Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
File: rlAYJxRKMYi-oczuWGVv1kKdj5U.mft (raw, json)
Hash identifier: iMkU/ek7e7DdftRuAkUnJVr7eO8v6d5H9jFaysjewCo=
Subject key identifier: 08:B3:CD:65:38:E3:7E:8E:8E:FC:33:C4:8C:FF:1A:5B:B0:61:B8:8D
Authority key identifier: AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95
Certificate issuer: /CN=ae501827144a3188bea1ccee58656fd6429d8f95
Certificate serial: 019A2F3271546517D11EBD73334E01953F4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
Manifest number: 1702
Signing time: Wed 29 Oct 2025 09:00:26 +0000
Manifest this update: Wed 29 Oct 2025 09:00:26 +0000
Manifest next update: Thu 30 Oct 2025 09:00:26 +0000
Files and hashes: 1: VNzG3ccHyaf-Ofv5con_nysGgHU.roa (hash: 2VzIYqdKT2jmdmX+vgJ//7c0c5nGJoT0dOFUmm0WlfQ=)
2: rlAYJxRKMYi-oczuWGVv1kKdj5U.crl (hash: I2QWOtPDHKT+nxQ9/9wHodszwYapm2IlBgApBKxlqVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 08:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2f:32:71:54:65:17:d1:1e:bd:73:33:4e:01:95:3f:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae501827144a3188bea1ccee58656fd6429d8f95
Validity
Not Before: Oct 29 09:00:26 2025 GMT
Not After : Oct 30 09:00:26 2025 GMT
Subject: CN=08b3cd6538e37e8e8efc33c48cff1a5bb061b88d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d8:b5:a1:78:40:2f:07:43:b6:46:63:38:f1:
e3:05:86:6e:0c:e3:a0:da:09:77:80:44:09:2f:66:
25:3a:66:ec:05:c1:45:ad:df:d4:38:d5:67:d6:73:
b5:98:65:73:b0:ab:da:bf:c8:c7:62:ce:29:15:3a:
22:4e:31:f8:fd:eb:1f:8d:3d:f1:7d:6f:53:7c:5f:
44:59:32:9c:92:9c:fa:1e:84:59:a3:ad:76:4a:ea:
e7:ec:40:0f:8b:70:b2:3c:70:98:5c:d8:a7:46:bc:
33:e6:f7:49:05:a6:2c:5f:3f:f0:e8:5c:0f:c9:98:
d5:62:2d:fe:f3:dc:aa:fd:32:04:fb:eb:0f:b7:2c:
a4:38:96:ef:20:49:3e:c2:b3:35:55:c1:0e:1d:76:
bf:0d:12:50:ac:78:40:8a:15:4f:f7:dd:0e:eb:97:
99:4a:6a:6d:45:ae:17:f1:9b:7f:30:6d:48:02:27:
e8:83:2e:e5:73:2f:40:25:12:2d:6f:8f:a2:3f:2c:
a2:1a:44:6e:7e:f7:31:72:9f:c9:96:8d:2c:6c:d7:
7b:f8:30:81:a9:33:7b:4d:66:86:2c:a6:4d:cc:51:
34:32:c1:9d:3a:28:3d:d4:08:23:c8:b5:88:41:57:
4b:90:cb:c6:3e:b0:e8:d8:3d:77:c9:8f:f4:c1:19:
cf:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:B3:CD:65:38:E3:7E:8E:8E:FC:33:C4:8C:FF:1A:5B:B0:61:B8:8D
X509v3 Authority Key Identifier:
keyid:AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:16:7d:c9:e3:19:73:38:0c:a9:6e:5b:e9:30:29:7b:30:c7:
b5:6e:89:7d:3b:bc:89:f1:c2:4b:1d:89:56:f2:69:c0:c4:fe:
35:42:ed:e8:c1:d0:b1:8f:94:d9:f5:13:ac:e8:69:3c:38:38:
dd:9b:d2:a0:7b:3c:27:3a:4f:c2:f5:07:18:11:07:98:3f:df:
e5:61:56:2b:a0:3a:af:13:59:a6:0d:b3:d5:33:ca:89:f2:2d:
90:9c:a5:c7:d0:b0:25:ba:17:4e:e2:96:1f:76:47:ba:32:55:
60:3c:d4:39:8a:22:57:0b:04:60:1b:5b:a9:e0:bd:32:50:b5:
b3:aa:77:16:9e:23:d4:7b:43:1d:82:5c:76:d3:a8:e4:16:10:
79:f1:bc:fa:e0:4f:ca:08:d4:aa:45:bb:1e:82:d8:57:a2:4a:
b2:4b:7c:0a:1c:b1:88:32:d4:27:1e:2f:e9:a4:e6:a5:46:84:
22:7e:48:4c:19:0f:34:1d:e3:fe:d2:12:44:ae:eb:9b:fa:d1:
a1:52:47:d7:7e:f5:90:f8:00:77:05:a4:b8:1c:6f:c7:59:3d:
8b:d9:f0:b1:41:47:de:ca:5a:b1:b4:72:e6:c4:1e:eb:62:20:
68:46:32:34:94:87:5c:eb:4a:8f:46:d5:7b:64:21:3a:9a:82:
34:27:ea:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZovMnFUZRfRHr1zM04BlT9MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlNTAxODI3MTQ0YTMxODhiZWExY2NlZTU4NjU2ZmQ2NDI5
ZDhmOTUwHhcNMjUxMDI5MDkwMDI2WhcNMjUxMDMwMDkwMDI2WjAzMTEwLwYDVQQD
EygwOGIzY2Q2NTM4ZTM3ZThlOGVmYzMzYzQ4Y2ZmMWE1YmIwNjFiODhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm9i1oXhALwdDtkZjOPHjBYZuDOOg
2gl3gEQJL2YlOmbsBcFFrd/UONVn1nO1mGVzsKvav8jHYs4pFToiTjH4/esfjT3x
fW9TfF9EWTKckpz6HoRZo612Surn7EAPi3CyPHCYXNinRrwz5vdJBaYsXz/w6FwP
yZjVYi3+89yq/TIE++sPtyykOJbvIEk+wrM1VcEOHXa/DRJQrHhAihVP990O65eZ
SmptRa4X8Zt/MG1IAifogy7lcy9AJRItb4+iPyyiGkRufvcxcp/Jlo0sbNd7+DCB
qTN7TWaGLKZNzFE0MsGdOig91AgjyLWIQVdLkMvGPrDo2D13yY/0wRnPrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAizzWU4436OjvwzxIz/GluwYbiNMB8GA1UdIwQY
MBaAFK5QGCcUSjGIvqHM7lhlb9ZCnY+VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmxBWUp4UktNWWktb2N6dVdHVnYxa0tkajVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC81ZjU2YWYtZWJmYi00Yzg4LWEwODIt
MDk4NmQ4YjBjNmQ5LzEvcmxBWUp4UktNWWktb2N6dVdHVnYxa0tkajVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC81ZjU2YWYtZWJmYi00Yzg4LWEwODItMDk4NmQ4YjBjNmQ5
LzEvcmxBWUp4UktNWWktb2N6dVdHVnYxa0tkajVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqRZ9yeMZ
czgMqW5b6TApezDHtW6JfTu8ifHCSx2JVvJpwMT+NULt6MHQsY+U2fUTrOhpPDg4
3ZvSoHs8JzpPwvUHGBEHmD/f5WFWK6A6rxNZpg2z1TPKifItkJylx9CwJboXTuKW
H3ZHujJVYDzUOYoiVwsEYBtbqeC9MlC1s6p3Fp4j1HtDHYJcdtOo5BYQefG8+uBP
ygjUqkW7HoLYV6JKskt8ChyxiDLUJx4v6aTmpUaEIn5ITBkPNB3j/tISRK7rm/rR
oVJH1371kPgAdwWkuBxvx1k9i9nwsUFH3spasbRy5sQe62IgaEYyNJSHXOtKj0bV
e2QhOpqCNCfqXg==
-----END CERTIFICATE-----
Generated at Wed Oct 29 16:41:45 2025 by rpki-client