Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
File: ag1malTV4bw1XA1yUDpFj8Do4Gw.mft (raw, json)
Hash identifier: m15FmLuAXD1vnSv4H8CyVn2Xd9iabfvOeq4MjGXewlw=
Subject key identifier: D2:96:69:CB:F1:0A:22:C5:79:14:92:8A:F5:53:66:A5:65:6C:86:13
Authority key identifier: 6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
Certificate issuer: /CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Certificate serial: 019A541B0C94E23E808CC36BEF9D75EE529E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
Manifest number: 170F
Signing time: Wed 05 Nov 2025 13:00:50 +0000
Manifest this update: Wed 05 Nov 2025 13:00:50 +0000
Manifest next update: Thu 06 Nov 2025 13:00:50 +0000
Files and hashes: 1: Zbu9lV-TXRr1mjPabkdbQi-tc2k.roa (hash: L0pLG2iq3DWnmdVA1LNHGmiPWiH4T8eZ9Q5L7k/ukzQ=)
2: ag1malTV4bw1XA1yUDpFj8Do4Gw.crl (hash: XI2IlLLEDbN05e7bDDqomo7McyOkZscDDRrHXkI+OFc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:1b:0c:94:e2:3e:80:8c:c3:6b:ef:9d:75:ee:52:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Validity
Not Before: Nov 5 13:00:50 2025 GMT
Not After : Nov 6 13:00:50 2025 GMT
Subject: CN=d29669cbf10a22c57914928af55366a5656c8613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3c:2e:d4:90:51:11:a4:6a:8f:7b:be:42:f6:
4d:08:9d:bc:51:4d:fb:44:ed:ea:30:b7:73:e8:a9:
f2:55:14:53:e7:4a:10:8e:6d:e7:7a:25:e7:c9:b2:
0e:65:83:43:d5:cd:47:b4:dc:d6:e1:0e:4e:78:b4:
70:fd:de:a0:18:7c:73:05:cd:c8:3e:a2:ec:40:a5:
2f:0d:92:92:00:ba:27:48:6c:7c:d2:83:a7:67:e9:
03:4a:ba:a1:b7:1c:28:83:34:84:15:72:35:d8:c8:
23:d8:de:c3:6f:1c:ab:f7:b6:d0:20:9e:f7:cb:bf:
02:02:b4:25:44:ee:3c:5a:03:34:60:4d:83:0c:a8:
e4:44:46:c9:4d:0f:38:90:66:2d:97:b6:27:68:15:
aa:2f:a7:d7:cf:84:d0:52:13:70:74:2f:88:e4:ad:
9a:f9:3f:45:b9:6b:ec:a6:b1:17:67:93:2f:1c:94:
cf:f1:95:89:41:03:ec:37:7e:83:07:15:84:c3:56:
a2:7a:55:cc:99:cd:10:94:10:83:5a:d9:b3:a8:a7:
9b:f8:49:23:6a:a8:38:55:01:bf:eb:ff:7f:84:8e:
c1:51:2b:e0:2b:c2:0f:7e:64:e1:4a:9b:31:e8:9b:
f4:13:d6:94:d4:3a:42:64:19:18:2e:2e:7a:d4:a9:
b8:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:96:69:CB:F1:0A:22:C5:79:14:92:8A:F5:53:66:A5:65:6C:86:13
X509v3 Authority Key Identifier:
keyid:6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:e3:87:e3:c0:76:b4:dd:2e:0a:5a:9e:e4:e9:a9:79:32:80:
b1:50:ca:be:b2:15:e6:e9:70:4f:ac:23:db:3d:16:8e:43:22:
d2:6d:35:02:68:73:8a:4a:f1:bc:30:0f:35:fd:69:41:e4:87:
6f:43:84:79:bd:6e:32:66:7a:93:48:a0:65:ea:9a:b9:61:dc:
90:6b:23:16:3c:6b:c2:b0:18:2e:f8:0b:df:1c:1b:bf:74:ec:
94:14:84:2c:c0:62:27:14:f7:f4:38:5a:fc:cc:9c:38:52:98:
28:20:23:eb:3e:72:e7:0d:4f:bb:c2:85:42:f5:7c:5d:97:5b:
f8:49:5d:e5:39:54:5d:2f:fa:d0:05:fb:6b:a4:3a:05:50:aa:
ca:5a:76:73:9e:71:bd:7d:c0:6f:39:81:65:33:78:cf:9b:b0:
10:6d:c5:cd:84:b3:cb:63:4b:db:ca:85:6b:f3:a3:22:61:d0:
8d:55:f8:3b:d0:53:31:46:cd:be:c3:3d:97:39:44:6a:42:7a:
17:3e:51:99:18:03:d4:1d:18:33:df:c0:c8:70:51:e4:24:b4:
fd:e1:7e:b3:01:f0:0c:a5:bb:02:1a:aa:66:5b:9b:bd:5f:4e:
47:78:d4:2d:8e:3a:28:f2:93:ab:c7:c4:7f:87:c5:33:db:7e:
3b:99:7c:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpUGwyU4j6AjMNr75117lKeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhMGQ2NjZhNTRkNWUxYmMzNTVjMGQ3MjUwM2E0NThmYzBl
OGUwNmMwHhcNMjUxMTA1MTMwMDUwWhcNMjUxMTA2MTMwMDUwWjAzMTEwLwYDVQQD
EyhkMjk2NjljYmYxMGEyMmM1NzkxNDkyOGFmNTUzNjZhNTY1NmM4NjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqjwu1JBREaRqj3u+QvZNCJ28UU37
RO3qMLdz6KnyVRRT50oQjm3neiXnybIOZYND1c1HtNzW4Q5OeLRw/d6gGHxzBc3I
PqLsQKUvDZKSALonSGx80oOnZ+kDSrqhtxwogzSEFXI12Mgj2N7Dbxyr97bQIJ73
y78CArQlRO48WgM0YE2DDKjkREbJTQ84kGYtl7YnaBWqL6fXz4TQUhNwdC+I5K2a
+T9FuWvsprEXZ5MvHJTP8ZWJQQPsN36DBxWEw1aielXMmc0QlBCDWtmzqKeb+Ekj
aqg4VQG/6/9/hI7BUSvgK8IPfmThSpsx6Jv0E9aU1DpCZBkYLi561Km4HwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNKWacvxCiLFeRSSivVTZqVlbIYTMB8GA1UdIwQY
MBaAFGoNZmpU1eG8NVwNclA6RY/A6OBsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWcxbWFsVFY0YncxWEExeVVEcEZqOERvNEd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9hZTg0MmItNGNjNy00ZTA3LTk4Mjct
YTgyYWQ1NGRlZmJjLzEvYWcxbWFsVFY0YncxWEExeVVEcEZqOERvNEd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi9hZTg0MmItNGNjNy00ZTA3LTk4MjctYTgyYWQ1NGRlZmJj
LzEvYWcxbWFsVFY0YncxWEExeVVEcEZqOERvNEd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD+OH48B2
tN0uClqe5OmpeTKAsVDKvrIV5ulwT6wj2z0WjkMi0m01AmhzikrxvDAPNf1pQeSH
b0OEeb1uMmZ6k0igZeqauWHckGsjFjxrwrAYLvgL3xwbv3TslBSELMBiJxT39Dha
/MycOFKYKCAj6z5y5w1Pu8KFQvV8XZdb+Eld5TlUXS/60AX7a6Q6BVCqylp2c55x
vX3AbzmBZTN4z5uwEG3FzYSzy2NL28qFa/OjImHQjVX4O9BTMUbNvsM9lzlEakJ6
Fz5RmRgD1B0YM9/AyHBR5CS0/eF+swHwDKW7AhqqZlubvV9OR3jULY46KPKTq8fE
f4fFM9t+O5l8EA==
-----END CERTIFICATE-----
Generated at Wed Nov 5 20:45:15 2025 by rpki-client