Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: 6XEvLiXK2jmIpwqPnA6KupdlDB70OmTTLew2iOq8+jI=
Subject key identifier: 19:54:A4:AD:5F:D9:F6:35:99:20:48:D4:95:FA:47:C3:DB:F7:83:BF
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 019A56ADC433E5B5445AAF1517873EBF6B9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 1710
Signing time: Thu 06 Nov 2025 01:00:19 +0000
Manifest this update: Thu 06 Nov 2025 01:00:19 +0000
Manifest next update: Fri 07 Nov 2025 01:00:19 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: 6fuJH+fzTvogEvnXp3sH7utTsvROxIiJV39sU+tgWAs=)
2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Nov 2025 01:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:ad:c4:33:e5:b5:44:5a:af:15:17:87:3e:bf:6b:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Nov 6 01:00:19 2025 GMT
Not After : Nov 7 01:00:19 2025 GMT
Subject: CN=1954a4ad5fd9f635992048d495fa47c3dbf783bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:97:f9:3f:8c:d0:bd:8b:6a:e3:89:6b:cc:4b:
9a:7f:4a:fa:cb:59:16:7c:f7:3b:a3:bf:8c:f1:db:
e9:18:06:d6:77:eb:c9:49:9a:24:e8:bf:83:4b:7d:
8a:5b:b5:85:bb:93:07:ef:48:41:d9:df:39:e6:6a:
31:a8:50:a3:4f:2b:c9:67:85:76:e8:b9:69:fb:40:
a4:46:43:08:5e:70:05:26:eb:96:08:33:18:3c:27:
f1:4f:3f:3e:e4:8e:f0:fc:99:cc:18:82:7a:2e:52:
99:b1:3d:54:96:bc:ea:2e:9d:40:e7:26:d2:e8:4d:
ca:96:b3:77:d1:cb:24:f9:f0:d2:d1:4d:f2:a4:28:
15:ee:49:85:61:88:9e:80:8e:c3:71:d2:16:2c:00:
5f:9e:11:7d:cd:fa:4d:8c:e4:ca:7b:98:28:51:a8:
aa:10:61:1b:76:5e:73:64:5f:22:9c:11:09:7f:c1:
62:31:67:10:31:68:11:55:73:77:ed:0f:3a:15:1e:
07:ea:bc:a1:63:21:86:10:e9:ab:dc:79:3e:91:5a:
e1:0a:12:5d:31:9c:b4:c1:0c:a2:04:e2:c4:d1:aa:
9b:3f:9d:76:53:f4:22:55:61:bb:43:53:76:36:14:
2f:4f:ad:a5:a5:02:c8:99:9c:2c:69:92:44:9b:e5:
93:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:54:A4:AD:5F:D9:F6:35:99:20:48:D4:95:FA:47:C3:DB:F7:83:BF
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:34:5a:17:66:4e:dd:6e:a8:c1:32:5e:72:d9:97:a3:bb:d9:
9f:97:5f:b0:55:3f:03:fc:b4:de:4c:70:c5:9d:ce:2a:52:c1:
01:e5:0a:4e:7c:37:bd:d1:5d:ae:6f:7a:a7:79:08:77:b9:fd:
02:ce:19:7e:14:69:cb:86:7f:fd:48:cf:90:e2:3f:d9:9f:bd:
04:32:2a:6b:51:5c:00:31:e5:e4:70:ed:4e:54:8a:70:62:55:
62:dd:f8:89:49:e5:03:67:4a:0a:07:53:32:01:26:42:58:ce:
d1:c5:d7:06:ae:59:19:8c:e9:08:93:ae:c7:e3:55:1a:e0:2e:
97:39:38:c3:f7:60:79:e7:ee:35:7a:9b:db:53:c9:fd:bf:7a:
bc:51:a1:b0:9e:55:7d:87:a6:fa:61:ec:3d:7b:8c:d4:35:38:
8e:f3:04:96:d1:1c:9e:08:60:3d:01:bd:d7:fd:09:f6:fe:23:
f1:b5:ae:51:9c:9f:5a:99:60:cb:e6:02:20:f9:26:f2:6b:af:
4e:14:88:b4:ec:b9:77:f3:7c:d8:9b:59:0f:f6:f2:43:4e:23:
08:f1:29:1d:01:10:11:c8:bf:3f:e8:b8:a7:61:62:8c:ca:db:
0d:4b:08:8e:d6:89:33:a8:b4:d4:bd:79:01:d5:ee:18:4a:1e:
b8:24:1a:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpWrcQz5bVEWq8VF4c+v2udMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyOTFkNGRlMTMwZGE2YWFjZTIyZWQ5OTY1MGJlMTgyNDk3
ZTBiY2YwHhcNMjUxMTA2MDEwMDE5WhcNMjUxMTA3MDEwMDE5WjAzMTEwLwYDVQQD
EygxOTU0YTRhZDVmZDlmNjM1OTkyMDQ4ZDQ5NWZhNDdjM2RiZjc4M2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZf5P4zQvYtq44lrzEuaf0r6y1kW
fPc7o7+M8dvpGAbWd+vJSZok6L+DS32KW7WFu5MH70hB2d855moxqFCjTyvJZ4V2
6Llp+0CkRkMIXnAFJuuWCDMYPCfxTz8+5I7w/JnMGIJ6LlKZsT1UlrzqLp1A5ybS
6E3KlrN30csk+fDS0U3ypCgV7kmFYYiegI7DcdIWLABfnhF9zfpNjOTKe5goUaiq
EGEbdl5zZF8inBEJf8FiMWcQMWgRVXN37Q86FR4H6ryhYyGGEOmr3Hk+kVrhChJd
MZy0wQyiBOLE0aqbP512U/QiVWG7Q1N2NhQvT62lpQLImZwsaZJEm+WTOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBlUpK1f2fY1mSBI1JX6R8Pb94O/MB8GA1UdIwQY
MBaAFAKR1N4TDaaqziLtmWUL4YJJfgvPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQt
Nzc4MTY4MTA3N2Y3LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQtNzc4MTY4MTA3N2Y3
LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQzRaF2ZO
3W6owTJectmXo7vZn5dfsFU/A/y03kxwxZ3OKlLBAeUKTnw3vdFdrm96p3kId7n9
As4ZfhRpy4Z//UjPkOI/2Z+9BDIqa1FcADHl5HDtTlSKcGJVYt34iUnlA2dKCgdT
MgEmQljO0cXXBq5ZGYzpCJOux+NVGuAulzk4w/dgeefuNXqb21PJ/b96vFGhsJ5V
fYem+mHsPXuM1DU4jvMEltEcnghgPQG91/0J9v4j8bWuUZyfWplgy+YCIPkm8muv
ThSItOy5d/N82JtZD/byQ04jCPEpHQEQEci/P+i4p2FijMrbDUsIjtaJM6i01L15
AdXuGEoeuCQacg==
-----END CERTIFICATE-----
Generated at Thu Nov 6 11:23:15 2025 by rpki-client