Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
File: cG_6qbf85AgnGBpaoKzumaRmkVY.mft (raw, json)
Hash identifier: kzCLtt4TQ5GmyRyB2zSmSGPSY+/5j8W+44+H3QMKJaw=
Subject key identifier: F5:2D:80:08:52:1C:84:FD:AF:B4:4D:21:01:60:B9:56:72:A2:07:88
Authority key identifier: 70:6F:FA:A9:B7:FC:E4:08:27:18:1A:5A:A0:AC:EE:99:A4:66:91:56
Certificate issuer: /CN=706ffaa9b7fce40827181a5aa0acee99a4669156
Certificate serial: 0199221E22708DFAB6D359C4E8EE7DCDD20B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
Manifest number: 0BB5
Signing time: Sun 07 Sep 2025 03:00:23 +0000
Manifest this update: Sun 07 Sep 2025 03:00:23 +0000
Manifest next update: Mon 08 Sep 2025 03:00:23 +0000
Files and hashes: 1: cG_6qbf85AgnGBpaoKzumaRmkVY.crl (hash: qA5MMsBASMWZefycEnagub37m+UCQaIBvCGK9fcE+SQ=)
2: wHLema0UGStCVJFXioCOp9yM9Yk.roa (hash: 9o2chTlhKcvV8PSsEOhRoW59X68c/vtOe1+mp0bUcck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:22:70:8d:fa:b6:d3:59:c4:e8:ee:7d:cd:d2:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706ffaa9b7fce40827181a5aa0acee99a4669156
Validity
Not Before: Sep 7 03:00:23 2025 GMT
Not After : Sep 8 03:00:23 2025 GMT
Subject: CN=f52d8008521c84fdafb44d210160b95672a20788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:6e:8d:9c:df:3f:15:23:1e:5a:7b:ed:d9:d5:
17:b5:69:5f:70:d5:97:12:b5:c2:1f:67:2d:73:e1:
64:c2:92:dd:aa:6a:ac:ef:df:60:a2:6a:44:55:73:
b4:28:e2:ed:41:32:c0:ac:39:a8:1c:71:1d:84:ab:
e3:ed:7c:88:56:20:28:e2:a1:4e:03:c4:e6:cc:04:
05:4e:91:07:8b:04:e1:c2:09:d2:6d:52:a7:27:42:
b6:30:32:90:c5:a0:ce:59:56:18:c9:94:c2:d8:b7:
c6:9c:ab:a7:28:4e:97:16:bd:c6:44:2d:5b:94:20:
03:4b:05:02:1c:9e:ed:84:69:74:e3:69:62:66:ba:
11:80:e5:d8:ca:4a:c9:08:d8:88:37:9d:de:a9:4f:
0b:43:da:5c:03:5d:69:1d:2c:8e:9c:f9:4a:51:35:
be:7f:67:80:23:ba:43:13:63:36:78:c2:13:70:d2:
c9:4d:fd:01:01:1b:86:c1:4d:d0:af:ef:d1:7d:5d:
44:dd:d6:fb:e1:d9:f6:80:04:fc:2e:5f:ff:61:3e:
23:72:60:b9:e6:83:23:48:ef:bc:76:53:cd:ed:59:
8f:70:33:63:4f:53:58:23:e8:c8:21:6c:22:60:70:
be:e3:7a:5a:71:ea:93:29:12:66:25:36:1d:ee:0e:
16:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:2D:80:08:52:1C:84:FD:AF:B4:4D:21:01:60:B9:56:72:A2:07:88
X509v3 Authority Key Identifier:
keyid:70:6F:FA:A9:B7:FC:E4:08:27:18:1A:5A:A0:AC:EE:99:A4:66:91:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:e4:9b:f7:db:cf:cb:99:ca:8b:40:2e:c4:00:e3:11:25:85:
e1:c9:bf:86:7b:7f:69:93:f1:1a:27:a8:58:28:5f:34:f8:51:
f4:d9:b5:a8:b6:b8:cf:de:13:9c:14:5d:a3:d2:d8:5a:51:8c:
6f:4a:10:f5:21:a1:0f:5f:a6:e8:98:fb:fc:74:77:4f:3e:f8:
ac:aa:7a:d1:ff:c0:9a:9a:77:43:45:f9:df:a6:4f:c0:68:fb:
c9:04:8b:e0:32:0b:f9:05:37:30:7f:af:79:76:33:93:73:87:
c8:36:9f:b8:72:82:43:94:9c:7a:58:31:3a:d3:06:8a:4b:38:
aa:03:ba:4a:46:eb:5e:cd:6a:c2:0d:63:39:3c:13:f1:7a:01:
f5:bb:f8:d7:6d:c6:0b:79:05:ce:13:23:7b:0b:96:c2:87:47:
ca:be:1a:e3:88:94:bd:fd:05:98:5f:88:5f:ce:99:3b:0d:eb:
b8:fa:3d:c8:de:44:44:92:65:91:d8:da:74:83:78:0e:c5:24:
03:76:06:25:5c:a5:f0:e5:48:49:11:04:f5:2c:02:51:88:5f:
37:06:24:28:98:a1:55:01:05:6c:ad:36:96:56:d2:0a:3a:c1:
ab:52:f2:65:01:66:26:ce:57:55:0b:f4:97:a9:52:c1:df:10:
12:27:57:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiHiJwjfq201nE6O59zdILMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwNmZmYWE5YjdmY2U0MDgyNzE4MWE1YWEwYWNlZTk5YTQ2
NjkxNTYwHhcNMjUwOTA3MDMwMDIzWhcNMjUwOTA4MDMwMDIzWjAzMTEwLwYDVQQD
EyhmNTJkODAwODUyMWM4NGZkYWZiNDRkMjEwMTYwYjk1NjcyYTIwNzg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3W6NnN8/FSMeWnvt2dUXtWlfcNWX
ErXCH2ctc+FkwpLdqmqs799gompEVXO0KOLtQTLArDmoHHEdhKvj7XyIViAo4qFO
A8TmzAQFTpEHiwThwgnSbVKnJ0K2MDKQxaDOWVYYyZTC2LfGnKunKE6XFr3GRC1b
lCADSwUCHJ7thGl042liZroRgOXYykrJCNiIN53eqU8LQ9pcA11pHSyOnPlKUTW+
f2eAI7pDE2M2eMITcNLJTf0BARuGwU3Qr+/RfV1E3db74dn2gAT8Ll//YT4jcmC5
5oMjSO+8dlPN7VmPcDNjT1NYI+jIIWwiYHC+43paceqTKRJmJTYd7g4WCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPUtgAhSHIT9r7RNIQFguVZyogeIMB8GA1UdIwQY
MBaAFHBv+qm3/OQIJxgaWqCs7pmkZpFWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0dfNnFiZjg1QWduR0JwYW9LenVtYVJta1ZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8yOTY3OGYtYzYwNS00NjU1LTkzNTkt
MTBmZWRjY2QyOTI0LzEvY0dfNnFiZjg1QWduR0JwYW9LenVtYVJta1ZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS8yOTY3OGYtYzYwNS00NjU1LTkzNTktMTBmZWRjY2QyOTI0
LzEvY0dfNnFiZjg1QWduR0JwYW9LenVtYVJta1ZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMuSb99vP
y5nKi0AuxADjESWF4cm/hnt/aZPxGieoWChfNPhR9Nm1qLa4z94TnBRdo9LYWlGM
b0oQ9SGhD1+m6Jj7/HR3Tz74rKp60f/Ampp3Q0X536ZPwGj7yQSL4DIL+QU3MH+v
eXYzk3OHyDafuHKCQ5ScelgxOtMGiks4qgO6SkbrXs1qwg1jOTwT8XoB9bv4123G
C3kFzhMjewuWwodHyr4a44iUvf0FmF+IX86ZOw3ruPo9yN5ERJJlkdjadIN4DsUk
A3YGJVyl8OVISREE9SwCUYhfNwYkKJihVQEFbK02llbSCjrBq1LyZQFmJs5XVQv0
l6lSwd8QEidXJg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:20 2025 by rpki-client