Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
File: A-aapu504w79uBm5yxvyHnhub6M.mft (raw, json)
Hash identifier: /CjbwjQANWUxYzLRr9o4A+OldoMQH1SdujwCW4FAdmU=
Subject key identifier: 44:CC:9E:78:7A:7F:EF:5F:6C:99:67:3D:47:97:0F:DD:D5:C6:D2:03
Authority key identifier: 03:E6:9A:A6:EE:74:E3:0E:FD:B8:19:B9:CB:1B:F2:1E:78:6E:6F:A3
Certificate issuer: /CN=03e69aa6ee74e30efdb819b9cb1bf21e786e6fa3
Certificate serial: 019A0147A8091C1DA78A0853B0F08598BAA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
Manifest number: 0581
Signing time: Mon 20 Oct 2025 11:01:04 +0000
Manifest this update: Mon 20 Oct 2025 11:01:04 +0000
Manifest next update: Tue 21 Oct 2025 11:01:04 +0000
Files and hashes: 1: A-aapu504w79uBm5yxvyHnhub6M.crl (hash: w2R9FpgNiHIkIH9sPF1PRKApnAq0Tz/yVnkQluSHOhs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 11:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:47:a8:09:1c:1d:a7:8a:08:53:b0:f0:85:98:ba:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03e69aa6ee74e30efdb819b9cb1bf21e786e6fa3
Validity
Not Before: Oct 20 11:01:04 2025 GMT
Not After : Oct 21 11:01:04 2025 GMT
Subject: CN=44cc9e787a7fef5f6c99673d47970fddd5c6d203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:25:70:0b:e2:08:11:23:a8:ec:48:d9:7a:3d:
9f:cc:66:e9:21:53:db:20:89:12:28:dd:d0:75:09:
94:0d:2f:17:89:72:ac:71:cd:1d:fb:d4:c0:1c:0a:
84:3a:d5:1a:a8:95:db:fe:19:21:30:37:f3:a9:17:
ec:a0:ee:fb:7a:b4:9e:58:f8:c7:29:f8:74:2b:20:
15:c9:cd:61:1c:86:72:95:81:7d:f5:93:24:b0:f8:
9a:41:a9:d9:7a:ec:6f:3d:e0:42:3f:6d:0c:ba:6e:
ea:e7:11:45:9c:f2:15:30:f0:99:bc:38:50:38:b5:
2c:11:e9:68:b1:77:bc:8a:ee:d1:e2:bc:a0:6a:8f:
05:6d:74:de:b2:82:5c:cc:72:3a:b1:90:22:b1:b8:
cb:81:27:e3:9b:d4:aa:36:f3:a7:89:eb:aa:81:40:
77:d9:cd:f8:16:42:d6:e7:b6:46:e6:e7:40:38:9d:
77:da:7c:c9:51:83:be:e3:c7:7f:21:b7:89:51:06:
4a:ea:a3:34:86:87:1a:d6:98:02:94:a6:83:0f:02:
57:6e:da:07:9e:6b:87:5c:e1:1f:c8:59:7b:db:2f:
aa:61:87:24:1e:d8:84:4f:89:b4:fe:86:a7:82:6e:
44:b4:7d:08:2d:29:8d:bd:11:35:79:ed:14:01:c1:
18:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:CC:9E:78:7A:7F:EF:5F:6C:99:67:3D:47:97:0F:DD:D5:C6:D2:03
X509v3 Authority Key Identifier:
keyid:03:E6:9A:A6:EE:74:E3:0E:FD:B8:19:B9:CB:1B:F2:1E:78:6E:6F:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:bb:67:03:24:ec:28:21:25:9b:38:2d:d8:59:fb:e0:40:4e:
4a:11:44:0d:c5:b1:bf:15:45:37:2f:ca:7c:8d:94:bc:f4:94:
87:ad:d5:1c:40:67:33:1b:57:0d:d2:63:cf:12:36:c7:91:54:
fe:62:e5:93:61:93:ae:4e:d9:6d:87:f1:ba:12:71:37:9d:6d:
60:fa:eb:8e:2b:36:07:9a:c0:df:fd:75:91:48:2d:33:78:69:
8d:c4:7b:2d:da:7b:0d:d1:30:07:de:fb:94:5b:ff:de:f2:2e:
d7:c2:3d:18:6e:9a:73:39:29:00:4a:bf:c8:c8:60:80:17:fd:
27:ad:41:82:5c:20:ed:e7:6e:0a:5e:f2:eb:03:7b:e5:b5:59:
4f:15:4f:31:4d:83:db:ec:f1:af:85:49:26:03:b5:e8:a9:44:
4f:e8:5d:19:c9:1e:a6:f8:ce:b7:5f:d0:15:92:4e:3f:16:6a:
a8:ee:ad:85:f3:ad:65:86:fb:be:bb:b9:ca:89:64:9b:aa:bc:
1c:3c:87:fc:8e:9b:0c:6b:6a:54:a4:b3:0b:43:ff:70:9f:ee:
eb:4b:99:2b:34:30:3e:bd:c7:96:e6:a9:f4:1a:32:4e:1c:35:
7f:6c:d4:83:55:cd:9e:c5:d9:4a:13:2b:7e:60:98:ff:6c:2f:
f2:03:70:b8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoBR6gJHB2nighTsPCFmLqgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzZTY5YWE2ZWU3NGUzMGVmZGI4MTliOWNiMWJmMjFlNzg2
ZTZmYTMwHhcNMjUxMDIwMTEwMTA0WhcNMjUxMDIxMTEwMTA0WjAzMTEwLwYDVQQD
Eyg0NGNjOWU3ODdhN2ZlZjVmNmM5OTY3M2Q0Nzk3MGZkZGQ1YzZkMjAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyVwC+IIESOo7EjZej2fzGbpIVPb
IIkSKN3QdQmUDS8XiXKscc0d+9TAHAqEOtUaqJXb/hkhMDfzqRfsoO77erSeWPjH
Kfh0KyAVyc1hHIZylYF99ZMksPiaQanZeuxvPeBCP20Mum7q5xFFnPIVMPCZvDhQ
OLUsEelosXe8iu7R4rygao8FbXTesoJczHI6sZAisbjLgSfjm9SqNvOnieuqgUB3
2c34FkLW57ZG5udAOJ132nzJUYO+48d/IbeJUQZK6qM0hoca1pgClKaDDwJXbtoH
nmuHXOEfyFl72y+qYYckHtiET4m0/oangm5EtH0ILSmNvRE1ee0UAcEY1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFETMnnh6f+9fbJlnPUeXD93VxtIDMB8GA1UdIwQY
MBaAFAPmmqbudOMO/bgZucsb8h54bm+jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQS1hYXB1NTA0dzc5dUJtNXl4dnlIbmh1YjZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC9hOWU4ZmEtNDFkNy00YmM2LTk4NDEt
MDVhODNlZDcwYmMzLzEvQS1hYXB1NTA0dzc5dUJtNXl4dnlIbmh1YjZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC9hOWU4ZmEtNDFkNy00YmM2LTk4NDEtMDVhODNlZDcwYmMz
LzEvQS1hYXB1NTA0dzc5dUJtNXl4dnlIbmh1YjZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAELtnAyTs
KCElmzgt2Fn74EBOShFEDcWxvxVFNy/KfI2UvPSUh63VHEBnMxtXDdJjzxI2x5FU
/mLlk2GTrk7ZbYfxuhJxN51tYPrrjis2B5rA3/11kUgtM3hpjcR7Ldp7DdEwB977
lFv/3vIu18I9GG6aczkpAEq/yMhggBf9J61Bglwg7eduCl7y6wN75bVZTxVPMU2D
2+zxr4VJJgO16KlET+hdGckepvjOt1/QFZJOPxZqqO6thfOtZYb7vru5yolkm6q8
HDyH/I6bDGtqVKSzC0P/cJ/u60uZKzQwPr3Hluap9BoyThw1f2zUg1XNnsXZShMr
fmCY/2wv8gNwuA==
-----END CERTIFICATE-----
Generated at Mon Oct 20 18:18:49 2025 by rpki-client