Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
File: AYzG9GaiQWV79exSpjDa6wEiL4U.mft (raw, json)
Hash identifier: eb4owmm7IAmZhy5AJxWTFf4BqleTCbBw9P2PCnl5wzQ=
Subject key identifier: AA:63:75:5C:F8:D3:3A:C0:12:62:4C:76:FD:C8:B8:42:EE:27:0D:3F
Authority key identifier: 01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
Certificate issuer: /CN=018cc6f466a241657bf5ec52a630daeb01222f85
Certificate serial: 0198D5BB8D6C136CBBF3BE87954956EB2410
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 07:01:35 +0000
Manifest this update: Sat 23 Aug 2025 07:01:35 +0000
Manifest next update: Sun 24 Aug 2025 07:01:35 +0000
Files and hashes: 1: AYzG9GaiQWV79exSpjDa6wEiL4U.crl (hash: E56Td+rDbR6rmV4pURcYbLGqjIwwc6Hu3uCRfobYISY=)
2: dZX-Kvgl9o6BfgDGAkWUKr6z6So.roa (hash: pk+V195UpaNyzxBRisHlqyHLbz6AqZTl0n9ayxOtcCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:8d:6c:13:6c:bb:f3:be:87:95:49:56:eb:24:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=018cc6f466a241657bf5ec52a630daeb01222f85
Validity
Not Before: Aug 23 07:01:35 2025 GMT
Not After : Aug 24 07:01:35 2025 GMT
Subject: CN=aa63755cf8d33ac012624c76fdc8b842ee270d3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2f:86:cc:e6:64:22:20:a4:36:6a:99:65:d1:
3f:c7:db:bc:99:c8:5a:c9:26:47:43:bb:e6:a0:4b:
1a:27:dc:d0:c1:b0:d8:77:a3:c2:5f:27:1a:02:3a:
8a:06:d9:05:f6:87:68:8f:a2:b1:fd:20:c5:08:3a:
31:bf:0c:5c:8b:40:63:be:31:7e:3d:c1:88:fd:4d:
0d:3e:ac:f4:37:a5:13:28:0b:61:3a:74:b8:cd:ca:
48:2b:90:47:95:bb:fe:56:4b:1f:a2:a2:51:05:61:
73:5a:6a:b8:ba:fd:f3:9f:06:e1:a2:b9:3b:aa:ff:
01:05:10:af:1a:29:a9:56:d7:87:7a:92:c9:c0:14:
78:cf:52:2d:a3:a9:5b:8f:15:75:c2:2a:fb:83:54:
76:bd:5a:02:c8:ef:53:cf:48:ec:fb:8c:a5:64:01:
f1:9d:c1:a9:df:f7:30:8b:d5:b3:56:cc:f5:4e:7a:
5f:a6:4e:11:d4:e5:c5:ed:62:a0:5b:f3:ac:3d:0e:
6b:a8:88:fc:65:a1:ab:cf:64:da:e3:22:ab:5e:44:
68:34:13:9c:a6:9c:e6:c7:6f:14:85:1e:13:c2:e4:
44:29:d3:bf:b0:6e:80:c7:cb:8f:d2:f7:0d:4d:62:
1d:59:88:ae:a6:69:85:84:fa:78:4e:65:f3:a9:fe:
a9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:63:75:5C:F8:D3:3A:C0:12:62:4C:76:FD:C8:B8:42:EE:27:0D:3F
X509v3 Authority Key Identifier:
keyid:01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:ed:e1:63:b1:3a:c6:ef:00:d4:c1:42:d5:76:d1:74:0e:34:
ae:d0:21:1b:90:f5:a4:3c:e5:12:df:18:f2:e0:0f:97:2a:a1:
ac:fe:e9:4f:dd:33:44:c1:ed:3a:ff:e4:40:58:9a:65:19:3b:
35:54:65:88:8f:14:70:4a:4a:07:05:4f:5c:e8:d4:cc:c4:b1:
fb:6e:53:fa:f3:36:89:21:97:58:e6:5b:a3:11:43:a3:a1:eb:
90:39:1b:52:dc:0d:8c:1b:a3:84:cc:17:6a:73:c2:90:af:be:
da:fb:aa:65:1a:6e:97:4f:2e:e7:6d:fb:88:9f:47:93:98:7f:
7e:8c:99:a0:f4:0e:de:c1:d5:9f:09:96:ee:9f:95:1c:7e:2f:
c2:56:fb:8a:a5:f8:eb:06:d3:1c:ce:31:98:34:08:b2:63:71:
b4:a1:b6:d9:2e:60:07:77:a8:cb:55:3d:32:ec:f5:da:ad:73:
6f:53:eb:21:eb:69:57:14:c0:46:3f:6b:12:a2:d0:83:10:e0:
0e:a8:1b:29:d4:d1:e8:98:34:80:4b:ef:bc:9d:68:3d:d3:88:
bd:eb:5d:22:06:84:fa:a9:3b:b1:05:ea:14:f3:14:5c:0a:88:
52:3e:96:f6:12:26:b9:a9:8a:8e:55:56:86:4e:7b:92:f7:02:
d7:11:89:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu41sE2y7876HlUlW6yQQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxOGNjNmY0NjZhMjQxNjU3YmY1ZWM1MmE2MzBkYWViMDEy
MjJmODUwHhcNMjUwODIzMDcwMTM1WhcNMjUwODI0MDcwMTM1WjAzMTEwLwYDVQQD
EyhhYTYzNzU1Y2Y4ZDMzYWMwMTI2MjRjNzZmZGM4Yjg0MmVlMjcwZDNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3C+GzOZkIiCkNmqZZdE/x9u8mcha
ySZHQ7vmoEsaJ9zQwbDYd6PCXycaAjqKBtkF9odoj6Kx/SDFCDoxvwxci0BjvjF+
PcGI/U0NPqz0N6UTKAthOnS4zcpIK5BHlbv+VksfoqJRBWFzWmq4uv3znwbhork7
qv8BBRCvGimpVteHepLJwBR4z1Ito6lbjxV1wir7g1R2vVoCyO9Tz0js+4ylZAHx
ncGp3/cwi9WzVsz1Tnpfpk4R1OXF7WKgW/OsPQ5rqIj8ZaGrz2Ta4yKrXkRoNBOc
ppzmx28UhR4TwuREKdO/sG6Ax8uP0vcNTWIdWYiupmmFhPp4TmXzqf6pgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKpjdVz40zrAEmJMdv3IuELuJw0/MB8GA1UdIwQY
MBaAFAGMxvRmokFle/XsUqYw2usBIi+FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVl6RzlHYWlRV1Y3OWV4U3BqRGE2d0VpTDRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8zY2YyZmItY2Y0My00YzUyLWEyYTEt
YmU4ZDhjNjdkZjk1LzEvQVl6RzlHYWlRV1Y3OWV4U3BqRGE2d0VpTDRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS8zY2YyZmItY2Y0My00YzUyLWEyYTEtYmU4ZDhjNjdkZjk1
LzEvQVl6RzlHYWlRV1Y3OWV4U3BqRGE2d0VpTDRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu+3hY7E6
xu8A1MFC1XbRdA40rtAhG5D1pDzlEt8Y8uAPlyqhrP7pT90zRMHtOv/kQFiaZRk7
NVRliI8UcEpKBwVPXOjUzMSx+25T+vM2iSGXWOZboxFDo6HrkDkbUtwNjBujhMwX
anPCkK++2vuqZRpul08u5237iJ9Hk5h/foyZoPQO3sHVnwmW7p+VHH4vwlb7iqX4
6wbTHM4xmDQIsmNxtKG22S5gB3eoy1U9Muz12q1zb1PrIetpVxTARj9rEqLQgxDg
DqgbKdTR6Jg0gEvvvJ1oPdOIvetdIgaE+qk7sQXqFPMUXAqIUj6W9hImuamKjlVW
hk57kvcC1xGJmw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:25:49 2025 by rpki-client