Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
File: aVJaNi6HcFoewCLRZWDydtWc7h0.mft (raw, json)
Hash identifier: XQ6/ARV3760yd6GrlKxtRi7xnzXcoU7hEETZIYJbz80=
Subject key identifier: 47:CE:3D:A5:90:20:A3:4E:1C:99:FC:C8:68:9F:47:CA:BC:B2:9F:DE
Authority key identifier: 69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
Certificate issuer: /CN=69525a362e87705a1ec022d16560f276d59cee1d
Certificate serial: 019A03DA1B817BF05E60459585B70AE592C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
Manifest number: 08BF
Signing time: Mon 20 Oct 2025 23:00:16 +0000
Manifest this update: Mon 20 Oct 2025 23:00:16 +0000
Manifest next update: Tue 21 Oct 2025 23:00:16 +0000
Files and hashes: 1: aHJU3TtGM9M9L2c33hiqaeAD6-M.roa (hash: Jnk6c3GJ5E4y6b+inckEyRoPVADxMl1TsyYlid/Y0Y0=)
2: aVJaNi6HcFoewCLRZWDydtWc7h0.crl (hash: PUU4Ee96GMlPMCFEJb1g/fFNetQQpT3pkXakr7cOXd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:03:da:1b:81:7b:f0:5e:60:45:95:85:b7:0a:e5:92:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69525a362e87705a1ec022d16560f276d59cee1d
Validity
Not Before: Oct 20 23:00:16 2025 GMT
Not After : Oct 21 23:00:16 2025 GMT
Subject: CN=47ce3da59020a34e1c99fcc8689f47cabcb29fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:03:c2:62:dd:f7:fa:2b:3c:ce:0c:ca:97:ae:
a5:f4:f1:c7:fd:aa:05:d0:5b:ac:b0:60:df:6d:e9:
f0:3d:dc:de:7a:70:8f:86:45:be:59:56:23:41:d0:
ac:d0:ec:37:e2:b4:9c:b0:41:73:7d:a8:46:1f:a9:
6d:33:a7:77:3d:d5:5c:42:af:8d:f1:44:40:86:12:
61:27:9f:d9:d9:22:5f:c2:e7:f0:76:c3:cf:7b:29:
2a:dc:e5:e5:16:c1:a0:f2:e9:eb:9e:a8:f6:9f:0c:
7b:a9:de:df:02:88:d7:b8:2e:f9:7d:47:46:fb:98:
59:ac:2e:5e:ad:65:dc:d9:78:56:63:0e:e5:ce:c9:
d5:01:03:bb:cf:c8:ca:eb:9e:d1:c6:b6:c5:5d:9c:
1c:b0:ef:6e:37:cb:d8:3f:61:c2:65:44:1f:24:82:
e5:af:04:d3:c3:d7:fb:14:65:91:1a:8f:9b:5d:ef:
dd:25:38:bf:ba:b7:98:68:e5:ca:4c:67:2c:7c:91:
99:0b:c1:79:3f:19:c9:48:05:b4:d9:9d:3f:14:1a:
13:7b:c6:00:d2:bf:09:dc:de:73:73:5b:74:b9:6f:
15:61:52:be:5a:4e:24:7c:7d:e7:04:89:15:85:b5:
b9:88:db:6b:8c:62:0d:ae:6e:ec:43:f5:ca:c1:1b:
45:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:CE:3D:A5:90:20:A3:4E:1C:99:FC:C8:68:9F:47:CA:BC:B2:9F:DE
X509v3 Authority Key Identifier:
keyid:69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:69:51:60:02:fb:f1:2b:be:cb:30:20:c8:c0:d6:c7:e3:37:
61:5b:79:be:1f:c9:18:1c:4b:45:5d:7c:6d:88:79:e5:49:54:
1c:b9:7a:e7:8b:ff:be:b0:ca:60:0a:33:9d:7e:e5:6d:35:e5:
ed:b0:65:2c:33:61:f0:60:60:62:fa:bc:94:93:6d:e1:2f:ba:
cd:f9:31:0d:c0:3b:99:bd:3b:ae:f6:70:e3:a8:a1:f2:2e:79:
e7:cc:7f:ff:d6:fc:db:81:68:45:86:03:40:15:a5:4c:8d:ea:
4e:1f:63:e5:31:8c:24:54:03:0f:67:d2:92:18:c6:9d:b2:5d:
e0:e8:58:8f:8f:61:56:f6:d8:c4:fe:28:0f:77:2a:3c:37:45:
ad:eb:89:bb:a9:36:c9:8b:05:1e:bf:c3:e6:6b:89:b4:4d:1b:
76:20:b9:36:df:52:bf:b2:f6:35:32:71:95:da:29:62:f8:0f:
ba:ab:09:54:ab:97:79:9c:55:70:43:18:57:d0:b4:2d:dc:a1:
68:54:c3:59:15:ad:c4:55:8a:7e:dd:ec:f4:2a:7e:70:bc:c4:
ee:2f:c7:a4:82:b3:b9:4a:1d:9a:69:2f:df:8e:c8:a5:51:eb:
5e:94:bf:fe:0d:57:52:b1:10:c0:21:77:2c:6a:66:b4:99:a7:
98:1d:7c:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoD2huBe/BeYEWVhbcK5ZLDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5NTI1YTM2MmU4NzcwNWExZWMwMjJkMTY1NjBmMjc2ZDU5
Y2VlMWQwHhcNMjUxMDIwMjMwMDE2WhcNMjUxMDIxMjMwMDE2WjAzMTEwLwYDVQQD
Eyg0N2NlM2RhNTkwMjBhMzRlMWM5OWZjYzg2ODlmNDdjYWJjYjI5ZmRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArgPCYt33+is8zgzKl66l9PHH/aoF
0FussGDfbenwPdzeenCPhkW+WVYjQdCs0Ow34rScsEFzfahGH6ltM6d3PdVcQq+N
8URAhhJhJ5/Z2SJfwufwdsPPeykq3OXlFsGg8unrnqj2nwx7qd7fAojXuC75fUdG
+5hZrC5erWXc2XhWYw7lzsnVAQO7z8jK657RxrbFXZwcsO9uN8vYP2HCZUQfJILl
rwTTw9f7FGWRGo+bXe/dJTi/ureYaOXKTGcsfJGZC8F5PxnJSAW02Z0/FBoTe8YA
0r8J3N5zc1t0uW8VYVK+Wk4kfH3nBIkVhbW5iNtrjGINrm7sQ/XKwRtFMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEfOPaWQIKNOHJn8yGifR8q8sp/eMB8GA1UdIwQY
MBaAFGlSWjYuh3BaHsAi0WVg8nbVnO4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzkt
NjVkNmNhM2Y0OWQ4LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzktNjVkNmNhM2Y0OWQ4
LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYmlRYAL7
8Su+yzAgyMDWx+M3YVt5vh/JGBxLRV18bYh55UlUHLl654v/vrDKYAoznX7lbTXl
7bBlLDNh8GBgYvq8lJNt4S+6zfkxDcA7mb07rvZw46ih8i5558x//9b824FoRYYD
QBWlTI3qTh9j5TGMJFQDD2fSkhjGnbJd4OhYj49hVvbYxP4oD3cqPDdFreuJu6k2
yYsFHr/D5muJtE0bdiC5Nt9Sv7L2NTJxldopYvgPuqsJVKuXeZxVcEMYV9C0Ldyh
aFTDWRWtxFWKft3s9Cp+cLzE7i/HpIKzuUodmmkv347IpVHrXpS//g1XUrEQwCF3
LGpmtJmnmB18Sg==
-----END CERTIFICATE-----
Generated at Tue Oct 21 07:17:27 2025 by rpki-client