Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
File: r7ALKTlueAM-26yv75hQsbDjUyM.mft (raw, json)
Hash identifier: dtvR0hyIKwLiKD+b9dLqGzIzud9B5+n1sh1HOqyp/d4=
Subject key identifier: D0:1C:38:3F:43:FD:FA:66:72:6A:8E:93:AD:39:4E:A6:CF:DA:A0:40
Authority key identifier: AF:B0:0B:29:39:6E:78:03:3E:DB:AC:AF:EF:98:50:B1:B0:E3:53:23
Certificate issuer: /CN=afb00b29396e78033edbacafef9850b1b0e35323
Certificate serial: 019A4EBD515734D5AA53B33AD980796A4754
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
Manifest number: 0FBA
Signing time: Tue 04 Nov 2025 12:00:21 +0000
Manifest this update: Tue 04 Nov 2025 12:00:21 +0000
Manifest next update: Wed 05 Nov 2025 12:00:21 +0000
Files and hashes: 1: CY3YIBeeXy7d304leRk_84B6aOw.roa (hash: a5cqctkZKmbgtiXrSitwhHqbpFExqVK4hQecaTEUPK8=)
2: r7ALKTlueAM-26yv75hQsbDjUyM.crl (hash: 805H81P3pxMX2AUbtSh879s647CtJj5smzn3E2WE380=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:bd:51:57:34:d5:aa:53:b3:3a:d9:80:79:6a:47:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afb00b29396e78033edbacafef9850b1b0e35323
Validity
Not Before: Nov 4 12:00:21 2025 GMT
Not After : Nov 5 12:00:21 2025 GMT
Subject: CN=d01c383f43fdfa66726a8e93ad394ea6cfdaa040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bc:df:b3:a3:52:a9:c4:60:98:6f:f8:96:ac:
3f:a0:73:c5:d3:f6:4f:02:6e:d5:49:4b:72:87:e5:
30:61:7c:24:75:b0:ba:ff:25:b6:9e:8e:cf:19:45:
2d:26:02:0b:e0:ef:f1:20:57:c4:f3:ae:7d:b2:42:
01:70:e6:55:24:c1:c0:ff:48:14:93:27:fb:99:f6:
76:ec:1f:25:9e:6c:24:52:aa:ab:3f:35:49:ba:95:
af:84:26:1b:ce:87:f9:d2:6e:f0:7f:09:56:c7:e4:
34:05:ef:8c:25:85:f4:03:dd:e3:c2:03:6b:da:25:
3c:79:4e:65:c1:be:24:cb:33:5b:c2:66:e1:44:17:
52:76:d5:1f:0d:f8:29:8b:c5:a3:b7:f9:a5:f2:90:
77:eb:f7:be:d2:de:ec:23:50:43:23:bd:8c:4d:c4:
74:5b:81:cb:8f:28:e9:d7:d3:58:13:ac:85:04:bf:
cb:5a:28:d7:99:f7:e4:8a:ee:c4:b8:56:15:27:56:
e5:49:82:02:b6:ee:b6:8c:1e:4c:13:83:0a:bf:77:
6f:40:fd:22:fa:cf:d7:1b:3d:b6:5f:04:cc:0d:23:
0c:3b:ff:2a:a4:81:6d:42:34:f3:03:dc:00:3f:a9:
0b:13:df:0f:54:d9:bc:53:7c:9d:b8:5e:d8:3d:4e:
da:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:1C:38:3F:43:FD:FA:66:72:6A:8E:93:AD:39:4E:A6:CF:DA:A0:40
X509v3 Authority Key Identifier:
keyid:AF:B0:0B:29:39:6E:78:03:3E:DB:AC:AF:EF:98:50:B1:B0:E3:53:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:b6:6a:05:67:ec:a2:fe:c4:de:1f:91:29:f2:e5:f9:17:c5:
15:f6:9b:ea:42:4e:7d:48:9d:00:44:c3:e3:26:86:94:a0:24:
fd:00:30:f8:fc:72:a8:91:8e:82:47:ad:a8:30:62:e2:1b:ea:
6a:77:af:0f:26:26:8e:f1:a0:af:04:14:83:86:0c:27:fb:9c:
1e:b9:8f:04:6d:e5:0f:85:15:cc:43:d7:b2:06:e2:56:ee:bc:
82:4b:61:d7:d6:32:60:9d:13:7d:91:94:4a:97:9f:b9:1a:13:
a1:58:e3:c2:8a:5c:71:80:f5:71:27:47:6c:54:6b:3e:e2:24:
dc:06:bc:e0:c2:07:c6:57:d2:c1:a0:fc:91:87:49:de:37:e0:
ae:f6:3b:bf:d5:f7:9c:1b:3b:20:0a:3a:a5:26:1a:f9:5b:12:
b3:23:9b:da:86:cd:5d:b6:73:e7:a3:06:c8:71:57:90:09:0f:
bf:5b:cf:2b:b8:6f:09:1d:7d:66:a4:09:51:13:fd:1f:6c:c9:
fc:35:e2:96:4b:49:1a:11:25:86:68:42:25:8c:18:87:19:f9:
9a:9a:59:d9:c6:69:f7:26:f2:83:e6:95:9f:3c:8b:1e:56:38:
fd:39:ed:76:01:5f:4a:a7:f1:c5:2b:a8:db:bf:df:97:ac:38:
8b:41:b9:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOvVFXNNWqU7M62YB5akdUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmYjAwYjI5Mzk2ZTc4MDMzZWRiYWNhZmVmOTg1MGIxYjBl
MzUzMjMwHhcNMjUxMTA0MTIwMDIxWhcNMjUxMTA1MTIwMDIxWjAzMTEwLwYDVQQD
EyhkMDFjMzgzZjQzZmRmYTY2NzI2YThlOTNhZDM5NGVhNmNmZGFhMDQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLzfs6NSqcRgmG/4lqw/oHPF0/ZP
Am7VSUtyh+UwYXwkdbC6/yW2no7PGUUtJgIL4O/xIFfE8659skIBcOZVJMHA/0gU
kyf7mfZ27B8lnmwkUqqrPzVJupWvhCYbzof50m7wfwlWx+Q0Be+MJYX0A93jwgNr
2iU8eU5lwb4kyzNbwmbhRBdSdtUfDfgpi8Wjt/ml8pB36/e+0t7sI1BDI72MTcR0
W4HLjyjp19NYE6yFBL/LWijXmffkiu7EuFYVJ1blSYICtu62jB5ME4MKv3dvQP0i
+s/XGz22XwTMDSMMO/8qpIFtQjTzA9wAP6kLE98PVNm8U3yduF7YPU7a4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNAcOD9D/fpmcmqOk605TqbP2qBAMB8GA1UdIwQY
MBaAFK+wCyk5bngDPtusr++YULGw41MjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjdBTEtUbHVlQU0tMjZ5djc1aFFzYkRqVXlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9lNGNhNTYtMTM4Ni00MzJjLTk2Y2It
NjVhOWE0ZGZhZDllLzEvcjdBTEtUbHVlQU0tMjZ5djc1aFFzYkRqVXlNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9lNGNhNTYtMTM4Ni00MzJjLTk2Y2ItNjVhOWE0ZGZhZDll
LzEvcjdBTEtUbHVlQU0tMjZ5djc1aFFzYkRqVXlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhrZqBWfs
ov7E3h+RKfLl+RfFFfab6kJOfUidAETD4yaGlKAk/QAw+PxyqJGOgketqDBi4hvq
anevDyYmjvGgrwQUg4YMJ/ucHrmPBG3lD4UVzEPXsgbiVu68gkth19YyYJ0TfZGU
SpefuRoToVjjwopccYD1cSdHbFRrPuIk3Aa84MIHxlfSwaD8kYdJ3jfgrvY7v9X3
nBs7IAo6pSYa+VsSsyOb2obNXbZz56MGyHFXkAkPv1vPK7hvCR19ZqQJURP9H2zJ
/DXilktJGhElhmhCJYwYhxn5mppZ2cZp9ybyg+aVnzyLHlY4/TntdgFfSqfxxSuo
27/fl6w4i0G5Ng==
-----END CERTIFICATE-----
Generated at Tue Nov 4 15:01:46 2025 by rpki-client