Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
File: rpPMjMqB-gDcU-e4B46RtcEbou8.mft (raw, json)
Hash identifier: e/It2L3Fuv/Qm67LvpSZdg/mq2KksRkVaATLFggGUCY=
Subject key identifier: D0:ED:BC:A2:76:87:28:1E:19:DC:2E:5E:DD:47:86:7B:7B:B2:16:B5
Authority key identifier: AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
Certificate issuer: /CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef
Certificate serial: 019A722672F2964915274182364BF6148E0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
Manifest number: 1228
Signing time: Tue 11 Nov 2025 09:01:53 +0000
Manifest this update: Tue 11 Nov 2025 09:01:53 +0000
Manifest next update: Wed 12 Nov 2025 09:01:53 +0000
Files and hashes: 1: crHez21ajs4tpxPy7D0FO2U5bxU.roa (hash: gCTLggUH/wf+1HoWxwo5Fpy8idWpj7d4gVSkhA0S2qM=)
2: rpPMjMqB-gDcU-e4B46RtcEbou8.crl (hash: pwUl11q+AStJvXh6no0Yj0pT0J9vwbnbCg8aLUDb80U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:72:f2:96:49:15:27:41:82:36:4b:f6:14:8e:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef
Validity
Not Before: Nov 11 09:01:53 2025 GMT
Not After : Nov 12 09:01:53 2025 GMT
Subject: CN=d0edbca27687281e19dc2e5edd47867b7bb216b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:71:08:15:0f:f8:03:c6:a0:f3:75:ee:d3:fc:
b9:c6:18:d9:38:a9:f4:83:90:b1:73:47:22:0e:8e:
19:74:a2:6c:00:ad:89:1b:db:62:6e:07:21:ce:a6:
50:94:50:6c:01:d6:17:9a:a8:8b:7e:e5:0e:87:c3:
a1:1e:5b:f6:ea:44:a5:2d:11:ea:a6:b2:ac:0d:4e:
0e:9e:74:2d:b0:ff:d1:7d:36:30:27:f8:92:3a:82:
8e:b8:3a:c5:81:19:38:be:05:92:8f:1a:87:39:a2:
4e:7d:2d:0a:c7:e9:03:3f:86:01:1e:23:b6:d7:b6:
88:77:74:05:2e:67:88:70:ad:5f:aa:ee:c8:28:9d:
dd:bd:76:26:19:a3:60:24:52:9f:de:e2:22:9d:dd:
4e:fd:cc:81:05:5d:95:80:d8:87:1b:4d:1b:bf:cc:
52:46:a2:d3:96:07:62:6d:00:dd:47:5f:7a:08:87:
1a:c9:4d:9a:e6:e0:3f:87:99:21:de:c3:4c:69:2c:
ea:29:d1:10:03:85:c3:11:db:dd:72:32:c1:f2:58:
06:f9:ce:21:ad:1d:f9:20:85:8f:08:8a:9c:82:ff:
de:6c:f9:28:61:29:4b:85:d5:d2:d8:7c:e4:b1:f2:
fa:a4:bc:a6:49:ae:d5:85:76:88:45:0f:dd:b8:03:
23:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:ED:BC:A2:76:87:28:1E:19:DC:2E:5E:DD:47:86:7B:7B:B2:16:B5
X509v3 Authority Key Identifier:
keyid:AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:80:7c:10:a4:22:96:ab:e5:ae:04:d4:b0:c3:9d:c4:3e:58:
c8:ab:dc:a7:f8:28:ea:50:51:cf:ad:64:be:32:67:26:81:6b:
5c:1a:af:cb:a1:39:eb:66:6b:07:61:b2:0c:36:4d:90:4d:25:
1a:1f:dd:fb:ed:7f:40:09:3e:14:0e:81:4d:f0:b6:15:a7:d1:
19:bd:c2:8f:47:20:87:72:e5:a7:fc:ec:2f:e7:d6:40:06:67:
1e:53:85:0b:f1:b1:b5:7e:b1:ac:08:89:4a:a9:04:f9:9c:5a:
12:fa:de:89:08:fe:dc:3c:56:da:6d:83:06:8a:43:00:16:8e:
0a:9d:24:ee:07:ba:5a:9d:b1:31:4b:89:b9:d1:9c:b1:88:de:
99:0d:9d:57:3d:61:53:b9:2e:47:c6:31:48:de:86:99:52:e7:
f1:af:9b:a7:01:3f:4a:7a:ff:72:f6:00:cd:4e:10:23:da:2b:
34:86:c6:23:65:16:78:87:0a:45:66:65:a3:57:0f:62:6a:63:
fc:b0:34:f9:09:f1:51:24:c0:7d:89:9b:d0:00:f6:1f:8b:eb:
30:9d:1c:7f:03:13:44:07:70:8f:0f:f2:54:68:18:06:58:9b:
23:11:59:64:68:c7:fc:be:68:d4:c1:2b:4d:da:23:76:80:4c:
3b:a0:e7:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJnLylkkVJ0GCNkv2FI4NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlOTNjYzhjY2E4MWZhMDBkYzUzZTdiODA3OGU5MWI1YzEx
YmEyZWYwHhcNMjUxMTExMDkwMTUzWhcNMjUxMTEyMDkwMTUzWjAzMTEwLwYDVQQD
EyhkMGVkYmNhMjc2ODcyODFlMTlkYzJlNWVkZDQ3ODY3YjdiYjIxNmI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HEIFQ/4A8ag83Xu0/y5xhjZOKn0
g5Cxc0ciDo4ZdKJsAK2JG9tibgchzqZQlFBsAdYXmqiLfuUOh8OhHlv26kSlLRHq
prKsDU4OnnQtsP/RfTYwJ/iSOoKOuDrFgRk4vgWSjxqHOaJOfS0Kx+kDP4YBHiO2
17aId3QFLmeIcK1fqu7IKJ3dvXYmGaNgJFKf3uIind1O/cyBBV2VgNiHG00bv8xS
RqLTlgdibQDdR196CIcayU2a5uA/h5kh3sNMaSzqKdEQA4XDEdvdcjLB8lgG+c4h
rR35IIWPCIqcgv/ebPkoYSlLhdXS2HzksfL6pLymSa7VhXaIRQ/duAMj1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNDtvKJ2hygeGdwuXt1Hhnt7sha1MB8GA1UdIwQY
MBaAFK6TzIzKgfoA3FPnuAeOkbXBG6LvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnBQTWpNcUItZ0RjVS1lNEI0NlJ0Y0Vib3U4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS8xNzk4OTEtNDFjYy00YWEwLWFiNjgt
ZjQwNmM4M2IzZmJhLzEvcnBQTWpNcUItZ0RjVS1lNEI0NlJ0Y0Vib3U4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS8xNzk4OTEtNDFjYy00YWEwLWFiNjgtZjQwNmM4M2IzZmJh
LzEvcnBQTWpNcUItZ0RjVS1lNEI0NlJ0Y0Vib3U4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADIB8EKQi
lqvlrgTUsMOdxD5YyKvcp/go6lBRz61kvjJnJoFrXBqvy6E562ZrB2GyDDZNkE0l
Gh/d++1/QAk+FA6BTfC2FafRGb3Cj0cgh3Llp/zsL+fWQAZnHlOFC/GxtX6xrAiJ
SqkE+ZxaEvreiQj+3DxW2m2DBopDABaOCp0k7ge6Wp2xMUuJudGcsYjemQ2dVz1h
U7kuR8YxSN6GmVLn8a+bpwE/Snr/cvYAzU4QI9orNIbGI2UWeIcKRWZlo1cPYmpj
/LA0+QnxUSTAfYmb0AD2H4vrMJ0cfwMTRAdwjw/yVGgYBlibIxFZZGjH/L5o1MEr
TdojdoBMO6DnAA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 16:48:22 2025 by rpki-client