Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
File: ap2Z4esn7Hq76TViechBGkEw_co.mft (raw, json)
Hash identifier: E8/Xq3jB57XRx0Iu3EiFDvwXf2XqPcXOyVDF00dN0MM=
Subject key identifier: 8C:9F:5C:EA:AD:48:76:BB:AC:1F:E5:51:7B:87:65:5B:D6:48:AA:6F
Authority key identifier: 6A:9D:99:E1:EB:27:EC:7A:BB:E9:35:62:79:C8:41:1A:41:30:FD:CA
Certificate issuer: /CN=6a9d99e1eb27ec7abbe9356279c8411a4130fdca
Certificate serial: 019A722584A84A3AC12EAD51F77CCFF6FFF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
Manifest number: 0D95
Signing time: Tue 11 Nov 2025 09:00:52 +0000
Manifest this update: Tue 11 Nov 2025 09:00:52 +0000
Manifest next update: Wed 12 Nov 2025 09:00:52 +0000
Files and hashes: 1: ap2Z4esn7Hq76TViechBGkEw_co.crl (hash: ePXMTP/sEfu6UDzRrLDT2d1qBx10+uXqUfy0hTmhzb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:84:a8:4a:3a:c1:2e:ad:51:f7:7c:cf:f6:ff:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a9d99e1eb27ec7abbe9356279c8411a4130fdca
Validity
Not Before: Nov 11 09:00:52 2025 GMT
Not After : Nov 12 09:00:52 2025 GMT
Subject: CN=8c9f5ceaad4876bbac1fe5517b87655bd648aa6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ce:ed:73:90:dc:9c:d2:25:6e:30:9e:88:6d:
d6:cc:e0:c2:ae:3a:65:84:43:34:d7:35:48:28:32:
07:74:3b:c8:09:28:ed:87:c5:08:04:4e:1a:f3:6f:
91:e6:d4:a6:4d:51:cf:95:99:1c:ac:f2:66:9a:74:
42:51:32:de:97:dd:7e:93:b1:cc:d1:eb:41:4e:06:
8a:0f:cf:73:43:ad:74:7f:d1:93:51:ff:b0:24:db:
b9:69:28:11:46:a8:7f:18:1a:8b:6e:83:de:e5:c3:
02:51:3c:5d:bb:19:b1:2d:99:11:1a:02:5a:71:d6:
33:7e:b6:ea:fc:ed:67:74:3f:97:a6:b5:21:0b:da:
80:08:28:d1:78:4d:7b:6c:85:fa:d2:90:d0:da:fd:
06:94:79:15:fe:fe:f1:9a:48:e8:5c:de:05:0c:0a:
f8:aa:75:e7:53:29:0e:44:89:bf:2f:a9:42:d9:91:
9f:11:52:11:6d:1b:2b:f3:42:b5:9c:7d:e3:17:c8:
97:43:52:91:4a:91:1a:c7:28:96:97:da:0d:f3:47:
b4:06:ee:ea:8a:3a:3c:78:3b:02:f8:3a:93:a5:df:
82:0b:2f:58:37:7c:47:d9:b1:df:26:b8:6d:af:ff:
e8:e3:c8:8c:3b:88:34:17:b4:60:56:f6:d2:89:30:
10:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:9F:5C:EA:AD:48:76:BB:AC:1F:E5:51:7B:87:65:5B:D6:48:AA:6F
X509v3 Authority Key Identifier:
keyid:6A:9D:99:E1:EB:27:EC:7A:BB:E9:35:62:79:C8:41:1A:41:30:FD:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:98:11:93:76:af:be:77:00:b1:59:c3:ad:03:a9:20:97:45:
dd:b9:2f:86:cd:01:d3:91:29:68:d1:5f:fa:e2:5c:70:eb:8f:
f3:00:ee:39:ae:79:8b:38:c4:86:d4:8f:05:0d:54:30:fb:e2:
4c:6f:dc:41:db:92:32:d5:a3:b1:ee:39:69:c7:fa:39:ee:30:
c5:71:c6:be:db:5d:4c:74:e1:54:8b:26:b9:83:9d:18:c9:af:
bb:ba:77:55:3c:77:65:eb:80:a9:87:d5:77:35:85:ed:66:27:
7b:bd:28:43:c9:66:76:dc:ee:ca:d7:c0:26:d3:d3:49:2f:ae:
d8:d7:11:05:60:39:2c:d0:0e:46:2f:ce:da:dd:92:74:09:68:
89:7c:35:84:db:f5:6c:51:0f:23:ef:72:77:20:f9:e5:7a:6b:
5b:1c:c9:37:3b:2b:cd:da:5e:9d:08:35:46:f5:84:82:95:fd:
0a:94:a5:89:8f:bb:b9:8e:eb:2b:ad:ed:8d:08:d9:96:47:4b:
f5:99:48:73:c7:25:86:a7:77:36:7a:57:e5:80:34:06:c1:e2:
3f:fb:7b:f0:3f:07:3d:61:3f:78:58:30:56:f0:d3:cc:cd:3e:
29:95:09:6c:1f:20:21:45:fb:3d:95:13:c4:7c:96:06:67:e1:
da:d7:53:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJYSoSjrBLq1R93zP9v/2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhOWQ5OWUxZWIyN2VjN2FiYmU5MzU2Mjc5Yzg0MTFhNDEz
MGZkY2EwHhcNMjUxMTExMDkwMDUyWhcNMjUxMTEyMDkwMDUyWjAzMTEwLwYDVQQD
Eyg4YzlmNWNlYWFkNDg3NmJiYWMxZmU1NTE3Yjg3NjU1YmQ2NDhhYTZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvs7tc5DcnNIlbjCeiG3WzODCrjpl
hEM01zVIKDIHdDvICSjth8UIBE4a82+R5tSmTVHPlZkcrPJmmnRCUTLel91+k7HM
0etBTgaKD89zQ610f9GTUf+wJNu5aSgRRqh/GBqLboPe5cMCUTxduxmxLZkRGgJa
cdYzfrbq/O1ndD+XprUhC9qACCjReE17bIX60pDQ2v0GlHkV/v7xmkjoXN4FDAr4
qnXnUykORIm/L6lC2ZGfEVIRbRsr80K1nH3jF8iXQ1KRSpEaxyiWl9oN80e0Bu7q
ijo8eDsC+DqTpd+CCy9YN3xH2bHfJrhtr//o48iMO4g0F7RgVvbSiTAQPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIyfXOqtSHa7rB/lUXuHZVvWSKpvMB8GA1UdIwQY
MBaAFGqdmeHrJ+x6u+k1YnnIQRpBMP3KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYXAyWjRlc243SHE3NlRWaWVjaEJHa0V3X2NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS83M2M4ZjAtN2E1YS00YWRiLWExMmQt
YjdkYWYyZTYwZjZmLzEvYXAyWjRlc243SHE3NlRWaWVjaEJHa0V3X2NvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS83M2M4ZjAtN2E1YS00YWRiLWExMmQtYjdkYWYyZTYwZjZm
LzEvYXAyWjRlc243SHE3NlRWaWVjaEJHa0V3X2NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfJgRk3av
vncAsVnDrQOpIJdF3bkvhs0B05EpaNFf+uJccOuP8wDuOa55izjEhtSPBQ1UMPvi
TG/cQduSMtWjse45acf6Oe4wxXHGvttdTHThVIsmuYOdGMmvu7p3VTx3ZeuAqYfV
dzWF7WYne70oQ8lmdtzuytfAJtPTSS+u2NcRBWA5LNAORi/O2t2SdAloiXw1hNv1
bFEPI+9ydyD55XprWxzJNzsrzdpenQg1RvWEgpX9CpSliY+7uY7rK63tjQjZlkdL
9ZlIc8clhqd3NnpX5YA0BsHiP/t78D8HPWE/eFgwVvDTzM0+KZUJbB8gIUX7PZUT
xHyWBmfh2tdThA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:22:31 2025 by rpki-client