Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
File: 0aiWnX4yy_knZkstxDa5bnFJpis.mft (raw, json)
Hash identifier: 1XKVU6HAsjyOBOUHz5qYqG/L7pMHp44iGMguE8qmUmQ=
Subject key identifier: 22:A2:98:62:11:C4:70:CF:E3:7F:B8:29:ED:ED:A2:E8:C1:0C:12:5B
Authority key identifier: D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
Certificate issuer: /CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Certificate serial: 0199228C41C1FAA4BFC4F92D50DE81619AF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
Manifest number: 0FA8
Signing time: Sun 07 Sep 2025 05:00:41 +0000
Manifest this update: Sun 07 Sep 2025 05:00:41 +0000
Manifest next update: Mon 08 Sep 2025 05:00:41 +0000
Files and hashes: 1: 0aiWnX4yy_knZkstxDa5bnFJpis.crl (hash: r90b9MbMY55/ZSK3k7LM4v1gj/vpDueuWD15HL9HN3A=)
2: p1fyn5poKGi3v6udklaZLK6DaPs.roa (hash: ksuBLRSUua1zFmd4JmcnhcAsP8MWyD8OR/dcK6d/pkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:41:c1:fa:a4:bf:c4:f9:2d:50:de:81:61:9a:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Validity
Not Before: Sep 7 05:00:41 2025 GMT
Not After : Sep 8 05:00:41 2025 GMT
Subject: CN=22a2986211c470cfe37fb829ededa2e8c10c125b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4d:7b:82:92:71:e1:d3:00:4a:9a:c2:d5:42:
60:13:35:63:26:9f:d2:77:35:84:40:06:d3:b6:da:
c9:5c:47:d1:27:0b:0c:78:89:c8:57:fe:0a:2c:27:
34:90:41:1b:31:21:1e:12:b8:8d:75:e6:70:c5:04:
07:77:ab:fa:67:6c:98:c7:e4:55:93:f3:30:5a:09:
64:81:6a:18:0a:f9:d2:d3:ef:53:89:f7:4d:86:50:
9c:45:c2:cb:91:b5:50:99:bf:66:d7:79:fb:1f:30:
87:ea:7a:4e:e7:cf:6e:da:0a:c8:b8:73:e6:f8:11:
3a:04:ea:e7:48:dc:f7:f3:d6:c5:35:5f:cd:79:9e:
58:28:a6:c4:3f:8e:0b:4c:e0:c3:9c:22:87:85:ea:
3d:86:02:31:de:aa:f6:25:69:c0:b8:e1:38:52:be:
62:08:d4:c8:59:9b:25:34:cb:b0:f5:66:a6:c2:b0:
27:b9:ee:7f:c4:25:43:59:5d:49:a2:2d:64:74:6f:
26:2f:81:bb:a8:8e:30:84:8c:28:cf:82:83:f5:64:
24:dd:9f:15:94:12:b7:68:90:8e:82:83:1c:ed:ab:
cd:65:37:54:cc:f5:4e:60:26:1c:73:01:a6:ae:dc:
6d:bf:ab:14:0d:09:32:58:9c:75:f9:e0:e7:f2:f2:
92:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A2:98:62:11:C4:70:CF:E3:7F:B8:29:ED:ED:A2:E8:C1:0C:12:5B
X509v3 Authority Key Identifier:
keyid:D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:39:6f:23:3c:23:2f:5a:57:c6:86:90:73:6d:1c:9c:32:25:
2a:1a:a0:3f:85:4d:c5:f0:3c:5a:9f:b8:46:30:b4:c6:3d:ba:
5f:d2:bc:cb:1b:4c:c6:c5:38:95:df:91:83:09:ad:71:88:5d:
32:12:4e:d4:85:ad:71:8e:2a:71:4f:34:8b:f2:2d:3e:98:2f:
a6:41:d5:df:6c:c0:f8:2c:48:73:13:43:bc:93:36:d2:1b:bf:
54:22:6f:54:64:9c:b2:5d:c6:e4:2b:6b:b0:4b:15:4c:06:ae:
31:77:95:60:48:21:20:cf:fa:8c:32:1a:30:f4:50:57:b0:ad:
c3:cd:4f:ce:f0:92:b7:c5:cd:21:58:47:c1:28:84:67:e2:17:
7d:25:e3:f9:43:93:65:27:e3:d7:98:00:e4:49:01:82:16:92:
57:eb:57:b7:f3:2f:73:bf:91:e1:c5:b9:e0:d1:e8:3a:2c:5b:
2a:51:ed:db:f1:64:9f:87:b5:5c:b2:bc:48:2c:ad:e6:93:2f:
3f:79:d4:3d:84:53:7b:4c:2b:0e:04:d4:7f:39:c7:fe:33:bf:
85:f1:12:91:d5:35:08:b3:08:0e:16:88:10:81:77:1b:90:09:
63:2b:bc:a2:c4:37:dc:d7:a5:64:c9:a2:90:54:d1:15:03:d4:
85:d1:56:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkijEHB+qS/xPktUN6BYZrxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxYTg5NjlkN2UzMmNiZjkyNzY2NGIyZGM0MzZiOTZlNzE0
OWE2MmIwHhcNMjUwOTA3MDUwMDQxWhcNMjUwOTA4MDUwMDQxWjAzMTEwLwYDVQQD
EygyMmEyOTg2MjExYzQ3MGNmZTM3ZmI4MjllZGVkYTJlOGMxMGMxMjViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw017gpJx4dMASprC1UJgEzVjJp/S
dzWEQAbTttrJXEfRJwsMeInIV/4KLCc0kEEbMSEeEriNdeZwxQQHd6v6Z2yYx+RV
k/MwWglkgWoYCvnS0+9TifdNhlCcRcLLkbVQmb9m13n7HzCH6npO589u2grIuHPm
+BE6BOrnSNz389bFNV/NeZ5YKKbEP44LTODDnCKHheo9hgIx3qr2JWnAuOE4Ur5i
CNTIWZslNMuw9WamwrAnue5/xCVDWV1Joi1kdG8mL4G7qI4whIwoz4KD9WQk3Z8V
lBK3aJCOgoMc7avNZTdUzPVOYCYccwGmrtxtv6sUDQkyWJx1+eDn8vKSFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCKimGIRxHDP43+4Ke3toujBDBJbMB8GA1UdIwQY
MBaAFNGolp1+Msv5J2ZLLcQ2uW5xSaYrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGFpV25YNHl5X2tuWmtzdHhEYTVibkZKcGlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8yNzI5NGUtYjllNy00NjYwLTkzMmQt
MjEwNDhhNzM0YTQ2LzEvMGFpV25YNHl5X2tuWmtzdHhEYTVibkZKcGlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny8yNzI5NGUtYjllNy00NjYwLTkzMmQtMjEwNDhhNzM0YTQ2
LzEvMGFpV25YNHl5X2tuWmtzdHhEYTVibkZKcGlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAjlvIzwj
L1pXxoaQc20cnDIlKhqgP4VNxfA8Wp+4RjC0xj26X9K8yxtMxsU4ld+RgwmtcYhd
MhJO1IWtcY4qcU80i/ItPpgvpkHV32zA+CxIcxNDvJM20hu/VCJvVGScsl3G5Ctr
sEsVTAauMXeVYEghIM/6jDIaMPRQV7Ctw81PzvCSt8XNIVhHwSiEZ+IXfSXj+UOT
ZSfj15gA5EkBghaSV+tXt/Mvc7+R4cW54NHoOixbKlHt2/Fkn4e1XLK8SCyt5pMv
P3nUPYRTe0wrDgTUfznH/jO/hfESkdU1CLMIDhaIEIF3G5AJYyu8osQ33NelZMmi
kFTRFQPUhdFWSw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:51:06 2025 by rpki-client