Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
File: Cl9hKRQr0Kncad_UAkif8l9bPvI.mft (raw, json)
Hash identifier: HIUHWmRPn5LeBgdHg23IyFhHVwU0NOjbzA6EoDqqcOY=
Subject key identifier: 6A:05:69:8A:17:81:BE:56:59:D3:8A:38:20:70:AD:F3:6A:0A:B0:78
Authority key identifier: 0A:5F:61:29:14:2B:D0:A9:DC:69:DF:D4:02:48:9F:F2:5F:5B:3E:F2
Certificate issuer: /CN=0a5f6129142bd0a9dc69dfd402489ff25f5b3ef2
Certificate serial: 0199239EF31921FBBEF5593CC8A8F9D47724
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 10:00:43 +0000
Manifest this update: Sun 07 Sep 2025 10:00:43 +0000
Manifest next update: Mon 08 Sep 2025 10:00:43 +0000
Files and hashes: 1: Cl9hKRQr0Kncad_UAkif8l9bPvI.crl (hash: OC5bvraBD3tNjJSqq/jNg73FdjFwrhAoA1r42Vrq+WA=)
2: CuosGZsAQa_atOUfAfS4SUVwI3o.roa (hash: Ah8ug2ZnqIvKy7wR+jjWOatqPL6Ooi9wmYyJPajHlvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:f3:19:21:fb:be:f5:59:3c:c8:a8:f9:d4:77:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a5f6129142bd0a9dc69dfd402489ff25f5b3ef2
Validity
Not Before: Sep 7 10:00:43 2025 GMT
Not After : Sep 8 10:00:43 2025 GMT
Subject: CN=6a05698a1781be5659d38a382070adf36a0ab078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a9:ab:68:5f:29:0e:a3:35:db:85:8d:db:bf:
20:1d:8f:05:c3:81:ca:f4:0e:a9:39:1d:f4:88:3b:
02:ac:29:3f:fe:67:e1:6f:3d:d8:1c:db:6c:3a:fb:
7e:07:19:3a:f1:c7:71:eb:3b:e6:4a:9c:71:20:76:
05:b6:f1:32:19:fc:dc:14:8b:76:5f:a4:81:5d:e7:
9c:96:e9:15:50:72:4d:95:fc:9c:db:64:a3:3c:3e:
b8:f8:2b:0f:f3:e6:62:25:24:8c:92:95:00:42:77:
77:3e:e8:b7:40:45:3e:7c:4c:18:7e:d1:b1:b7:54:
28:b5:b4:7f:1f:cf:c9:c8:08:b9:3c:f6:c8:dd:c6:
16:23:c8:ff:55:9b:cc:d1:24:4f:f1:d3:bb:9a:d5:
04:cf:6b:68:41:cf:6e:8f:38:df:d2:d1:cd:5f:6a:
eb:77:48:5b:4d:25:1a:18:c8:ea:3c:95:2b:a7:f2:
5c:94:ac:5b:68:b0:fa:6f:d4:7a:d9:91:bc:69:3e:
05:3a:c3:6c:77:c1:e0:ee:2e:f8:b6:d8:02:8e:d9:
eb:fc:b1:01:87:c8:23:e4:40:1b:53:eb:d5:ad:1c:
48:3b:7a:16:01:c5:61:9e:6d:61:6c:cf:8a:f3:a7:
4c:29:69:a5:e7:9f:a9:88:e7:ac:e5:59:da:bd:4b:
c2:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:05:69:8A:17:81:BE:56:59:D3:8A:38:20:70:AD:F3:6A:0A:B0:78
X509v3 Authority Key Identifier:
keyid:0A:5F:61:29:14:2B:D0:A9:DC:69:DF:D4:02:48:9F:F2:5F:5B:3E:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:43:48:8b:ad:37:77:ab:6d:af:3c:6c:e4:45:cb:ac:a9:70:
c6:92:58:e8:0a:1a:75:63:e4:b0:95:5e:db:71:d6:1a:61:5f:
eb:1e:81:d8:a0:ad:b9:09:c6:c5:f0:04:11:13:12:24:89:c8:
fd:c7:9b:b3:25:b5:58:41:59:31:63:cd:b6:9a:62:76:a9:5b:
13:d4:6d:63:ce:b8:82:b2:99:2b:18:d8:92:1c:6a:36:b3:6c:
86:c1:c2:6f:b0:da:6f:d5:ff:4a:32:6f:5e:25:18:f8:f0:ff:
58:8b:79:74:4e:50:09:8f:76:51:9c:80:f0:58:e1:03:bf:5d:
03:9e:c5:5f:b5:89:79:5f:ca:b1:30:6b:ad:88:2f:d2:78:75:
d2:7b:08:fb:3a:90:9f:84:d5:f0:8f:0c:99:23:d2:cf:b2:a5:
18:d4:dc:ac:56:21:40:bb:e2:75:4d:88:ea:4f:03:ea:69:98:
f3:9d:2b:d0:81:12:ba:5a:16:ac:2d:77:16:f0:60:5b:b5:91:
c8:71:14:10:7c:f8:8d:63:24:1e:be:43:7b:85:42:5c:9c:cf:
13:96:0c:e2:98:ae:5b:9a:f6:88:35:b7:6d:28:bc:3d:a6:6d:
19:17:8c:06:4d:71:db:36:18:05:fa:49:11:ad:63:67:26:a9:
7e:08:c1:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjnvMZIfu+9Vk8yKj51HckMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhNWY2MTI5MTQyYmQwYTlkYzY5ZGZkNDAyNDg5ZmYyNWY1
YjNlZjIwHhcNMjUwOTA3MTAwMDQzWhcNMjUwOTA4MTAwMDQzWjAzMTEwLwYDVQQD
Eyg2YTA1Njk4YTE3ODFiZTU2NTlkMzhhMzgyMDcwYWRmMzZhMGFiMDc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqmraF8pDqM124WN278gHY8Fw4HK
9A6pOR30iDsCrCk//mfhbz3YHNtsOvt+Bxk68cdx6zvmSpxxIHYFtvEyGfzcFIt2
X6SBXeeclukVUHJNlfyc22SjPD64+CsP8+ZiJSSMkpUAQnd3Pui3QEU+fEwYftGx
t1QotbR/H8/JyAi5PPbI3cYWI8j/VZvM0SRP8dO7mtUEz2toQc9ujzjf0tHNX2rr
d0hbTSUaGMjqPJUrp/JclKxbaLD6b9R62ZG8aT4FOsNsd8Hg7i74ttgCjtnr/LEB
h8gj5EAbU+vVrRxIO3oWAcVhnm1hbM+K86dMKWml55+piOes5VnavUvCzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGoFaYoXgb5WWdOKOCBwrfNqCrB4MB8GA1UdIwQY
MBaAFApfYSkUK9Cp3Gnf1AJIn/JfWz7yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2w5aEtSUXIwS25jYWRfVUFraWY4bDliUHZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8wYWQyNjQtM2E1MC00NTYzLWEzNWEt
MGQyYmJlNThjMTQ1LzEvQ2w5aEtSUXIwS25jYWRfVUFraWY4bDliUHZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi8wYWQyNjQtM2E1MC00NTYzLWEzNWEtMGQyYmJlNThjMTQ1
LzEvQ2w5aEtSUXIwS25jYWRfVUFraWY4bDliUHZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALkNIi603
d6ttrzxs5EXLrKlwxpJY6AoadWPksJVe23HWGmFf6x6B2KCtuQnGxfAEERMSJInI
/cebsyW1WEFZMWPNtppidqlbE9RtY864grKZKxjYkhxqNrNshsHCb7Dab9X/SjJv
XiUY+PD/WIt5dE5QCY92UZyA8FjhA79dA57FX7WJeV/KsTBrrYgv0nh10nsI+zqQ
n4TV8I8MmSPSz7KlGNTcrFYhQLvidU2I6k8D6mmY850r0IESuloWrC13FvBgW7WR
yHEUEHz4jWMkHr5De4VCXJzPE5YM4piuW5r2iDW3bSi8PaZtGReMBk1x2zYYBfpJ
Ea1jZyapfgjBuw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:43:48 2025 by rpki-client