Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json)
Hash identifier: xTRPBectUVbgNGHNXowtbMVJPFjyArOCiCA0rilt9uY=
Subject key identifier: 12:8F:D3:97:E7:0B:25:6E:15:E6:2B:8A:A8:46:07:5E:A4:AA:41:EE
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 019A4F62BAAED6C28955512FE5A98710E860
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
Manifest number: 171A
Signing time: Tue 04 Nov 2025 15:01:01 +0000
Manifest this update: Tue 04 Nov 2025 15:01:01 +0000
Manifest next update: Wed 05 Nov 2025 15:01:01 +0000
Files and hashes: 1: 6QBVEiLusjnuHnwecVMK9Kg-WII.roa (hash: OapSvDTUmzDRZu9Q3KlIrLgI0CjCfgxrem8xot5UiSo=)
2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: gLnoPgXnz9nnax9Mt8OVbUUQk+8Z+A90l7VSMw4w/fk=)
3: GiC40GdnPgHbIqIbDNeP-spJi-M.roa (hash: Xd4LHWf6P2V0nuixtM1f8JXOI9EnPVM3k32pXeFOXiw=)
4: JeT3PicL3j6wpeXRT3s8FrJpy3w.roa (hash: tjXOPJYxlFtc8BfVkznJC0Nu37PcV0Dt33rxJApZ9kY=)
5: L5lOWtMXwmLYho3Arxcpd76R5sw.roa (hash: XM0Za1PmkukhwAWipMkx42usukTFibdWlbabSAWWgH4=)
6: Lwic0o2gw3k82wpfSkPa-wUg5Aw.roa (hash: pZ1a8TMxYqDEEa657nYARi2g7u3tXGj01SXvh3eUl1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:ba:ae:d6:c2:89:55:51:2f:e5:a9:87:10:e8:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: Nov 4 15:01:01 2025 GMT
Not After : Nov 5 15:01:01 2025 GMT
Subject: CN=128fd397e70b256e15e62b8aa846075ea4aa41ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7d:bb:5e:02:fb:8d:37:23:b6:5b:5f:69:da:
a7:4c:bc:dc:06:4b:54:86:ef:cd:f1:82:5b:9d:f6:
53:f5:e8:56:56:22:63:99:d4:d0:0a:43:d6:75:0a:
76:c3:f5:d1:f3:47:ee:25:3c:dc:91:3d:a4:ca:95:
73:f3:3e:7c:32:1d:01:90:7c:b2:f2:4a:10:01:7e:
96:2a:28:8d:ac:f4:13:46:a0:c5:b8:82:ea:d1:cc:
fc:5a:99:59:9a:2c:32:3c:d7:71:43:b4:5f:e8:34:
d4:76:7d:b8:3b:05:f7:fa:70:a8:ed:47:8b:53:38:
3b:73:55:84:98:ce:ce:a8:41:c4:2c:6e:aa:6e:f2:
a4:88:73:05:c8:dd:43:1e:14:ca:ce:59:be:aa:b8:
2f:06:dd:ea:4c:b8:57:85:c3:16:9d:68:e8:08:ba:
c0:03:ad:6b:51:45:7d:ed:af:a5:01:25:1c:89:fe:
ca:b0:b5:47:28:58:e2:e7:16:b1:43:eb:46:25:ec:
c9:8b:5a:8b:72:e4:d1:6d:9d:83:1a:aa:94:f6:6d:
d8:13:1c:02:a2:21:98:3f:b0:77:69:dc:ed:c3:a1:
66:3a:96:97:e1:cb:ac:96:58:d9:2a:4c:a8:e9:3b:
dc:b1:06:46:69:1e:5a:a6:a9:2a:aa:a1:88:b3:60:
62:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:8F:D3:97:E7:0B:25:6E:15:E6:2B:8A:A8:46:07:5E:A4:AA:41:EE
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:fc:7c:8f:d0:89:3e:37:46:1b:97:15:b0:f6:8d:d6:d7:a3:
1f:0a:04:13:27:92:ce:db:90:81:08:eb:8f:b6:02:bd:fa:64:
6a:c6:e5:58:d5:6a:51:89:79:58:6c:55:6f:fb:01:22:61:d1:
d8:78:d2:c9:01:1f:0d:b4:9f:51:e2:ce:ea:97:7f:e5:e7:51:
ec:4b:24:cf:af:8b:20:e0:05:94:dd:a3:1b:8d:7e:0a:44:7f:
da:3b:48:25:ad:c9:b6:89:d9:63:d9:78:58:41:0d:f7:5a:41:
c1:d5:f2:34:4a:fb:10:c9:5a:56:65:9c:3e:e3:7e:e2:82:4f:
40:8e:62:88:15:e2:31:4a:4a:56:6a:29:5a:c3:c5:3f:7a:68:
a6:ea:9c:f0:d2:92:1e:83:e7:16:01:d3:b7:d3:8d:03:14:cd:
8c:a3:dc:e1:6a:b7:62:cb:b0:92:7c:ed:56:ba:03:bf:74:76:
ac:b6:bd:e9:38:42:15:fa:5a:7f:51:6f:88:80:57:f7:06:1a:
1e:90:dd:26:a5:c4:41:c5:73:09:f2:f5:00:98:39:8b:3c:2d:
1d:72:3b:af:05:45:d5:45:6e:a0:46:e9:40:5a:e7:b5:93:7e:
be:fc:86:2d:79:da:ec:8a:f6:30:c9:70:20:60:61:06:7c:84:
86:f2:35:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPYrqu1sKJVVEv5amHEOhgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNWYyYTkzZGIxMGYyZGQ1ZjZhNTViYjJhNDQwZjY3NDg2
Y2QxYTMwHhcNMjUxMTA0MTUwMTAxWhcNMjUxMTA1MTUwMTAxWjAzMTEwLwYDVQQD
EygxMjhmZDM5N2U3MGIyNTZlMTVlNjJiOGFhODQ2MDc1ZWE0YWE0MWVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk327XgL7jTcjtltfadqnTLzcBktU
hu/N8YJbnfZT9ehWViJjmdTQCkPWdQp2w/XR80fuJTzckT2kypVz8z58Mh0BkHyy
8koQAX6WKiiNrPQTRqDFuILq0cz8WplZmiwyPNdxQ7Rf6DTUdn24OwX3+nCo7UeL
Uzg7c1WEmM7OqEHELG6qbvKkiHMFyN1DHhTKzlm+qrgvBt3qTLhXhcMWnWjoCLrA
A61rUUV97a+lASUcif7KsLVHKFji5xaxQ+tGJezJi1qLcuTRbZ2DGqqU9m3YExwC
oiGYP7B3adztw6FmOpaX4cuslljZKkyo6TvcsQZGaR5apqkqqqGIs2BiOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBKP05fnCyVuFeYriqhGB16kqkHuMB8GA1UdIwQY
MBaAFAJfKpPbEPLdX2pVuypED2dIbNGjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8yMDVkMjQtMDA5Zi00ODZhLTk3NmYt
MmVjZGExMWRlMTUzLzEvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8yMDVkMjQtMDA5Zi00ODZhLTk3NmYtMmVjZGExMWRlMTUz
LzEvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPPx8j9CJ
PjdGG5cVsPaN1tejHwoEEyeSztuQgQjrj7YCvfpkasblWNVqUYl5WGxVb/sBImHR
2HjSyQEfDbSfUeLO6pd/5edR7Eskz6+LIOAFlN2jG41+CkR/2jtIJa3JtonZY9l4
WEEN91pBwdXyNEr7EMlaVmWcPuN+4oJPQI5iiBXiMUpKVmopWsPFP3popuqc8NKS
HoPnFgHTt9ONAxTNjKPc4Wq3YsuwknztVroDv3R2rLa96ThCFfpaf1FviIBX9wYa
HpDdJqXEQcVzCfL1AJg5izwtHXI7rwVF1UVuoEbpQFrntZN+vvyGLXna7Ir2MMlw
IGBhBnyEhvI1wg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:29:27 2025 by rpki-client