Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.mft
File: a-tglLyrS9Ox9vVsUYK6EiDiK28.mft (raw, json)
Hash identifier: zqVqY9T019Kh6TsQI68x5HhWFt3SgLOpSXNs8Z7xOnc=
Subject key identifier: CB:2A:15:97:34:41:96:0A:5D:5B:CA:E3:AD:96:89:E0:7E:4A:41:69
Authority key identifier: 6B:EB:60:94:BC:AB:4B:D3:B1:F6:F5:6C:51:82:BA:12:20:E2:2B:6F
Certificate issuer: /CN=6beb6094bcab4bd3b1f6f56c5182ba1220e22b6f
Certificate serial: 0199FCFD96C9911CC8825FC007C8F6795A3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-tglLyrS9Ox9vVsUYK6EiDiK28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.mft
Manifest number: 0561
Signing time: Sun 19 Oct 2025 15:01:41 +0000
Manifest this update: Sun 19 Oct 2025 15:01:41 +0000
Manifest next update: Mon 20 Oct 2025 15:01:41 +0000
Files and hashes: 1: a-tglLyrS9Ox9vVsUYK6EiDiK28.crl (hash: Ta/0Y29IWJwhxzxmPIvONCMSlSV11NvpNXv494VZdPM=)
2: br9nNW8HTMSPThu0IYs9YJPit9M.roa (hash: +GZtKTMjwkIHJlC7o9X+rvG+Xi3NBXRyc3GslA3d0UQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.mft
rsync://rpki.ripe.net/repository/DEFAULT/a-tglLyrS9Ox9vVsUYK6EiDiK28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:96:c9:91:1c:c8:82:5f:c0:07:c8:f6:79:5a:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6beb6094bcab4bd3b1f6f56c5182ba1220e22b6f
Validity
Not Before: Oct 19 15:01:41 2025 GMT
Not After : Oct 20 15:01:41 2025 GMT
Subject: CN=cb2a15973441960a5d5bcae3ad9689e07e4a4169
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cb:28:f9:bc:b2:00:a6:8c:87:09:68:d8:64:
30:fc:8f:7a:55:b1:e0:75:fc:18:dd:d5:75:eb:aa:
bf:d8:97:19:c9:62:ad:97:9a:92:10:77:7c:a3:16:
f0:8e:ec:85:85:9a:e8:a1:ea:7e:53:da:58:52:ad:
24:85:56:dd:1f:8c:45:14:0c:71:f4:6f:48:76:f2:
95:46:28:cc:a0:46:87:13:f7:a9:96:d0:f9:ab:b7:
d6:45:07:df:38:93:2c:42:a7:51:61:3a:72:05:4b:
60:b4:48:b9:d6:85:a3:d2:e1:d8:85:27:08:fd:b7:
cd:a6:88:2a:c4:c7:7c:9a:6b:21:1a:20:47:96:85:
85:8f:88:26:39:56:cc:c0:b3:1d:b9:bf:d0:b1:7f:
0f:ed:d6:fd:36:f2:e1:50:c5:41:1a:0c:6d:39:42:
84:66:06:02:4e:3a:43:b0:77:4a:81:13:0b:6c:b3:
c3:d6:12:b5:17:f2:10:c8:d2:ae:f9:15:82:25:f3:
04:93:f5:8e:5d:e1:65:47:f5:f7:ae:41:34:b3:36:
ac:97:c3:f3:9f:d4:e4:92:ca:8e:4a:34:f9:67:17:
50:9b:18:e0:53:80:17:3d:06:5f:9c:8c:44:28:08:
d4:ec:41:a3:77:ca:1e:23:ee:9a:a6:7e:17:1d:d3:
1a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:2A:15:97:34:41:96:0A:5D:5B:CA:E3:AD:96:89:E0:7E:4A:41:69
X509v3 Authority Key Identifier:
keyid:6B:EB:60:94:BC:AB:4B:D3:B1:F6:F5:6C:51:82:BA:12:20:E2:2B:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-tglLyrS9Ox9vVsUYK6EiDiK28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:72:76:e8:7c:0d:0c:cf:07:71:a6:b0:44:39:58:34:2d:9e:
97:af:de:7c:a4:4f:11:19:22:79:f1:d6:c3:e5:7d:3b:f5:bc:
6b:02:7b:9d:14:92:fe:22:0a:56:f2:39:78:b1:30:e7:73:01:
20:9b:02:6c:be:18:6d:49:8f:56:76:50:7f:3b:e3:37:17:7a:
30:83:90:34:13:f5:75:46:53:86:3c:30:32:79:d7:89:fc:b8:
81:c9:48:9a:84:40:ef:d1:4c:fe:68:05:81:37:1f:dd:d8:6e:
e7:7e:94:81:14:b0:91:80:ba:e2:06:ff:f4:af:25:5d:47:9b:
51:b9:30:43:f7:15:39:7d:cc:01:c8:1f:1c:11:a9:47:50:5f:
f0:c5:bd:a8:b3:3a:34:f3:89:46:6e:b0:88:35:13:28:d6:46:
f9:44:b6:01:57:41:da:9f:9c:c8:cc:18:88:78:c9:d7:70:5d:
a2:c8:52:8b:96:27:c1:4c:b1:4d:aa:d1:94:23:91:aa:5f:8f:
7b:d1:86:a6:a7:20:c3:1f:ab:90:44:20:c0:c2:12:c4:fd:70:
20:54:e9:63:6c:06:c4:f5:2e:af:dc:8f:3e:98:23:7a:26:85:
2b:b9:d7:b0:9c:2a:f4:5d:2d:f5:05:d4:f4:44:80:da:31:02:
43:85:d5:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/ZbJkRzIgl/AB8j2eVo/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiZWI2MDk0YmNhYjRiZDNiMWY2ZjU2YzUxODJiYTEyMjBl
MjJiNmYwHhcNMjUxMDE5MTUwMTQxWhcNMjUxMDIwMTUwMTQxWjAzMTEwLwYDVQQD
EyhjYjJhMTU5NzM0NDE5NjBhNWQ1YmNhZTNhZDk2ODllMDdlNGE0MTY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApcso+byyAKaMhwlo2GQw/I96VbHg
dfwY3dV166q/2JcZyWKtl5qSEHd8oxbwjuyFhZrooep+U9pYUq0khVbdH4xFFAxx
9G9IdvKVRijMoEaHE/epltD5q7fWRQffOJMsQqdRYTpyBUtgtEi51oWj0uHYhScI
/bfNpogqxMd8mmshGiBHloWFj4gmOVbMwLMdub/QsX8P7db9NvLhUMVBGgxtOUKE
ZgYCTjpDsHdKgRMLbLPD1hK1F/IQyNKu+RWCJfMEk/WOXeFlR/X3rkE0szasl8Pz
n9TkksqOSjT5ZxdQmxjgU4AXPQZfnIxEKAjU7EGjd8oeI+6apn4XHdMaWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMsqFZc0QZYKXVvK462WieB+SkFpMB8GA1UdIwQY
MBaAFGvrYJS8q0vTsfb1bFGCuhIg4itvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYS10Z2xMeXJTOU94OXZWc1VZSzZFaURpSzI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9iYTQ2NDAtMTYzZS00NjVmLTkwZjkt
ZWE1ODdmZDY1OGIyLzEvYS10Z2xMeXJTOU94OXZWc1VZSzZFaURpSzI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC9iYTQ2NDAtMTYzZS00NjVmLTkwZjktZWE1ODdmZDY1OGIy
LzEvYS10Z2xMeXJTOU94OXZWc1VZSzZFaURpSzI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPXJ26HwN
DM8HcaawRDlYNC2el6/efKRPERkiefHWw+V9O/W8awJ7nRSS/iIKVvI5eLEw53MB
IJsCbL4YbUmPVnZQfzvjNxd6MIOQNBP1dUZThjwwMnnXify4gclImoRA79FM/mgF
gTcf3dhu536UgRSwkYC64gb/9K8lXUebUbkwQ/cVOX3MAcgfHBGpR1Bf8MW9qLM6
NPOJRm6wiDUTKNZG+US2AVdB2p+cyMwYiHjJ13BdoshSi5YnwUyxTarRlCORql+P
e9GGpqcgwx+rkEQgwMISxP1wIFTpY2wGxPUur9yPPpgjeiaFK7nXsJwq9F0t9QXU
9ESA2jECQ4XVrA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 23:55:13 2025 by rpki-client