Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
File: al1BD0JdNedNRW9_h7ro7ZKzyCk.mft (raw, json)
Hash identifier: OVhtlxeKC81VQsXHRp1Mlb9PFZlqBAlJpjA9zfY0YPw=
Subject key identifier: AD:88:B7:65:96:87:C0:06:C6:59:58:1C:83:4B:3B:5C:AC:8A:33:08
Authority key identifier: 6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29
Certificate issuer: /CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829
Certificate serial: 0199FC21E353AE9F163A1576359D7F8ECDE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
Manifest number: 1674
Signing time: Sun 19 Oct 2025 11:01:43 +0000
Manifest this update: Sun 19 Oct 2025 11:01:43 +0000
Manifest next update: Mon 20 Oct 2025 11:01:43 +0000
Files and hashes: 1: YRcPB026UNAbaic7bC0XnagQJ_8.roa (hash: F5LbuOIZKUKKLsIhj9ecbNiDMJqNxgANq1yR2w3iRxE=)
2: al1BD0JdNedNRW9_h7ro7ZKzyCk.crl (hash: Yx4PWKdl3Wl8FqRJ/dVAX81GJT6FYDwYKqY/zigd90g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:e3:53:ae:9f:16:3a:15:76:35:9d:7f:8e:cd:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829
Validity
Not Before: Oct 19 11:01:43 2025 GMT
Not After : Oct 20 11:01:43 2025 GMT
Subject: CN=ad88b7659687c006c659581c834b3b5cac8a3308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:31:69:b4:c7:66:01:c5:15:70:91:47:08:ae:
b0:7f:e7:dd:c9:0c:c2:8b:8e:8e:36:9f:4a:7e:b8:
95:8e:ba:36:59:6c:c4:18:16:f9:b4:18:f2:03:0e:
0d:7b:81:bf:8d:ac:3f:78:e3:41:ea:3f:0b:aa:8b:
3b:fc:06:f4:6b:2a:c6:3b:06:76:f4:57:79:27:57:
88:38:d6:ff:06:dd:0f:a0:bb:d3:ac:98:7f:d8:70:
e8:32:72:65:8e:df:79:86:4b:6f:31:99:6a:e2:55:
90:93:bf:20:2e:65:e8:fa:49:d7:16:07:17:35:62:
6d:70:72:01:c0:9c:26:eb:22:c3:f7:d5:ef:bb:dc:
fe:74:9c:1f:f2:a0:9e:d1:3d:2d:49:f6:ff:29:51:
a2:42:b0:12:e4:7f:36:18:d4:6e:95:65:8f:99:5e:
be:55:74:1f:32:ba:0c:eb:ee:5a:e4:a1:9a:ce:ee:
86:0a:8a:44:cf:7a:ec:5b:dd:5a:f0:00:2e:d9:d6:
4b:48:0f:68:93:1a:78:a3:de:35:ec:0d:c9:88:00:
d6:99:5e:f8:62:7d:44:a3:d2:fb:26:ec:99:2f:70:
1e:ad:4d:83:4a:7f:50:d5:b5:91:70:3f:f3:c1:5d:
90:2f:56:6a:f0:e3:fb:ab:6b:68:4b:d1:07:f7:80:
e6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:88:B7:65:96:87:C0:06:C6:59:58:1C:83:4B:3B:5C:AC:8A:33:08
X509v3 Authority Key Identifier:
keyid:6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:fe:b4:65:1a:28:12:7c:d7:47:e4:4c:c2:d8:e0:36:ed:65:
65:d7:c6:7d:a3:46:93:da:55:31:06:c5:5f:db:f5:ae:47:2e:
3a:a8:6e:3a:25:e8:69:f1:a8:54:ca:70:da:0d:e8:3b:8a:d5:
59:d7:3f:e7:82:61:d6:65:60:7e:1e:8c:27:e3:aa:ac:eb:39:
76:57:e8:44:58:78:e0:d0:11:6e:0f:da:27:f2:b5:8d:52:58:
61:f7:d1:67:76:12:11:c5:a1:9c:88:82:ac:28:33:58:36:e0:
0a:b6:d5:67:ac:3c:93:0f:70:1f:2b:23:61:d3:df:3d:83:e0:
b5:71:0a:1c:c3:1a:2a:70:55:41:2e:3b:23:43:e7:76:1f:6c:
96:f4:cf:ef:e3:9b:61:7b:cb:18:3b:f4:81:6a:ae:63:5a:6a:
94:17:4b:ed:6e:44:52:d3:5c:bd:04:5f:ba:d1:db:3d:86:96:
0c:e5:48:db:6e:5c:48:58:14:0b:4c:e5:aa:b3:51:a8:e5:75:
f3:dc:d1:10:68:8a:4c:ed:1c:e2:78:94:90:b4:0b:5e:ea:97:
a1:c0:fa:77:10:eb:58:29:7a:68:45:a3:fb:0e:b8:9d:bd:ad:
b7:df:92:f8:01:72:e8:c6:36:38:c4:3c:8c:7d:43:07:e0:24:
c8:b0:a4:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8IeNTrp8WOhV2NZ1/js3nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhNWQ0MTBmNDI1ZDM1ZTc0ZDQ1NmY3Zjg3YmFlOGVkOTJi
M2M4MjkwHhcNMjUxMDE5MTEwMTQzWhcNMjUxMDIwMTEwMTQzWjAzMTEwLwYDVQQD
EyhhZDg4Yjc2NTk2ODdjMDA2YzY1OTU4MWM4MzRiM2I1Y2FjOGEzMzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlzFptMdmAcUVcJFHCK6wf+fdyQzC
i46ONp9KfriVjro2WWzEGBb5tBjyAw4Ne4G/jaw/eONB6j8Lqos7/Ab0ayrGOwZ2
9Fd5J1eIONb/Bt0PoLvTrJh/2HDoMnJljt95hktvMZlq4lWQk78gLmXo+knXFgcX
NWJtcHIBwJwm6yLD99Xvu9z+dJwf8qCe0T0tSfb/KVGiQrAS5H82GNRulWWPmV6+
VXQfMroM6+5a5KGazu6GCopEz3rsW91a8AAu2dZLSA9okxp4o9417A3JiADWmV74
Yn1Eo9L7JuyZL3AerU2DSn9Q1bWRcD/zwV2QL1Zq8OP7q2toS9EH94DmeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK2It2WWh8AGxllYHINLO1ysijMIMB8GA1UdIwQY
MBaAFGpdQQ9CXTXnTUVvf4e66O2Ss8gpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWwxQkQwSmROZWROUlc5X2g3cm83Wkt6eUNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9kNWYxNGYtMjcwNS00MmVjLTkwMGYt
NjkzNGNhZmI2YmNkLzEvYWwxQkQwSmROZWROUlc5X2g3cm83Wkt6eUNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC9kNWYxNGYtMjcwNS00MmVjLTkwMGYtNjkzNGNhZmI2YmNk
LzEvYWwxQkQwSmROZWROUlc5X2g3cm83Wkt6eUNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMf60ZRoo
EnzXR+RMwtjgNu1lZdfGfaNGk9pVMQbFX9v1rkcuOqhuOiXoafGoVMpw2g3oO4rV
Wdc/54Jh1mVgfh6MJ+OqrOs5dlfoRFh44NARbg/aJ/K1jVJYYffRZ3YSEcWhnIiC
rCgzWDbgCrbVZ6w8kw9wHysjYdPfPYPgtXEKHMMaKnBVQS47I0Pndh9slvTP7+Ob
YXvLGDv0gWquY1pqlBdL7W5EUtNcvQRfutHbPYaWDOVI225cSFgUC0zlqrNRqOV1
89zREGiKTO0c4niUkLQLXuqXocD6dxDrWCl6aEWj+w64nb2tt9+S+AFy6MY2OMQ8
jH1DB+AkyLCkig==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:18 2025 by rpki-client