Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft
File: 9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft (raw, json)
Hash identifier: hcOV8XosOslUXLt7vyifQdX0lIkE+TYOQdJ69/HXpzw=
Subject key identifier: 01:55:87:E8:CD:57:58:A4:BE:AB:62:03:24:76:F5:32:2E:5C:CA:DC
Authority key identifier: F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
Certificate issuer: /CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Certificate serial: 019A71132F0D96D5464AA17A6F410D219148
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft
Manifest number: 1738
Signing time: Tue 11 Nov 2025 04:01:13 +0000
Manifest this update: Tue 11 Nov 2025 04:01:13 +0000
Manifest next update: Wed 12 Nov 2025 04:01:13 +0000
Files and hashes: 1: 9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl (hash: 3n/NpFFlotpsib9JKhMyqAmCxwd6jWpzh/zyc3PW/zM=)
2: ROD80653_T-MkjTmqYTdP5M1LUg.roa (hash: lOnwVxDIfeJwEQvoT4QPCm3NmWmOEk6KMpexVgqv54Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:2f:0d:96:d5:46:4a:a1:7a:6f:41:0d:21:91:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Validity
Not Before: Nov 11 04:01:13 2025 GMT
Not After : Nov 12 04:01:13 2025 GMT
Subject: CN=015587e8cd5758a4beab62032476f5322e5ccadc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5f:44:96:71:b6:c9:c0:49:93:c5:d1:ec:15:
47:94:40:07:a6:22:ae:d0:21:af:97:38:be:f8:04:
13:83:fb:ad:ea:e0:c6:33:5b:da:46:d2:e4:7a:ab:
22:c0:62:68:2c:95:75:a3:29:fb:52:ae:24:31:47:
86:84:1f:75:2b:b1:4b:72:dc:c8:f5:e2:bb:b9:e0:
b6:05:b3:da:52:eb:31:db:c8:32:33:c2:b2:26:e6:
48:54:65:31:5f:e4:de:3f:69:62:c5:43:fa:88:38:
f9:fc:6f:8f:f4:0c:2d:fd:0f:92:ac:29:5c:31:70:
94:17:2d:90:df:54:92:32:cf:1d:47:a1:6a:ef:93:
e3:ea:d3:15:15:95:ca:13:8a:2f:dc:30:7d:48:a3:
d5:0a:ce:61:b1:c6:5f:69:82:18:86:f2:25:fc:c9:
0d:4b:f5:f5:6e:56:0f:41:4f:e6:ac:5e:c3:d1:59:
62:d9:22:71:4a:99:b1:e2:1a:d3:10:99:67:6b:81:
c3:c2:8e:3a:da:b0:13:b8:07:a8:42:07:da:18:0f:
61:22:31:eb:a1:46:8b:73:dc:38:b0:0d:0b:57:78:
3c:56:2d:3d:4d:9e:9c:66:fe:26:46:90:ff:bb:06:
c2:20:87:07:07:0a:7f:4d:5b:ad:02:08:b3:c3:b4:
22:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:55:87:E8:CD:57:58:A4:BE:AB:62:03:24:76:F5:32:2E:5C:CA:DC
X509v3 Authority Key Identifier:
keyid:F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:fd:71:83:29:13:c8:57:b3:b9:f7:bc:90:54:0e:ed:49:7b:
0b:de:2f:30:ee:42:40:1e:40:0c:81:09:db:63:b1:fd:fe:08:
e4:a5:22:60:c7:27:0d:fb:f4:ff:a1:bf:78:d6:ca:07:5d:37:
c4:e2:3e:4c:0f:c3:25:4f:f5:67:b3:d0:c4:bf:8c:41:19:7c:
2c:a1:3f:f9:a2:ec:d7:c6:8c:03:e1:33:51:a5:b5:3d:b3:a6:
dc:e1:8e:e1:fa:83:2a:5f:3d:a3:58:37:74:ea:c0:d4:ca:2c:
35:2b:6e:ba:a6:da:d5:55:71:bc:93:7e:ba:1d:af:f6:50:a1:
37:23:74:44:ea:ca:0b:a0:c5:67:04:dc:4a:9a:81:4a:6a:34:
ff:43:7a:1c:9f:25:ce:8d:bd:22:1b:4c:b6:ae:86:01:2f:c9:
8e:77:86:62:67:15:da:c6:b0:78:9c:94:ae:d4:85:5a:86:fd:
53:4c:36:45:f7:a4:7b:23:1e:c7:2c:f6:94:be:8b:90:57:ec:
9a:ad:0c:1f:3a:56:93:f0:6f:0a:2c:34:b7:22:e0:a8:fc:2c:
35:16:3c:04:8c:6f:08:43:7b:e7:38:1a:34:13:2c:f6:4b:d7:
49:c5:03:8d:ff:10:1f:4f:22:cf:e1:18:10:29:95:c3:44:32:
66:d6:12:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxEy8NltVGSqF6b0ENIZFIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0M2JmOTA4MDhhZTdlY2EwNjNmNzQ2YThmMWQ4ODg2NTcz
NGM4YTMwHhcNMjUxMTExMDQwMTEzWhcNMjUxMTEyMDQwMTEzWjAzMTEwLwYDVQQD
EygwMTU1ODdlOGNkNTc1OGE0YmVhYjYyMDMyNDc2ZjUzMjJlNWNjYWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1V9ElnG2ycBJk8XR7BVHlEAHpiKu
0CGvlzi++AQTg/ut6uDGM1vaRtLkeqsiwGJoLJV1oyn7Uq4kMUeGhB91K7FLctzI
9eK7ueC2BbPaUusx28gyM8KyJuZIVGUxX+TeP2lixUP6iDj5/G+P9Awt/Q+SrClc
MXCUFy2Q31SSMs8dR6Fq75Pj6tMVFZXKE4ov3DB9SKPVCs5hscZfaYIYhvIl/MkN
S/X1blYPQU/mrF7D0Vli2SJxSpmx4hrTEJlna4HDwo462rATuAeoQgfaGA9hIjHr
oUaLc9w4sA0LV3g8Vi09TZ6cZv4mRpD/uwbCIIcHBwp/TVutAgizw7QidwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAFVh+jNV1ikvqtiAyR29TIuXMrcMB8GA1UdIwQY
MBaAFPQ7+QgIrn7KBj90ao8diIZXNMijMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOUR2NUNBaXVmc29HUDNScWp4MklobGMweUtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9hOGQ5NDMtZjA4Mi00YjE4LWI4NDAt
Mzg5MTk1YzRmMDdiLzEvOUR2NUNBaXVmc29HUDNScWp4MklobGMweUtNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi9hOGQ5NDMtZjA4Mi00YjE4LWI4NDAtMzg5MTk1YzRmMDdi
LzEvOUR2NUNBaXVmc29HUDNScWp4MklobGMweUtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ/1xgykT
yFezufe8kFQO7Ul7C94vMO5CQB5ADIEJ22Ox/f4I5KUiYMcnDfv0/6G/eNbKB103
xOI+TA/DJU/1Z7PQxL+MQRl8LKE/+aLs18aMA+EzUaW1PbOm3OGO4fqDKl89o1g3
dOrA1MosNStuuqba1VVxvJN+uh2v9lChNyN0ROrKC6DFZwTcSpqBSmo0/0N6HJ8l
zo29IhtMtq6GAS/JjneGYmcV2saweJyUrtSFWob9U0w2RfekeyMexyz2lL6LkFfs
mq0MHzpWk/BvCiw0tyLgqPwsNRY8BIxvCEN75zgaNBMs9kvXScUDjf8QH08iz+EY
ECmVw0QyZtYSbw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:46:20 2025 by rpki-client