Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft
File: AVkheESIrdmgVmH_EXh-x1TmBeU.mft (raw, json)
Hash identifier: IV81vvRxKRuAhL+UA40RJAUxn/Nxn2GOvyyQFmJ/cLY=
Subject key identifier: 10:E4:EC:E2:B0:F8:1B:C0:13:B7:7A:0C:BF:DE:62:70:3B:27:19:98
Authority key identifier: 01:59:21:78:44:88:AD:D9:A0:56:61:FF:11:78:7E:C7:54:E6:05:E5
Certificate issuer: /CN=015921784488add9a05661ff11787ec754e605e5
Certificate serial: 019A71B7A711F7B2B0B64F58974A5BE0AE61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVkheESIrdmgVmH_EXh-x1TmBeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft
Manifest number: 171C
Signing time: Tue 11 Nov 2025 07:00:52 +0000
Manifest this update: Tue 11 Nov 2025 07:00:52 +0000
Manifest next update: Wed 12 Nov 2025 07:00:52 +0000
Files and hashes: 1: AVkheESIrdmgVmH_EXh-x1TmBeU.crl (hash: t/09eEJVQGs4tRvRrgvMAzhhKvGhdKqQo9DgpjwLQtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AVkheESIrdmgVmH_EXh-x1TmBeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:a7:11:f7:b2:b0:b6:4f:58:97:4a:5b:e0:ae:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=015921784488add9a05661ff11787ec754e605e5
Validity
Not Before: Nov 11 07:00:52 2025 GMT
Not After : Nov 12 07:00:52 2025 GMT
Subject: CN=10e4ece2b0f81bc013b77a0cbfde62703b271998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d4:95:6e:8d:64:15:63:1c:89:6f:a6:7a:59:
ed:f1:47:9f:43:c7:86:28:c3:ae:19:ea:a0:cf:d3:
a8:19:c0:c4:e4:cf:b7:fc:8a:1b:34:47:f5:64:8b:
83:80:16:ea:7c:a8:32:87:f7:55:59:89:40:f9:6c:
92:24:b6:1d:c4:56:05:7c:86:08:52:8c:b6:b9:5a:
f9:77:c9:f2:e3:c2:bb:db:ea:23:cd:83:18:e8:7f:
18:8c:f4:32:c8:5f:b0:99:21:81:fa:4e:df:a6:a2:
90:25:c9:e4:50:08:37:6a:56:73:7f:d2:5f:37:4b:
ee:c8:ed:7a:c7:3a:35:b2:1b:07:cf:33:51:44:79:
75:3e:aa:b9:80:ea:6f:f7:c1:21:ac:a1:c9:8f:14:
7d:72:75:05:b6:98:b5:3a:86:86:2d:88:d2:0c:d5:
96:49:50:09:12:72:3e:5b:31:30:09:e3:4e:b2:29:
c4:6a:a0:41:d6:2d:d0:f6:3e:39:51:23:87:a9:19:
e8:e2:7e:88:f8:71:e1:2c:d9:4c:a5:b9:7c:13:6a:
f7:9c:96:bf:1b:ff:80:d1:1f:64:a4:a9:cc:7f:e2:
6e:15:aa:a7:33:2b:e8:bb:5f:88:a6:2e:1a:e4:43:
47:22:03:eb:44:49:1e:d9:e3:65:0a:84:29:02:e3:
a0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:E4:EC:E2:B0:F8:1B:C0:13:B7:7A:0C:BF:DE:62:70:3B:27:19:98
X509v3 Authority Key Identifier:
keyid:01:59:21:78:44:88:AD:D9:A0:56:61:FF:11:78:7E:C7:54:E6:05:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVkheESIrdmgVmH_EXh-x1TmBeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:45:75:b7:a5:6e:6f:eb:82:e9:eb:da:2c:a1:de:3d:52:d5:
e6:e1:d4:3e:dd:6a:75:61:27:97:23:84:89:45:23:8e:b3:36:
68:35:08:64:6e:af:8e:e7:12:67:dd:9b:c2:3e:72:23:73:7c:
43:24:19:61:72:59:68:a3:6b:0b:19:b0:59:d9:ad:35:72:c9:
c2:82:9e:b9:5b:f1:5f:a0:2d:60:a7:76:60:5d:cb:67:0c:6c:
25:04:f3:6c:4a:61:94:e7:3c:03:39:fb:4e:6c:a4:52:36:ac:
19:24:c8:a7:a5:4d:db:e8:90:13:3d:e4:20:55:08:0e:76:78:
03:e0:d4:0d:ea:db:99:1c:9a:ca:bc:b2:67:80:e4:de:0f:54:
4f:c3:d2:93:c2:53:4e:97:08:54:e1:86:f8:04:85:77:54:82:
a4:17:ca:b6:3d:e6:5e:d1:c0:4e:c7:08:a8:7f:60:b7:4e:ba:
77:8d:8a:96:31:1f:93:fb:9e:d8:64:af:42:e4:bf:4a:fd:2d:
be:4e:ed:eb:cd:56:e5:08:b0:65:1d:25:6d:ee:5c:b1:f4:e2:
8f:ce:bd:75:00:67:9d:28:ba:7c:9a:4c:cc:b3:82:c5:81:24:
18:a6:ef:b1:d4:c8:6f:e8:2c:f0:eb:ef:66:79:6f:76:43:c1:
81:29:4c:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxt6cR97Kwtk9Yl0pb4K5hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxNTkyMTc4NDQ4OGFkZDlhMDU2NjFmZjExNzg3ZWM3NTRl
NjA1ZTUwHhcNMjUxMTExMDcwMDUyWhcNMjUxMTEyMDcwMDUyWjAzMTEwLwYDVQQD
EygxMGU0ZWNlMmIwZjgxYmMwMTNiNzdhMGNiZmRlNjI3MDNiMjcxOTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutSVbo1kFWMciW+melnt8UefQ8eG
KMOuGeqgz9OoGcDE5M+3/IobNEf1ZIuDgBbqfKgyh/dVWYlA+WySJLYdxFYFfIYI
Uoy2uVr5d8ny48K72+ojzYMY6H8YjPQyyF+wmSGB+k7fpqKQJcnkUAg3alZzf9Jf
N0vuyO16xzo1shsHzzNRRHl1Pqq5gOpv98EhrKHJjxR9cnUFtpi1OoaGLYjSDNWW
SVAJEnI+WzEwCeNOsinEaqBB1i3Q9j45USOHqRno4n6I+HHhLNlMpbl8E2r3nJa/
G/+A0R9kpKnMf+JuFaqnMyvou1+Ipi4a5ENHIgPrREke2eNlCoQpAuOg3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBDk7OKw+BvAE7d6DL/eYnA7JxmYMB8GA1UdIwQY
MBaAFAFZIXhEiK3ZoFZh/xF4fsdU5gXlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVZraGVFU0lyZG1nVm1IX0VYaC14MVRtQmVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8xMjlkNjItZDFjOC00ODQyLTk1NDkt
OGE5MTg0MDBmMjYwLzEvQVZraGVFU0lyZG1nVm1IX0VYaC14MVRtQmVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC8xMjlkNjItZDFjOC00ODQyLTk1NDktOGE5MTg0MDBmMjYw
LzEvQVZraGVFU0lyZG1nVm1IX0VYaC14MVRtQmVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXEV1t6Vu
b+uC6evaLKHePVLV5uHUPt1qdWEnlyOEiUUjjrM2aDUIZG6vjucSZ92bwj5yI3N8
QyQZYXJZaKNrCxmwWdmtNXLJwoKeuVvxX6AtYKd2YF3LZwxsJQTzbEphlOc8Azn7
TmykUjasGSTIp6VN2+iQEz3kIFUIDnZ4A+DUDerbmRyayryyZ4Dk3g9UT8PSk8JT
TpcIVOGG+ASFd1SCpBfKtj3mXtHATscIqH9gt066d42KljEfk/ue2GSvQuS/Sv0t
vk7t681W5QiwZR0lbe5csfTij869dQBnnSi6fJpMzLOCxYEkGKbvsdTIb+gs8Ovv
ZnlvdkPBgSlMfg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 16:54:35 2025 by rpki-client