Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
File: A1KD5iNe2yXotUdJtihfXj74U3E.mft (raw, json)
Hash identifier: 2DVtqA4n8DahkEszB134vmkAZcgATj2D7ZV2JUyV8RE=
Subject key identifier: ED:E5:B8:36:46:7C:47:EA:0B:F5:E0:15:AD:BC:16:D2:96:E1:9D:53
Authority key identifier: 03:52:83:E6:23:5E:DB:25:E8:B5:47:49:B6:28:5F:5E:3E:F8:53:71
Certificate issuer: /CN=035283e6235edb25e8b54749b6285f5e3ef85371
Certificate serial: 019895C933C5860C308C70DCB92877A8EA8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
Manifest number: 0176
Signing time: Sun 10 Aug 2025 21:00:47 +0000
Manifest this update: Sun 10 Aug 2025 21:00:47 +0000
Manifest next update: Mon 11 Aug 2025 21:00:47 +0000
Files and hashes: 1: A1KD5iNe2yXotUdJtihfXj74U3E.crl (hash: Ly2ngyArM381UOOjXVGWZrL4ObzIFec609sP2eGaZfI=)
2: z96_ZJgr9Ouwu3H857DM3qPVUxI.roa (hash: XUjlH+TkzMgkjT2OPVskc/V8eVbqCCBWMoR0ix6MWrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 21:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:c9:33:c5:86:0c:30:8c:70:dc:b9:28:77:a8:ea:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035283e6235edb25e8b54749b6285f5e3ef85371
Validity
Not Before: Aug 10 21:00:47 2025 GMT
Not After : Aug 11 21:00:47 2025 GMT
Subject: CN=ede5b836467c47ea0bf5e015adbc16d296e19d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d7:23:8f:d6:87:39:03:9b:55:4d:4c:1c:0b:
cc:fd:95:04:21:5d:25:b2:1a:f2:02:e2:ff:eb:f7:
a7:df:b9:7b:28:bd:cc:1e:47:97:3f:06:6d:f8:66:
e9:d0:6e:c2:56:aa:4e:dd:1f:a1:5a:c1:e7:86:87:
99:15:37:62:13:ec:45:f3:36:f8:db:b5:95:9f:7b:
67:d2:a0:1d:c3:c1:0e:33:55:0c:12:02:54:15:de:
d4:2b:54:5b:61:18:98:ba:5d:59:f7:59:85:5f:7e:
2a:a1:11:d3:6b:a8:5b:11:52:63:fe:79:f2:04:f8:
ab:66:9c:23:7b:ae:b7:f1:4e:bb:3d:14:6e:68:b7:
e1:73:01:54:d3:76:0e:ac:b6:fc:a6:c2:e0:96:cb:
58:19:10:96:6e:ac:80:20:ab:55:cd:05:10:15:7c:
96:63:27:90:92:31:42:2c:7c:f1:4b:d7:13:76:04:
78:e4:0a:5d:c2:a9:57:4c:58:6a:22:d8:6f:2c:c2:
a7:87:85:4c:27:26:12:75:88:b1:5e:5c:cc:2d:8e:
50:66:90:52:fd:5c:04:c9:0f:b5:da:c2:90:4b:8d:
6b:be:eb:b2:75:cc:1c:2c:d0:59:80:dc:68:61:29:
9a:3c:da:b1:a2:d5:26:71:80:d6:51:2b:00:7b:3d:
9e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:E5:B8:36:46:7C:47:EA:0B:F5:E0:15:AD:BC:16:D2:96:E1:9D:53
X509v3 Authority Key Identifier:
keyid:03:52:83:E6:23:5E:DB:25:E8:B5:47:49:B6:28:5F:5E:3E:F8:53:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:cc:70:a1:f3:11:84:f1:a5:8e:b9:6e:f2:cd:f8:a1:1d:d7:
e3:18:19:c8:33:ce:0e:f8:00:a4:72:14:73:2a:e4:f6:75:3e:
53:e5:13:01:8a:25:17:3c:e8:e1:ac:45:b5:63:03:76:65:89:
4a:f7:a6:84:07:f2:ba:ac:b2:c1:69:de:fc:c8:e8:bf:04:5a:
c2:d1:26:9d:02:9b:40:f2:e0:c0:78:93:e5:46:30:2d:13:54:
e0:01:8c:b5:70:11:27:92:0a:2f:34:b9:23:20:dd:55:b1:50:
5f:33:fa:b3:cf:d3:08:06:33:69:46:75:a8:8d:6a:80:e0:fc:
16:b0:be:e1:5e:c4:77:13:25:91:33:e2:62:3a:f3:ff:dd:32:
8a:52:05:1c:c6:59:42:24:3b:d3:0c:75:0f:f9:5f:31:e8:e4:
b7:7d:e1:0c:29:a1:4a:29:b4:4d:5e:9e:2a:80:d8:8e:85:f9:
ce:be:82:1f:e3:92:24:d2:31:35:4c:03:ea:d0:c0:13:39:07:
7e:a3:2f:58:b0:0c:9e:61:41:c1:7e:2a:18:5d:d1:13:2b:3a:
52:66:bc:17:ab:97:89:da:56:53:c9:54:c2:09:fc:c9:0a:87:
9e:5b:38:a1:ed:10:e0:20:bc:ae:08:e2:af:64:8c:4a:52:c8:
a0:15:00:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiVyTPFhgwwjHDcuSh3qOqNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzNTI4M2U2MjM1ZWRiMjVlOGI1NDc0OWI2Mjg1ZjVlM2Vm
ODUzNzEwHhcNMjUwODEwMjEwMDQ3WhcNMjUwODExMjEwMDQ3WjAzMTEwLwYDVQQD
EyhlZGU1YjgzNjQ2N2M0N2VhMGJmNWUwMTVhZGJjMTZkMjk2ZTE5ZDUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkNcjj9aHOQObVU1MHAvM/ZUEIV0l
shryAuL/6/en37l7KL3MHkeXPwZt+Gbp0G7CVqpO3R+hWsHnhoeZFTdiE+xF8zb4
27WVn3tn0qAdw8EOM1UMEgJUFd7UK1RbYRiYul1Z91mFX34qoRHTa6hbEVJj/nny
BPirZpwje6638U67PRRuaLfhcwFU03YOrLb8psLglstYGRCWbqyAIKtVzQUQFXyW
YyeQkjFCLHzxS9cTdgR45ApdwqlXTFhqIthvLMKnh4VMJyYSdYixXlzMLY5QZpBS
/VwEyQ+12sKQS41rvuuydcwcLNBZgNxoYSmaPNqxotUmcYDWUSsAez2e0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO3luDZGfEfqC/XgFa28FtKW4Z1TMB8GA1UdIwQY
MBaAFANSg+YjXtsl6LVHSbYoX14++FNxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQTFLRDVpTmUyeVhvdFVkSnRpaGZYajc0VTNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8zMTFmNTctNjQwNC00NDZhLTlmMDgt
MTFiOTI5MDY0MDZkLzEvQTFLRDVpTmUyeVhvdFVkSnRpaGZYajc0VTNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS8zMTFmNTctNjQwNC00NDZhLTlmMDgtMTFiOTI5MDY0MDZk
LzEvQTFLRDVpTmUyeVhvdFVkSnRpaGZYajc0VTNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR8xwofMR
hPGljrlu8s34oR3X4xgZyDPODvgApHIUcyrk9nU+U+UTAYolFzzo4axFtWMDdmWJ
SvemhAfyuqyywWne/MjovwRawtEmnQKbQPLgwHiT5UYwLRNU4AGMtXARJ5IKLzS5
IyDdVbFQXzP6s8/TCAYzaUZ1qI1qgOD8FrC+4V7EdxMlkTPiYjrz/90yilIFHMZZ
QiQ70wx1D/lfMejkt33hDCmhSim0TV6eKoDYjoX5zr6CH+OSJNIxNUwD6tDAEzkH
fqMvWLAMnmFBwX4qGF3REys6Uma8F6uXidpWU8lUwgn8yQqHnls4oe0Q4CC8rgji
r2SMSlLIoBUAEA==
-----END CERTIFICATE-----
Generated at Mon Aug 11 04:08:41 2025 by rpki-client