Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft
File: AKTVv_pzY0hD6QPjexj97g2sWFs.mft (raw, json)
Hash identifier: 5M5HB2CGmewlnO2QsYJn7NAoA6BUUxUwDz+9EDTnCjo=
Subject key identifier: 59:D7:F4:26:77:A0:BC:2E:D6:32:B0:29:D9:8B:90:5B:BA:62:D1:90
Authority key identifier: 00:A4:D5:BF:FA:73:63:48:43:E9:03:E3:7B:18:FD:EE:0D:AC:58:5B
Certificate issuer: /CN=00a4d5bffa73634843e903e37b18fdee0dac585b
Certificate serial: 0198D65FC978B4AF803AF531A1038C467DFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AKTVv_pzY0hD6QPjexj97g2sWFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft
Manifest number: 016E
Signing time: Sat 23 Aug 2025 10:00:58 +0000
Manifest this update: Sat 23 Aug 2025 10:00:58 +0000
Manifest next update: Sun 24 Aug 2025 10:00:58 +0000
Files and hashes: 1: AKTVv_pzY0hD6QPjexj97g2sWFs.crl (hash: JoAR30ZZHCu0u8oszjmnGDaSb5lYnJJRQIXZiF2ZcU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/AKTVv_pzY0hD6QPjexj97g2sWFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:c9:78:b4:af:80:3a:f5:31:a1:03:8c:46:7d:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00a4d5bffa73634843e903e37b18fdee0dac585b
Validity
Not Before: Aug 23 10:00:58 2025 GMT
Not After : Aug 24 10:00:58 2025 GMT
Subject: CN=59d7f42677a0bc2ed632b029d98b905bba62d190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:11:55:ee:c8:67:07:73:44:b1:67:ff:a8:26:
d8:12:86:bd:98:1c:06:e7:de:f2:74:e7:52:a2:9a:
3c:0e:50:45:ea:94:5b:e9:15:e0:42:2a:ea:27:26:
7b:00:6d:ff:96:a1:aa:68:8c:1d:53:5d:8f:ec:8c:
7c:cd:52:78:dd:14:bb:57:a0:25:93:16:66:21:49:
b4:b3:bd:f9:5f:c0:0f:6a:44:43:e4:52:eb:9e:29:
f8:20:bd:f6:eb:d6:7e:e4:65:33:56:68:9a:04:a6:
73:e8:f0:e6:5b:30:1a:b2:90:58:18:39:d4:17:50:
10:56:39:54:60:f6:ea:f6:c6:d5:81:25:e6:19:ca:
95:c8:a8:d0:c8:fc:50:50:3e:11:6b:01:3d:34:f2:
ae:84:d4:61:24:95:7d:05:b8:fb:c8:c5:e8:1f:94:
22:51:ac:6e:47:ff:12:9e:2c:d3:95:31:56:24:71:
1a:ff:d8:b4:46:23:21:f7:93:e4:e4:e5:c5:95:bb:
67:42:df:0e:bd:39:07:b6:a0:0c:7a:39:1b:72:35:
34:ee:8a:12:89:f1:9d:53:c0:cf:07:3a:90:bc:6e:
62:17:62:1f:65:e5:1e:e5:8d:12:fb:b4:37:2f:e1:
58:ba:8b:ac:e9:c0:d0:f2:6f:6f:73:7e:03:3e:cf:
38:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D7:F4:26:77:A0:BC:2E:D6:32:B0:29:D9:8B:90:5B:BA:62:D1:90
X509v3 Authority Key Identifier:
keyid:00:A4:D5:BF:FA:73:63:48:43:E9:03:E3:7B:18:FD:EE:0D:AC:58:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AKTVv_pzY0hD6QPjexj97g2sWFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:d5:bc:6f:08:c8:a5:eb:76:3c:f9:81:4e:c8:f8:bd:c1:9b:
84:5d:75:2d:7e:6f:e5:3d:d3:07:11:f2:ea:9e:a1:9f:6b:ba:
ec:55:e3:f3:f7:4f:66:bb:fa:69:8f:62:4b:10:10:2e:0f:bf:
41:36:62:b3:23:ba:3d:84:8e:53:c2:ca:fb:7e:b7:da:b9:46:
a6:f6:c0:a2:73:7c:66:fb:48:bd:51:10:12:db:32:e7:16:b0:
6a:c4:90:10:13:f7:2e:2f:e0:65:e4:a5:9b:55:00:17:0d:bf:
fc:90:09:1b:11:3b:87:7f:c3:05:f8:29:a4:ea:26:70:d4:82:
ca:71:2a:df:d1:12:1f:61:66:24:43:59:bc:cf:99:f3:4e:14:
74:ac:53:af:5f:d8:1d:b7:9f:6b:97:9d:bd:01:83:e2:41:e7:
c2:41:b9:f1:e9:f1:89:a0:c1:b1:15:38:00:de:c9:19:07:f1:
82:8b:bd:67:e5:53:45:f4:b3:18:29:ee:61:fb:81:7c:e5:81:
23:e3:df:b4:5e:c9:ba:3a:20:0e:28:eb:58:da:1b:5d:8d:fe:
a1:dc:2b:92:67:ec:36:27:de:c0:90:c3:99:40:c0:60:ff:d7:
0e:28:05:86:91:52:52:10:b6:dd:e4:b7:de:8a:a9:5d:1a:63:
32:28:74:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX8l4tK+AOvUxoQOMRn37MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwYTRkNWJmZmE3MzYzNDg0M2U5MDNlMzdiMThmZGVlMGRh
YzU4NWIwHhcNMjUwODIzMTAwMDU4WhcNMjUwODI0MTAwMDU4WjAzMTEwLwYDVQQD
Eyg1OWQ3ZjQyNjc3YTBiYzJlZDYzMmIwMjlkOThiOTA1YmJhNjJkMTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxRFV7shnB3NEsWf/qCbYEoa9mBwG
597ydOdSopo8DlBF6pRb6RXgQirqJyZ7AG3/lqGqaIwdU12P7Ix8zVJ43RS7V6Al
kxZmIUm0s735X8APakRD5FLrnin4IL3269Z+5GUzVmiaBKZz6PDmWzAaspBYGDnU
F1AQVjlUYPbq9sbVgSXmGcqVyKjQyPxQUD4RawE9NPKuhNRhJJV9Bbj7yMXoH5Qi
UaxuR/8SnizTlTFWJHEa/9i0RiMh95Pk5OXFlbtnQt8OvTkHtqAMejkbcjU07ooS
ifGdU8DPBzqQvG5iF2IfZeUe5Y0S+7Q3L+FYuous6cDQ8m9vc34DPs84+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFnX9CZ3oLwu1jKwKdmLkFu6YtGQMB8GA1UdIwQY
MBaAFACk1b/6c2NIQ+kD43sY/e4NrFhbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUtUVnZfcHpZMGhENlFQamV4ajk3ZzJzV0ZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC85NmU2NDAtODVhNS00NzViLTk0Y2It
ODRlZTY5ZWQ5M2E0LzEvQUtUVnZfcHpZMGhENlFQamV4ajk3ZzJzV0ZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC85NmU2NDAtODVhNS00NzViLTk0Y2ItODRlZTY5ZWQ5M2E0
LzEvQUtUVnZfcHpZMGhENlFQamV4ajk3ZzJzV0ZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAONW8bwjI
pet2PPmBTsj4vcGbhF11LX5v5T3TBxHy6p6hn2u67FXj8/dPZrv6aY9iSxAQLg+/
QTZisyO6PYSOU8LK+3632rlGpvbAonN8ZvtIvVEQEtsy5xawasSQEBP3Li/gZeSl
m1UAFw2//JAJGxE7h3/DBfgppOomcNSCynEq39ESH2FmJENZvM+Z804UdKxTr1/Y
Hbefa5edvQGD4kHnwkG58enxiaDBsRU4AN7JGQfxgou9Z+VTRfSzGCnuYfuBfOWB
I+PftF7JujogDijrWNobXY3+odwrkmfsNifewJDDmUDAYP/XDigFhpFSUhC23eS3
3oqpXRpjMih0jA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 18:34:27 2025 by rpki-client