Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
File: AyHqOVCODhemUf6SrCnqOIMtC_8.mft (raw, json)
Hash identifier: Gd9osFCBS52N3HdkFidgGJ/4fVEp6ZOkY5kLzCZqyeU=
Subject key identifier: 5A:4F:D6:7C:71:04:F2:A6:5A:5B:29:14:55:D4:CB:28:FF:F2:4D:29
Authority key identifier: 03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
Certificate issuer: /CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Certificate serial: 019A4F61F2D38694A912227604382E07975F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
Manifest number: 15AB
Signing time: Tue 04 Nov 2025 15:00:10 +0000
Manifest this update: Tue 04 Nov 2025 15:00:10 +0000
Manifest next update: Wed 05 Nov 2025 15:00:10 +0000
Files and hashes: 1: AyHqOVCODhemUf6SrCnqOIMtC_8.crl (hash: QEu8UQmP0xlAvyoeDNBHuRN725n4g9oMEYAw69UclCo=)
2: bOONrlZHdROoIahZ7NmIjgIdExM.roa (hash: 1aT2l6/v3aO2MOldiF+P6gsdMx47ItIcMI7fEC/C0L0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:61:f2:d3:86:94:a9:12:22:76:04:38:2e:07:97:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Validity
Not Before: Nov 4 15:00:10 2025 GMT
Not After : Nov 5 15:00:10 2025 GMT
Subject: CN=5a4fd67c7104f2a65a5b291455d4cb28fff24d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e9:fd:e6:cf:cd:72:54:3c:1e:29:a4:4f:5c:
be:67:d1:91:5c:0b:d3:59:2a:ed:6b:2c:de:bf:60:
ff:2f:ea:60:7b:29:0a:0c:07:8b:8f:87:b1:b7:e2:
2a:cb:72:4e:dc:4f:a8:dc:51:12:59:c1:bc:f2:f8:
fd:d8:10:be:9b:60:c7:1b:36:67:f2:34:23:30:05:
7c:00:41:cf:a0:f7:e0:5e:2b:07:b7:05:7e:44:f8:
68:ce:93:2d:e9:cc:5d:8f:44:30:0a:65:98:14:06:
56:db:35:21:e2:fa:32:aa:49:81:fc:2a:07:fa:16:
c4:5a:b4:17:20:95:96:d1:3d:fe:07:c1:3d:2a:fc:
c1:a5:c0:af:f1:b5:6b:fa:ba:37:dc:29:49:8f:f8:
ce:4f:11:c8:f0:0b:75:ea:84:7f:78:80:81:fb:21:
53:74:56:8b:88:13:04:4d:b7:ec:cb:5c:a3:fb:5e:
5d:b7:41:47:2e:2e:9d:1b:41:56:e1:62:8d:a8:34:
33:e8:1a:ae:99:a0:c3:53:f5:c4:d9:7b:85:c9:36:
d4:51:36:de:f4:ec:4f:fe:6c:99:d8:f3:69:35:1f:
34:aa:7f:f1:63:98:d1:62:43:e0:0f:2a:29:e6:6a:
4f:b3:bc:fe:43:16:0a:f1:46:7b:9b:7f:ca:3a:02:
37:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:4F:D6:7C:71:04:F2:A6:5A:5B:29:14:55:D4:CB:28:FF:F2:4D:29
X509v3 Authority Key Identifier:
keyid:03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:ee:73:33:b7:d3:a5:76:c6:b5:87:f8:dc:6b:0b:be:56:72:
e7:83:f5:a7:77:20:b5:4f:df:09:96:ec:fb:c7:61:ca:9b:88:
fb:d8:a2:2d:4c:82:a9:41:cc:17:2d:81:45:09:fa:c0:02:05:
9b:42:14:85:11:73:15:3a:12:25:ea:51:81:2d:d4:9e:d4:17:
d1:ba:cf:3c:13:5f:70:1b:87:c5:f8:aa:10:d6:e2:c5:9f:be:
77:26:14:60:54:14:e6:b0:a3:90:e8:60:2a:5e:73:f1:66:2c:
9a:1e:c8:9f:15:54:63:fe:5d:a9:85:05:ff:3c:c7:9a:b4:60:
f5:62:75:39:62:fa:47:8e:9e:03:22:a9:10:58:3f:59:4c:57:
bd:33:cd:38:24:f7:1f:c6:8e:e3:93:66:b8:be:5a:68:ae:bf:
71:80:e2:93:99:7e:cf:85:24:f0:83:d6:65:67:a1:13:94:aa:
8d:9a:47:7f:ac:1e:53:0a:32:cb:e6:ac:bc:22:c9:66:ae:5f:
d9:a0:99:67:59:6e:d5:c6:b1:db:c1:03:b3:e9:f3:d9:0f:53:
88:42:05:f7:26:ec:dd:ed:14:7e:ad:7a:28:53:99:44:9c:24:
43:7a:5b:ad:5b:e9:db:35:9f:45:52:04:24:08:21:b3:4c:90:
4b:f1:0b:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPYfLThpSpEiJ2BDguB5dfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzMjFlYTM5NTA4ZTBlMTdhNjUxZmU5MmFjMjllYTM4ODMy
ZDBiZmYwHhcNMjUxMTA0MTUwMDEwWhcNMjUxMTA1MTUwMDEwWjAzMTEwLwYDVQQD
Eyg1YTRmZDY3YzcxMDRmMmE2NWE1YjI5MTQ1NWQ0Y2IyOGZmZjI0ZDI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1un95s/NclQ8HimkT1y+Z9GRXAvT
WSrtayzev2D/L+pgeykKDAeLj4ext+Iqy3JO3E+o3FESWcG88vj92BC+m2DHGzZn
8jQjMAV8AEHPoPfgXisHtwV+RPhozpMt6cxdj0QwCmWYFAZW2zUh4voyqkmB/CoH
+hbEWrQXIJWW0T3+B8E9KvzBpcCv8bVr+ro33ClJj/jOTxHI8At16oR/eICB+yFT
dFaLiBMETbfsy1yj+15dt0FHLi6dG0FW4WKNqDQz6BqumaDDU/XE2XuFyTbUUTbe
9OxP/myZ2PNpNR80qn/xY5jRYkPgDyop5mpPs7z+QxYK8UZ7m3/KOgI3qQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFpP1nxxBPKmWlspFFXUyyj/8k0pMB8GA1UdIwQY
MBaAFAMh6jlQjg4XplH+kqwp6jiDLQv/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXlIcU9WQ09EaGVtVWY2U3JDbnFPSU10Q184LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9jNDgxN2UtODI4MS00MmY3LTlmNGQt
OGNmODA1NTExMDAyLzEvQXlIcU9WQ09EaGVtVWY2U3JDbnFPSU10Q184Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9jNDgxN2UtODI4MS00MmY3LTlmNGQtOGNmODA1NTExMDAy
LzEvQXlIcU9WQ09EaGVtVWY2U3JDbnFPSU10Q184LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP+5zM7fT
pXbGtYf43GsLvlZy54P1p3cgtU/fCZbs+8dhypuI+9iiLUyCqUHMFy2BRQn6wAIF
m0IUhRFzFToSJepRgS3UntQX0brPPBNfcBuHxfiqENbixZ++dyYUYFQU5rCjkOhg
Kl5z8WYsmh7InxVUY/5dqYUF/zzHmrRg9WJ1OWL6R46eAyKpEFg/WUxXvTPNOCT3
H8aO45NmuL5aaK6/cYDik5l+z4Uk8IPWZWehE5SqjZpHf6weUwoyy+asvCLJZq5f
2aCZZ1lu1cax28EDs+nz2Q9TiEIF9ybs3e0Ufq16KFOZRJwkQ3pbrVvp2zWfRVIE
JAghs0yQS/EL6Q==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:14:46 2025 by rpki-client