Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft
File: AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft (raw, json)
Hash identifier: WwePbOHsyRjVZzymFpkkLHVhs+3iCk7tQecxXMdzBiE=
Subject key identifier: A9:EC:5E:A7:4B:7D:92:E8:AD:3A:B4:7C:AA:8F:BD:D8:C5:2B:65:A7
Authority key identifier: 03:21:BF:EA:03:05:C4:8E:94:9E:6C:24:9F:48:10:B4:69:05:C8:86
Certificate issuer: /CN=0321bfea0305c48e949e6c249f4810b46905c886
Certificate serial: 0199FAD7EBFCCCC2C43622703262ABAC77BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft
Manifest number: 16E6
Signing time: Sun 19 Oct 2025 05:01:18 +0000
Manifest this update: Sun 19 Oct 2025 05:01:18 +0000
Manifest next update: Mon 20 Oct 2025 05:01:18 +0000
Files and hashes: 1: AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl (hash: S2yDRbjyyqRG+/3GcrNXS6Je3rv2joJGbWSbFaMfkaA=)
2: HrI_ZNL0dOaa5SSqv99U6ELy6t4.roa (hash: n13hSIM8J7SvepGBD+Vp8UM2xhOsDHmf6h7aK70kh0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:eb:fc:cc:c2:c4:36:22:70:32:62:ab:ac:77:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321bfea0305c48e949e6c249f4810b46905c886
Validity
Not Before: Oct 19 05:01:18 2025 GMT
Not After : Oct 20 05:01:18 2025 GMT
Subject: CN=a9ec5ea74b7d92e8ad3ab47caa8fbdd8c52b65a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8a:4a:a0:95:00:9d:8e:c9:4e:19:26:a3:b1:
25:35:02:c6:29:ba:d6:a5:e4:98:cc:1a:ca:2c:59:
21:c6:41:10:77:2e:d7:9b:0e:c8:86:82:62:d1:be:
cb:57:aa:f6:42:00:40:fd:46:91:2e:88:4b:fd:99:
b0:86:c5:2d:28:da:aa:17:29:71:77:5f:57:94:b3:
3a:52:04:1f:f5:2f:1e:3c:bf:3d:84:1b:fb:ea:76:
44:2a:f9:50:02:c4:5d:b5:bc:0e:dc:8f:99:5d:6f:
6c:1e:66:7b:bb:75:4c:b4:8a:18:eb:ab:37:78:c0:
f7:15:6d:65:e7:08:ba:51:c3:08:e5:0e:74:40:ee:
06:24:d9:de:1f:0b:d4:0b:ef:67:8b:5b:1d:07:c6:
d4:57:22:48:bb:91:18:24:08:98:2f:e8:f7:6c:4f:
5c:58:30:73:39:4f:b2:b2:85:42:a9:58:60:ab:0a:
07:1c:f7:53:dd:92:ad:05:fe:09:09:30:32:63:e2:
4f:f0:45:19:cf:e3:47:e9:fd:da:a5:9e:7c:d3:98:
e2:76:f7:32:c9:b2:b2:a4:4a:e8:73:da:d8:80:03:
f4:15:5c:13:d6:01:30:28:0c:64:39:ef:54:b9:3c:
0a:9f:9e:ef:d6:97:fe:73:03:79:b8:77:63:89:ad:
59:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:EC:5E:A7:4B:7D:92:E8:AD:3A:B4:7C:AA:8F:BD:D8:C5:2B:65:A7
X509v3 Authority Key Identifier:
keyid:03:21:BF:EA:03:05:C4:8E:94:9E:6C:24:9F:48:10:B4:69:05:C8:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:0e:41:ab:8e:b4:6a:a4:17:d6:2b:c3:79:cc:41:9e:99:69:
d6:9f:4b:36:76:f3:7f:a5:60:9b:ee:da:17:8b:46:6c:2e:ef:
31:ea:88:71:dc:db:f6:63:bf:32:23:72:5b:8d:7e:86:56:cf:
08:13:ac:d9:da:19:1a:d5:06:a6:9d:69:f3:eb:26:00:92:11:
c4:39:b3:e0:97:8a:49:0e:d1:0e:46:26:9c:1d:57:d8:84:e8:
56:25:d6:9f:9b:7e:fb:17:ab:51:c5:92:51:67:47:13:c7:90:
2c:09:95:78:87:39:9d:97:cf:f2:1d:94:4c:42:05:50:2c:57:
4d:8f:e8:3c:8e:82:80:5d:90:be:e2:1f:f0:bd:92:e6:7b:12:
cc:22:51:8e:c8:f2:be:5f:da:f3:8f:d8:6d:4d:c1:12:96:60:
df:db:78:40:b2:17:6b:b3:be:c8:dd:52:4e:18:10:76:6b:fd:
e5:50:54:5f:ce:b5:f4:44:1b:39:86:eb:80:d2:5a:b0:89:d0:
a3:dc:32:65:64:b8:09:0a:de:f2:01:eb:ae:7f:ef:85:2e:c1:
87:40:eb:57:2b:66:07:5e:e6:31:97:24:94:1a:5e:9c:f7:02:
5b:8d:90:cc:1b:c6:19:9f:9e:9f:2e:39:01:c2:04:6f:a4:47:
56:c7:df:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn61+v8zMLENiJwMmKrrHe+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzMjFiZmVhMDMwNWM0OGU5NDllNmMyNDlmNDgxMGI0Njkw
NWM4ODYwHhcNMjUxMDE5MDUwMTE4WhcNMjUxMDIwMDUwMTE4WjAzMTEwLwYDVQQD
EyhhOWVjNWVhNzRiN2Q5MmU4YWQzYWI0N2NhYThmYmRkOGM1MmI2NWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlYpKoJUAnY7JThkmo7ElNQLGKbrW
peSYzBrKLFkhxkEQdy7Xmw7IhoJi0b7LV6r2QgBA/UaRLohL/ZmwhsUtKNqqFylx
d19XlLM6UgQf9S8ePL89hBv76nZEKvlQAsRdtbwO3I+ZXW9sHmZ7u3VMtIoY66s3
eMD3FW1l5wi6UcMI5Q50QO4GJNneHwvUC+9ni1sdB8bUVyJIu5EYJAiYL+j3bE9c
WDBzOU+ysoVCqVhgqwoHHPdT3ZKtBf4JCTAyY+JP8EUZz+NH6f3apZ5805jidvcy
ybKypEroc9rYgAP0FVwT1gEwKAxkOe9UuTwKn57v1pf+cwN5uHdjia1ZdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKnsXqdLfZLorTq0fKqPvdjFK2WnMB8GA1UdIwQY
MBaAFAMhv+oDBcSOlJ5sJJ9IELRpBciGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8xMWRhMmItNzdiZC00MWM3LWJiZjMt
NTYwYzllN2MwNzQ3LzEvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS8xMWRhMmItNzdiZC00MWM3LWJiZjMtNTYwYzllN2MwNzQ3
LzEvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhA5Bq460
aqQX1ivDecxBnplp1p9LNnbzf6Vgm+7aF4tGbC7vMeqIcdzb9mO/MiNyW41+hlbP
CBOs2doZGtUGpp1p8+smAJIRxDmz4JeKSQ7RDkYmnB1X2IToViXWn5t++xerUcWS
UWdHE8eQLAmVeIc5nZfP8h2UTEIFUCxXTY/oPI6CgF2QvuIf8L2S5nsSzCJRjsjy
vl/a84/YbU3BEpZg39t4QLIXa7O+yN1SThgQdmv95VBUX8619EQbOYbrgNJasInQ
o9wyZWS4CQre8gHrrn/vhS7Bh0DrVytmB17mMZcklBpenPcCW42QzBvGGZ+eny45
AcIEb6RHVsffkA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:56 2025 by rpki-client