Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json)
Hash identifier: 0wQNnUqA62OaF9BTDMXfyYjaWEEs1evCVjKY3Za0w6c=
Subject key identifier: 9A:4F:0B:FB:D9:46:6E:68:7A:BD:12:11:19:AC:43:21:19:C6:6C:72
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 019A4D078F37BD2CF1F32615466D044EC37B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 04:02:12 +0000
Manifest this update: Tue 04 Nov 2025 04:02:12 +0000
Manifest next update: Wed 05 Nov 2025 04:02:12 +0000
Files and hashes: 1: K-gQWrDorOWk95T1Ck9YnvOvyOw.roa (hash: M7ISU7dx2mACRrVyXnpQ2vx1ALS4joyLkkEwNFtNto0=)
2: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: GD3GkgLriceqdbSEzeXVJPbEwhiFIYoCNEFO6OQuYD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:02:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:07:8f:37:bd:2c:f1:f3:26:15:46:6d:04:4e:c3:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: Nov 4 04:02:12 2025 GMT
Not After : Nov 5 04:02:12 2025 GMT
Subject: CN=9a4f0bfbd9466e687abd121119ac432119c66c72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6b:d2:a0:91:f3:6f:e9:49:cf:47:92:3f:18:
4b:72:dd:df:9f:65:e1:aa:2b:f3:76:80:f3:a9:45:
40:9e:82:95:d8:a9:ce:ad:84:01:74:bd:29:ab:e5:
38:8c:b2:95:4e:8f:74:b7:90:e2:0d:c7:54:6a:c5:
db:d0:bd:d4:86:c6:69:4c:13:6c:fb:3e:ce:2a:96:
56:9a:c2:80:91:f7:68:2c:36:b2:81:87:b8:5d:0c:
10:93:85:40:6c:8b:f8:d3:5f:3f:fd:29:d6:be:e1:
15:6c:ae:11:7e:08:29:7e:a1:26:c7:c4:b4:44:ba:
cf:30:ea:35:12:14:07:0f:f8:b3:0e:6f:fc:00:00:
2a:9f:91:eb:5d:ac:1d:67:22:78:9a:d6:12:f7:a4:
f4:e7:74:88:ca:38:29:28:ab:33:22:2c:2c:84:6e:
a3:28:bb:69:60:85:b6:a2:6c:67:6f:55:0a:13:0e:
25:13:72:ac:c8:af:f5:ce:74:0d:03:89:e7:6c:0b:
61:68:7d:7d:9f:d3:33:8d:ed:14:1e:1c:a4:1d:ce:
e6:05:43:85:36:2a:9d:98:99:ba:c6:ff:98:ac:60:
34:e2:96:03:b6:c5:97:95:01:9f:81:a4:50:96:cb:
37:2b:e3:1c:45:b7:e6:94:cd:59:dc:7d:26:d8:fb:
6a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:4F:0B:FB:D9:46:6E:68:7A:BD:12:11:19:AC:43:21:19:C6:6C:72
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:d6:2e:71:dd:c0:e2:c3:41:ad:b5:c3:3a:aa:49:a4:7d:2f:
83:ba:da:b3:e2:e7:40:0c:fb:7a:d2:07:b4:85:03:b3:ab:2e:
de:27:a1:e1:26:85:2b:0a:2e:5c:fd:ec:e4:05:bb:68:25:e5:
48:44:b2:31:25:50:30:5d:a1:28:33:a6:e1:0e:e5:f2:43:af:
39:08:56:26:5c:be:6a:26:54:d8:11:9c:6a:10:3d:5c:f9:65:
79:7a:16:e1:ef:3f:1d:8a:7e:cd:11:83:6b:4f:9a:32:d9:5f:
97:5a:a0:74:e9:99:73:1c:f7:83:ad:04:26:9e:08:12:e2:76:
37:11:c8:43:57:9c:12:34:ea:4f:75:bd:1c:d4:ed:39:7d:a3:
4f:6f:77:27:d9:2c:bd:26:ae:92:b3:c9:a4:3b:92:bc:0e:85:
66:5b:a7:34:93:7f:4e:4d:0d:21:57:d6:9e:c0:55:2b:fa:c7:
9b:1b:dd:a2:97:4d:ed:dc:ea:11:14:02:9b:39:39:22:22:f2:
42:b5:a6:46:94:d3:db:c8:0e:e7:98:14:06:a9:4e:20:42:d0:
1e:65:32:7f:0b:56:b0:a4:b8:60:55:87:02:c1:35:87:fe:9c:
51:2b:2a:75:b0:75:93:88:50:61:d4:af:22:f6:82:76:bd:5e:
3a:77:80:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNB483vSzx8yYVRm0ETsN7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YmYxYzVhMjFjMzgyNWI4Yjg2NTE2YTFhNTk3MTIxYjU0
YjNjYzMwHhcNMjUxMTA0MDQwMjEyWhcNMjUxMTA1MDQwMjEyWjAzMTEwLwYDVQQD
Eyg5YTRmMGJmYmQ5NDY2ZTY4N2FiZDEyMTExOWFjNDMyMTE5YzY2YzcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0WvSoJHzb+lJz0eSPxhLct3fn2Xh
qivzdoDzqUVAnoKV2KnOrYQBdL0pq+U4jLKVTo90t5DiDcdUasXb0L3UhsZpTBNs
+z7OKpZWmsKAkfdoLDaygYe4XQwQk4VAbIv4018//SnWvuEVbK4RfggpfqEmx8S0
RLrPMOo1EhQHD/izDm/8AAAqn5HrXawdZyJ4mtYS96T053SIyjgpKKszIiwshG6j
KLtpYIW2omxnb1UKEw4lE3KsyK/1znQNA4nnbAthaH19n9Mzje0UHhykHc7mBUOF
NiqdmJm6xv+YrGA04pYDtsWXlQGfgaRQlss3K+McRbfmlM1Z3H0m2PtqrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJpPC/vZRm5oer0SERmsQyEZxmxyMB8GA1UdIwQY
MBaAFGi/HFohw4Jbi4ZRahpZcSG1SzzDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8yZmNlNWUtYzkxNS00ZjAyLWFkM2Et
NTVlYjViYjk5ZTQ1LzEvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy8yZmNlNWUtYzkxNS00ZjAyLWFkM2EtNTVlYjViYjk5ZTQ1
LzEvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh9Yucd3A
4sNBrbXDOqpJpH0vg7ras+LnQAz7etIHtIUDs6su3ieh4SaFKwouXP3s5AW7aCXl
SESyMSVQMF2hKDOm4Q7l8kOvOQhWJly+aiZU2BGcahA9XPlleXoW4e8/HYp+zRGD
a0+aMtlfl1qgdOmZcxz3g60EJp4IEuJ2NxHIQ1ecEjTqT3W9HNTtOX2jT293J9ks
vSaukrPJpDuSvA6FZlunNJN/Tk0NIVfWnsBVK/rHmxvdopdN7dzqERQCmzk5IiLy
QrWmRpTT28gO55gUBqlOIELQHmUyfwtWsKS4YFWHAsE1h/6cUSsqdbB1k4hQYdSv
IvaCdr1eOneA8w==
-----END CERTIFICATE-----
Generated at Tue Nov 4 10:47:50 2025 by rpki-client