:35:5b:3f:01:07:78:e9:a5:a2:
ba:12:39:c7:d4:4a:09:4d:36:ff:7e:38:bb:e8:c5:13:e5:46:
c6:e7:57:25:3f:bc:fd:c9:54:b0:08:2a:a9:d5:d5:8b:d4:e9:
e1:b0:14:ef:86:dd:60:a8:a6:20:9a:42:3d:55:11:bf:5f:05:
eb:7c:eb:4d:14:20:a6:0f:7a:bb:ba:0f:c2:22:dd:a5:8f:6e:
26:6d:3d:da:02:84:3c:77:1c:c8:63:96:12:84:8f:db:6e:1e:
58:d4:e3:bb:da:c1:b8:00:b1:27:9c:59:f4:f4:e7:bb:02:af:
5e:59:bc:b4:5b:08:5b:2d:bc:ee:ba:75:5f:43:78:00:bf:f8:
a9:bb:58:44:d5:01:cb:0a:73:1c:8f:1f:ed:58:58:f9:28:cd:
fe:22:03:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 00:26:19 2025 by rpki-client