Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
File: aH2bViukcmGPk5jiZcoOcQj2h6M.mft (raw, json)
Hash identifier: U7W8SiRV2vTi/d9KV98ghtdupZFktmlQNj5BM8xhrMw=
Subject key identifier: 52:A4:D5:C6:F3:09:DE:AB:A9:7E:C3:6D:4F:E3:BA:D4:BA:76:C1:4E
Authority key identifier: 68:7D:9B:56:2B:A4:72:61:8F:93:98:E2:65:CA:0E:71:08:F6:87:A3
Certificate issuer: /CN=687d9b562ba472618f9398e265ca0e7108f687a3
Certificate serial: 019A13F1CAAF0DC777742A2659BAE3B2BB99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
Manifest number: 1681
Signing time: Fri 24 Oct 2025 02:00:04 +0000
Manifest this update: Fri 24 Oct 2025 02:00:04 +0000
Manifest next update: Sat 25 Oct 2025 02:00:04 +0000
Files and hashes: 1: aH2bViukcmGPk5jiZcoOcQj2h6M.crl (hash: R1gm4UAI06Kzm2up/gPHt0N9mq1GKPHAZUB21eabsFs=)
2: lwjpFv3HgemxBJqe9gi4ArggD88.roa (hash: 7p7Zr7Ya8mUheMjW/Ww4B8S5/Cc2CZ+iZfLnhmKVtRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:13:f1:ca:af:0d:c7:77:74:2a:26:59:ba:e3:b2:bb:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687d9b562ba472618f9398e265ca0e7108f687a3
Validity
Not Before: Oct 24 02:00:04 2025 GMT
Not After : Oct 25 02:00:04 2025 GMT
Subject: CN=52a4d5c6f309deaba97ec36d4fe3bad4ba76c14e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:18:49:c1:3d:8d:25:bb:f2:d9:a9:8b:d5:44:
b7:a3:40:36:6f:d2:72:4b:cf:2e:3c:a9:6e:8b:2f:
fb:ba:7e:21:bd:96:8d:3e:4f:5a:52:4b:2d:fc:82:
4a:ce:44:b4:3f:4f:95:0e:2c:26:08:ad:ad:6d:51:
93:22:c8:c2:94:70:13:9e:a8:8c:05:0e:74:97:96:
da:3a:d3:2e:2a:5f:6d:20:23:48:cd:a3:e3:e2:89:
31:87:17:c4:6b:38:c4:6e:05:0f:54:6d:06:fb:10:
5a:de:76:a7:26:db:64:1b:12:9d:f0:13:04:56:17:
0c:ff:42:4f:b8:95:1e:12:c8:18:b8:25:09:39:26:
55:33:0a:14:f0:d9:62:4e:42:05:26:31:5f:cd:e7:
49:22:ea:1b:ed:b4:e5:5f:87:16:9a:05:9a:79:7f:
6c:12:b9:7a:86:ca:2f:d1:ad:5a:53:c4:02:13:f0:
9f:50:f0:2d:f8:99:5a:5c:86:aa:ac:ff:bf:8f:ef:
0a:40:5d:bf:98:98:92:87:58:b7:be:ef:c4:d5:46:
4f:51:ff:db:3b:32:d9:58:23:e5:15:ae:cb:bc:0d:
8d:cb:53:d2:c8:ef:9e:0f:0e:9c:d2:87:ba:bb:81:
e2:cf:06:a5:a6:f8:85:ca:f8:b7:0b:26:30:dd:21:
d0:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A4:D5:C6:F3:09:DE:AB:A9:7E:C3:6D:4F:E3:BA:D4:BA:76:C1:4E
X509v3 Authority Key Identifier:
keyid:68:7D:9B:56:2B:A4:72:61:8F:93:98:E2:65:CA:0E:71:08:F6:87:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:19:ac:b5:8e:c5:8d:57:c5:9c:f6:90:02:0c:89:90:bf:80:
78:97:c8:c4:d5:d3:4b:30:b4:42:ee:6a:af:ed:87:a9:a2:aa:
42:bd:64:c3:2d:f3:5b:52:bd:71:81:0c:a0:f2:1b:bd:1f:66:
ba:43:95:9e:e0:db:0c:6c:9c:8d:79:7e:ba:31:f0:6e:f1:9e:
51:52:75:46:01:48:ec:3e:96:59:0b:49:e5:1d:d6:f2:81:08:
10:be:d5:39:84:01:38:3f:68:ec:7a:0d:e0:f0:88:a6:f6:9d:
2d:3a:ba:21:43:7f:31:b8:26:67:4a:73:79:b0:e7:55:28:64:
5e:03:26:49:46:f1:22:23:c6:8b:60:47:37:44:1f:07:5d:6e:
45:2b:4c:e3:48:db:cf:e3:4d:c9:22:25:c2:ce:f7:97:d8:2d:
6e:da:4d:58:18:08:63:38:7e:fd:dc:68:95:d4:69:21:99:05:
e7:07:05:a1:81:3e:a1:ac:14:57:04:36:2a:c4:71:b9:da:c9:
19:29:14:37:24:08:99:bd:c6:5f:be:58:b0:33:2f:37:3f:5f:
44:92:90:95:4b:29:e4:ac:93:73:c3:69:9f:53:e7:97:8e:d8:
7f:8d:83:4d:bb:53:92:e7:24:7e:9a:91:35:c2:7f:2f:78:f2:
f3:6b:04:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoT8cqvDcd3dComWbrjsruZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4N2Q5YjU2MmJhNDcyNjE4ZjkzOThlMjY1Y2EwZTcxMDhm
Njg3YTMwHhcNMjUxMDI0MDIwMDA0WhcNMjUxMDI1MDIwMDA0WjAzMTEwLwYDVQQD
Eyg1MmE0ZDVjNmYzMDlkZWFiYTk3ZWMzNmQ0ZmUzYmFkNGJhNzZjMTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjhhJwT2NJbvy2amL1US3o0A2b9Jy
S88uPKluiy/7un4hvZaNPk9aUkst/IJKzkS0P0+VDiwmCK2tbVGTIsjClHATnqiM
BQ50l5baOtMuKl9tICNIzaPj4okxhxfEazjEbgUPVG0G+xBa3nanJttkGxKd8BME
VhcM/0JPuJUeEsgYuCUJOSZVMwoU8NliTkIFJjFfzedJIuob7bTlX4cWmgWaeX9s
Erl6hsov0a1aU8QCE/CfUPAt+JlaXIaqrP+/j+8KQF2/mJiSh1i3vu/E1UZPUf/b
OzLZWCPlFa7LvA2Ny1PSyO+eDw6c0oe6u4HizwalpviFyvi3CyYw3SHQTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFKk1cbzCd6rqX7DbU/jutS6dsFOMB8GA1UdIwQY
MBaAFGh9m1YrpHJhj5OY4mXKDnEI9oejMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUgyYlZpdWtjbUdQazVqaVpjb09jUWoyaDZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iODljMWYtOGRjYi00MzhiLThhZmQt
NjA1ZDEzNTEzNmY3LzEvYUgyYlZpdWtjbUdQazVqaVpjb09jUWoyaDZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9iODljMWYtOGRjYi00MzhiLThhZmQtNjA1ZDEzNTEzNmY3
LzEvYUgyYlZpdWtjbUdQazVqaVpjb09jUWoyaDZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOhmstY7F
jVfFnPaQAgyJkL+AeJfIxNXTSzC0Qu5qr+2HqaKqQr1kwy3zW1K9cYEMoPIbvR9m
ukOVnuDbDGycjXl+ujHwbvGeUVJ1RgFI7D6WWQtJ5R3W8oEIEL7VOYQBOD9o7HoN
4PCIpvadLTq6IUN/MbgmZ0pzebDnVShkXgMmSUbxIiPGi2BHN0QfB11uRStM40jb
z+NNySIlws73l9gtbtpNWBgIYzh+/dxoldRpIZkF5wcFoYE+oawUVwQ2KsRxudrJ
GSkUNyQImb3GX75YsDMvNz9fRJKQlUsp5KyTc8Npn1Pnl47Yf42DTbtTkuckfpqR
NcJ/L3jy82sEQw==
-----END CERTIFICATE-----
Generated at Fri Oct 24 09:17:44 2025 by rpki-client