Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
File: ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft (raw, json)
Hash identifier: KHHOvblqdS5d2fTEM27uVFNfcOHflX1JxPfUpaY5t64=
Subject key identifier: E0:84:FE:E6:EA:6D:4A:6B:78:03:6E:A2:5A:37:49:E9:3C:88:8A:00
Authority key identifier: 6A:10:B7:C5:4E:6F:95:B1:D9:B8:4A:AC:3D:9D:A7:42:A0:E0:2A:6C
Certificate issuer: /CN=6a10b7c54e6f95b1d9b84aac3d9da742a0e02a6c
Certificate serial: 019921B18D6C892C0AC93122D05576344C51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
Manifest number: 1230
Signing time: Sun 07 Sep 2025 01:01:48 +0000
Manifest this update: Sun 07 Sep 2025 01:01:48 +0000
Manifest next update: Mon 08 Sep 2025 01:01:48 +0000
Files and hashes: 1: ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl (hash: 71Q2NP/Ai3bvFyMiuLboOL7O3+teUcpm3J2tFmNmUC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:8d:6c:89:2c:0a:c9:31:22:d0:55:76:34:4c:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a10b7c54e6f95b1d9b84aac3d9da742a0e02a6c
Validity
Not Before: Sep 7 01:01:48 2025 GMT
Not After : Sep 8 01:01:48 2025 GMT
Subject: CN=e084fee6ea6d4a6b78036ea25a3749e93c888a00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:06:a3:4d:11:ba:33:42:d5:51:ca:a4:38:55:
2b:9d:a2:91:29:a9:9e:ad:f8:7b:af:94:a6:a4:06:
0e:f6:e0:46:e6:78:b4:cd:b1:b4:f8:a6:0b:32:77:
20:3d:f5:83:93:d7:56:ce:1b:28:9d:31:a2:2b:88:
1b:ef:27:3c:40:d0:35:3a:4b:73:70:b8:cc:73:3c:
fe:9b:89:26:ba:a6:82:5d:8b:dd:cf:7a:ed:c7:fb:
a4:fa:e3:83:6e:62:4c:c8:6a:6b:3b:09:e7:20:23:
8d:58:40:43:8b:ca:e3:9e:0d:40:73:69:7f:a3:c8:
f6:87:04:2a:44:14:ba:af:5b:7b:27:20:96:6b:02:
8a:d0:f4:4f:5f:92:ce:c2:a3:4b:16:5e:be:c6:98:
a0:c8:1e:57:b6:9f:91:60:00:7b:4f:49:0d:0d:81:
fa:12:59:2b:cb:0c:80:81:bb:5f:f4:0f:6a:50:41:
4b:df:4b:5e:8c:20:36:09:00:7b:de:49:d8:3c:fd:
52:84:e9:b9:ad:00:ec:14:c0:45:e5:86:a9:98:d9:
71:dd:87:90:e8:fa:a1:7f:07:aa:9c:f8:a6:c6:f6:
ca:72:98:b6:15:f0:85:e9:e3:21:0a:8f:94:2d:27:
6f:26:cb:a3:92:f1:40:c3:bb:ab:11:03:3a:8d:56:
ce:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:84:FE:E6:EA:6D:4A:6B:78:03:6E:A2:5A:37:49:E9:3C:88:8A:00
X509v3 Authority Key Identifier:
keyid:6A:10:B7:C5:4E:6F:95:B1:D9:B8:4A:AC:3D:9D:A7:42:A0:E0:2A:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:bd:82:af:f3:7d:ae:78:c1:45:90:e5:a6:c3:e8:1e:9c:92:
d4:6f:14:06:fd:fa:65:30:08:50:65:27:53:30:e5:af:e6:6c:
67:54:ff:78:c0:38:d6:0d:5b:a0:88:0c:d4:14:2c:b7:fb:3c:
fc:dd:c6:a0:5c:fe:07:45:1b:08:33:7c:04:fc:ce:58:66:c3:
fb:ae:10:59:ca:d3:16:bc:9c:d3:67:d1:32:27:af:f4:98:4b:
01:43:5a:9e:30:f6:f2:62:94:ca:90:03:0b:da:ab:09:2c:a4:
97:88:b3:61:d3:d5:02:27:26:70:d4:d7:f3:75:c4:bf:9d:3e:
76:ec:32:e9:62:94:e8:4c:c2:a6:e0:62:1c:04:f8:d8:eb:54:
50:e4:23:34:ab:df:74:8e:b4:f3:d6:17:8c:69:06:8c:1b:02:
33:8f:3c:69:2f:d6:50:d3:8f:7f:52:3a:18:4e:8e:78:32:3d:
cb:8a:fd:a7:a6:0d:23:f0:c3:73:d3:b3:6b:90:28:42:41:5a:
e3:10:1a:02:6d:8d:ba:de:20:53:d3:d2:08:b8:4e:88:78:ca:
3c:47:6e:87:9a:ce:4f:1b:b9:2a:d4:00:57:2d:5c:0d:3c:86:
e0:f4:aa:8f:8a:85:1e:8d:b6:f4:f4:61:2b:b9:9c:40:a2:27:
af:fe:f7:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsY1siSwKyTEi0FV2NExRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhMTBiN2M1NGU2Zjk1YjFkOWI4NGFhYzNkOWRhNzQyYTBl
MDJhNmMwHhcNMjUwOTA3MDEwMTQ4WhcNMjUwOTA4MDEwMTQ4WjAzMTEwLwYDVQQD
EyhlMDg0ZmVlNmVhNmQ0YTZiNzgwMzZlYTI1YTM3NDllOTNjODg4YTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArgajTRG6M0LVUcqkOFUrnaKRKame
rfh7r5SmpAYO9uBG5ni0zbG0+KYLMncgPfWDk9dWzhsonTGiK4gb7yc8QNA1Oktz
cLjMczz+m4kmuqaCXYvdz3rtx/uk+uODbmJMyGprOwnnICONWEBDi8rjng1Ac2l/
o8j2hwQqRBS6r1t7JyCWawKK0PRPX5LOwqNLFl6+xpigyB5Xtp+RYAB7T0kNDYH6
ElkrywyAgbtf9A9qUEFL30tejCA2CQB73knYPP1ShOm5rQDsFMBF5YapmNlx3YeQ
6PqhfweqnPimxvbKcpi2FfCF6eMhCo+ULSdvJsujkvFAw7urEQM6jVbOJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOCE/ubqbUpreANuolo3Sek8iIoAMB8GA1UdIwQY
MBaAFGoQt8VOb5Wx2bhKrD2dp0Kg4CpsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWhDM3hVNXZsYkhadUVxc1BaMm5RcURnS213LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS84YTJlODUtOTQ4MC00MWEyLWEyNTUt
MmRjYWQ2ZWU3MWZiLzEvYWhDM3hVNXZsYkhadUVxc1BaMm5RcURnS213Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS84YTJlODUtOTQ4MC00MWEyLWEyNTUtMmRjYWQ2ZWU3MWZi
LzEvYWhDM3hVNXZsYkhadUVxc1BaMm5RcURnS213LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANr2Cr/N9
rnjBRZDlpsPoHpyS1G8UBv36ZTAIUGUnUzDlr+ZsZ1T/eMA41g1boIgM1BQst/s8
/N3GoFz+B0UbCDN8BPzOWGbD+64QWcrTFryc02fRMiev9JhLAUNanjD28mKUypAD
C9qrCSykl4izYdPVAicmcNTX83XEv50+duwy6WKU6EzCpuBiHAT42OtUUOQjNKvf
dI6089YXjGkGjBsCM488aS/WUNOPf1I6GE6OeDI9y4r9p6YNI/DDc9Oza5AoQkFa
4xAaAm2Nut4gU9PSCLhOiHjKPEduh5rOTxu5KtQAVy1cDTyG4PSqj4qFHo229PRh
K7mcQKInr/73Mw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:45:01 2025 by rpki-client