Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
File: aDjbfmmRJ9pMHFpek_RPMCtihjs.mft (raw, json)
Hash identifier: DQFE7rgI0QnKh7u5grJp0iLmNfd3ZfFOjoMGURVWENM=
Subject key identifier: 1B:65:B1:3E:B5:29:8C:23:62:A0:63:95:77:09:6D:E8:94:05:A4:85
Authority key identifier: 68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B
Certificate issuer: /CN=6838db7e699127da4c1c5a5e93f44f302b62863b
Certificate serial: 019A00354D0AC570F6A5F60F168E7CC1CED9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
Manifest number: 16E3
Signing time: Mon 20 Oct 2025 06:01:24 +0000
Manifest this update: Mon 20 Oct 2025 06:01:24 +0000
Manifest next update: Tue 21 Oct 2025 06:01:24 +0000
Files and hashes: 1: aDjbfmmRJ9pMHFpek_RPMCtihjs.crl (hash: zleGbdfFfksJTyB6w9RtThk30BhgoUAdpKm0FSah2Hk=)
2: ndozZxXsqqvoYlnvn2R8eG6q9WM.roa (hash: J/bxB2F1VD9ABMhf1I4cZo/1cjeHrt4Cto7ZdYkPM28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:4d:0a:c5:70:f6:a5:f6:0f:16:8e:7c:c1:ce:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6838db7e699127da4c1c5a5e93f44f302b62863b
Validity
Not Before: Oct 20 06:01:24 2025 GMT
Not After : Oct 21 06:01:24 2025 GMT
Subject: CN=1b65b13eb5298c2362a0639577096de89405a485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:59:ab:c6:c3:f1:e3:23:cb:f8:22:f4:1c:1c:
3e:c9:9c:f1:df:d6:59:16:ba:2a:aa:d6:15:7a:c8:
3b:84:8f:e4:13:48:aa:84:97:e0:2a:f1:43:30:b2:
4e:91:27:4f:6e:2a:bd:02:f2:82:14:73:af:79:75:
39:2c:22:bf:75:9b:44:18:54:f8:4e:c4:c7:73:fd:
0b:24:a1:cd:cc:6d:e5:79:ea:7a:f8:29:7b:9a:29:
81:63:4d:04:e9:f5:20:57:5b:02:81:18:6b:e8:89:
4d:c6:7f:d1:a7:8f:4b:27:e8:28:5a:19:68:cf:25:
dc:87:c3:65:2d:64:5d:a7:45:a2:de:cc:3f:ac:5f:
10:34:f5:36:10:4b:2e:b5:e4:6e:91:57:73:1b:ca:
40:f3:37:3e:e4:0b:96:07:6f:ef:9c:89:14:91:31:
06:ef:2a:1c:c8:b9:b0:15:6f:9b:6d:0a:52:80:5c:
bf:24:ee:d2:a9:39:63:3c:fc:48:56:61:d3:ef:72:
c5:88:d5:ce:08:92:d7:1f:bb:5b:64:e5:73:ac:70:
a6:0c:1d:c8:ec:08:cd:fc:7e:9a:28:1e:cd:29:99:
bb:ac:dc:43:d9:1b:cf:c9:1f:ca:5a:36:a9:6b:c6:
b5:cc:ff:a7:69:ea:20:1f:16:d6:ac:22:1c:13:fc:
27:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:65:B1:3E:B5:29:8C:23:62:A0:63:95:77:09:6D:E8:94:05:A4:85
X509v3 Authority Key Identifier:
keyid:68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:dd:97:42:c5:ce:87:a8:22:d3:4c:b0:99:f5:73:2c:c0:80:
fa:2c:03:df:39:50:4e:45:eb:e0:d4:93:b3:2e:cb:0c:ea:f1:
4d:45:25:8d:0c:43:b2:ea:a0:57:92:4e:97:a0:e3:c1:0a:37:
d4:04:90:dc:82:f9:c7:52:e0:33:63:49:78:0a:12:01:3f:2e:
14:1f:dc:cd:6a:fc:c0:07:80:e8:83:bd:86:76:be:f7:1b:ed:
19:7e:55:ce:bf:7e:b8:6b:78:14:c9:da:58:2f:39:15:ab:ed:
70:1c:48:c7:2e:19:de:83:50:98:67:8d:84:c7:36:cf:9a:b5:
1a:b0:28:b6:d0:d2:e8:16:b8:9c:19:06:9a:0f:91:0d:fc:bd:
78:67:60:61:db:f4:b2:21:62:19:ca:4f:3f:c9:2d:70:df:51:
83:fc:e6:2e:f6:51:7e:f0:9e:29:63:3b:d8:27:b0:41:3a:ab:
d0:f1:c7:91:b1:bb:99:50:c4:4b:c3:3a:2a:f5:a7:85:c0:78:
ef:70:64:cc:76:3c:d7:7c:71:f6:93:18:8d:75:a8:c9:5f:cc:
ac:ef:2b:f6:dd:97:46:68:b0:fb:9b:0f:f6:ee:c2:66:27:f2:
55:61:08:bf:5e:94:d1:dd:4a:b7:bb:80:07:bb:85:5e:de:e6:
ee:7b:0a:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoANU0KxXD2pfYPFo58wc7ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MzhkYjdlNjk5MTI3ZGE0YzFjNWE1ZTkzZjQ0ZjMwMmI2
Mjg2M2IwHhcNMjUxMDIwMDYwMTI0WhcNMjUxMDIxMDYwMTI0WjAzMTEwLwYDVQQD
EygxYjY1YjEzZWI1Mjk4YzIzNjJhMDYzOTU3NzA5NmRlODk0MDVhNDg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVmrxsPx4yPL+CL0HBw+yZzx39ZZ
FroqqtYVesg7hI/kE0iqhJfgKvFDMLJOkSdPbiq9AvKCFHOveXU5LCK/dZtEGFT4
TsTHc/0LJKHNzG3leep6+Cl7mimBY00E6fUgV1sCgRhr6IlNxn/Rp49LJ+goWhlo
zyXch8NlLWRdp0Wi3sw/rF8QNPU2EEsuteRukVdzG8pA8zc+5AuWB2/vnIkUkTEG
7yocyLmwFW+bbQpSgFy/JO7SqTljPPxIVmHT73LFiNXOCJLXH7tbZOVzrHCmDB3I
7AjN/H6aKB7NKZm7rNxD2RvPyR/KWjapa8a1zP+naeogHxbWrCIcE/wnTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBtlsT61KYwjYqBjlXcJbeiUBaSFMB8GA1UdIwQY
MBaAFGg4235pkSfaTBxaXpP0TzArYoY7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9iMjQ3MWMtYmViYy00NDEyLWE2YTQt
MmY5Y2FjNzAwZmE1LzEvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85My9iMjQ3MWMtYmViYy00NDEyLWE2YTQtMmY5Y2FjNzAwZmE1
LzEvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArN2XQsXO
h6gi00ywmfVzLMCA+iwD3zlQTkXr4NSTsy7LDOrxTUUljQxDsuqgV5JOl6DjwQo3
1ASQ3IL5x1LgM2NJeAoSAT8uFB/czWr8wAeA6IO9hna+9xvtGX5Vzr9+uGt4FMna
WC85FavtcBxIxy4Z3oNQmGeNhMc2z5q1GrAottDS6Ba4nBkGmg+RDfy9eGdgYdv0
siFiGcpPP8ktcN9Rg/zmLvZRfvCeKWM72CewQTqr0PHHkbG7mVDES8M6KvWnhcB4
73BkzHY813xx9pMYjXWoyV/MrO8r9t2XRmiw+5sP9u7CZifyVWEIv16U0d1Kt7uA
B7uFXt7m7nsK0w==
-----END CERTIFICATE-----
Generated at Mon Oct 20 09:11:22 2025 by rpki-client