Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
File: AkHvRDYUJQbyZZODwW69oeKbT4Y.mft (raw, json)
Hash identifier: kyvKyE68C1+eRuFEo4yhaYvzCK/+tpB5MdfyOnRWY8Q=
Subject key identifier: 2B:95:9E:9C:3F:43:B7:5B:A0:28:60:A2:18:3B:3B:67:1C:F2:37:15
Authority key identifier: 02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
Certificate issuer: /CN=0241ef4436142506f2659383c16ebda1e29b4f86
Certificate serial: 019885E8AD5258675995DD2B9CE77AD1F65F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
Manifest number: 0EE3
Signing time: Thu 07 Aug 2025 19:01:15 +0000
Manifest this update: Thu 07 Aug 2025 19:01:15 +0000
Manifest next update: Fri 08 Aug 2025 19:01:15 +0000
Files and hashes: 1: AkHvRDYUJQbyZZODwW69oeKbT4Y.crl (hash: xyf+vvU5hQ6IFlIxgsfQROECSf3sqA6L9gXc0+nVvng=)
2: NDyhuvBiD7Dcf-VvAcHjeKP4Wls.roa (hash: oeDnEopXVy5MJcNbGxGeEZ1ceng1jmSd304y/xLBjoc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:85:e8:ad:52:58:67:59:95:dd:2b:9c:e7:7a:d1:f6:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0241ef4436142506f2659383c16ebda1e29b4f86
Validity
Not Before: Aug 7 19:01:15 2025 GMT
Not After : Aug 8 19:01:15 2025 GMT
Subject: CN=2b959e9c3f43b75ba02860a2183b3b671cf23715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:5b:00:08:cc:6e:f1:b3:08:4d:c8:5a:40:5d:
e1:d0:36:33:76:a7:2d:9d:45:80:49:71:39:0c:c6:
a7:4e:34:d4:a6:fe:f2:44:ef:70:7b:a1:2a:86:b7:
da:f5:c6:1c:d6:7a:cf:5a:1c:ff:60:14:b6:a4:77:
bd:d9:04:8d:b0:4f:b0:45:88:aa:61:77:f5:19:d6:
9e:00:2e:7e:73:dc:00:60:e2:f2:30:1d:38:ef:8a:
b1:ff:50:89:72:62:62:2a:f3:9d:5f:c0:4d:1a:d9:
b9:d9:41:fa:e7:e7:e9:f4:f0:7c:72:db:67:5d:28:
2f:81:9b:19:ab:7d:0c:13:b4:47:47:38:7d:d0:ff:
ee:bb:2f:a9:cf:12:a2:b8:54:69:60:19:7f:94:93:
3b:c9:68:15:29:04:8a:70:4d:0d:0e:ff:18:a0:12:
56:3f:a8:f7:eb:d3:3c:1d:0e:03:5c:42:3f:25:80:
33:32:da:09:b8:40:14:dc:fd:c1:8b:3d:39:0f:92:
7f:c4:e5:0e:a6:6d:32:9b:1d:23:96:a6:24:28:9e:
2e:b0:66:17:f2:3b:63:15:6b:eb:ad:27:af:68:ea:
2e:c6:3b:bd:21:86:d7:c0:71:35:8a:22:c7:fa:29:
de:76:32:8d:db:99:5f:a3:64:bf:b9:42:82:b4:e1:
85:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:95:9E:9C:3F:43:B7:5B:A0:28:60:A2:18:3B:3B:67:1C:F2:37:15
X509v3 Authority Key Identifier:
keyid:02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:16:2e:c7:af:ea:0d:c0:c6:e1:d3:18:29:38:d6:10:c7:b7:
66:5c:ff:3c:4d:0e:09:1a:a3:1e:0d:df:1e:e8:18:66:9c:0d:
3a:3e:18:00:54:74:21:5f:32:2f:3f:b4:9f:d4:e7:40:8b:fb:
b9:a6:c5:93:a9:25:27:a7:21:6d:d9:cb:bb:04:fa:b5:b9:67:
d9:ba:8f:0e:78:f4:39:e9:15:3f:ff:8e:7b:da:9c:35:cf:4e:
ed:11:15:12:27:4a:13:e9:0c:5a:97:ba:bf:d2:69:ff:92:78:
64:ba:75:b4:ec:91:58:cb:44:89:2d:e7:17:04:43:46:0a:80:
15:85:98:d6:7f:4c:a1:7b:30:bd:2f:52:3a:41:70:d8:4c:0f:
d6:fd:05:99:f0:ec:43:f4:d2:12:16:35:f2:dd:e6:e1:c3:af:
b5:d7:de:fe:46:69:58:4c:2d:47:3b:15:06:f0:d7:c6:30:10:
e0:0e:7e:3e:e0:6d:22:47:06:66:bf:67:0a:0e:d8:f5:86:1a:
c5:d9:04:cf:a4:1d:08:95:82:3f:76:5d:3a:37:6a:00:cd:72:
9c:9d:6e:31:47:3f:73:44:49:f0:80:cd:df:a2:6c:29:f6:e4:
27:17:50:e3:1d:c3:a2:81:99:d4:33:8c:dd:da:61:21:78:a7:
fc:1f:75:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiF6K1SWGdZld0rnOd60fZfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNDFlZjQ0MzYxNDI1MDZmMjY1OTM4M2MxNmViZGExZTI5
YjRmODYwHhcNMjUwODA3MTkwMTE1WhcNMjUwODA4MTkwMTE1WjAzMTEwLwYDVQQD
EygyYjk1OWU5YzNmNDNiNzViYTAyODYwYTIxODNiM2I2NzFjZjIzNzE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1FsACMxu8bMITchaQF3h0DYzdqct
nUWASXE5DManTjTUpv7yRO9we6Eqhrfa9cYc1nrPWhz/YBS2pHe92QSNsE+wRYiq
YXf1GdaeAC5+c9wAYOLyMB0474qx/1CJcmJiKvOdX8BNGtm52UH65+fp9PB8cttn
XSgvgZsZq30ME7RHRzh90P/uuy+pzxKiuFRpYBl/lJM7yWgVKQSKcE0NDv8YoBJW
P6j369M8HQ4DXEI/JYAzMtoJuEAU3P3Biz05D5J/xOUOpm0ymx0jlqYkKJ4usGYX
8jtjFWvrrSevaOouxju9IYbXwHE1iiLH+inedjKN25lfo2S/uUKCtOGF8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCuVnpw/Q7dboChgohg7O2cc8jcVMB8GA1UdIwQY
MBaAFAJB70Q2FCUG8mWTg8FuvaHim0+GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85ZWUyMDItYjliMy00N2YwLThjOWEt
OWZkZjRjMTVmOWE2LzEvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85ZWUyMDItYjliMy00N2YwLThjOWEtOWZkZjRjMTVmOWE2
LzEvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXxYux6/q
DcDG4dMYKTjWEMe3Zlz/PE0OCRqjHg3fHugYZpwNOj4YAFR0IV8yLz+0n9TnQIv7
uabFk6klJ6chbdnLuwT6tbln2bqPDnj0OekVP/+Oe9qcNc9O7REVEidKE+kMWpe6
v9Jp/5J4ZLp1tOyRWMtEiS3nFwRDRgqAFYWY1n9MoXswvS9SOkFw2EwP1v0FmfDs
Q/TSEhY18t3m4cOvtdfe/kZpWEwtRzsVBvDXxjAQ4A5+PuBtIkcGZr9nCg7Y9YYa
xdkEz6QdCJWCP3ZdOjdqAM1ynJ1uMUc/c0RJ8IDN36JsKfbkJxdQ4x3DooGZ1DOM
3dphIXin/B91ng==
-----END CERTIFICATE-----
Generated at Fri Aug 8 00:35:44 2025 by rpki-client