Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
File: aLf4F6tRQbXhOCgM32GQFmu5y4c.mft (raw, json)
Hash identifier: SVf+rXo3m2zNo29LCI6vPntpkOxwWGeZfaswqFTs9RM=
Subject key identifier: A2:DF:35:DD:64:99:98:6B:E3:56:F7:1F:49:59:C5:36:99:98:22:94
Authority key identifier: 68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
Certificate issuer: /CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Certificate serial: 019A04ED065A67CCE0BD5552E133044306F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
Manifest number: 16E7
Signing time: Tue 21 Oct 2025 04:00:33 +0000
Manifest this update: Tue 21 Oct 2025 04:00:33 +0000
Manifest next update: Wed 22 Oct 2025 04:00:33 +0000
Files and hashes: 1: 1-wEZKS5ROln113VYj-rYIVv3HMw.roa (hash: zd3NK5lHmlo7IZCKvHCkj4ue/ewdTG041qEpUCwPhSg=)
2: aLf4F6tRQbXhOCgM32GQFmu5y4c.crl (hash: u7lN5UpOX0ElOUWVGec6crMapwUcY7RqaLPwqcpJaPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 04:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:04:ed:06:5a:67:cc:e0:bd:55:52:e1:33:04:43:06:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Validity
Not Before: Oct 21 04:00:33 2025 GMT
Not After : Oct 22 04:00:33 2025 GMT
Subject: CN=a2df35dd6499986be356f71f4959c53699982294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:21:88:ec:15:6c:f2:27:26:ae:26:3a:89:04:
ea:46:df:6c:2f:4e:5d:dc:9b:73:24:40:89:48:ec:
6d:4e:80:3c:c6:dd:6f:2e:36:8c:f7:2b:f2:50:e5:
d9:1b:9a:6d:fd:ce:c6:55:2f:04:88:f3:27:4b:98:
0a:14:b2:90:c2:39:aa:c4:17:54:87:aa:0a:7f:eb:
e8:bf:94:d9:83:f2:04:e1:b9:4b:6f:73:8f:9a:4d:
81:a4:15:63:c9:61:dd:d3:07:98:af:24:9e:ae:2a:
2d:23:34:cd:6c:de:ae:0b:ff:2d:01:bc:5c:d2:0a:
9c:54:df:b7:84:0f:93:a6:77:26:9a:86:4a:5e:8e:
3e:6c:79:4a:6d:72:8e:9f:30:12:e3:37:b4:ce:71:
2c:81:07:ce:b1:34:56:d5:ac:f0:49:d9:ac:27:38:
52:82:bf:e8:ca:b7:a9:4b:4c:7b:5f:9e:b0:4f:42:
ad:97:68:d0:bb:54:00:1c:05:a2:cd:07:9b:76:6b:
76:81:a5:56:77:02:47:d7:23:6a:c2:54:7a:00:12:
19:dc:4b:83:ce:9f:43:ac:31:ea:81:4d:53:25:7d:
0d:f8:41:49:7d:5b:55:1c:3e:2d:f8:0c:39:d9:bd:
cc:03:09:77:23:a8:f3:51:7d:e9:e3:20:70:61:23:
97:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:DF:35:DD:64:99:98:6B:E3:56:F7:1F:49:59:C5:36:99:98:22:94
X509v3 Authority Key Identifier:
keyid:68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:8f:ce:c7:bf:3b:1c:28:be:7c:1a:99:4b:03:09:f7:6e:54:
17:34:1e:58:02:7f:d0:5f:e3:03:fc:5e:fe:63:cb:7d:bd:01:
62:e4:15:90:ca:cd:66:26:80:d0:a5:da:56:7a:70:62:95:f2:
61:fd:cc:8f:09:64:3c:5a:75:b1:32:3f:62:2e:23:e8:e3:64:
64:9d:a4:73:65:32:ca:3c:67:79:81:e7:5d:36:68:44:69:78:
a2:37:97:18:d3:e5:8a:f1:1e:d1:b0:e5:05:84:93:cd:ff:46:
a9:8d:99:d3:c6:6f:8c:e4:92:f3:53:bc:67:64:31:a3:a3:e6:
97:1a:e8:d1:e1:02:7f:a6:1e:c1:62:7c:c8:17:ac:16:dd:31:
f3:51:75:12:04:55:05:02:44:89:d3:6a:3d:6b:49:d6:24:ef:
03:ee:8c:f3:0e:4f:c4:69:bc:c4:6d:2d:b0:c6:fc:53:e2:2d:
a5:a9:72:5f:c2:11:b5:c7:fc:c4:0f:4e:62:4e:2c:cd:bc:40:
4f:67:bc:2f:1a:43:d1:47:13:8b:ec:16:a8:87:36:65:71:96:
41:7d:c3:df:ad:f0:18:e2:97:12:a0:53:dd:4d:cc:a2:c1:b9:
73:8e:2b:80:46:28:92:74:b5:16:1b:cd:93:9e:43:21:5b:8e:
93:5a:d1:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoE7QZaZ8zgvVVS4TMEQwb4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YjdmODE3YWI1MTQxYjVlMTM4MjgwY2RmNjE5MDE2NmJi
OWNiODcwHhcNMjUxMDIxMDQwMDMzWhcNMjUxMDIyMDQwMDMzWjAzMTEwLwYDVQQD
EyhhMmRmMzVkZDY0OTk5ODZiZTM1NmY3MWY0OTU5YzUzNjk5OTgyMjk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjCGI7BVs8icmriY6iQTqRt9sL05d
3JtzJECJSOxtToA8xt1vLjaM9yvyUOXZG5pt/c7GVS8EiPMnS5gKFLKQwjmqxBdU
h6oKf+vov5TZg/IE4blLb3OPmk2BpBVjyWHd0weYrySeriotIzTNbN6uC/8tAbxc
0gqcVN+3hA+TpncmmoZKXo4+bHlKbXKOnzAS4ze0znEsgQfOsTRW1azwSdmsJzhS
gr/oyrepS0x7X56wT0Ktl2jQu1QAHAWizQebdmt2gaVWdwJH1yNqwlR6ABIZ3EuD
zp9DrDHqgU1TJX0N+EFJfVtVHD4t+Aw52b3MAwl3I6jzUX3p4yBwYSOXlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKLfNd1kmZhr41b3H0lZxTaZmCKUMB8GA1UdIwQY
MBaAFGi3+BerUUG14TgoDN9hkBZrucuHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUxmNEY2dFJRYlhoT0NnTTMyR1FGbXU1eTRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83NDJjMTQtN2I0ZC00Mjc5LWI4MjMt
MTY1MTcxMjZjMTMyLzEvYUxmNEY2dFJRYlhoT0NnTTMyR1FGbXU1eTRjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi83NDJjMTQtN2I0ZC00Mjc5LWI4MjMtMTY1MTcxMjZjMTMy
LzEvYUxmNEY2dFJRYlhoT0NnTTMyR1FGbXU1eTRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi4/Ox787
HCi+fBqZSwMJ925UFzQeWAJ/0F/jA/xe/mPLfb0BYuQVkMrNZiaA0KXaVnpwYpXy
Yf3MjwlkPFp1sTI/Yi4j6ONkZJ2kc2UyyjxneYHnXTZoRGl4ojeXGNPlivEe0bDl
BYSTzf9GqY2Z08ZvjOSS81O8Z2Qxo6Pmlxro0eECf6YewWJ8yBesFt0x81F1EgRV
BQJEidNqPWtJ1iTvA+6M8w5PxGm8xG0tsMb8U+ItpalyX8IRtcf8xA9OYk4szbxA
T2e8LxpD0UcTi+wWqIc2ZXGWQX3D363wGOKXEqBT3U3MosG5c44rgEYoknS1FhvN
k55DIVuOk1rRxQ==
-----END CERTIFICATE-----
Generated at Tue Oct 21 11:40:31 2025 by rpki-client