Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
File: Ay1SsyOaHOPN00MxNIzngN3xZMA.mft (raw, json)
Hash identifier: zzJXsIR7GRXjWed4LQQeKUGaRQLS8ujDt8DVxaw3vcE=
Subject key identifier: 4F:4A:C8:38:EE:67:B9:58:FD:2D:C4:0E:20:B1:BB:25:96:20:5F:D7
Authority key identifier: 03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
Certificate issuer: /CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Certificate serial: 0198A23D36B1119A3A9E8E855C366ADC9799
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
Manifest number: 06E0
Signing time: Wed 13 Aug 2025 07:02:57 +0000
Manifest this update: Wed 13 Aug 2025 07:02:57 +0000
Manifest next update: Thu 14 Aug 2025 07:02:57 +0000
Files and hashes: 1: Ay1SsyOaHOPN00MxNIzngN3xZMA.crl (hash: cu6WKAr5EZ45Rr8rKbEcQUOyL/kudFhzn+fRwMmdfiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 Aug 2025 07:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a2:3d:36:b1:11:9a:3a:9e:8e:85:5c:36:6a:dc:97:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Validity
Not Before: Aug 13 07:02:57 2025 GMT
Not After : Aug 14 07:02:57 2025 GMT
Subject: CN=4f4ac838ee67b958fd2dc40e20b1bb2596205fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:98:22:79:46:08:92:18:5b:bc:06:ea:b8:5d:
02:8c:3a:5f:4f:e6:43:15:af:d3:7a:ed:c0:f3:ee:
5b:cf:2d:9e:1f:31:1f:bc:da:0b:e5:08:cd:c8:13:
62:51:11:6d:24:4f:db:7d:6b:7b:6a:44:4f:ac:5f:
4f:dd:af:e1:d3:84:41:f5:22:4f:78:f3:ea:0f:98:
26:58:2e:99:dc:a9:eb:d2:cf:d8:74:4f:27:96:c9:
13:84:d5:d6:a9:7f:2d:4c:b3:4e:a2:d7:a6:ca:3b:
2f:48:d1:72:49:5b:5f:98:ea:04:ab:a8:65:4e:b4:
32:82:23:eb:58:79:2a:32:95:e1:ca:0c:2c:d2:30:
af:e8:e5:59:00:be:41:65:f9:9e:d2:1e:30:6b:9c:
e4:3f:eb:6c:19:d2:22:72:24:34:9c:82:28:81:11:
fb:6b:6e:68:78:e5:d9:85:e8:37:c6:c8:24:0a:fc:
d7:5f:5f:a4:69:a1:41:01:6e:73:01:d6:e2:5c:c4:
c1:76:9e:82:b0:28:36:d0:1e:65:92:3d:31:3a:e2:
17:80:bd:09:d5:f5:16:af:c9:e4:0a:35:a9:6b:e4:
f7:33:9e:ba:dd:de:33:67:3b:7a:9c:93:62:b5:85:
51:e3:c1:e8:da:ca:2d:bc:02:76:cf:11:7a:5d:aa:
22:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:4A:C8:38:EE:67:B9:58:FD:2D:C4:0E:20:B1:BB:25:96:20:5F:D7
X509v3 Authority Key Identifier:
keyid:03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:bd:70:d8:40:53:ea:10:e5:28:46:1e:79:57:d4:48:bf:ca:
87:5a:e1:dd:a7:97:9a:8c:ab:17:cb:19:60:a3:73:26:88:f9:
c2:53:c0:d0:59:b9:f5:e1:1a:8e:94:6f:97:91:a7:dc:ca:a6:
60:d5:c4:10:f3:fa:dc:e2:de:49:be:de:67:b0:94:b1:20:27:
5f:6a:ec:af:67:84:4a:50:a2:d1:a8:a0:4a:e1:70:47:50:aa:
02:5e:e9:0c:7e:f4:4e:2d:8d:c6:82:fe:3f:c0:b1:10:38:f2:
69:f0:37:90:2e:e2:92:0b:c3:fb:cc:e4:15:54:42:c0:91:f4:
79:59:8a:b6:a0:32:4f:62:6a:96:d2:52:0d:b2:5d:0a:99:b0:
04:ac:8f:72:99:11:f6:c5:3f:3e:22:d7:25:e5:a6:05:eb:66:
55:d7:dc:e4:ca:2a:66:af:b6:79:0e:d7:95:01:66:74:42:18:
c7:4c:eb:36:61:bc:c2:87:4c:1d:07:d1:c1:0f:8d:16:9e:f2:
b2:e9:d2:0c:98:71:b3:90:aa:af:21:b3:cf:31:49:24:69:be:
41:c4:f0:34:42:44:83:0c:62:37:84:68:17:a6:ee:bd:4a:3c:
a9:33:08:2b:8d:30:0c:4b:bf:cf:d7:e0:60:12:8e:d3:75:02:
02:ed:75:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiiPTaxEZo6no6FXDZq3JeZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzMmQ1MmIzMjM5YTFjZTNjZGQzNDMzMTM0OGNlNzgwZGRm
MTY0YzAwHhcNMjUwODEzMDcwMjU3WhcNMjUwODE0MDcwMjU3WjAzMTEwLwYDVQQD
Eyg0ZjRhYzgzOGVlNjdiOTU4ZmQyZGM0MGUyMGIxYmIyNTk2MjA1ZmQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpgieUYIkhhbvAbquF0CjDpfT+ZD
Fa/Teu3A8+5bzy2eHzEfvNoL5QjNyBNiURFtJE/bfWt7akRPrF9P3a/h04RB9SJP
ePPqD5gmWC6Z3Knr0s/YdE8nlskThNXWqX8tTLNOotemyjsvSNFySVtfmOoEq6hl
TrQygiPrWHkqMpXhygws0jCv6OVZAL5BZfme0h4wa5zkP+tsGdIiciQ0nIIogRH7
a25oeOXZheg3xsgkCvzXX1+kaaFBAW5zAdbiXMTBdp6CsCg20B5lkj0xOuIXgL0J
1fUWr8nkCjWpa+T3M5663d4zZzt6nJNitYVR48Ho2sotvAJ2zxF6XaoiuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE9KyDjuZ7lY/S3EDiCxuyWWIF/XMB8GA1UdIwQY
MBaAFAMtUrMjmhzjzdNDMTSM54Dd8WTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXkxU3N5T2FIT1BOMDBNeE5Jem5nTjN4Wk1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9iYzVmMTUtNThhZS00ZGYwLTljNmQt
ZTdhZDczYmJjYzg5LzEvQXkxU3N5T2FIT1BOMDBNeE5Jem5nTjN4Wk1BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9iYzVmMTUtNThhZS00ZGYwLTljNmQtZTdhZDczYmJjYzg5
LzEvQXkxU3N5T2FIT1BOMDBNeE5Jem5nTjN4Wk1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP71w2EBT
6hDlKEYeeVfUSL/Kh1rh3aeXmoyrF8sZYKNzJoj5wlPA0Fm59eEajpRvl5Gn3Mqm
YNXEEPP63OLeSb7eZ7CUsSAnX2rsr2eESlCi0aigSuFwR1CqAl7pDH70Ti2NxoL+
P8CxEDjyafA3kC7ikgvD+8zkFVRCwJH0eVmKtqAyT2JqltJSDbJdCpmwBKyPcpkR
9sU/PiLXJeWmBetmVdfc5MoqZq+2eQ7XlQFmdEIYx0zrNmG8wodMHQfRwQ+NFp7y
sunSDJhxs5CqryGzzzFJJGm+QcTwNEJEgwxiN4RoF6buvUo8qTMIK40wDEu/z9fg
YBKO03UCAu11vA==
-----END CERTIFICATE-----
Generated at Wed Aug 13 09:44:36 2025 by rpki-client