Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
File: raavh7Q2lN05mUwOMhQwaHVRny4.mft (raw, json)
Hash identifier: gnOD3SekK/eUYvj/+mUHyBa9QY7VTePQm0Fsjmzb6EI=
Subject key identifier: B2:60:DA:05:08:A2:01:32:5A:3F:6C:7E:A0:3D:83:11:71:6C:AC:68
Authority key identifier: AD:A6:AF:87:B4:36:94:DD:39:99:4C:0E:32:14:30:68:75:51:9F:2E
Certificate issuer: /CN=ada6af87b43694dd39994c0e3214306875519f2e
Certificate serial: 019A71B7DD6DFB02FD6A8D93D8A469755745
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raavh7Q2lN05mUwOMhQwaHVRny4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
Manifest number: 0C7B
Signing time: Tue 11 Nov 2025 07:01:06 +0000
Manifest this update: Tue 11 Nov 2025 07:01:06 +0000
Manifest next update: Wed 12 Nov 2025 07:01:06 +0000
Files and hashes: 1: raavh7Q2lN05mUwOMhQwaHVRny4.crl (hash: 9m3tLqBNuh70RaoRHrN+Ea0wBbvzwwHycjBACboIpug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
rsync://rpki.ripe.net/repository/DEFAULT/raavh7Q2lN05mUwOMhQwaHVRny4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:dd:6d:fb:02:fd:6a:8d:93:d8:a4:69:75:57:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada6af87b43694dd39994c0e3214306875519f2e
Validity
Not Before: Nov 11 07:01:06 2025 GMT
Not After : Nov 12 07:01:06 2025 GMT
Subject: CN=b260da0508a201325a3f6c7ea03d8311716cac68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e0:20:ee:5c:04:e6:aa:a3:ae:cf:35:25:f4:
e6:cd:75:c0:e7:37:80:be:f8:28:7e:d1:9e:0c:17:
49:fd:57:cd:17:95:8e:67:9b:fb:02:69:c1:e1:69:
5d:12:bd:38:ee:b9:84:38:79:60:a9:16:cb:11:6f:
04:52:55:53:13:fd:cd:e3:93:8e:6f:ce:95:c6:f4:
bb:a3:73:e7:58:13:7a:33:c3:87:db:2b:76:8c:98:
d0:0f:25:56:8a:47:29:81:a9:ba:35:a8:7e:3b:9a:
6f:db:85:66:c6:6e:1c:b4:73:dc:54:90:87:d4:8f:
1b:82:cf:0b:96:db:fb:a2:63:13:9d:db:fc:c8:65:
79:ff:00:53:8f:9c:ba:ce:49:42:77:75:90:5b:70:
54:2d:9e:c6:a4:4e:0e:8c:01:01:c0:a8:21:b7:ad:
1a:4d:29:8b:b9:99:cc:76:ae:f4:ac:15:2c:66:d8:
cf:56:88:7b:09:89:ce:72:1c:b6:e4:d0:f4:d5:3a:
9e:63:c2:5d:e0:46:8f:a6:35:75:14:4e:bc:d0:4d:
3a:5b:aa:78:eb:4f:bb:4f:12:aa:18:94:07:13:61:
ea:8e:3f:fe:f4:23:0a:9b:d0:8a:b5:12:4c:72:a1:
e5:d3:49:b4:15:02:87:e9:72:57:e8:d5:d8:68:91:
a3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:60:DA:05:08:A2:01:32:5A:3F:6C:7E:A0:3D:83:11:71:6C:AC:68
X509v3 Authority Key Identifier:
keyid:AD:A6:AF:87:B4:36:94:DD:39:99:4C:0E:32:14:30:68:75:51:9F:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raavh7Q2lN05mUwOMhQwaHVRny4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:ce:23:f5:86:68:e9:69:53:26:06:ee:b5:19:60:31:5b:73:
72:89:71:28:18:9d:69:e6:13:5a:c5:b9:f7:b1:49:94:19:8b:
6f:fc:a5:b1:8d:3b:aa:f0:0a:79:5d:0b:62:dc:3b:1a:e0:a7:
43:db:ba:55:76:c8:6b:1a:aa:60:ba:52:5d:39:64:78:33:5d:
1a:de:b6:12:ea:c6:53:33:3e:b6:c7:b6:ab:f8:e7:bc:2c:db:
02:95:b5:da:95:ea:38:e0:ea:1e:f3:40:ba:e8:e2:c0:3d:ff:
02:c5:35:94:36:8a:1d:50:3b:5b:7a:de:6f:0f:24:d8:7f:d5:
d7:ae:74:76:df:7d:3a:3d:65:54:6a:42:68:d5:ec:7c:88:4b:
c2:b8:2d:1d:58:5a:d5:4d:94:9f:bf:1e:b3:7f:2d:b0:5a:7c:
aa:08:30:b4:60:a4:6d:c6:81:7d:44:17:dc:4a:12:1c:b1:63:
4e:1c:f1:a8:40:d9:8e:2d:08:a9:d9:41:f0:9b:23:31:f4:d5:
ea:1e:c0:6c:e7:81:0a:c1:b6:63:5b:88:6d:d7:ca:ce:1b:bc:
4e:25:2e:f7:9b:42:85:bb:00:aa:d1:c4:bb:8d:39:bc:f7:70:
9e:aa:06:e8:9b:59:90:b4:3c:15:fa:34:4d:c2:2f:c1:5b:8f:
08:db:c1:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxt91t+wL9ao2T2KRpdVdFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkYTZhZjg3YjQzNjk0ZGQzOTk5NGMwZTMyMTQzMDY4NzU1
MTlmMmUwHhcNMjUxMTExMDcwMTA2WhcNMjUxMTEyMDcwMTA2WjAzMTEwLwYDVQQD
EyhiMjYwZGEwNTA4YTIwMTMyNWEzZjZjN2VhMDNkODMxMTcxNmNhYzY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+Ag7lwE5qqjrs81JfTmzXXA5zeA
vvgoftGeDBdJ/VfNF5WOZ5v7AmnB4WldEr047rmEOHlgqRbLEW8EUlVTE/3N45OO
b86VxvS7o3PnWBN6M8OH2yt2jJjQDyVWikcpgam6Nah+O5pv24Vmxm4ctHPcVJCH
1I8bgs8Lltv7omMTndv8yGV5/wBTj5y6zklCd3WQW3BULZ7GpE4OjAEBwKght60a
TSmLuZnMdq70rBUsZtjPVoh7CYnOchy25ND01TqeY8Jd4EaPpjV1FE680E06W6p4
60+7TxKqGJQHE2Hqjj/+9CMKm9CKtRJMcqHl00m0FQKH6XJX6NXYaJGjYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLJg2gUIogEyWj9sfqA9gxFxbKxoMB8GA1UdIwQY
MBaAFK2mr4e0NpTdOZlMDjIUMGh1UZ8uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmFhdmg3UTJsTjA1bVV3T01oUXdhSFZSbnk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9jNWM4YmUtN2RiOS00MDU3LWE4MDct
MzllMzU3Mzg0YWU0LzEvcmFhdmg3UTJsTjA1bVV3T01oUXdhSFZSbnk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9jNWM4YmUtN2RiOS00MDU3LWE4MDctMzllMzU3Mzg0YWU0
LzEvcmFhdmg3UTJsTjA1bVV3T01oUXdhSFZSbnk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg84j9YZo
6WlTJgbutRlgMVtzcolxKBidaeYTWsW597FJlBmLb/ylsY07qvAKeV0LYtw7GuCn
Q9u6VXbIaxqqYLpSXTlkeDNdGt62EurGUzM+tse2q/jnvCzbApW12pXqOODqHvNA
uujiwD3/AsU1lDaKHVA7W3rebw8k2H/V1650dt99Oj1lVGpCaNXsfIhLwrgtHVha
1U2Un78es38tsFp8qggwtGCkbcaBfUQX3EoSHLFjThzxqEDZji0IqdlB8JsjMfTV
6h7AbOeBCsG2Y1uIbdfKzhu8TiUu95tChbsAqtHEu405vPdwnqoG6JtZkLQ8Ffo0
TcIvwVuPCNvBqA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 13:00:32 2025 by rpki-client