Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json)
Hash identifier: DRrNDm0pp69iP0+m//9Cyn7t+1ccwcwOc+DKxMHPKTs=
Subject key identifier: 72:D5:7F:EF:7D:5E:A8:A3:FA:94:6D:92:1A:FF:C1:01:FC:A8:D2:4C
Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69
Certificate serial: 0199FF598EF3654DD798400521F4EEAA1607
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
Manifest number: 0721
Signing time: Mon 20 Oct 2025 02:01:23 +0000
Manifest this update: Mon 20 Oct 2025 02:01:23 +0000
Manifest next update: Tue 21 Oct 2025 02:01:23 +0000
Files and hashes: 1: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: Sufiec33KvA21Ur9TnQDSPO2ROeFcR6K2O3GVRmG42w=)
2: hnTM8e9DDp88O_jCAHz8InVW_vE.roa (hash: 8skhoEZiI2jfYQ4DDQgvqEaBRoMspiQzmuxF61YcMEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:59:8e:f3:65:4d:d7:98:40:05:21:f4:ee:aa:16:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69
Validity
Not Before: Oct 20 02:01:23 2025 GMT
Not After : Oct 21 02:01:23 2025 GMT
Subject: CN=72d57fef7d5ea8a3fa946d921affc101fca8d24c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4c:48:75:49:7d:d0:8a:84:2d:b7:46:af:d8:
3a:51:d2:ae:d7:4a:ec:7d:36:a0:ea:7c:46:0d:9e:
2c:57:21:1f:42:ac:4a:e2:3e:60:33:05:2e:48:a9:
a6:f7:99:1c:d1:84:f0:84:e8:fc:d4:65:de:ee:dd:
c9:d9:af:1a:6b:a3:c9:42:72:9d:52:1f:96:39:57:
a1:34:0e:f2:94:05:91:f8:c4:0c:52:27:a6:7a:64:
cc:f6:cc:f2:f2:c2:47:55:c5:8e:aa:50:71:c1:2b:
8a:0b:52:d1:2d:40:c7:a3:c5:8e:b1:84:d2:14:1e:
91:3f:d0:cc:48:49:1c:10:cc:7c:89:cf:93:d9:f7:
29:1a:de:1d:53:b0:d2:4b:e9:f6:c3:af:81:71:f0:
2a:76:a7:c7:b9:56:62:07:e8:27:50:12:a0:bb:16:
d9:dd:4f:ce:be:c1:36:23:e4:61:5f:3c:cc:96:a7:
bf:58:ba:12:59:3c:9c:a8:ac:8a:87:88:57:b8:7b:
29:9c:49:ad:2d:8a:a1:bf:16:86:db:9d:a5:95:22:
75:d5:ed:2a:e0:c1:15:34:5f:71:8b:a0:9c:6a:f4:
8e:45:69:59:dd:c6:bb:76:91:6d:ef:c8:4b:e0:b8:
f3:8b:10:a1:d3:3e:ef:a7:c0:34:49:cc:73:e0:26:
96:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D5:7F:EF:7D:5E:A8:A3:FA:94:6D:92:1A:FF:C1:01:FC:A8:D2:4C
X509v3 Authority Key Identifier:
keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:bb:f2:27:fa:48:c6:ea:62:d1:f2:9c:25:21:a7:7e:ac:14:
74:0f:1b:9e:21:20:00:3b:77:31:5d:0f:b3:2c:42:4c:94:aa:
72:74:1d:f1:ef:5d:58:f6:99:3a:52:37:45:79:20:ee:89:3a:
7a:9a:f7:fe:a8:8a:1e:2f:81:60:12:5b:10:cc:2c:ca:d8:88:
26:2c:ff:c6:91:7c:46:e0:62:63:de:c3:3f:cd:3e:cc:e9:bb:
43:07:8d:ca:da:67:26:25:15:9a:34:d5:78:5c:15:99:32:48:
af:ea:88:f6:5d:2b:46:d3:08:ec:d3:52:b4:70:10:16:d9:0d:
ed:49:e6:08:3f:93:00:94:e9:28:69:c4:4a:4a:1e:77:8d:a6:
46:e3:60:1f:6e:fa:8c:ab:b1:a1:71:a8:40:a9:93:a3:17:db:
b8:21:2f:b0:f4:92:36:f4:af:5c:fe:1d:e3:3e:16:1e:dc:6c:
9c:cc:f0:ed:09:83:a4:7c:c7:b6:5c:a8:b2:21:66:8d:6d:61:
6c:23:21:05:67:e4:ae:cc:ce:c5:d0:15:a7:d8:40:cf:8c:ae:
1c:44:49:11:65:6a:08:91:25:89:a8:ac:09:d3:51:02:76:aa:
e7:09:2a:06:62:51:29:61:ca:15:e3:9a:60:9c:26:2c:6a:bb:
f8:23:04:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/WY7zZU3XmEAFIfTuqhYHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5NWRjZTVlMzdhODYyNTM4YTBmNjY4ODNkZTIwNmZmYjdj
OTNiNjkwHhcNMjUxMDIwMDIwMTIzWhcNMjUxMDIxMDIwMTIzWjAzMTEwLwYDVQQD
Eyg3MmQ1N2ZlZjdkNWVhOGEzZmE5NDZkOTIxYWZmYzEwMWZjYThkMjRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtkxIdUl90IqELbdGr9g6UdKu10rs
fTag6nxGDZ4sVyEfQqxK4j5gMwUuSKmm95kc0YTwhOj81GXe7t3J2a8aa6PJQnKd
Uh+WOVehNA7ylAWR+MQMUiememTM9szy8sJHVcWOqlBxwSuKC1LRLUDHo8WOsYTS
FB6RP9DMSEkcEMx8ic+T2fcpGt4dU7DSS+n2w6+BcfAqdqfHuVZiB+gnUBKguxbZ
3U/OvsE2I+RhXzzMlqe/WLoSWTycqKyKh4hXuHspnEmtLYqhvxaG252llSJ11e0q
4MEVNF9xi6CcavSORWlZ3ca7dpFt78hL4LjzixCh0z7vp8A0Scxz4CaWVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHLVf+99Xqij+pRtkhr/wQH8qNJMMB8GA1UdIwQY
MBaAFGldzl43qGJTig9miD3iBv+3yTtpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWIt
MDE3ZGVlNDUyZWM0LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWItMDE3ZGVlNDUyZWM0
LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc7vyJ/pI
xupi0fKcJSGnfqwUdA8bniEgADt3MV0PsyxCTJSqcnQd8e9dWPaZOlI3RXkg7ok6
epr3/qiKHi+BYBJbEMwsytiIJiz/xpF8RuBiY97DP80+zOm7QweNytpnJiUVmjTV
eFwVmTJIr+qI9l0rRtMI7NNStHAQFtkN7UnmCD+TAJTpKGnESkoed42mRuNgH276
jKuxoXGoQKmToxfbuCEvsPSSNvSvXP4d4z4WHtxsnMzw7QmDpHzHtlyosiFmjW1h
bCMhBWfkrszOxdAVp9hAz4yuHERJEWVqCJEliaisCdNRAnaq5wkqBmJRKWHKFeOa
YJwmLGq7+CMETg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 05:55:24 2025 by rpki-client