Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/af2e75-ecee-48e1-8af6-12dede9d0c71/1/AnK9OzKuyvJsqO2zyHj-V5Xyq28.mft
File: AnK9OzKuyvJsqO2zyHj-V5Xyq28.mft (raw, json)
Hash identifier: Ng+jLNE+rtDZmRozib5I+mvynfpB1NRW0XLPrAEBUsI=
Subject key identifier: 1A:CB:AA:EA:A0:5E:9C:FB:19:81:0E:7C:AA:50:BF:25:F3:31:70:01
Authority key identifier: 02:72:BD:3B:32:AE:CA:F2:6C:A8:ED:B3:C8:78:FE:57:95:F2:AB:6F
Certificate issuer: /CN=0272bd3b32aecaf26ca8edb3c878fe5795f2ab6f
Certificate serial: 01987D8BD315691A566574448976C6907043
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AnK9OzKuyvJsqO2zyHj-V5Xyq28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/af2e75-ecee-48e1-8af6-12dede9d0c71/1/AnK9OzKuyvJsqO2zyHj-V5Xyq28.mft
Manifest number: 0797
Signing time: Wed 06 Aug 2025 04:02:52 +0000
Manifest this update: Wed 06 Aug 2025 04:02:52 +0000
Manifest next update: Thu 07 Aug 2025 04:02:52 +0000
Files and hashes: 1: AnK9OzKuyvJsqO2zyHj-V5Xyq28.crl (hash: 2KYTmxiHzBHPobnsVkjnPBi0Qo55E78eEh43Fg/dhYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/af2e75-ecee-48e1-8af6-12dede9d0c71/1/AnK9OzKuyvJsqO2zyHj-V5Xyq28.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/af2e75-ecee-48e1-8af6-12dede9d0c71/1/AnK9OzKuyvJsqO2zyHj-V5Xyq28.mft
rsync://rpki.ripe.net/repository/DEFAULT/AnK9OzKuyvJsqO2zyHj-V5Xyq28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8b:d3:15:69:1a:56:65:74:44:89:76:c6:90:70:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0272bd3b32aecaf26ca8edb3c878fe5795f2ab6f
Validity
Not Before: Aug 6 04:02:52 2025 GMT
Not After : Aug 7 04:02:52 2025 GMT
Subject: CN=1acbaaeaa05e9cfb19810e7caa50bf25f3317001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1b:0f:45:d3:65:9b:a5:cc:e3:62:a7:ef:b5:
12:23:8c:f4:ce:4a:40:7e:d9:f1:82:8e:f8:1e:0e:
f2:a6:2d:bc:57:7d:e2:17:e6:89:69:ee:15:27:b2:
e7:4f:1c:bd:88:86:a5:a1:0c:81:20:5b:a4:08:a3:
5e:ac:17:21:b2:b6:00:82:e6:a4:ee:25:19:66:fb:
c9:d8:7d:8b:a0:db:69:2f:8a:eb:75:0d:5c:c5:dd:
78:e5:a8:51:03:2f:34:37:9f:d7:e5:d1:fb:59:b3:
e9:e6:02:da:c4:83:6e:c2:17:34:fe:16:a5:4c:4c:
7c:a3:c4:70:e2:2d:e9:3f:7e:d0:d9:9d:c9:aa:db:
07:17:b5:6e:a1:91:cc:b9:43:50:70:07:c0:b5:a7:
e0:29:e9:90:13:53:34:87:c8:cb:7f:92:a4:12:54:
9a:2d:90:79:28:6f:c2:84:c8:0c:9f:d4:25:73:7f:
26:3f:ae:72:1d:4a:f0:22:73:32:40:b0:4b:92:ba:
92:a9:8f:a6:03:be:ec:3a:74:45:c3:2f:4d:bc:b0:
c8:b1:16:69:17:90:b7:55:20:47:f5:1d:0f:eb:04:
20:7f:ef:71:06:70:09:88:a0:85:0a:1e:0c:39:e2:
51:28:58:18:01:44:15:31:58:fc:4c:ab:f3:3c:c4:
a6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:CB:AA:EA:A0:5E:9C:FB:19:81:0E:7C:AA:50:BF:25:F3:31:70:01
X509v3 Authority Key Identifier:
keyid:02:72:BD:3B:32:AE:CA:F2:6C:A8:ED:B3:C8:78:FE:57:95:F2:AB:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AnK9OzKuyvJsqO2zyHj-V5Xyq28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/af2e75-ecee-48e1-8af6-12dede9d0c71/1/AnK9OzKuyvJsqO2zyHj-V5Xyq28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/af2e75-ecee-48e1-8af6-12dede9d0c71/1/AnK9OzKuyvJsqO2zyHj-V5Xyq28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:22:dc:4b:a2:ea:e6:7b:ae:47:d5:54:06:b9:e8:de:06:af:
51:ec:d9:fb:d1:ef:45:aa:c8:82:a3:1c:07:4c:2e:89:04:f5:
24:bd:8a:4e:7b:aa:40:cd:6e:bd:9c:98:f5:c7:63:95:66:0e:
fe:c2:e5:7b:73:a4:cf:21:43:db:fe:6b:4e:e7:a2:93:a1:d1:
86:1d:61:85:49:12:76:79:a7:4e:fa:91:69:94:f7:ae:bd:96:
6a:7b:21:de:e8:52:2f:1c:1f:09:de:5f:67:a4:1a:dd:19:c3:
e2:a4:27:50:2f:ff:c2:a9:3e:ed:60:48:bb:be:c3:1c:ac:bd:
ef:47:d7:f8:61:e9:e0:8a:a2:c7:cb:1b:bf:6d:c0:02:8b:b3:
14:90:c5:e3:68:45:84:19:ed:47:c1:ec:7f:d9:7a:d2:33:be:
30:e7:11:b0:6b:1c:5f:53:80:9d:4f:6e:0e:ee:4a:6f:d0:c8:
ea:a7:a4:74:b2:0e:82:2f:c4:c9:da:f8:e5:c9:9f:bf:11:33:
9e:46:58:14:7b:6b:10:35:2c:43:d0:8b:61:24:9a:e8:e3:09:
8f:ba:9c:8a:6b:21:04:f1:c1:37:0e:2b:b5:b8:61:ea:d7:02:
f1:8b:9d:b2:49:d1:3a:f1:e3:ae:b3:29:b2:6e:af:e3:a9:61:
0c:36:10:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9i9MVaRpWZXREiXbGkHBDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNzJiZDNiMzJhZWNhZjI2Y2E4ZWRiM2M4NzhmZTU3OTVm
MmFiNmYwHhcNMjUwODA2MDQwMjUyWhcNMjUwODA3MDQwMjUyWjAzMTEwLwYDVQQD
EygxYWNiYWFlYWEwNWU5Y2ZiMTk4MTBlN2NhYTUwYmYyNWYzMzE3MDAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhsPRdNlm6XM42Kn77USI4z0zkpA
ftnxgo74Hg7ypi28V33iF+aJae4VJ7LnTxy9iIaloQyBIFukCKNerBchsrYAguak
7iUZZvvJ2H2LoNtpL4rrdQ1cxd145ahRAy80N5/X5dH7WbPp5gLaxINuwhc0/hal
TEx8o8Rw4i3pP37Q2Z3JqtsHF7VuoZHMuUNQcAfAtafgKemQE1M0h8jLf5KkElSa
LZB5KG/ChMgMn9Qlc38mP65yHUrwInMyQLBLkrqSqY+mA77sOnRFwy9NvLDIsRZp
F5C3VSBH9R0P6wQgf+9xBnAJiKCFCh4MOeJRKFgYAUQVMVj8TKvzPMSmDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBrLquqgXpz7GYEOfKpQvyXzMXABMB8GA1UdIwQY
MBaAFAJyvTsyrsrybKjts8h4/leV8qtvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW5LOU96S3V5dkpzcU8yenlIai1WNVh5cTI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9hZjJlNzUtZWNlZS00OGUxLThhZjYt
MTJkZWRlOWQwYzcxLzEvQW5LOU96S3V5dkpzcU8yenlIai1WNVh5cTI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC9hZjJlNzUtZWNlZS00OGUxLThhZjYtMTJkZWRlOWQwYzcx
LzEvQW5LOU96S3V5dkpzcU8yenlIai1WNVh5cTI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATiLcS6Lq
5nuuR9VUBrno3gavUezZ+9HvRarIgqMcB0wuiQT1JL2KTnuqQM1uvZyY9cdjlWYO
/sLle3OkzyFD2/5rTueik6HRhh1hhUkSdnmnTvqRaZT3rr2Wansh3uhSLxwfCd5f
Z6Qa3RnD4qQnUC//wqk+7WBIu77DHKy970fX+GHp4Iqix8sbv23AAouzFJDF42hF
hBntR8Hsf9l60jO+MOcRsGscX1OAnU9uDu5Kb9DI6qekdLIOgi/Eydr45cmfvxEz
nkZYFHtrEDUsQ9CLYSSa6OMJj7qcimshBPHBNw4rtbhh6tcC8YudsknROvHjrrMp
sm6v46lhDDYQnQ==
-----END CERTIFICATE-----
Generated at Wed Aug 6 09:37:02 2025 by rpki-client