Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
File: ALlD7lfDXyx_T-wGhel9YDsHytI.mft (raw, json)
Hash identifier: 3KHUb5c93HaWwz55d5TIt6NNZ1Zlp2Jb5iJ0nXdpfqM=
Subject key identifier: 69:B1:FD:84:4D:21:03:42:A4:79:3B:61:57:97:93:1C:74:DE:E1:2E
Authority key identifier: 00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
Certificate issuer: /CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Certificate serial: 0199FD3455A0949DDC6BA0E4250D821F9AFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
Manifest number: 0AA5
Signing time: Sun 19 Oct 2025 16:01:29 +0000
Manifest this update: Sun 19 Oct 2025 16:01:29 +0000
Manifest next update: Mon 20 Oct 2025 16:01:29 +0000
Files and hashes: 1: ALlD7lfDXyx_T-wGhel9YDsHytI.crl (hash: tBaLh/w/WjYq3OPAWxj7Dk78MeO/is/SfIvnmosxzlw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:55:a0:94:9d:dc:6b:a0:e4:25:0d:82:1f:9a:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Validity
Not Before: Oct 19 16:01:29 2025 GMT
Not After : Oct 20 16:01:29 2025 GMT
Subject: CN=69b1fd844d210342a4793b615797931c74dee12e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:43:26:e1:2f:f7:60:ae:dc:c6:41:52:05:6d:
fb:ad:ce:6e:50:e3:a3:14:18:ec:af:88:ef:d1:c7:
a8:a6:5b:93:bb:1c:c4:86:05:ad:ff:50:01:0d:17:
08:96:c5:c1:7c:32:53:0c:ff:44:bb:fa:3b:1d:4e:
c5:2e:0e:7f:ac:ab:90:7f:ad:c8:34:95:a2:4f:de:
57:09:81:fd:80:3f:da:4a:12:00:e7:7f:90:64:bd:
c3:8d:99:af:2a:be:4c:91:e6:16:6b:f9:b3:c5:87:
e0:ef:a2:43:da:b2:74:6f:2e:05:29:b2:59:6a:79:
5e:f2:30:9f:5f:40:18:55:09:2e:18:29:81:ce:58:
ac:18:9e:23:e8:a3:5e:bd:0c:56:2e:3a:49:5f:0f:
89:29:32:79:cd:73:8b:35:26:23:b6:cc:96:a6:aa:
32:5a:0f:8f:68:c7:6a:b5:da:79:93:ee:2e:8f:8e:
fa:d4:85:02:28:2c:a1:c7:d4:9d:54:7a:03:e3:09:
1f:a2:ea:4b:e6:12:06:c6:9a:1b:99:1e:9c:25:e0:
ed:69:19:8b:bc:69:a2:9a:8c:67:de:d0:69:4f:c6:
bc:17:b9:68:1d:18:46:c9:d8:cc:df:aa:36:24:8b:
22:3b:7a:8f:c6:96:ee:04:4d:c3:6b:0d:ed:16:38:
2c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:B1:FD:84:4D:21:03:42:A4:79:3B:61:57:97:93:1C:74:DE:E1:2E
X509v3 Authority Key Identifier:
keyid:00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:49:72:4b:dc:24:b3:07:d2:f9:4f:25:24:0f:3d:4f:ae:34:
93:63:f6:e3:61:72:e4:9c:73:23:fe:e0:bd:59:bd:ae:9f:27:
00:4e:a3:d0:86:45:10:71:28:72:05:24:d7:c4:93:80:ed:62:
61:52:52:8a:cc:1b:a3:1d:ef:ce:3d:75:fe:7f:04:71:d7:71:
0b:5c:81:1d:7f:25:c2:48:67:e3:e2:b8:69:8f:27:d9:9d:9a:
aa:be:e1:2a:97:ad:ae:d3:4b:cb:40:93:02:63:93:4e:46:cd:
0b:fe:a7:03:68:85:cf:f7:8a:bd:ba:9c:bf:93:59:2c:c9:98:
c0:12:0d:9a:38:98:b9:81:46:07:f8:5b:75:6f:99:f7:d5:c3:
db:ea:bb:f6:9a:f9:f2:e7:2a:bf:40:0a:0e:c3:08:b8:0d:6d:
1d:cd:a0:8d:3b:cc:11:cc:50:7c:8d:45:34:47:d4:55:4d:a9:
05:86:29:c9:a3:9e:d2:91:54:dc:59:fb:85:e3:a8:e5:0f:0f:
38:8c:4a:40:0f:51:1f:8c:91:36:0f:44:28:22:b6:0c:7d:ce:
49:f8:d2:d9:d2:7a:1a:47:43:47:50:32:8c:e8:95:ee:19:f5:
f3:e1:1e:10:86:a2:7b:d7:14:ae:d3:05:9f:c7:e9:b0:78:c4:
33:aa:ba:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9NFWglJ3ca6DkJQ2CH5r/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwYjk0M2VlNTdjMzVmMmM3ZjRmZWMwNjg1ZTk3ZDYwM2Iw
N2NhZDIwHhcNMjUxMDE5MTYwMTI5WhcNMjUxMDIwMTYwMTI5WjAzMTEwLwYDVQQD
Eyg2OWIxZmQ4NDRkMjEwMzQyYTQ3OTNiNjE1Nzk3OTMxYzc0ZGVlMTJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxEMm4S/3YK7cxkFSBW37rc5uUOOj
FBjsr4jv0ceopluTuxzEhgWt/1ABDRcIlsXBfDJTDP9Eu/o7HU7FLg5/rKuQf63I
NJWiT95XCYH9gD/aShIA53+QZL3DjZmvKr5MkeYWa/mzxYfg76JD2rJ0by4FKbJZ
anle8jCfX0AYVQkuGCmBzlisGJ4j6KNevQxWLjpJXw+JKTJ5zXOLNSYjtsyWpqoy
Wg+PaMdqtdp5k+4uj4761IUCKCyhx9SdVHoD4wkfoupL5hIGxpobmR6cJeDtaRmL
vGmimoxn3tBpT8a8F7loHRhGydjM36o2JIsiO3qPxpbuBE3Daw3tFjgsjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGmx/YRNIQNCpHk7YVeXkxx03uEuMB8GA1UdIwQY
MBaAFAC5Q+5Xw18sf0/sBoXpfWA7B8rSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUxsRDdsZkRYeXhfVC13R2hlbDlZRHNIeXRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS80OGYwOWUtNzM4Ni00MTM5LTkxYzgt
M2M4OGU0MGU3MTFjLzEvQUxsRDdsZkRYeXhfVC13R2hlbDlZRHNIeXRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS80OGYwOWUtNzM4Ni00MTM5LTkxYzgtM2M4OGU0MGU3MTFj
LzEvQUxsRDdsZkRYeXhfVC13R2hlbDlZRHNIeXRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1UlyS9wk
swfS+U8lJA89T640k2P242Fy5JxzI/7gvVm9rp8nAE6j0IZFEHEocgUk18STgO1i
YVJSiswbox3vzj11/n8EcddxC1yBHX8lwkhn4+K4aY8n2Z2aqr7hKpetrtNLy0CT
AmOTTkbNC/6nA2iFz/eKvbqcv5NZLMmYwBINmjiYuYFGB/hbdW+Z99XD2+q79pr5
8ucqv0AKDsMIuA1tHc2gjTvMEcxQfI1FNEfUVU2pBYYpyaOe0pFU3Fn7heOo5Q8P
OIxKQA9RH4yRNg9EKCK2DH3OSfjS2dJ6GkdDR1AyjOiV7hn18+EeEIaie9cUrtMF
n8fpsHjEM6q6Dw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:27:22 2025 by rpki-client