Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
File: tMBDnHlVURAtbx5M620cUvvF6j8.mft (raw, json)
Hash identifier: XVKLtGfXyNtMVbrBt5BLoEqBo3yc3jacDaX+ZDmIuUs=
Subject key identifier: 91:BB:DD:57:43:C6:F5:15:4F:56:82:23:37:E9:94:2F:ED:C6:FC:89
Authority key identifier: B4:C0:43:9C:79:55:51:10:2D:6F:1E:4C:EB:6D:1C:52:FB:C5:EA:3F
Certificate issuer: /CN=b4c0439c795551102d6f1e4ceb6d1c52fbc5ea3f
Certificate serial: 019A72263857AF5F3E6508EBDE1C680CD47B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
Manifest number: 1721
Signing time: Tue 11 Nov 2025 09:01:38 +0000
Manifest this update: Tue 11 Nov 2025 09:01:38 +0000
Manifest next update: Wed 12 Nov 2025 09:01:38 +0000
Files and hashes: 1: n5jiYoIoGZQqwQOVrCfprt-PApk.roa (hash: MrCF/3iJ71+/LWf1gBDblDTWmF567DIjZvwBvhh1aT0=)
2: tMBDnHlVURAtbx5M620cUvvF6j8.crl (hash: XCXZDsuzDevsLV2ZqBv52f9+8bc3Xxty5tR6mcOrJNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:38:57:af:5f:3e:65:08:eb:de:1c:68:0c:d4:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4c0439c795551102d6f1e4ceb6d1c52fbc5ea3f
Validity
Not Before: Nov 11 09:01:38 2025 GMT
Not After : Nov 12 09:01:38 2025 GMT
Subject: CN=91bbdd5743c6f5154f56822337e9942fedc6fc89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ad:a4:06:31:11:cb:87:f7:32:93:64:db:3c:
14:62:5d:90:6a:61:8e:7c:20:a1:ae:ba:c4:0f:a5:
6b:39:b8:9e:5c:2c:4d:1b:b2:c1:db:35:2e:5b:d5:
97:4f:0e:54:a8:f7:59:fc:51:71:1f:d6:15:57:59:
7a:5b:af:59:9b:97:ed:be:b5:72:40:f4:ef:1b:f6:
4d:68:b7:e1:be:ce:81:af:07:1a:36:ad:d2:89:aa:
3d:b6:e4:33:8d:68:4e:82:e0:07:80:ab:30:84:d2:
50:d2:ce:fd:13:36:3d:50:95:f7:6e:c7:47:2a:ca:
e1:fe:ab:c9:a2:72:4e:2e:b2:67:6b:b5:9d:69:2e:
92:51:fa:fb:fd:a7:ef:8b:a6:08:b1:ac:a8:22:fd:
a7:a2:ee:ee:c9:aa:e9:e0:79:18:b0:1d:f1:49:eb:
c4:0b:b3:b6:38:07:40:2e:79:1c:8b:8f:13:2f:b4:
bb:fb:10:91:27:be:c5:ff:17:2d:11:00:12:a6:77:
0b:85:42:8f:06:d6:6f:45:66:a9:4c:cd:c4:e0:b0:
7a:ab:54:75:ff:c0:bb:cf:84:36:2b:32:25:15:b0:
36:9e:38:52:74:ce:29:4a:ff:69:37:1d:bf:c4:93:
5b:7c:41:ca:09:01:95:ee:88:ad:e5:05:17:10:78:
97:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:BB:DD:57:43:C6:F5:15:4F:56:82:23:37:E9:94:2F:ED:C6:FC:89
X509v3 Authority Key Identifier:
keyid:B4:C0:43:9C:79:55:51:10:2D:6F:1E:4C:EB:6D:1C:52:FB:C5:EA:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:72:39:72:6b:08:cb:c8:0f:4f:45:60:ee:f3:99:7b:bf:1c:
99:50:97:28:1d:0d:49:d6:a0:6b:01:8c:2a:0a:3f:24:83:74:
08:8a:31:fd:58:47:e9:22:41:3e:77:46:91:eb:e0:63:e0:9b:
e3:ff:88:56:38:d0:a5:39:2c:8a:59:e1:89:66:5b:22:25:cc:
89:63:5e:5c:e1:d0:71:65:30:fc:4a:36:57:36:fe:5a:dd:8b:
72:53:f7:ff:74:72:98:f5:85:ad:4c:f6:9d:0f:19:a8:aa:41:
7b:a4:e3:3b:66:e1:23:6e:f6:73:02:d4:e5:4c:e3:d9:93:d8:
3c:24:06:db:af:2d:6e:6c:44:7f:1e:13:3d:fc:db:93:d1:fc:
47:97:7f:2f:28:f1:1b:ee:7f:c7:57:83:78:68:f0:3e:50:58:
74:a7:9e:ed:a8:86:9b:bf:72:ec:1f:11:10:5c:0a:a9:e2:b8:
de:96:ae:8e:0f:fb:b4:9d:2b:6d:6f:89:4e:ee:04:6f:2a:8d:
1a:f6:e5:d3:2e:8d:31:1a:b1:4d:3e:2d:3c:7b:a9:42:89:de:
44:9f:f5:40:99:cc:25:75:c5:12:52:82:77:b0:1d:35:c6:be:
74:2a:92:4d:50:cf:49:ff:a3:af:bc:57:7f:5c:df:8c:d7:0a:
f9:d9:84:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJjhXr18+ZQjr3hxoDNR7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0YzA0MzljNzk1NTUxMTAyZDZmMWU0Y2ViNmQxYzUyZmJj
NWVhM2YwHhcNMjUxMTExMDkwMTM4WhcNMjUxMTEyMDkwMTM4WjAzMTEwLwYDVQQD
Eyg5MWJiZGQ1NzQzYzZmNTE1NGY1NjgyMjMzN2U5OTQyZmVkYzZmYzg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlq2kBjERy4f3MpNk2zwUYl2QamGO
fCChrrrED6VrObieXCxNG7LB2zUuW9WXTw5UqPdZ/FFxH9YVV1l6W69Zm5ftvrVy
QPTvG/ZNaLfhvs6BrwcaNq3Siao9tuQzjWhOguAHgKswhNJQ0s79EzY9UJX3bsdH
Ksrh/qvJonJOLrJna7WdaS6SUfr7/afvi6YIsayoIv2nou7uyarp4HkYsB3xSevE
C7O2OAdALnkci48TL7S7+xCRJ77F/xctEQASpncLhUKPBtZvRWapTM3E4LB6q1R1
/8C7z4Q2KzIlFbA2njhSdM4pSv9pNx2/xJNbfEHKCQGV7oit5QUXEHiX9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJG73VdDxvUVT1aCIzfplC/txvyJMB8GA1UdIwQY
MBaAFLTAQ5x5VVEQLW8eTOttHFL7xeo/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdE1CRG5IbFZVUkF0Yng1TTYyMGNVdnZGNmo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy84NmJhMDItZjk3MC00ODY5LWJlMjct
ZThlZGU1YTJmODc1LzEvdE1CRG5IbFZVUkF0Yng1TTYyMGNVdnZGNmo4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy84NmJhMDItZjk3MC00ODY5LWJlMjctZThlZGU1YTJmODc1
LzEvdE1CRG5IbFZVUkF0Yng1TTYyMGNVdnZGNmo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM3I5cmsI
y8gPT0Vg7vOZe78cmVCXKB0NSdagawGMKgo/JIN0CIox/VhH6SJBPndGkevgY+Cb
4/+IVjjQpTksilnhiWZbIiXMiWNeXOHQcWUw/Eo2Vzb+Wt2LclP3/3RymPWFrUz2
nQ8ZqKpBe6TjO2bhI272cwLU5Uzj2ZPYPCQG268tbmxEfx4TPfzbk9H8R5d/Lyjx
G+5/x1eDeGjwPlBYdKee7aiGm79y7B8REFwKqeK43paujg/7tJ0rbW+JTu4EbyqN
Gvbl0y6NMRqxTT4tPHupQoneRJ/1QJnMJXXFElKCd7AdNca+dCqSTVDPSf+jr7xX
f1zfjNcK+dmEBQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 18:36:41 2025 by rpki-client