Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
File: aNLCXQU0pAJ8aVViqM5PABzVOW8.mft (raw, json)
Hash identifier: xHZHK1eP0ZLuyCYjUkiisVj5CtwgQtTJV8wWlSkBWjY=
Subject key identifier: 19:29:5B:F4:64:BE:A1:78:7C:10:DD:B1:36:EC:BA:69:9C:9C:8A:66
Authority key identifier: 68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
Certificate issuer: /CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Certificate serial: 0198925A97DDEBAE732AE59F7400AACAEE9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
Manifest number: 127A
Signing time: Sun 10 Aug 2025 05:01:07 +0000
Manifest this update: Sun 10 Aug 2025 05:01:07 +0000
Manifest next update: Mon 11 Aug 2025 05:01:07 +0000
Files and hashes: 1: SALrx8y5x39WJ8efwGiimpmg788.roa (hash: CtpmQiaYAVz0sehGOLMPmKtW82021GvqOFqhQ5ojIPI=)
2: aNLCXQU0pAJ8aVViqM5PABzVOW8.crl (hash: 8VRbOJuMIH2+2jjA2ccJcE6MUHYDara7GMtbRUOqShA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 05:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:5a:97:dd:eb:ae:73:2a:e5:9f:74:00:aa:ca:ee:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Validity
Not Before: Aug 10 05:01:07 2025 GMT
Not After : Aug 11 05:01:07 2025 GMT
Subject: CN=19295bf464bea1787c10ddb136ecba699c9c8a66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:72:07:fd:c6:47:4c:92:23:f6:9b:4f:68:b4:
b4:8f:bb:24:d9:13:f1:39:1f:f1:4a:80:65:8e:01:
15:64:f9:8f:8f:87:5d:2d:88:eb:18:2f:36:a3:b2:
39:02:21:5f:8a:6e:d3:ed:93:f4:bd:1a:94:f1:47:
1c:12:e4:e2:45:de:e6:d5:22:c4:8e:94:3f:b0:ae:
f0:0e:7d:74:96:86:d3:78:00:c2:d9:32:22:73:b0:
7e:93:d2:45:24:15:3a:07:a0:f1:9b:c7:bd:97:d8:
de:a9:57:23:72:d1:3b:d4:21:6c:b3:01:67:f3:fb:
75:72:9c:b4:05:8c:e0:1a:6f:f8:21:79:76:9f:83:
a3:22:aa:07:06:93:3d:2b:80:d4:79:9a:be:3a:96:
a4:a5:cf:f2:7d:11:f8:87:9e:4a:bc:f8:3a:b9:07:
ca:df:ce:7d:97:a9:18:75:43:8e:79:bc:1a:6a:44:
a4:9b:7f:3a:05:4c:55:7d:ba:40:5e:76:99:35:13:
d4:28:03:a2:af:a7:09:2f:0c:c5:bd:ee:84:8b:7b:
66:7a:0b:07:05:27:ea:a7:92:66:9f:db:97:f8:f6:
b4:23:e2:3f:31:42:fa:29:e9:9e:d9:d0:1d:a0:d0:
68:da:62:47:f0:79:65:a1:72:59:01:7b:56:2d:3d:
04:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:29:5B:F4:64:BE:A1:78:7C:10:DD:B1:36:EC:BA:69:9C:9C:8A:66
X509v3 Authority Key Identifier:
keyid:68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:bb:97:fe:2c:ea:e7:51:67:f1:87:08:d9:33:ab:ab:54:9e:
01:50:a0:de:75:d3:3a:e9:57:87:81:63:d9:7b:21:5c:09:e5:
cc:05:ba:a1:ad:84:77:91:0a:dd:2a:7b:7d:6d:6c:34:92:2b:
9c:17:88:10:c9:53:65:ef:20:8c:00:5a:24:08:9c:e0:63:a5:
0a:78:fa:e5:3c:66:34:92:be:16:e9:41:bc:a5:70:6b:31:62:
27:f2:d9:a6:27:17:86:84:c4:e7:dc:62:d4:c3:da:42:7f:c8:
2f:f8:d6:1e:3c:8c:75:dc:bb:8c:7a:57:ab:81:35:04:f1:b7:
ef:8c:16:fb:4b:86:95:e7:cf:cd:79:ed:70:bc:74:f8:17:aa:
ce:6c:98:d2:53:7f:f9:ec:bf:87:20:42:de:a5:c5:ad:fd:6b:
f6:fb:09:f0:cb:9d:f7:dc:48:2f:35:ad:bb:5f:69:21:1b:b8:
10:b8:41:9c:23:67:72:dd:ba:37:66:d0:81:97:3c:f2:9a:09:
92:fd:cd:be:f1:9b:ca:4b:73:53:f5:31:2b:5c:2c:7b:c6:46:
a9:7c:20:15:24:b5:a4:c4:72:d5:aa:b0:98:f7:ca:3d:5b:6e:
8a:ae:36:45:e7:0b:a7:1d:a2:49:4a:2b:11:05:43:36:7e:48:
b4:df:e3:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiSWpfd665zKuWfdACqyu6dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZDJjMjVkMDUzNGE0MDI3YzY5NTU2MmE4Y2U0ZjAwMWNk
NTM5NmYwHhcNMjUwODEwMDUwMTA3WhcNMjUwODExMDUwMTA3WjAzMTEwLwYDVQQD
EygxOTI5NWJmNDY0YmVhMTc4N2MxMGRkYjEzNmVjYmE2OTljOWM4YTY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4XIH/cZHTJIj9ptPaLS0j7sk2RPx
OR/xSoBljgEVZPmPj4ddLYjrGC82o7I5AiFfim7T7ZP0vRqU8UccEuTiRd7m1SLE
jpQ/sK7wDn10lobTeADC2TIic7B+k9JFJBU6B6Dxm8e9l9jeqVcjctE71CFsswFn
8/t1cpy0BYzgGm/4IXl2n4OjIqoHBpM9K4DUeZq+Opakpc/yfRH4h55KvPg6uQfK
3859l6kYdUOOebwaakSkm386BUxVfbpAXnaZNRPUKAOir6cJLwzFve6Ei3tmegsH
BSfqp5Jmn9uX+Pa0I+I/MUL6Keme2dAdoNBo2mJH8HlloXJZAXtWLT0E1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBkpW/RkvqF4fBDdsTbsummcnIpmMB8GA1UdIwQY
MBaAFGjSwl0FNKQCfGlVYqjOTwAc1TlvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9hZDk3NTYtODRkMS00YWI5LTk2ZTEt
MTQ3OTdlYWM1MjJlLzEvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9hZDk3NTYtODRkMS00YWI5LTk2ZTEtMTQ3OTdlYWM1MjJl
LzEvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmLuX/izq
51Fn8YcI2TOrq1SeAVCg3nXTOulXh4Fj2XshXAnlzAW6oa2Ed5EK3Sp7fW1sNJIr
nBeIEMlTZe8gjABaJAic4GOlCnj65TxmNJK+FulBvKVwazFiJ/LZpicXhoTE59xi
1MPaQn/IL/jWHjyMddy7jHpXq4E1BPG374wW+0uGlefPzXntcLx0+BeqzmyY0lN/
+ey/hyBC3qXFrf1r9vsJ8Mud99xILzWtu19pIRu4ELhBnCNnct26N2bQgZc88poJ
kv3NvvGbyktzU/UxK1wse8ZGqXwgFSS1pMRy1aqwmPfKPVtuiq42RecLpx2iSUor
EQVDNn5ItN/jOQ==
-----END CERTIFICATE-----
Generated at Sun Aug 10 13:47:53 2025 by rpki-client