Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
File: AsLBh9mLRgOATtEWWttFCbYwqDo.mft (raw, json)
Hash identifier: sTV4lXBPTxGbdqVBupxyIAmnHPJ/7EeSwW85Ju09uQ8=
Subject key identifier: 54:C2:A3:83:C0:27:56:E1:6D:10:15:9B:58:52:5C:3F:F7:59:F9:E9
Authority key identifier: 02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A
Certificate issuer: /CN=02c2c187d98b4603804ed1165adb4509b630a83a
Certificate serial: 019A4E191C94CF5CB1E7766D4A3E0FB594C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
Manifest number: 0C01
Signing time: Tue 04 Nov 2025 09:00:59 +0000
Manifest this update: Tue 04 Nov 2025 09:00:59 +0000
Manifest next update: Wed 05 Nov 2025 09:00:59 +0000
Files and hashes: 1: AsLBh9mLRgOATtEWWttFCbYwqDo.crl (hash: f9TH+cLcW2Vort/8kfE1gmVW3CaKyReUBbEY0OKJXLs=)
2: vSD8XToST3_PVTIy1XwVerhMPWI.roa (hash: Yvhr0/CtepPwOm3ynZwacKeoADnHcOUi9JQFKNsVsJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:19:1c:94:cf:5c:b1:e7:76:6d:4a:3e:0f:b5:94:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c2c187d98b4603804ed1165adb4509b630a83a
Validity
Not Before: Nov 4 09:00:59 2025 GMT
Not After : Nov 5 09:00:59 2025 GMT
Subject: CN=54c2a383c02756e16d10159b58525c3ff759f9e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:09:df:01:71:f2:fc:87:38:f8:5f:a7:21:3d:
88:b3:5b:f4:9b:50:32:a3:0a:d3:d5:2c:49:6b:d4:
83:2d:c7:91:ab:b7:61:97:c3:50:82:4f:15:c2:fa:
6f:7a:e0:3b:ee:04:c8:9a:ec:00:78:a7:e8:6a:31:
ba:a9:17:5b:c2:ff:12:b5:13:35:af:7e:6a:10:7f:
e4:00:83:e3:6b:4b:15:ae:00:35:80:74:77:cb:46:
a2:d1:e0:63:d9:ca:ab:d4:55:58:49:f3:9e:9f:d4:
ea:d4:23:6d:3d:ed:c2:48:1b:3e:27:f6:74:13:da:
cd:18:a3:23:96:d3:48:ac:99:08:c3:6e:ad:ab:90:
d2:50:c4:ed:24:97:2d:3a:60:ea:9c:8f:ce:57:12:
79:55:d6:ca:9b:8a:df:bf:5f:62:ad:9f:6e:54:9a:
9f:85:59:a8:51:56:26:51:9c:f5:11:c6:8d:62:73:
c3:15:3a:fb:5f:0b:9b:b9:17:72:cf:26:91:1d:56:
75:4e:2c:76:d1:4a:55:67:12:c7:12:5a:57:c8:b4:
ed:7e:c5:e8:8d:ed:b2:c6:a5:15:e4:dd:d0:04:fe:
c9:48:14:38:e5:39:a9:17:a9:19:62:78:8f:6d:a3:
31:a0:87:76:3c:19:a1:11:22:fd:94:c2:78:04:22:
ec:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:C2:A3:83:C0:27:56:E1:6D:10:15:9B:58:52:5C:3F:F7:59:F9:E9
X509v3 Authority Key Identifier:
keyid:02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:7c:4d:a4:26:c2:62:56:0b:a9:a0:d7:78:56:9d:db:b5:18:
ae:6f:be:c4:cd:68:03:0b:fd:74:23:aa:90:d3:86:92:59:2c:
79:ce:b0:4c:6c:b7:a5:ec:12:7b:d0:2c:4b:e4:1f:c3:9f:9f:
85:25:ad:bf:12:c6:9e:94:9b:ff:5b:94:b7:7e:0e:a7:2c:7a:
c2:92:1c:e5:ce:c3:82:82:a4:23:12:04:16:e4:bb:f3:5c:fd:
5b:21:d3:35:ab:e3:61:a0:4e:0f:d6:34:d7:33:27:8d:82:5b:
4d:55:5b:4b:71:68:f2:eb:3a:91:8a:2b:33:ec:2d:ef:66:68:
15:e8:ec:42:52:75:18:49:64:64:64:57:77:2e:3a:a0:f0:f9:
3a:c3:ba:c6:64:c3:09:e3:62:f2:1b:69:13:29:37:58:be:32:
ab:66:ca:76:f3:f2:c6:8a:fe:74:7e:00:75:d0:b0:ef:e6:fc:
a0:6f:f8:bb:6f:79:ff:37:e2:f5:2e:4c:58:53:73:02:29:85:
69:61:ab:7e:e6:96:5d:3e:7c:a7:f2:85:04:46:83:45:64:ce:
a3:43:b7:c8:c7:e2:12:59:b9:d0:13:93:ff:9e:27:5d:c2:94:
bb:b8:97:93:75:41:98:5c:85:54:9f:47:2e:23:43:07:0c:dc:
56:98:da:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOGRyUz1yx53ZtSj4PtZTGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyYzJjMTg3ZDk4YjQ2MDM4MDRlZDExNjVhZGI0NTA5YjYz
MGE4M2EwHhcNMjUxMTA0MDkwMDU5WhcNMjUxMTA1MDkwMDU5WjAzMTEwLwYDVQQD
Eyg1NGMyYTM4M2MwMjc1NmUxNmQxMDE1OWI1ODUyNWMzZmY3NTlmOWU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQnfAXHy/Ic4+F+nIT2Is1v0m1Ay
owrT1SxJa9SDLceRq7dhl8NQgk8VwvpveuA77gTImuwAeKfoajG6qRdbwv8StRM1
r35qEH/kAIPja0sVrgA1gHR3y0ai0eBj2cqr1FVYSfOen9Tq1CNtPe3CSBs+J/Z0
E9rNGKMjltNIrJkIw26tq5DSUMTtJJctOmDqnI/OVxJ5VdbKm4rfv19irZ9uVJqf
hVmoUVYmUZz1EcaNYnPDFTr7XwubuRdyzyaRHVZ1Tix20UpVZxLHElpXyLTtfsXo
je2yxqUV5N3QBP7JSBQ45TmpF6kZYniPbaMxoId2PBmhESL9lMJ4BCLsGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFTCo4PAJ1bhbRAVm1hSXD/3WfnpMB8GA1UdIwQY
MBaAFALCwYfZi0YDgE7RFlrbRQm2MKg6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXNMQmg5bUxSZ09BVHRFV1d0dEZDYll3cURvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy83MjllYTQtNmE2OC00ODM4LThmZWMt
N2ZlYjE4YjlmNTUyLzEvQXNMQmg5bUxSZ09BVHRFV1d0dEZDYll3cURvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy83MjllYTQtNmE2OC00ODM4LThmZWMtN2ZlYjE4YjlmNTUy
LzEvQXNMQmg5bUxSZ09BVHRFV1d0dEZDYll3cURvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdHxNpCbC
YlYLqaDXeFad27UYrm++xM1oAwv9dCOqkNOGklksec6wTGy3pewSe9AsS+Qfw5+f
hSWtvxLGnpSb/1uUt34Opyx6wpIc5c7DgoKkIxIEFuS781z9WyHTNavjYaBOD9Y0
1zMnjYJbTVVbS3Fo8us6kYorM+wt72ZoFejsQlJ1GElkZGRXdy46oPD5OsO6xmTD
CeNi8htpEyk3WL4yq2bKdvPyxor+dH4AddCw7+b8oG/4u295/zfi9S5MWFNzAimF
aWGrfuaWXT58p/KFBEaDRWTOo0O3yMfiElm50BOT/54nXcKUu7iXk3VBmFyFVJ9H
LiNDBwzcVpjaUw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 17:35:51 2025 by rpki-client