Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/4bdfcb-4385-47cc-b081-95b1d71bcc89/1/6Md5F2XIhNCFX-0_-MPycJmpoBo.mft
File: 6Md5F2XIhNCFX-0_-MPycJmpoBo.mft (raw, json)
Hash identifier: a8zqC9/1P9TUxGJPSfoSuj0qEw/rFq1RZINWfQcyWz8=
Subject key identifier: EC:A2:30:4E:1B:01:83:E7:B2:91:27:CC:C8:39:0F:83:C9:BB:B5:5B
Authority key identifier: E8:C7:79:17:65:C8:84:D0:85:5F:ED:3F:F8:C3:F2:70:99:A9:A0:1A
Certificate issuer: /CN=e8c7791765c884d0855fed3ff8c3f27099a9a01a
Certificate serial: 019A722580D38313C9B5961587E9DFF37975
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Md5F2XIhNCFX-0_-MPycJmpoBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/4bdfcb-4385-47cc-b081-95b1d71bcc89/1/6Md5F2XIhNCFX-0_-MPycJmpoBo.mft
Manifest number: 171C
Signing time: Tue 11 Nov 2025 09:00:51 +0000
Manifest this update: Tue 11 Nov 2025 09:00:51 +0000
Manifest next update: Wed 12 Nov 2025 09:00:51 +0000
Files and hashes: 1: 6Md5F2XIhNCFX-0_-MPycJmpoBo.crl (hash: w39qW92iZpHw2eiO92kQztXer8FKBP9EXEbQggo6TI8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/4bdfcb-4385-47cc-b081-95b1d71bcc89/1/6Md5F2XIhNCFX-0_-MPycJmpoBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/4bdfcb-4385-47cc-b081-95b1d71bcc89/1/6Md5F2XIhNCFX-0_-MPycJmpoBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/6Md5F2XIhNCFX-0_-MPycJmpoBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:80:d3:83:13:c9:b5:96:15:87:e9:df:f3:79:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8c7791765c884d0855fed3ff8c3f27099a9a01a
Validity
Not Before: Nov 11 09:00:51 2025 GMT
Not After : Nov 12 09:00:51 2025 GMT
Subject: CN=eca2304e1b0183e7b29127ccc8390f83c9bbb55b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:95:01:43:a3:8a:15:fd:32:fd:cb:67:9b:41:
8e:89:83:c6:aa:ba:49:d4:db:42:51:44:4d:00:9c:
40:e9:38:b1:ab:b2:ec:87:7d:15:2c:4f:1a:83:60:
40:c2:7a:41:3b:e9:a2:16:ad:82:63:42:02:fc:93:
d9:cc:dc:84:24:02:29:a8:d3:dd:98:45:49:91:fa:
94:03:6d:ca:10:d4:a4:6d:6b:1f:3e:d2:44:e8:9d:
e0:22:1e:cb:57:ea:ab:45:84:16:77:80:fc:af:22:
c3:67:66:b0:3b:93:db:e0:42:a1:0b:35:e5:88:cf:
43:c7:f0:52:16:ef:bb:36:4b:ab:fa:2d:75:d9:3a:
44:69:44:88:4b:ad:02:63:ba:d8:42:87:1a:29:cf:
95:ee:bf:da:99:1d:fc:b0:c8:d6:4a:f8:49:5c:15:
93:de:9d:26:53:66:29:80:8c:17:55:96:a1:66:38:
12:63:3c:86:68:9c:e0:ec:43:55:8a:98:ec:f9:74:
5e:31:d1:30:4f:bb:4b:0f:eb:23:c2:bb:67:3e:52:
3a:eb:ec:ce:e6:87:f9:7a:d6:1f:c3:98:69:e2:0e:
c6:8e:e9:c6:a6:08:bf:6a:f3:1c:69:24:ee:aa:95:
21:64:c8:29:ec:ae:e8:54:03:d9:55:d9:32:d4:74:
bb:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A2:30:4E:1B:01:83:E7:B2:91:27:CC:C8:39:0F:83:C9:BB:B5:5B
X509v3 Authority Key Identifier:
keyid:E8:C7:79:17:65:C8:84:D0:85:5F:ED:3F:F8:C3:F2:70:99:A9:A0:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Md5F2XIhNCFX-0_-MPycJmpoBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4bdfcb-4385-47cc-b081-95b1d71bcc89/1/6Md5F2XIhNCFX-0_-MPycJmpoBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4bdfcb-4385-47cc-b081-95b1d71bcc89/1/6Md5F2XIhNCFX-0_-MPycJmpoBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:88:c7:a9:d5:66:40:1e:b4:bf:4f:38:dd:cb:6c:0b:33:a8:
b2:c0:4d:c9:5c:de:39:1e:99:73:11:39:c7:d0:cd:4d:59:e2:
be:b5:b5:2f:b9:67:61:27:86:73:a5:ef:69:03:64:7b:61:39:
e7:fb:a0:e3:df:eb:ed:a3:1b:e5:95:dd:a1:5e:e0:14:48:38:
f7:ac:bc:a3:4e:a5:53:d6:f2:82:8a:1e:2f:73:d9:69:55:49:
53:b2:18:6f:26:c8:0b:39:c3:5d:12:84:ed:ae:47:0d:c7:99:
ff:15:61:ad:3f:a1:ce:63:0b:1d:35:8c:c6:ac:e8:1d:1a:4e:
9a:59:62:36:65:75:46:8a:a0:e9:3e:76:8c:bc:c5:c5:0c:f8:
a7:0d:af:f5:d9:9b:5e:c0:78:65:a2:41:89:2f:03:95:2c:2c:
30:2d:4c:62:c7:63:16:14:8f:63:e5:55:35:8e:4c:eb:6b:1c:
74:15:de:da:12:4c:d1:b2:47:79:d6:2a:aa:14:ba:74:c1:bf:
d5:1f:82:7e:3d:9d:e5:7e:e3:e5:8f:fe:de:81:96:ac:ac:b6:
d0:32:53:75:4b:75:33:f0:51:34:17:cd:e0:2f:da:05:63:78:
27:f9:55:7b:b8:6c:6e:08:8f:f8:96:f4:5a:73:47:e6:c7:6f:
f2:ec:cf:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJYDTgxPJtZYVh+nf83l1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4Yzc3OTE3NjVjODg0ZDA4NTVmZWQzZmY4YzNmMjcwOTlh
OWEwMWEwHhcNMjUxMTExMDkwMDUxWhcNMjUxMTEyMDkwMDUxWjAzMTEwLwYDVQQD
EyhlY2EyMzA0ZTFiMDE4M2U3YjI5MTI3Y2NjODM5MGY4M2M5YmJiNTViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZUBQ6OKFf0y/ctnm0GOiYPGqrpJ
1NtCUURNAJxA6Tixq7Lsh30VLE8ag2BAwnpBO+miFq2CY0IC/JPZzNyEJAIpqNPd
mEVJkfqUA23KENSkbWsfPtJE6J3gIh7LV+qrRYQWd4D8ryLDZ2awO5Pb4EKhCzXl
iM9Dx/BSFu+7Nkur+i112TpEaUSIS60CY7rYQocaKc+V7r/amR38sMjWSvhJXBWT
3p0mU2YpgIwXVZahZjgSYzyGaJzg7ENVipjs+XReMdEwT7tLD+sjwrtnPlI66+zO
5of5etYfw5hp4g7GjunGpgi/avMcaSTuqpUhZMgp7K7oVAPZVdky1HS77wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOyiME4bAYPnspEnzMg5D4PJu7VbMB8GA1UdIwQY
MBaAFOjHeRdlyITQhV/tP/jD8nCZqaAaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNk1kNUYyWEloTkNGWC0wXy1NUHljSm1wb0JvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi80YmRmY2ItNDM4NS00N2NjLWIwODEt
OTViMWQ3MWJjYzg5LzEvNk1kNUYyWEloTkNGWC0wXy1NUHljSm1wb0JvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi80YmRmY2ItNDM4NS00N2NjLWIwODEtOTViMWQ3MWJjYzg5
LzEvNk1kNUYyWEloTkNGWC0wXy1NUHljSm1wb0JvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKojHqdVm
QB60v0843ctsCzOossBNyVzeOR6ZcxE5x9DNTVnivrW1L7lnYSeGc6XvaQNke2E5
5/ug49/r7aMb5ZXdoV7gFEg496y8o06lU9bygooeL3PZaVVJU7IYbybICznDXRKE
7a5HDceZ/xVhrT+hzmMLHTWMxqzoHRpOmlliNmV1Roqg6T52jLzFxQz4pw2v9dmb
XsB4ZaJBiS8DlSwsMC1MYsdjFhSPY+VVNY5M62scdBXe2hJM0bJHedYqqhS6dMG/
1R+Cfj2d5X7j5Y/+3oGWrKy20DJTdUt1M/BRNBfN4C/aBWN4J/lVe7hsbgiP+Jb0
WnNH5sdv8uzPkg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:51:45 2025 by rpki-client