Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: HsgX+UjNHGuBeK8kxS1Xd1QVo7CEHjUWKY+/VRM5ADM=
Subject key identifier: B5:E6:E1:40:C4:96:39:08:44:8E:73:BB:71:F8:33:06:ED:9C:79:F6
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 019A72CA9949A0737C776A46DC59CAD14327
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 12:01:11 +0000
Manifest this update: Tue 11 Nov 2025 12:01:11 +0000
Manifest next update: Wed 12 Nov 2025 12:01:11 +0000
Files and hashes: 1: DvRXNlTCR35yGxJPggKI6LQ1TXY.roa (hash: uCs5edSvBBj2KY6s6HL8wAMD7pMX49G3e3NvxavAQGo=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: TGic94xh6Ak+YIlSPV35rwudWbhPVigFkW1zhxH26mg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:99:49:a0:73:7c:77:6a:46:dc:59:ca:d1:43:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: Nov 11 12:01:11 2025 GMT
Not After : Nov 12 12:01:11 2025 GMT
Subject: CN=b5e6e140c4963908448e73bb71f83306ed9c79f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:59:b1:d6:e7:77:c5:ca:95:c2:40:1c:d7:95:
55:f5:c8:da:63:22:68:d1:72:3d:bc:f6:eb:8f:5c:
48:d9:a5:9a:2d:2c:c0:46:63:5b:bd:9a:61:a3:6c:
b8:d5:81:28:61:5e:57:35:62:c0:1f:dd:9a:9b:c5:
d7:9e:e8:f7:d2:0f:b6:6d:14:f5:1d:40:4d:84:e4:
b9:ea:03:82:ac:b1:6a:dc:ad:8d:22:f5:df:e3:b8:
44:36:35:69:00:76:20:86:b4:6f:c8:7a:33:80:7a:
b0:69:76:d4:05:0e:66:1e:ba:4f:5e:92:1d:94:99:
5e:1b:5d:82:5b:3e:0e:2c:9d:a4:66:dc:3d:16:c0:
16:fd:96:3e:79:87:17:da:b2:b8:73:92:e2:83:21:
a6:63:5b:88:d0:ef:bd:cd:2e:7a:53:a4:49:24:50:
e0:ca:f7:52:68:dd:90:f8:2d:cf:da:c4:d8:ac:14:
69:87:4e:bb:25:d1:6c:1d:0a:c5:5f:5a:aa:cb:87:
f1:d0:0a:e1:5a:09:df:5e:1d:c4:27:3f:fd:9a:75:
e4:1e:a9:24:2b:80:77:ab:33:0e:f2:5a:fc:3f:36:
6b:74:84:b4:17:c7:ba:2d:71:5c:31:01:25:f8:9d:
68:d8:af:8f:5c:e8:fa:5b:39:33:41:77:fc:be:a2:
61:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E6:E1:40:C4:96:39:08:44:8E:73:BB:71:F8:33:06:ED:9C:79:F6
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:6e:e3:a5:0c:3b:57:89:ae:d5:85:c2:af:18:d4:29:02:e6:
c8:69:60:39:bf:bd:20:02:14:1c:6a:b6:76:26:1f:87:b9:b7:
d2:46:37:46:6b:c7:0d:ff:32:f2:5c:52:71:6b:8a:e4:aa:7a:
08:bb:6a:22:c6:81:f8:86:cb:ee:e3:3b:7e:4a:35:94:41:c0:
d4:02:cd:de:c3:01:81:11:e2:12:53:a9:54:82:8d:9c:9a:f3:
7c:b1:5c:87:14:46:0d:9b:83:48:ee:6d:e1:45:61:ff:12:e1:
fd:ae:ce:c9:33:7a:62:c3:47:58:8f:bd:67:5a:8a:b0:98:cc:
0c:20:a8:ea:2e:1d:58:b7:e6:72:00:46:22:de:61:95:ce:89:
e0:57:e6:bf:07:26:bb:7e:c4:68:8b:c4:07:2f:49:ca:a2:a8:
bd:66:5a:fa:af:18:28:74:3d:c7:11:5a:bb:da:5d:4c:6b:83:
ab:99:6e:62:f8:1e:9a:10:8b:cd:f6:2f:40:be:70:d0:7f:e2:
10:b5:bc:ab:42:27:ef:1d:09:b5:f6:c0:68:df:77:4d:60:51:
c3:1d:14:ad:50:89:00:5e:3a:db:3f:d5:c0:a4:65:49:ac:04:
54:c7:62:2f:14:9b:7e:ee:15:f6:f4:c4:e8:cc:bc:64:a0:da:
d7:5b:d9:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyyplJoHN8d2pG3FnK0UMnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0ZmIzMzFmYTQyZmI0NTFlNDU1MWM2ZjkxY2JiOWMxOWVl
MzdhNGUwHhcNMjUxMTExMTIwMTExWhcNMjUxMTEyMTIwMTExWjAzMTEwLwYDVQQD
EyhiNWU2ZTE0MGM0OTYzOTA4NDQ4ZTczYmI3MWY4MzMwNmVkOWM3OWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8lmx1ud3xcqVwkAc15VV9cjaYyJo
0XI9vPbrj1xI2aWaLSzARmNbvZpho2y41YEoYV5XNWLAH92am8XXnuj30g+2bRT1
HUBNhOS56gOCrLFq3K2NIvXf47hENjVpAHYghrRvyHozgHqwaXbUBQ5mHrpPXpId
lJleG12CWz4OLJ2kZtw9FsAW/ZY+eYcX2rK4c5LigyGmY1uI0O+9zS56U6RJJFDg
yvdSaN2Q+C3P2sTYrBRph067JdFsHQrFX1qqy4fx0ArhWgnfXh3EJz/9mnXkHqkk
K4B3qzMO8lr8PzZrdIS0F8e6LXFcMQEl+J1o2K+PXOj6WzkzQXf8vqJh/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLXm4UDEljkIRI5zu3H4MwbtnHn2MB8GA1UdIwQY
MBaAFLT7Mx+kL7RR5FUcb5HLucGe43pOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBzekg2UXZ0RkhrVlJ4dmtjdTV3WjdqZWs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9kOWE2NzItMjZjMy00YWI0LWI1M2It
MDk5ZmQyMTAxMzg1LzEvdFBzekg2UXZ0RkhrVlJ4dmtjdTV3WjdqZWs0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9kOWE2NzItMjZjMy00YWI0LWI1M2ItMDk5ZmQyMTAxMzg1
LzEvdFBzekg2UXZ0RkhrVlJ4dmtjdTV3WjdqZWs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL27jpQw7
V4mu1YXCrxjUKQLmyGlgOb+9IAIUHGq2diYfh7m30kY3RmvHDf8y8lxScWuK5Kp6
CLtqIsaB+IbL7uM7fko1lEHA1ALN3sMBgRHiElOpVIKNnJrzfLFchxRGDZuDSO5t
4UVh/xLh/a7OyTN6YsNHWI+9Z1qKsJjMDCCo6i4dWLfmcgBGIt5hlc6J4Ffmvwcm
u37EaIvEBy9JyqKovWZa+q8YKHQ9xxFau9pdTGuDq5luYvgemhCLzfYvQL5w0H/i
ELW8q0In7x0JtfbAaN93TWBRwx0UrVCJAF462z/VwKRlSawEVMdiLxSbfu4V9vTE
6My8ZKDa11vZdQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:49:45 2025 by rpki-client