Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
File: 1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft (raw, json)
Hash identifier: dYYjnXWKH1zz1zBS5Ayhh4WIP0Vz2DE4c3258A6KUak=
Subject key identifier: 2D:56:DE:EE:DE:15:EC:F9:65:F9:FE:DC:07:7B:D2:04:B6:09:96:E2
Authority key identifier: D6:EE:FF:69:01:1A:D0:1A:1B:17:9A:6D:D7:0D:59:A1:11:6F:51:F3
Certificate issuer: /CN=d6eeff69011ad01a1b179a6dd70d59a1116f51f3
Certificate serial: 0199FC21453BB9300F47582D57C2E92F8417
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
Manifest number: 1019
Signing time: Sun 19 Oct 2025 11:01:02 +0000
Manifest this update: Sun 19 Oct 2025 11:01:02 +0000
Manifest next update: Mon 20 Oct 2025 11:01:02 +0000
Files and hashes: 1: 1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl (hash: EbFFnUR1xE8eKDVytY6I85jLmRwEL1fN20/bGK2zZHI=)
2: fKmmYJWJ4PEyW03R1GMx50v7dJU.roa (hash: mKILdaPsSf1rCWCwboqDxfWauZkoLUzcUqKnlg5HNcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:45:3b:b9:30:0f:47:58:2d:57:c2:e9:2f:84:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6eeff69011ad01a1b179a6dd70d59a1116f51f3
Validity
Not Before: Oct 19 11:01:02 2025 GMT
Not After : Oct 20 11:01:02 2025 GMT
Subject: CN=2d56deeede15ecf965f9fedc077bd204b60996e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f7:f1:57:51:8d:6a:e1:d4:8b:24:81:be:b1:
4c:45:93:7f:c1:9c:ca:0c:ff:1c:bb:5a:78:7a:41:
75:3c:10:ab:db:01:4c:e7:4e:7f:51:f5:a9:ec:30:
e4:7c:ac:82:00:4e:f6:6c:8a:16:ae:9d:9e:e8:0b:
29:34:de:40:ef:12:74:55:1d:b0:b3:f0:b7:3a:79:
5c:c2:21:3d:b8:c3:04:5e:8c:8d:cb:19:29:4b:bf:
22:b5:e7:d6:71:fd:96:14:6c:a5:89:44:2e:35:07:
39:60:fb:ec:0d:8a:8a:9f:94:61:93:6e:77:81:37:
7d:4b:00:9c:0a:a5:58:3a:ef:8a:fa:b3:78:94:b2:
9a:e6:e8:aa:8b:c8:e0:f6:70:ed:e0:38:1a:dd:d7:
54:59:ac:5b:2e:60:34:85:55:1e:1c:0f:7f:fa:72:
2a:47:b2:3e:c4:4a:4e:59:34:71:dd:2e:26:8e:bd:
3a:ac:78:b0:6e:06:2c:2f:dd:f2:07:98:fb:d2:15:
9a:d9:6b:83:97:85:3b:5f:3f:07:72:5f:14:16:9f:
70:d9:d3:71:d4:f3:b1:38:bf:db:c8:ab:cf:67:c0:
25:a3:53:c7:e7:4a:35:aa:45:1f:c8:1d:50:69:14:
c1:66:83:de:d0:e6:da:25:8e:5d:7c:f3:eb:20:fb:
01:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:56:DE:EE:DE:15:EC:F9:65:F9:FE:DC:07:7B:D2:04:B6:09:96:E2
X509v3 Authority Key Identifier:
keyid:D6:EE:FF:69:01:1A:D0:1A:1B:17:9A:6D:D7:0D:59:A1:11:6F:51:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:db:1b:a1:30:2f:a8:c4:ac:3d:da:95:bc:12:87:be:07:0a:
ac:30:be:a5:19:10:92:62:95:f1:09:dc:b1:cc:5b:30:0b:da:
b7:ad:ff:fd:fb:d8:b9:8d:b7:0b:68:54:ae:d2:64:4b:51:db:
14:ce:cd:73:f4:46:56:99:4f:6f:81:d0:69:39:67:5a:be:83:
13:57:90:64:99:be:be:c7:ad:cd:04:8e:80:37:38:43:a8:dc:
6e:98:8d:6e:84:8b:b2:b5:ea:e5:da:59:f9:38:fd:ce:7c:1b:
5c:a9:fc:c3:62:2e:b7:89:ce:86:8e:f1:20:2f:84:3e:e6:8e:
70:25:0a:e3:3c:14:9c:b5:fe:23:4c:b5:87:e5:47:ea:bb:8e:
71:a0:f4:13:15:e6:88:59:7e:e3:b8:ac:7e:7a:bd:6a:24:c0:
9f:ae:de:05:fb:ca:69:9e:a5:0e:e1:6c:36:29:1a:91:51:45:
a1:20:54:26:ef:bb:ba:28:c7:16:5b:cc:b6:c0:f6:8e:e6:45:
04:1b:e9:13:38:63:05:b8:a8:94:2c:7a:eb:0f:ea:be:60:a0:
f0:59:fc:90:69:8f:7a:92:30:59:f5:99:d5:eb:2d:a7:df:f5:
8d:26:5c:a0:92:dd:a9:6b:b6:9f:12:b1:10:4f:13:4d:2b:cb:
02:80:a7:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8IUU7uTAPR1gtV8LpL4QXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2ZWVmZjY5MDExYWQwMWExYjE3OWE2ZGQ3MGQ1OWExMTE2
ZjUxZjMwHhcNMjUxMDE5MTEwMTAyWhcNMjUxMDIwMTEwMTAyWjAzMTEwLwYDVQQD
EygyZDU2ZGVlZWRlMTVlY2Y5NjVmOWZlZGMwNzdiZDIwNGI2MDk5NmUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwffxV1GNauHUiySBvrFMRZN/wZzK
DP8cu1p4ekF1PBCr2wFM505/UfWp7DDkfKyCAE72bIoWrp2e6AspNN5A7xJ0VR2w
s/C3OnlcwiE9uMMEXoyNyxkpS78itefWcf2WFGyliUQuNQc5YPvsDYqKn5Rhk253
gTd9SwCcCqVYOu+K+rN4lLKa5uiqi8jg9nDt4Dga3ddUWaxbLmA0hVUeHA9/+nIq
R7I+xEpOWTRx3S4mjr06rHiwbgYsL93yB5j70hWa2WuDl4U7Xz8Hcl8UFp9w2dNx
1POxOL/byKvPZ8Alo1PH50o1qkUfyB1QaRTBZoPe0ObaJY5dfPPrIPsBuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC1W3u7eFez5Zfn+3Ad70gS2CZbiMB8GA1UdIwQY
MBaAFNbu/2kBGtAaGxeabdcNWaERb1HzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXU3X2FRRWEwQm9iRjVwdDF3MVpvUkZ2VWZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS8yMjMxZDItY2Q5YS00Y2YxLTgwZDAt
NTFiMmFhNTk4MGJlLzEvMXU3X2FRRWEwQm9iRjVwdDF3MVpvUkZ2VWZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS8yMjMxZDItY2Q5YS00Y2YxLTgwZDAtNTFiMmFhNTk4MGJl
LzEvMXU3X2FRRWEwQm9iRjVwdDF3MVpvUkZ2VWZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ9sboTAv
qMSsPdqVvBKHvgcKrDC+pRkQkmKV8QncscxbMAvat63//fvYuY23C2hUrtJkS1Hb
FM7Nc/RGVplPb4HQaTlnWr6DE1eQZJm+vsetzQSOgDc4Q6jcbpiNboSLsrXq5dpZ
+Tj9znwbXKn8w2Iut4nOho7xIC+EPuaOcCUK4zwUnLX+I0y1h+VH6ruOcaD0ExXm
iFl+47isfnq9aiTAn67eBfvKaZ6lDuFsNikakVFFoSBUJu+7uijHFlvMtsD2juZF
BBvpEzhjBbiolCx66w/qvmCg8Fn8kGmPepIwWfWZ1estp9/1jSZcoJLdqWu2nxKx
EE8TTSvLAoCnZg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:44:54 2025 by rpki-client