Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
File: CBg0SlIKOZknm7gkfheeiEBuNXg.mft (raw, json)
Hash identifier: C4u1C4OY4CrH1xF4HaPYwJfIh7o1Fuu0jqqS9pP9PNk=
Subject key identifier: 78:D6:B9:18:C0:3A:34:D6:C4:2F:88:40:60:7C:92:6E:9F:55:93:24
Authority key identifier: 08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78
Certificate issuer: /CN=0818344a520a3999279bb8247e179e88406e3578
Certificate serial: 019A0523E8748E8591836097785EC252C5A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
Manifest number: 09B4
Signing time: Tue 21 Oct 2025 05:00:30 +0000
Manifest this update: Tue 21 Oct 2025 05:00:30 +0000
Manifest next update: Wed 22 Oct 2025 05:00:30 +0000
Files and hashes: 1: B-j6lkFyqvjbC_PQncwIGbX8TJo.roa (hash: UphQUvnVM6eEU6Z6D8ssHUSQvyAzogcc5pnYk33x3jA=)
2: CBg0SlIKOZknm7gkfheeiEBuNXg.crl (hash: +12Z06+VT++U1hC95buvweCldE6//2+j+ygrqUZZ5lk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:05:23:e8:74:8e:85:91:83:60:97:78:5e:c2:52:c5:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0818344a520a3999279bb8247e179e88406e3578
Validity
Not Before: Oct 21 05:00:30 2025 GMT
Not After : Oct 22 05:00:30 2025 GMT
Subject: CN=78d6b918c03a34d6c42f8840607c926e9f559324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:93:cd:51:e2:64:6d:ca:87:cf:7a:0d:21:80:
d8:f7:96:d6:68:e0:a6:9c:02:4a:cd:01:95:5c:c2:
41:57:75:2c:b4:70:75:20:fe:74:b7:71:b5:c1:32:
ca:fc:52:02:75:d1:9c:25:27:a3:3d:02:20:ec:04:
ca:a6:aa:59:ba:bb:b9:3d:70:c9:eb:68:42:bc:93:
05:c8:97:2c:a0:bd:fb:f4:26:ad:36:01:43:6c:a0:
70:f7:02:d6:26:85:c6:68:33:63:9e:18:63:c8:87:
36:4f:ef:a6:4b:68:62:3a:1f:ed:6a:f1:ab:32:92:
06:70:20:ed:8b:5c:9f:e4:37:e1:4a:02:39:5d:ac:
27:e2:64:a5:ee:cc:47:1d:72:19:1a:97:e2:07:eb:
0f:37:80:1f:5c:ab:e0:3e:7a:db:64:ee:f2:da:2f:
e8:55:54:0e:ce:b3:b1:bc:ad:63:ac:ba:34:33:08:
07:b6:4d:fa:7a:fe:f6:76:4d:46:ff:f5:46:3d:4f:
3b:2c:5e:5a:8e:e6:b6:49:cd:75:46:79:f3:c4:94:
c6:4d:23:83:65:f3:3b:0b:21:be:74:ec:a5:a5:cf:
12:03:2d:b2:4c:0a:39:88:03:bc:da:98:0b:d1:c5:
84:2d:31:16:bc:89:3c:a2:c3:38:96:08:c9:12:c5:
f5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D6:B9:18:C0:3A:34:D6:C4:2F:88:40:60:7C:92:6E:9F:55:93:24
X509v3 Authority Key Identifier:
keyid:08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:24:c9:67:1d:72:08:69:69:a5:be:d3:b9:98:cb:e7:de:88:
fc:4e:2e:75:12:52:d0:ce:03:35:e8:33:b0:a9:74:f8:5c:48:
d0:a8:dc:05:c6:36:14:a6:9c:f4:73:f4:62:68:b7:5d:58:d4:
c6:60:e0:c4:6a:d9:e9:f7:ec:46:2f:13:d5:8b:42:3e:dd:2c:
04:0c:9c:2c:e4:f5:4c:e7:50:4e:5a:fc:76:a8:f1:8f:22:df:
2b:e0:e9:92:44:6c:ed:6e:de:5c:32:b2:f8:d8:03:56:c5:3a:
41:36:f2:28:83:62:96:1b:fb:7a:d9:3f:0c:b9:30:59:ec:fa:
ef:42:99:b8:a1:54:8e:2e:c5:b7:9b:89:19:ba:56:88:a7:7b:
fd:4d:04:d3:ff:b4:f4:49:25:ae:2e:01:23:05:4d:74:ee:93:
b7:66:08:17:1c:89:21:79:6f:87:d4:6b:8e:22:cd:cd:f2:b1:
76:5b:44:61:d8:81:8a:90:6d:03:ec:89:c4:7e:41:a2:84:15:
f5:9b:0b:42:95:da:18:78:d0:e6:37:d7:1c:36:91:5b:ee:5e:
03:c0:5a:50:40:01:63:de:3b:63:9d:23:04:4e:93:ca:d7:cd:
35:ab:ad:82:98:52:af:c9:6f:43:c6:e1:83:f8:bb:e9:08:6d:
21:da:ab:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoFI+h0joWRg2CXeF7CUsWgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4MTgzNDRhNTIwYTM5OTkyNzliYjgyNDdlMTc5ZTg4NDA2
ZTM1NzgwHhcNMjUxMDIxMDUwMDMwWhcNMjUxMDIyMDUwMDMwWjAzMTEwLwYDVQQD
Eyg3OGQ2YjkxOGMwM2EzNGQ2YzQyZjg4NDA2MDdjOTI2ZTlmNTU5MzI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzZPNUeJkbcqHz3oNIYDY95bWaOCm
nAJKzQGVXMJBV3UstHB1IP50t3G1wTLK/FICddGcJSejPQIg7ATKpqpZuru5PXDJ
62hCvJMFyJcsoL379CatNgFDbKBw9wLWJoXGaDNjnhhjyIc2T++mS2hiOh/tavGr
MpIGcCDti1yf5DfhSgI5Xawn4mSl7sxHHXIZGpfiB+sPN4AfXKvgPnrbZO7y2i/o
VVQOzrOxvK1jrLo0MwgHtk36ev72dk1G//VGPU87LF5ajua2Sc11RnnzxJTGTSOD
ZfM7CyG+dOylpc8SAy2yTAo5iAO82pgL0cWELTEWvIk8osM4lgjJEsX1WwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHjWuRjAOjTWxC+IQGB8km6fVZMkMB8GA1UdIwQY
MBaAFAgYNEpSCjmZJ5u4JH4XnohAbjV4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0JnMFNsSUtPWmtubTdna2ZoZWVpRUJ1TlhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS81NmI4MTgtOWVlMS00YTA2LWE4ZWMt
ODUxZWE2NWNiOThiLzEvQ0JnMFNsSUtPWmtubTdna2ZoZWVpRUJ1TlhnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS81NmI4MTgtOWVlMS00YTA2LWE4ZWMtODUxZWE2NWNiOThi
LzEvQ0JnMFNsSUtPWmtubTdna2ZoZWVpRUJ1TlhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0iTJZx1y
CGlppb7TuZjL596I/E4udRJS0M4DNegzsKl0+FxI0KjcBcY2FKac9HP0Ymi3XVjU
xmDgxGrZ6ffsRi8T1YtCPt0sBAycLOT1TOdQTlr8dqjxjyLfK+DpkkRs7W7eXDKy
+NgDVsU6QTbyKINilhv7etk/DLkwWez670KZuKFUji7Ft5uJGbpWiKd7/U0E0/+0
9Eklri4BIwVNdO6Tt2YIFxyJIXlvh9RrjiLNzfKxdltEYdiBipBtA+yJxH5BooQV
9ZsLQpXaGHjQ5jfXHDaRW+5eA8BaUEABY947Y50jBE6TytfNNautgphSr8lvQ8bh
g/i76QhtIdqr2w==
-----END CERTIFICATE-----
Generated at Tue Oct 21 07:48:11 2025 by rpki-client