Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
File: AkHvRDYUJQbyZZODwW69oeKbT4Y.mft (raw, json)
Hash identifier: rKkPz+Mmb08ervzQ7kKpRrCtNXJMCUXwh6LlzRg0O5Q=
Subject key identifier: A5:CA:B6:DF:38:71:EA:EE:1E:24:F6:3C:1F:D5:1F:CC:36:88:FD:8F
Authority key identifier: 02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
Certificate issuer: /CN=0241ef4436142506f2659383c16ebda1e29b4f86
Certificate serial: 019A5187C0612619DE845981A7C5DA207F86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
Manifest number: 0FD1
Signing time: Wed 05 Nov 2025 01:00:42 +0000
Manifest this update: Wed 05 Nov 2025 01:00:42 +0000
Manifest next update: Thu 06 Nov 2025 01:00:42 +0000
Files and hashes: 1: AkHvRDYUJQbyZZODwW69oeKbT4Y.crl (hash: nQQkODv06a9nnVydJjnw778NYJUEyYkoDE+MYD/4bb0=)
2: NDyhuvBiD7Dcf-VvAcHjeKP4Wls.roa (hash: oeDnEopXVy5MJcNbGxGeEZ1ceng1jmSd304y/xLBjoc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:c0:61:26:19:de:84:59:81:a7:c5:da:20:7f:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0241ef4436142506f2659383c16ebda1e29b4f86
Validity
Not Before: Nov 5 01:00:42 2025 GMT
Not After : Nov 6 01:00:42 2025 GMT
Subject: CN=a5cab6df3871eaee1e24f63c1fd51fcc3688fd8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:08:63:84:52:6a:8d:26:84:95:93:19:40:cf:
cd:cf:61:ae:19:71:34:de:c7:b3:e5:42:09:fd:f4:
51:03:8e:8c:b5:a8:c2:a2:a1:ef:02:c2:09:33:5c:
b5:39:af:ed:f1:33:08:55:ad:92:da:e4:23:24:ab:
ea:02:63:64:0d:4c:33:0a:7a:70:fa:81:6b:f1:be:
94:a2:b9:e7:eb:0d:cd:8d:f4:21:56:43:d4:94:b0:
77:ec:2e:10:84:fd:21:07:75:a4:f8:6f:9a:18:97:
eb:93:12:fd:a8:92:54:79:7a:7e:a7:a6:4f:d2:08:
a0:56:7d:b3:32:fc:85:22:5f:31:10:15:68:de:f0:
91:ff:b0:8a:ce:46:24:73:00:00:f0:22:ca:c7:6a:
cd:cf:f3:35:eb:a4:f3:ec:e7:c5:73:28:e9:0e:52:
43:07:82:d2:d4:c9:fa:7c:6b:7b:ea:b3:00:d4:4a:
18:88:42:0c:96:18:56:22:75:78:a7:6c:40:37:81:
b6:3b:9f:09:d0:9b:be:c8:1d:84:99:f1:78:f8:c2:
b5:6d:0b:5e:3f:a5:32:5b:37:15:d6:0f:2e:a0:94:
c0:81:15:b6:da:43:e9:6e:56:9c:4e:c2:a3:fd:3e:
7b:49:87:7d:66:64:21:60:bb:fe:76:fc:77:78:4f:
26:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:CA:B6:DF:38:71:EA:EE:1E:24:F6:3C:1F:D5:1F:CC:36:88:FD:8F
X509v3 Authority Key Identifier:
keyid:02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:13:2e:32:19:33:c4:f6:b4:d9:d0:e8:77:3a:63:19:f1:6f:
2d:ba:86:ed:6a:4f:8d:91:23:7c:a5:4b:1f:69:4b:7f:0b:0d:
95:ac:e5:ff:1c:73:30:47:e7:d9:99:fd:26:8f:f7:de:74:35:
c7:fc:07:b8:d6:f0:3c:c8:68:53:79:c0:57:8f:8b:9e:fc:7e:
7c:af:45:cb:f7:59:0a:36:ce:9f:e2:6c:69:fb:4c:16:0a:7f:
da:e2:c4:3e:69:2a:97:85:e9:44:33:37:6f:fd:49:15:a6:eb:
c9:03:57:60:77:18:d7:ce:13:49:ed:b6:8e:57:bd:ab:7e:0a:
f9:c9:23:7b:b7:e5:79:bb:db:75:b4:cf:3d:2f:67:15:03:22:
1b:5f:ee:60:24:af:94:ff:f7:b0:ec:d1:f1:ca:7b:39:aa:b7:
f7:48:ab:7d:74:aa:72:e4:0d:80:9b:cc:ab:dc:c5:eb:41:99:
11:33:06:41:8b:5a:1a:e0:4c:12:b3:ab:42:be:a9:83:71:fa:
15:3b:07:79:ab:b3:dd:1c:d1:b6:17:c7:04:53:c8:4e:93:ef:
a9:41:7a:a5:c6:0c:64:d9:76:d0:4d:44:56:3a:3d:1f:cc:d8:
0f:50:0d:ea:19:68:46:d2:87:72:d6:87:96:b4:53:0a:d1:6d:
c4:ea:0f:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpRh8BhJhnehFmBp8XaIH+GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNDFlZjQ0MzYxNDI1MDZmMjY1OTM4M2MxNmViZGExZTI5
YjRmODYwHhcNMjUxMTA1MDEwMDQyWhcNMjUxMTA2MDEwMDQyWjAzMTEwLwYDVQQD
EyhhNWNhYjZkZjM4NzFlYWVlMWUyNGY2M2MxZmQ1MWZjYzM2ODhmZDhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQhjhFJqjSaElZMZQM/Nz2GuGXE0
3sez5UIJ/fRRA46MtajCoqHvAsIJM1y1Oa/t8TMIVa2S2uQjJKvqAmNkDUwzCnpw
+oFr8b6Uornn6w3NjfQhVkPUlLB37C4QhP0hB3Wk+G+aGJfrkxL9qJJUeXp+p6ZP
0gigVn2zMvyFIl8xEBVo3vCR/7CKzkYkcwAA8CLKx2rNz/M166Tz7OfFcyjpDlJD
B4LS1Mn6fGt76rMA1EoYiEIMlhhWInV4p2xAN4G2O58J0Ju+yB2EmfF4+MK1bQte
P6UyWzcV1g8uoJTAgRW22kPpblacTsKj/T57SYd9ZmQhYLv+dvx3eE8mNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKXKtt84ceruHiT2PB/VH8w2iP2PMB8GA1UdIwQY
MBaAFAJB70Q2FCUG8mWTg8FuvaHim0+GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85ZWUyMDItYjliMy00N2YwLThjOWEt
OWZkZjRjMTVmOWE2LzEvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85ZWUyMDItYjliMy00N2YwLThjOWEtOWZkZjRjMTVmOWE2
LzEvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIRMuMhkz
xPa02dDodzpjGfFvLbqG7WpPjZEjfKVLH2lLfwsNlazl/xxzMEfn2Zn9Jo/33nQ1
x/wHuNbwPMhoU3nAV4+Lnvx+fK9Fy/dZCjbOn+JsaftMFgp/2uLEPmkql4XpRDM3
b/1JFabryQNXYHcY184TSe22jle9q34K+ckje7flebvbdbTPPS9nFQMiG1/uYCSv
lP/3sOzR8cp7Oaq390irfXSqcuQNgJvMq9zF60GZETMGQYtaGuBMErOrQr6pg3H6
FTsHeauz3RzRthfHBFPITpPvqUF6pcYMZNl20E1EVjo9H8zYD1AN6hloRtKHctaH
lrRTCtFtxOoPTA==
-----END CERTIFICATE-----
Generated at Wed Nov 5 03:49:26 2025 by rpki-client