Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
File: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft (raw, json)
Hash identifier: N3Cvv5QeVv5rIC1ZhGZTZxR1VgAXpmrMU85XeKGxABY=
Subject key identifier: 4E:28:F4:60:1A:08:88:68:0A:2A:B6:A6:57:FA:11:20:5C:4D:76:E8
Authority key identifier: 69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
Certificate issuer: /CN=690ae175fbe63b0e930469097c9492d42ed79249
Certificate serial: 0198A83F340AE4D52BF5184AAB4437BD9009
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
Manifest number: 1A
Signing time: Thu 14 Aug 2025 11:02:51 +0000
Manifest this update: Thu 14 Aug 2025 11:02:51 +0000
Manifest next update: Fri 15 Aug 2025 11:02:51 +0000
Files and hashes: 1: Ft7Frn9ocyQeuHjXMeEeGoh_tdk.roa (hash: +hbGdiT9EB+gQ7hEwq4X6SV+6RnEdb4t2Cal6rg6Zcw=)
2: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl (hash: L6/jN04v8qO4DTYu/PACmffZpqgjRITntSQawjKyeVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 Aug 2025 11:02:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a8:3f:34:0a:e4:d5:2b:f5:18:4a:ab:44:37:bd:90:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ae175fbe63b0e930469097c9492d42ed79249
Validity
Not Before: Aug 14 11:02:51 2025 GMT
Not After : Aug 15 11:02:51 2025 GMT
Subject: CN=4e28f4601a0888680a2ab6a657fa11205c4d76e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:21:41:92:6c:16:f7:49:05:cb:20:fa:49:be:
25:55:59:5c:86:3f:a1:34:fb:e4:ab:3d:98:9f:f8:
6a:e7:dd:34:c3:e4:97:51:10:90:28:05:64:0d:81:
46:78:36:f5:86:34:34:b1:61:8d:11:ff:11:87:ee:
fa:b8:8a:17:84:80:53:92:f1:8c:cb:7c:d2:15:57:
6e:89:bf:ef:1e:73:2c:75:e9:1a:a2:ec:9e:63:fe:
88:98:f9:35:2d:70:ae:88:43:8d:e7:2c:07:5d:a3:
2a:93:1c:06:6d:70:c7:d3:62:0d:96:53:8f:a4:cd:
f8:62:39:e3:10:cb:c2:6f:3f:4e:35:75:12:46:79:
94:c8:91:5f:1e:6d:66:7b:6c:9c:28:c6:da:e6:d7:
48:45:05:11:6c:4e:89:8f:25:f2:af:0d:b4:ca:62:
07:50:d8:92:d8:98:04:51:b5:11:ec:7e:73:53:b7:
da:c3:81:5c:56:76:a3:4c:e6:6e:5e:de:f5:b3:5a:
20:35:5b:7d:b9:eb:5f:d2:08:f9:57:59:ea:90:4b:
47:73:33:3b:30:f3:06:17:fa:bd:62:43:be:3a:c1:
37:88:cf:af:2d:40:09:81:2d:51:b2:bd:e6:ee:28:
38:35:28:23:20:97:ab:28:4f:6a:23:9c:2a:25:c0:
ff:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:28:F4:60:1A:08:88:68:0A:2A:B6:A6:57:FA:11:20:5C:4D:76:E8
X509v3 Authority Key Identifier:
keyid:69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:e6:7b:29:b9:82:17:62:3f:b3:cc:03:29:59:ee:5c:4a:11:
3b:b2:34:10:02:d6:82:2f:16:26:2a:74:44:67:41:4e:30:1c:
09:ff:35:ad:34:d7:cd:27:ae:b9:e8:a0:ad:95:ec:77:49:a0:
06:38:7e:da:d2:62:53:83:a1:d9:1e:47:38:3b:9e:2e:58:05:
6b:e7:ff:f4:53:78:4d:22:87:00:02:81:ce:6e:af:39:b2:cf:
3a:80:23:d4:06:23:18:78:e1:06:37:a7:ce:f1:5e:b6:7e:18:
70:97:14:86:2c:69:d7:de:fe:43:cc:64:87:14:fd:ba:fb:75:
0f:a0:0c:c4:f6:85:68:0a:2a:92:f3:2e:04:a3:f0:02:32:31:
1b:dc:1b:56:9e:b1:41:aa:3d:35:e1:5f:6b:d1:34:43:23:6d:
0d:c9:e2:ce:08:5a:64:59:bb:84:d0:66:fb:fc:18:26:11:7f:
a9:f6:d7:e6:4f:09:cb:7f:cd:8c:7b:26:bc:11:96:22:49:f2:
bd:c2:4d:02:07:02:06:a1:48:24:73:e7:7c:87:88:b4:a4:26:
10:7a:e3:bc:79:a6:5f:5f:d9:32:13:dd:f5:c2:78:92:5c:12:
eb:83:87:f0:c7:cc:10:36:a5:17:7b:ac:c8:0a:c0:b4:d0:36:
f4:ae:ee:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZioPzQK5NUr9RhKq0Q3vZAJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MGFlMTc1ZmJlNjNiMGU5MzA0NjkwOTdjOTQ5MmQ0MmVk
NzkyNDkwHhcNMjUwODE0MTEwMjUxWhcNMjUwODE1MTEwMjUxWjAzMTEwLwYDVQQD
Eyg0ZTI4ZjQ2MDFhMDg4ODY4MGEyYWI2YTY1N2ZhMTEyMDVjNGQ3NmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoCFBkmwW90kFyyD6Sb4lVVlchj+h
NPvkqz2Yn/hq5900w+SXURCQKAVkDYFGeDb1hjQ0sWGNEf8Rh+76uIoXhIBTkvGM
y3zSFVduib/vHnMsdekaouyeY/6ImPk1LXCuiEON5ywHXaMqkxwGbXDH02INllOP
pM34YjnjEMvCbz9ONXUSRnmUyJFfHm1me2ycKMba5tdIRQURbE6JjyXyrw20ymIH
UNiS2JgEUbUR7H5zU7faw4FcVnajTOZuXt71s1ogNVt9uetf0gj5V1nqkEtHczM7
MPMGF/q9YkO+OsE3iM+vLUAJgS1Rsr3m7ig4NSgjIJerKE9qI5wqJcD/hwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE4o9GAaCIhoCiq2plf6ESBcTXboMB8GA1UdIwQY
MBaAFGkK4XX75jsOkwRpCXyUktQu15JJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVFyaGRmdm1PdzZUQkdrSmZKU1MxQzdYa2trLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9iODg0YzAtNGQwNS00NDAxLTk4NTgt
OGEwODZlYTk0YmU1LzEvYVFyaGRmdm1PdzZUQkdrSmZKU1MxQzdYa2trLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC9iODg0YzAtNGQwNS00NDAxLTk4NTgtOGEwODZlYTk0YmU1
LzEvYVFyaGRmdm1PdzZUQkdrSmZKU1MxQzdYa2trLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj+Z7KbmC
F2I/s8wDKVnuXEoRO7I0EALWgi8WJip0RGdBTjAcCf81rTTXzSeuueigrZXsd0mg
Bjh+2tJiU4Oh2R5HODueLlgFa+f/9FN4TSKHAAKBzm6vObLPOoAj1AYjGHjhBjen
zvFetn4YcJcUhixp197+Q8xkhxT9uvt1D6AMxPaFaAoqkvMuBKPwAjIxG9wbVp6x
Qao9NeFfa9E0QyNtDcnizghaZFm7hNBm+/wYJhF/qfbX5k8Jy3/NjHsmvBGWIkny
vcJNAgcCBqFIJHPnfIeItKQmEHrjvHmmX1/ZMhPd9cJ4klwS64OH8MfMEDalF3us
yArAtNA29K7ufQ==
-----END CERTIFICATE-----
Generated at Thu Aug 14 17:22:59 2025 by rpki-client