Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
File: AYzG9GaiQWV79exSpjDa6wEiL4U.mft (raw, json)
Hash identifier: uMeoNjkziBrTP5oYiriEdY9mUobWks2mY0RkpOY1hwE=
Subject key identifier: A2:7C:5C:F5:35:8C:85:F2:41:13:6A:9E:0A:76:8B:28:A1:6B:51:0C
Authority key identifier: 01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
Certificate issuer: /CN=018cc6f466a241657bf5ec52a630daeb01222f85
Certificate serial: 0199FF226B82709E9B6CD9A5EE8DF111FFCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
Manifest number: 16E7
Signing time: Mon 20 Oct 2025 01:01:09 +0000
Manifest this update: Mon 20 Oct 2025 01:01:09 +0000
Manifest next update: Tue 21 Oct 2025 01:01:09 +0000
Files and hashes: 1: AYzG9GaiQWV79exSpjDa6wEiL4U.crl (hash: hyDI+yEDHwcwntr9ohkjTnVkwZyGSB20VAJJa0lVfeE=)
2: dZX-Kvgl9o6BfgDGAkWUKr6z6So.roa (hash: pk+V195UpaNyzxBRisHlqyHLbz6AqZTl0n9ayxOtcCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:6b:82:70:9e:9b:6c:d9:a5:ee:8d:f1:11:ff:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=018cc6f466a241657bf5ec52a630daeb01222f85
Validity
Not Before: Oct 20 01:01:09 2025 GMT
Not After : Oct 21 01:01:09 2025 GMT
Subject: CN=a27c5cf5358c85f241136a9e0a768b28a16b510c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:17:0e:51:23:30:17:00:5c:ae:35:c4:25:a2:
a8:5a:d7:fd:02:fd:9b:49:cf:b6:4c:45:1e:35:38:
c1:ea:87:6f:ff:eb:99:e9:84:62:98:ae:52:5a:09:
4e:6f:0f:34:27:b2:bf:fc:7d:10:c5:bf:6d:d2:63:
d7:e2:f4:9e:87:ee:83:46:0f:98:18:b9:11:55:3a:
e2:f5:95:8c:30:7d:1d:c7:a0:cc:22:00:01:1d:62:
0f:0f:1d:53:46:23:17:5a:c4:9b:96:c0:a0:f6:2d:
7f:12:bc:72:d7:42:2e:e9:65:87:ca:87:57:5b:57:
d8:87:67:d3:96:1b:37:61:41:05:74:ef:96:e6:b4:
f6:a8:1e:84:42:8b:1d:a3:01:09:c9:ef:dd:83:9b:
c3:59:24:d4:5a:10:3e:0f:e6:f2:fd:50:46:bb:6e:
a7:2b:3c:4c:73:a4:8e:7b:9f:3e:e5:5a:4e:f0:a5:
c5:4c:62:b4:0e:be:39:3f:cd:05:8d:57:f9:6b:46:
b2:a8:74:5a:f8:5e:09:76:c4:dd:43:d3:3c:c5:b7:
58:fc:47:f6:14:2e:33:32:b4:a8:7a:19:aa:e3:d7:
d9:42:60:7f:75:39:9f:e9:b6:a6:e6:e8:93:57:79:
2d:f8:3a:9f:52:5b:06:91:e2:ff:4c:8d:5b:b1:97:
05:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:7C:5C:F5:35:8C:85:F2:41:13:6A:9E:0A:76:8B:28:A1:6B:51:0C
X509v3 Authority Key Identifier:
keyid:01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:c3:a0:0f:3c:bc:75:3d:59:68:ee:35:58:69:e3:45:81:1d:
43:fb:81:d7:cc:0f:de:69:cd:52:c6:37:4f:84:d8:e6:64:63:
cb:d6:de:39:b2:5f:f9:97:6e:c6:41:52:93:5d:5a:9c:d8:4c:
97:97:e1:2a:9f:62:b0:ec:5b:9d:69:c2:d7:88:26:07:78:60:
c6:80:b1:6a:9c:cd:75:c6:87:e1:b5:d2:b9:7e:05:ee:0a:e0:
e8:4e:4b:07:d2:62:c5:22:1f:29:d5:a4:f2:b6:b7:04:85:c7:
34:7b:30:52:6d:6b:17:78:1e:d4:f7:ec:39:93:1d:ea:86:6b:
27:2d:41:d4:37:1b:1e:86:df:12:03:8f:36:5a:15:84:47:c9:
2a:d8:71:54:ff:1b:be:63:3d:a5:aa:4f:60:b1:ed:e4:e7:d7:
eb:96:e1:4f:dc:4d:7c:ce:86:df:43:30:5b:62:6f:23:f4:0d:
38:87:14:6e:24:16:e0:cd:3d:28:cc:96:a2:fb:b5:2c:cb:f8:
b6:f8:52:b8:6c:55:e5:58:d0:50:28:49:df:70:c6:c7:93:e2:
f7:39:a5:fa:85:06:f9:1d:1b:5e:d3:ba:86:9f:94:a7:91:fc:
d4:1f:40:3b:cb:75:9a:1b:52:03:c7:b1:98:77:33:94:11:30:
51:c4:28:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/ImuCcJ6bbNml7o3xEf/KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxOGNjNmY0NjZhMjQxNjU3YmY1ZWM1MmE2MzBkYWViMDEy
MjJmODUwHhcNMjUxMDIwMDEwMTA5WhcNMjUxMDIxMDEwMTA5WjAzMTEwLwYDVQQD
EyhhMjdjNWNmNTM1OGM4NWYyNDExMzZhOWUwYTc2OGIyOGExNmI1MTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2BcOUSMwFwBcrjXEJaKoWtf9Av2b
Sc+2TEUeNTjB6odv/+uZ6YRimK5SWglObw80J7K//H0Qxb9t0mPX4vSeh+6DRg+Y
GLkRVTri9ZWMMH0dx6DMIgABHWIPDx1TRiMXWsSblsCg9i1/Erxy10Iu6WWHyodX
W1fYh2fTlhs3YUEFdO+W5rT2qB6EQosdowEJye/dg5vDWSTUWhA+D+by/VBGu26n
KzxMc6SOe58+5VpO8KXFTGK0Dr45P80FjVf5a0ayqHRa+F4JdsTdQ9M8xbdY/Ef2
FC4zMrSoehmq49fZQmB/dTmf6bam5uiTV3kt+DqfUlsGkeL/TI1bsZcFswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKJ8XPU1jIXyQRNqngp2iyiha1EMMB8GA1UdIwQY
MBaAFAGMxvRmokFle/XsUqYw2usBIi+FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVl6RzlHYWlRV1Y3OWV4U3BqRGE2d0VpTDRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8zY2YyZmItY2Y0My00YzUyLWEyYTEt
YmU4ZDhjNjdkZjk1LzEvQVl6RzlHYWlRV1Y3OWV4U3BqRGE2d0VpTDRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS8zY2YyZmItY2Y0My00YzUyLWEyYTEtYmU4ZDhjNjdkZjk1
LzEvQVl6RzlHYWlRV1Y3OWV4U3BqRGE2d0VpTDRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArcOgDzy8
dT1ZaO41WGnjRYEdQ/uB18wP3mnNUsY3T4TY5mRjy9beObJf+ZduxkFSk11anNhM
l5fhKp9isOxbnWnC14gmB3hgxoCxapzNdcaH4bXSuX4F7grg6E5LB9JixSIfKdWk
8ra3BIXHNHswUm1rF3ge1PfsOZMd6oZrJy1B1DcbHobfEgOPNloVhEfJKthxVP8b
vmM9papPYLHt5OfX65bhT9xNfM6G30MwW2JvI/QNOIcUbiQW4M09KMyWovu1LMv4
tvhSuGxV5VjQUChJ33DGx5Pi9zml+oUG+R0bXtO6hp+Up5H81B9AO8t1mhtSA8ex
mHczlBEwUcQoJw==
-----END CERTIFICATE-----
Generated at Mon Oct 20 08:51:18 2025 by rpki-client