Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
File: aesALwAL1CbkpkDHHWwCAbUFDjQ.mft (raw, json)
Hash identifier: wSqLM3vSYBTZn9erqbanBGVgV+AwHHHo6GhKBg1yV7M=
Subject key identifier: 6F:84:0B:E6:D6:AC:17:40:3B:A2:E2:7C:4B:82:AB:21:4F:4A:0B:64
Authority key identifier: 69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
Certificate issuer: /CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Certificate serial: 0199FBEAA3F87AB228B7A29036D96693225A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
Manifest number: 1627
Signing time: Sun 19 Oct 2025 10:01:22 +0000
Manifest this update: Sun 19 Oct 2025 10:01:22 +0000
Manifest next update: Mon 20 Oct 2025 10:01:22 +0000
Files and hashes: 1: aesALwAL1CbkpkDHHWwCAbUFDjQ.crl (hash: 5VGM+LrHS7XQ56bwrsumHllP4styvVyDQMfltJ7Llz4=)
2: iGWnAlCFQ6pmXTyPhSirCP5UB4U.roa (hash: 4zG8JsxyxdWf4j+Yjdv8Dm4ymHITRyxtThA4racm63s=)
3: rDWkJyuDMvY3qk_P3bLz1VAfXBA.roa (hash: T51bFQ1LTlcOohBY3SvkvA3KStpNAaU7OZJJkLrtQ5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:a3:f8:7a:b2:28:b7:a2:90:36:d9:66:93:22:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Validity
Not Before: Oct 19 10:01:22 2025 GMT
Not After : Oct 20 10:01:22 2025 GMT
Subject: CN=6f840be6d6ac17403ba2e27c4b82ab214f4a0b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2d:61:a4:e0:2d:5e:9c:a2:e5:97:4f:60:f7:
0c:90:9c:86:6e:58:94:db:1e:ff:4e:26:af:81:5e:
41:87:42:ab:81:87:a7:e1:9c:19:14:f6:2f:b9:c7:
15:39:1b:0c:c7:90:5f:be:d4:68:c4:87:a6:fc:12:
2c:b1:47:61:42:ba:45:8d:40:e1:57:38:eb:a4:49:
05:e0:87:a0:f1:74:57:c1:e8:27:0d:be:9a:c4:6e:
63:e6:aa:c4:48:4f:72:c4:31:f9:7b:68:89:5b:86:
f8:e7:e0:e0:58:f2:df:85:a3:91:74:01:dd:dd:39:
ba:d2:c9:d9:f3:bd:78:d3:1e:c7:64:72:57:60:f4:
39:b9:74:db:bc:21:20:46:bc:16:63:50:97:7f:b7:
89:7c:fd:91:a2:1c:49:db:27:5b:33:4b:27:e5:d8:
cc:6f:2c:1b:bd:6f:5f:8a:d7:52:2c:86:1a:89:5a:
c5:ee:d5:f3:13:0b:62:33:1f:db:6a:a2:08:e8:63:
9f:c2:6f:09:0b:f5:30:f4:bb:3f:ec:b0:77:8b:1d:
0e:04:d4:fa:53:08:01:10:58:25:16:73:e6:9a:ef:
2a:1d:29:26:35:3b:9f:03:45:9e:f5:32:d7:f8:b6:
1d:08:4c:e6:54:b3:84:50:a9:02:92:2b:a0:6f:0f:
9f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:84:0B:E6:D6:AC:17:40:3B:A2:E2:7C:4B:82:AB:21:4F:4A:0B:64
X509v3 Authority Key Identifier:
keyid:69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:a5:c3:c3:27:f6:ef:0b:f2:7e:e0:32:ad:29:e5:0a:65:4f:
1c:35:7c:db:6a:8b:f8:b7:9f:cc:e7:20:b6:63:dd:d5:d0:00:
d0:5d:41:2d:8a:09:10:ef:2e:0f:98:e4:b9:05:f8:f0:cb:6f:
3e:e5:d4:80:5c:7c:db:af:55:a6:fb:56:ec:ac:dc:cb:52:4f:
5d:f0:29:0c:76:62:7b:2e:2d:0b:55:f6:06:1f:11:6d:59:2f:
e9:03:1e:7a:3f:bf:c3:73:f2:04:20:2a:53:25:b9:a8:ea:2a:
35:af:59:60:fe:14:07:be:b2:2a:28:c7:d2:51:5c:2e:bb:c6:
9e:20:0a:f6:fd:27:b4:f7:21:ee:36:a1:93:53:20:92:f0:f3:
0f:f8:0c:64:ac:7c:0b:fb:f0:58:c1:46:0f:c3:b2:96:63:cc:
51:a6:a9:13:87:1c:a5:3d:50:28:cb:b6:6c:41:bf:98:a4:4b:
67:ff:4e:24:40:a6:51:7c:8c:82:e6:9e:82:9b:ca:d0:ce:20:
fb:c5:33:75:3a:99:b7:a4:de:2f:34:8c:38:d3:39:d0:a9:4c:
b6:f7:1d:6b:47:f3:05:23:bd:55:43:a3:9b:4f:ff:6f:a5:c2:
f5:d5:74:27:98:aa:c1:a6:04:fe:11:22:bd:e3:43:47:e1:3b:
ad:e1:8e:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76qP4erIot6KQNtlmkyJaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ZWIwMDJmMDAwYmQ0MjZlNGE2NDBjNzFkNmMwMjAxYjUw
NTBlMzQwHhcNMjUxMDE5MTAwMTIyWhcNMjUxMDIwMTAwMTIyWjAzMTEwLwYDVQQD
Eyg2Zjg0MGJlNmQ2YWMxNzQwM2JhMmUyN2M0YjgyYWIyMTRmNGEwYjY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoC1hpOAtXpyi5ZdPYPcMkJyGbliU
2x7/TiavgV5Bh0KrgYen4ZwZFPYvuccVORsMx5BfvtRoxIem/BIssUdhQrpFjUDh
VzjrpEkF4Ieg8XRXwegnDb6axG5j5qrESE9yxDH5e2iJW4b45+DgWPLfhaORdAHd
3Tm60snZ87140x7HZHJXYPQ5uXTbvCEgRrwWY1CXf7eJfP2RohxJ2ydbM0sn5djM
bywbvW9fitdSLIYaiVrF7tXzEwtiMx/baqII6GOfwm8JC/Uw9Ls/7LB3ix0OBNT6
UwgBEFglFnPmmu8qHSkmNTufA0We9TLX+LYdCEzmVLOEUKkCkiugbw+fmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG+EC+bWrBdAO6LifEuCqyFPSgtkMB8GA1UdIwQY
MBaAFGnrAC8AC9Qm5KZAxx1sAgG1BQ40MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWVzQUx3QUwxQ2JrcGtESEhXd0NBYlVGRGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9kM2U2ODItMzM3MC00MjcxLTk0Mzct
Nzg1NDc1YzIyYzliLzEvYWVzQUx3QUwxQ2JrcGtESEhXd0NBYlVGRGpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9kM2U2ODItMzM3MC00MjcxLTk0MzctNzg1NDc1YzIyYzli
LzEvYWVzQUx3QUwxQ2JrcGtESEhXd0NBYlVGRGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMaXDwyf2
7wvyfuAyrSnlCmVPHDV822qL+LefzOcgtmPd1dAA0F1BLYoJEO8uD5jkuQX48Mtv
PuXUgFx8269VpvtW7Kzcy1JPXfApDHZiey4tC1X2Bh8RbVkv6QMeej+/w3PyBCAq
UyW5qOoqNa9ZYP4UB76yKijH0lFcLrvGniAK9v0ntPch7jahk1MgkvDzD/gMZKx8
C/vwWMFGD8OylmPMUaapE4ccpT1QKMu2bEG/mKRLZ/9OJECmUXyMguaegpvK0M4g
+8UzdTqZt6TeLzSMONM50KlMtvcda0fzBSO9VUOjm0//b6XC9dV0J5iqwaYE/hEi
veNDR+E7reGOZw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:30:00 2025 by rpki-client