Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
File: ag1malTV4bw1XA1yUDpFj8Do4Gw.mft (raw, json)
Hash identifier: 8HfYSpWlw2aopczu2HIwqHzJ1xHMt8gLjFcyL14Cyqk=
Subject key identifier: B8:83:15:08:59:86:D3:02:56:DF:67:BC:9C:EF:C8:43:44:F9:D2:A5
Authority key identifier: 6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
Certificate issuer: /CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Certificate serial: 0198733D3B1E50BB9FB2A1B82EEB9DC18D3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
Manifest number: 1616
Signing time: Mon 04 Aug 2025 04:00:49 +0000
Manifest this update: Mon 04 Aug 2025 04:00:49 +0000
Manifest next update: Tue 05 Aug 2025 04:00:49 +0000
Files and hashes: 1: Zbu9lV-TXRr1mjPabkdbQi-tc2k.roa (hash: L0pLG2iq3DWnmdVA1LNHGmiPWiH4T8eZ9Q5L7k/ukzQ=)
2: ag1malTV4bw1XA1yUDpFj8Do4Gw.crl (hash: NG7cy0QCQus9dBEp531UGP9ab9RWTrXafhCppweHJ9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:3b:1e:50:bb:9f:b2:a1:b8:2e:eb:9d:c1:8d:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Validity
Not Before: Aug 4 04:00:49 2025 GMT
Not After : Aug 5 04:00:49 2025 GMT
Subject: CN=b88315085986d30256df67bc9cefc84344f9d2a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b9:ad:7b:32:ae:5c:f3:96:78:22:ea:88:0c:
6e:c9:cc:29:e4:26:75:e4:9d:36:78:06:88:45:43:
64:a9:5f:2e:1f:f2:57:e5:16:f1:23:be:e4:b0:6b:
e4:d3:06:fb:8c:20:d9:b6:62:de:99:2a:0a:48:25:
f1:52:c6:4e:e5:df:11:05:8d:88:3f:87:e7:42:3d:
01:d7:00:0c:b5:e8:ce:9f:2e:0e:a2:d4:f1:3f:04:
69:e6:12:d9:41:8c:dc:bc:d6:4d:ed:07:39:41:8a:
6f:4a:ef:ca:1a:05:98:e0:80:b2:95:39:5d:66:5f:
78:27:29:ec:e4:d4:e1:9d:a1:d3:24:37:f9:a2:66:
59:71:6b:fb:7e:c7:93:80:d9:2a:3b:2a:8d:75:cb:
40:98:21:58:29:59:98:21:f0:5a:1a:16:5b:85:65:
37:33:60:e8:54:0f:a5:ce:3e:6e:9d:94:f0:02:1c:
36:f0:b7:96:0e:3a:26:8a:12:73:3b:cb:95:21:b1:
dd:57:00:9e:a8:36:9c:9e:76:c3:be:5c:01:da:ec:
82:c9:04:e7:fa:b1:98:7d:d2:71:41:00:b1:b0:77:
24:7a:84:86:ef:b8:cc:90:21:fb:09:0f:54:fb:ae:
30:25:13:1f:80:b5:cc:7e:ca:c8:1c:ab:e5:ea:95:
4a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:83:15:08:59:86:D3:02:56:DF:67:BC:9C:EF:C8:43:44:F9:D2:A5
X509v3 Authority Key Identifier:
keyid:6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:31:fb:47:b6:29:57:58:c8:6f:5e:8c:39:d6:19:17:9d:49:
3e:e6:3c:ad:06:15:76:3d:64:01:bf:47:de:13:02:46:50:08:
29:55:ad:4b:9b:75:6e:07:f5:64:6b:95:e4:57:81:aa:9b:62:
9a:6c:a3:17:9b:f3:4d:f3:a5:8f:53:c3:45:77:4c:ce:c9:1b:
14:8b:30:7d:75:72:bf:30:a4:e3:1b:3a:d7:ee:af:bd:90:84:
16:9e:f9:de:ff:bf:7b:15:59:2b:8d:a6:2a:53:f0:09:a4:37:
dd:f1:5b:a5:4e:65:7b:2b:f9:59:5e:d0:b7:d4:b9:fb:d7:da:
d8:29:78:4f:2b:cd:ef:d8:ea:02:bd:e9:54:91:95:4f:f5:b7:
08:d9:39:ef:0e:bf:35:ee:c1:48:de:49:2d:3a:38:6f:9b:e2:
73:bc:91:35:57:54:b9:b2:07:06:e8:c8:b4:1b:1f:96:e4:00:
08:12:b6:97:69:9c:a7:b0:fa:23:d5:46:ab:57:a7:e4:d6:19:
ee:bb:3d:76:5d:61:3a:d9:c0:ab:9e:87:e5:bd:8a:77:da:f0:
04:1f:bd:dd:4c:78:1b:a8:42:2a:2f:7b:f1:42:1b:58:91:34:
36:9c:60:f4:52:f7:74:bb:cb:8e:7d:50:27:71:ff:5d:b6:da:
af:22:b2:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhzPTseULufsqG4LuudwY0/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhMGQ2NjZhNTRkNWUxYmMzNTVjMGQ3MjUwM2E0NThmYzBl
OGUwNmMwHhcNMjUwODA0MDQwMDQ5WhcNMjUwODA1MDQwMDQ5WjAzMTEwLwYDVQQD
EyhiODgzMTUwODU5ODZkMzAyNTZkZjY3YmM5Y2VmYzg0MzQ0ZjlkMmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0LmtezKuXPOWeCLqiAxuycwp5CZ1
5J02eAaIRUNkqV8uH/JX5RbxI77ksGvk0wb7jCDZtmLemSoKSCXxUsZO5d8RBY2I
P4fnQj0B1wAMtejOny4OotTxPwRp5hLZQYzcvNZN7Qc5QYpvSu/KGgWY4ICylTld
Zl94Jyns5NThnaHTJDf5omZZcWv7fseTgNkqOyqNdctAmCFYKVmYIfBaGhZbhWU3
M2DoVA+lzj5unZTwAhw28LeWDjomihJzO8uVIbHdVwCeqDacnnbDvlwB2uyCyQTn
+rGYfdJxQQCxsHckeoSG77jMkCH7CQ9U+64wJRMfgLXMfsrIHKvl6pVKFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLiDFQhZhtMCVt9nvJzvyENE+dKlMB8GA1UdIwQY
MBaAFGoNZmpU1eG8NVwNclA6RY/A6OBsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWcxbWFsVFY0YncxWEExeVVEcEZqOERvNEd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9hZTg0MmItNGNjNy00ZTA3LTk4Mjct
YTgyYWQ1NGRlZmJjLzEvYWcxbWFsVFY0YncxWEExeVVEcEZqOERvNEd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi9hZTg0MmItNGNjNy00ZTA3LTk4MjctYTgyYWQ1NGRlZmJj
LzEvYWcxbWFsVFY0YncxWEExeVVEcEZqOERvNEd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYjH7R7Yp
V1jIb16MOdYZF51JPuY8rQYVdj1kAb9H3hMCRlAIKVWtS5t1bgf1ZGuV5FeBqpti
mmyjF5vzTfOlj1PDRXdMzskbFIswfXVyvzCk4xs61+6vvZCEFp753v+/exVZK42m
KlPwCaQ33fFbpU5leyv5WV7Qt9S5+9fa2Cl4TyvN79jqAr3pVJGVT/W3CNk57w6/
Ne7BSN5JLTo4b5vic7yRNVdUubIHBujItBsfluQACBK2l2mcp7D6I9VGq1en5NYZ
7rs9dl1hOtnAq56H5b2Kd9rwBB+93Ux4G6hCKi978UIbWJE0Npxg9FL3dLvLjn1Q
J3H/XbbaryKyiw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:15:30 2025 by rpki-client