Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
File: orzYisPgLP-tPADeRrXaM2vWRwI.mft (raw, json)
Hash identifier: g0j4bKt8zsy0kbUjfvNYh9G+jThSCazom0OTnJmFBLQ=
Subject key identifier: 55:64:39:A0:7B:7D:FF:4F:AA:7F:E6:82:48:2F:45:32:CA:A9:2B:E3
Authority key identifier: A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02
Certificate issuer: /CN=a2bcd88ac3e02cffad3c00de46b5da336bd64702
Certificate serial: 019A7225CCF6060E16163E5C7056B334713D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
Manifest number: 142D
Signing time: Tue 11 Nov 2025 09:01:11 +0000
Manifest this update: Tue 11 Nov 2025 09:01:11 +0000
Manifest next update: Wed 12 Nov 2025 09:01:11 +0000
Files and hashes: 1: dTRvsxL2APKWCpGceVS2hPx0HUQ.roa (hash: ckDUOzUXSrfuvc3RkTd1UBfCmEYB7nDoNopZ1OYU3es=)
2: orzYisPgLP-tPADeRrXaM2vWRwI.crl (hash: hZOVqwD3aWIXghst7vTaB6Bfaacq+Lh75YjDfVs1Dds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:cc:f6:06:0e:16:16:3e:5c:70:56:b3:34:71:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2bcd88ac3e02cffad3c00de46b5da336bd64702
Validity
Not Before: Nov 11 09:01:11 2025 GMT
Not After : Nov 12 09:01:11 2025 GMT
Subject: CN=556439a07b7dff4faa7fe682482f4532caa92be3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7a:d2:12:1d:28:b3:49:6e:95:03:26:63:8e:
ee:d6:27:ed:24:fe:0d:6f:7f:ca:77:6f:da:6f:a2:
78:6a:0d:f5:0f:9d:f0:c4:d5:4e:f6:b6:a5:05:37:
22:55:14:99:68:62:b6:73:6d:71:be:a3:3f:b1:d6:
7c:a8:bd:33:2c:c6:10:ec:1b:02:d5:d6:d6:c6:96:
87:ee:08:2e:81:ae:4e:c2:4d:4f:ab:67:c0:67:6b:
fc:3f:bb:f1:74:e5:b5:fd:99:5a:1f:ea:6e:28:50:
b1:ed:ca:1a:96:4a:c4:5f:dd:b2:36:66:f5:8c:12:
c7:a4:24:4a:9e:6a:19:ae:20:15:97:ba:69:ba:5d:
d4:57:d3:82:46:16:49:19:99:2f:91:39:81:dc:01:
46:6c:db:cc:7f:98:22:20:2e:c0:52:33:cd:56:ad:
26:a1:51:e9:df:3d:40:61:e8:4a:2c:a8:b4:9d:6c:
49:31:e7:96:1f:c9:38:af:97:a6:0f:63:3c:07:c4:
bc:f0:4c:45:8c:e1:79:49:86:cd:a1:35:12:0c:29:
0d:3a:74:4b:cd:fb:37:6c:f6:52:c9:35:68:67:7b:
e2:2f:59:3a:9c:e4:55:6b:5e:64:39:80:92:02:09:
43:02:5f:19:99:e4:23:3c:62:74:f7:44:aa:9c:7a:
99:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:64:39:A0:7B:7D:FF:4F:AA:7F:E6:82:48:2F:45:32:CA:A9:2B:E3
X509v3 Authority Key Identifier:
keyid:A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:83:e9:94:12:cf:37:b8:e3:48:85:ed:12:3e:77:8d:0d:a1:
1f:40:c8:77:c0:3a:d4:dd:8c:d6:32:5a:c8:1f:ef:34:5b:d0:
40:3f:1a:7f:63:29:cd:4f:c0:7b:9a:9c:cd:49:ee:88:2b:b3:
e1:2d:03:06:3c:04:38:db:55:56:32:91:59:98:59:17:95:0d:
ee:b8:d9:d6:ea:59:a5:51:a4:e4:b7:42:5f:8e:86:34:c4:97:
80:01:a9:c7:6e:35:16:d7:0d:e5:53:a0:3d:ad:bd:c5:99:59:
63:a9:98:54:e2:2b:a9:e4:37:ad:af:25:2f:19:c1:df:a0:e3:
68:4e:aa:0f:0e:87:6a:75:4f:0a:4c:ad:4c:b6:a2:d7:2f:99:
4c:b5:4c:66:4d:7f:05:90:54:01:a9:75:70:f2:cb:56:a2:7a:
b2:91:27:cf:b9:ac:a2:ee:91:5b:0c:cc:fb:ab:c3:4f:1f:4d:
37:16:39:e6:47:50:d3:63:93:fc:cb:49:19:e8:da:14:06:e9:
79:cc:aa:d6:c6:a2:99:eb:8d:aa:2f:5b:6d:8a:5a:80:9f:cc:
91:d9:bb:87:46:ec:49:ca:3a:c4:30:c4:a8:e6:d4:32:e1:07:
f7:4f:1e:c5:48:b6:92:a0:18:92:98:5a:38:11:05:16:14:6f:
9f:7d:2b:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJcz2Bg4WFj5ccFazNHE9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyYmNkODhhYzNlMDJjZmZhZDNjMDBkZTQ2YjVkYTMzNmJk
NjQ3MDIwHhcNMjUxMTExMDkwMTExWhcNMjUxMTEyMDkwMTExWjAzMTEwLwYDVQQD
Eyg1NTY0MzlhMDdiN2RmZjRmYWE3ZmU2ODI0ODJmNDUzMmNhYTkyYmUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3rSEh0os0lulQMmY47u1iftJP4N
b3/Kd2/ab6J4ag31D53wxNVO9ralBTciVRSZaGK2c21xvqM/sdZ8qL0zLMYQ7BsC
1dbWxpaH7gguga5Owk1Pq2fAZ2v8P7vxdOW1/ZlaH+puKFCx7coalkrEX92yNmb1
jBLHpCRKnmoZriAVl7ppul3UV9OCRhZJGZkvkTmB3AFGbNvMf5giIC7AUjPNVq0m
oVHp3z1AYehKLKi0nWxJMeeWH8k4r5emD2M8B8S88ExFjOF5SYbNoTUSDCkNOnRL
zfs3bPZSyTVoZ3viL1k6nORVa15kOYCSAglDAl8ZmeQjPGJ090SqnHqZEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFVkOaB7ff9Pqn/mgkgvRTLKqSvjMB8GA1UdIwQY
MBaAFKK82IrD4Cz/rTwA3ka12jNr1kcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3J6WWlzUGdMUC10UEFEZVJyWGFNMnZXUndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9jZjRkYjUtZmIyOS00YjJhLWEyMTUt
YWFiODYyODYxYTA5LzEvb3J6WWlzUGdMUC10UEFEZVJyWGFNMnZXUndJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi9jZjRkYjUtZmIyOS00YjJhLWEyMTUtYWFiODYyODYxYTA5
LzEvb3J6WWlzUGdMUC10UEFEZVJyWGFNMnZXUndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgYPplBLP
N7jjSIXtEj53jQ2hH0DId8A61N2M1jJayB/vNFvQQD8af2MpzU/Ae5qczUnuiCuz
4S0DBjwEONtVVjKRWZhZF5UN7rjZ1upZpVGk5LdCX46GNMSXgAGpx241FtcN5VOg
Pa29xZlZY6mYVOIrqeQ3ra8lLxnB36DjaE6qDw6HanVPCkytTLai1y+ZTLVMZk1/
BZBUAal1cPLLVqJ6spEnz7msou6RWwzM+6vDTx9NNxY55kdQ02OT/MtJGejaFAbp
ecyq1saimeuNqi9bbYpagJ/Mkdm7h0bsSco6xDDEqObUMuEH908exUi2kqAYkpha
OBEFFhRvn30rFg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:42:55 2025 by rpki-client