Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
File: X06OdhPaoX6FqhB4yOwlXPGNQio.mft (raw, json)
Hash identifier: WZQUd5Ympu9OrUiOeG9LRyCoRUtXzYfOZmHo+CqeMh0=
Subject key identifier: 82:8D:07:E7:CD:CB:B4:02:A0:2C:40:14:45:45:2A:C4:F5:BE:D4:59
Authority key identifier: 5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
Certificate issuer: /CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Certificate serial: 019A71B826A60896890848F522D89FB137B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
Manifest number: 0E4A
Signing time: Tue 11 Nov 2025 07:01:25 +0000
Manifest this update: Tue 11 Nov 2025 07:01:25 +0000
Manifest next update: Wed 12 Nov 2025 07:01:25 +0000
Files and hashes: 1: X06OdhPaoX6FqhB4yOwlXPGNQio.crl (hash: nrJrqR9x3PbdEWYFu6LXA08meZcsSCDqiHPwWmEzGUc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:26:a6:08:96:89:08:48:f5:22:d8:9f:b1:37:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Validity
Not Before: Nov 11 07:01:25 2025 GMT
Not After : Nov 12 07:01:25 2025 GMT
Subject: CN=828d07e7cdcbb402a02c401445452ac4f5bed459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:61:e1:14:73:17:d6:f6:f2:0b:fc:14:87:07:
4f:3d:60:51:b1:75:7e:1e:91:d3:5c:78:ca:1d:f0:
09:68:c5:6d:94:1e:81:96:dd:1d:e4:3e:49:c4:48:
49:c9:03:fa:1d:39:1a:5b:7d:ec:98:3c:95:b1:68:
d6:83:4d:c6:62:79:8f:31:65:b1:14:9e:54:d6:65:
c1:b5:3b:a3:52:24:8d:de:db:cc:0a:23:3b:8a:70:
27:a7:97:c0:13:d8:c9:ec:fe:84:55:b2:77:0d:fe:
3f:19:8a:58:25:93:8f:3e:ea:f6:cc:38:17:5b:d0:
8b:4c:37:84:10:23:cb:96:9f:d8:ea:b4:32:91:ec:
99:18:10:96:7a:1a:0d:75:e8:bc:f6:6c:ef:7e:57:
bf:64:16:c9:59:d5:40:86:2b:59:12:db:7c:23:5a:
5e:15:19:9a:3b:a6:92:de:dc:5a:55:2d:17:8d:1d:
3c:bf:fe:a0:c7:55:a8:f1:0b:a1:40:e9:ae:72:5f:
c6:d3:fd:91:5f:a4:21:d5:e1:6e:d9:cb:e9:4a:e1:
df:0e:bf:07:1f:f9:7a:3b:06:c9:d4:69:fa:8e:0a:
06:02:ba:ce:a8:8a:d4:95:45:2f:a0:6e:f4:1d:6a:
96:17:7f:30:3e:51:94:0d:55:2b:0b:db:8a:09:b0:
6c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:8D:07:E7:CD:CB:B4:02:A0:2C:40:14:45:45:2A:C4:F5:BE:D4:59
X509v3 Authority Key Identifier:
keyid:5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:84:08:59:a4:ff:9e:6f:0e:d8:9a:c0:59:c5:d6:d2:7c:bf:
fe:0d:91:35:43:cc:a8:88:e6:3b:27:df:16:24:f9:05:38:cc:
b2:ca:7b:a4:35:e7:77:fd:90:ba:54:e2:aa:01:cd:d8:eb:49:
89:58:99:90:0c:a9:b9:85:24:c6:f8:a3:54:13:48:be:45:e9:
f2:32:c5:cf:03:2e:ca:7c:61:71:68:30:1b:3e:d6:fa:e7:96:
c9:8d:a0:39:28:56:bb:c3:37:f9:01:30:e3:91:9e:c0:aa:d1:
12:cd:52:46:68:57:bd:67:73:bd:60:d2:a3:0a:e4:32:be:ac:
b1:86:eb:91:23:a8:b5:70:b9:7b:07:21:1e:b6:4a:05:a8:a5:
29:b4:bb:53:bb:4c:21:90:bf:ad:62:92:d5:be:13:96:54:19:
15:42:27:fa:a3:3f:b9:19:cb:57:ca:dd:63:aa:94:c5:17:e8:
85:3e:f3:21:45:23:48:ff:b4:c2:7e:0c:a9:83:7a:2e:94:0c:
11:39:fd:13:84:de:37:fd:c7:b5:47:8a:50:fc:3d:d0:dd:bb:
f7:9d:94:d8:de:f5:06:03:44:dc:dd:28:ab:9f:88:62:59:af:
2f:3b:fe:dd:87:a2:7f:04:df:8f:55:a8:92:1a:43:cb:ba:0f:
94:7c:95:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuCamCJaJCEj1ItifsTe3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmNGU4ZTc2MTNkYWExN2U4NWFhMTA3OGM4ZWMyNTVjZjE4
ZDQyMmEwHhcNMjUxMTExMDcwMTI1WhcNMjUxMTEyMDcwMTI1WjAzMTEwLwYDVQQD
Eyg4MjhkMDdlN2NkY2JiNDAyYTAyYzQwMTQ0NTQ1MmFjNGY1YmVkNDU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmHhFHMX1vbyC/wUhwdPPWBRsXV+
HpHTXHjKHfAJaMVtlB6Blt0d5D5JxEhJyQP6HTkaW33smDyVsWjWg03GYnmPMWWx
FJ5U1mXBtTujUiSN3tvMCiM7inAnp5fAE9jJ7P6EVbJ3Df4/GYpYJZOPPur2zDgX
W9CLTDeEECPLlp/Y6rQykeyZGBCWehoNdei89mzvfle/ZBbJWdVAhitZEtt8I1pe
FRmaO6aS3txaVS0XjR08v/6gx1Wo8QuhQOmucl/G0/2RX6Qh1eFu2cvpSuHfDr8H
H/l6OwbJ1Gn6jgoGArrOqIrUlUUvoG70HWqWF38wPlGUDVUrC9uKCbBskwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIKNB+fNy7QCoCxAFEVFKsT1vtRZMB8GA1UdIwQY
MBaAFF9OjnYT2qF+haoQeMjsJVzxjUIqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy83MGJmZDctNzExZC00YWQ5LTgyZjct
MmYzYzAwMzJlNDQ2LzEvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy83MGJmZDctNzExZC00YWQ5LTgyZjctMmYzYzAwMzJlNDQ2
LzEvWDA2T2RoUGFvWDZGcWhCNHlPd2xYUEdOUWlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiIQIWaT/
nm8O2JrAWcXW0ny//g2RNUPMqIjmOyffFiT5BTjMssp7pDXnd/2QulTiqgHN2OtJ
iViZkAypuYUkxvijVBNIvkXp8jLFzwMuynxhcWgwGz7W+ueWyY2gOShWu8M3+QEw
45GewKrREs1SRmhXvWdzvWDSowrkMr6ssYbrkSOotXC5ewchHrZKBailKbS7U7tM
IZC/rWKS1b4TllQZFUIn+qM/uRnLV8rdY6qUxRfohT7zIUUjSP+0wn4MqYN6LpQM
ETn9E4TeN/3HtUeKUPw90N27952U2N71BgNE3N0oq5+IYlmvLzv+3YeifwTfj1Wo
khpDy7oPlHyV+Q==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:37 2025 by rpki-client