Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1df18e-6c4d-434b-8e31-71eb95f50e5b/1/_4fgqwMrDAXrXnTMLAhpjdMk2WM.mft
File: _4fgqwMrDAXrXnTMLAhpjdMk2WM.mft (raw, json)
Hash identifier: MKyTLvIGAMDADR6xotSVNBKf3vRiqOvCcxpbwJxS3Bo=
Subject key identifier: 2B:8F:70:08:53:2E:1F:3B:74:F4:AB:7F:F6:12:29:DA:96:62:6C:88
Authority key identifier: FF:87:E0:AB:03:2B:0C:05:EB:5E:74:CC:2C:08:69:8D:D3:24:D9:63
Certificate issuer: /CN=ff87e0ab032b0c05eb5e74cc2c08698dd324d963
Certificate serial: 019A5FE8669101967019882A2F8E4A2D6C02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4fgqwMrDAXrXnTMLAhpjdMk2WM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/1df18e-6c4d-434b-8e31-71eb95f50e5b/1/_4fgqwMrDAXrXnTMLAhpjdMk2WM.mft
Manifest number: 1752
Signing time: Fri 07 Nov 2025 20:00:57 +0000
Manifest this update: Fri 07 Nov 2025 20:00:57 +0000
Manifest next update: Sat 08 Nov 2025 20:00:57 +0000
Files and hashes: 1: 6ytibQXjOjv-ZANwibgbWAzZG2U.roa (hash: Y/Z/9OvD6QNjfuwrTmUdgOamFL52z6ksqnz9FZTa6JU=)
2: _4fgqwMrDAXrXnTMLAhpjdMk2WM.crl (hash: r16CwCqzDdcmpVRVbmaaJCDV9DNHi0Ykqoq9Tic6bLs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/1df18e-6c4d-434b-8e31-71eb95f50e5b/1/_4fgqwMrDAXrXnTMLAhpjdMk2WM.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/1df18e-6c4d-434b-8e31-71eb95f50e5b/1/_4fgqwMrDAXrXnTMLAhpjdMk2WM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_4fgqwMrDAXrXnTMLAhpjdMk2WM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Nov 2025 20:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:5f:e8:66:91:01:96:70:19:88:2a:2f:8e:4a:2d:6c:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff87e0ab032b0c05eb5e74cc2c08698dd324d963
Validity
Not Before: Nov 7 20:00:57 2025 GMT
Not After : Nov 8 20:00:57 2025 GMT
Subject: CN=2b8f7008532e1f3b74f4ab7ff61229da96626c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e9:cc:07:17:fd:7d:d2:1d:ea:97:ea:0d:23:
97:7f:06:73:13:eb:09:a7:22:97:33:c2:03:f1:3c:
b2:44:84:46:39:93:81:74:e7:14:30:3d:8b:92:58:
16:4e:ba:ef:5e:51:57:3c:b8:4e:42:11:21:73:2d:
18:71:88:d5:19:c2:40:7f:f5:9a:bb:99:3a:80:e9:
6e:c7:2d:46:05:15:cf:23:63:44:b4:41:61:53:e3:
0a:ee:72:c7:88:60:63:db:d2:a9:c6:b0:60:2c:8b:
b3:c1:f0:81:ed:71:eb:65:d9:85:05:59:a2:8d:74:
77:1a:dd:90:f8:db:c6:46:bf:db:17:ac:a7:a6:5a:
c2:83:4a:3b:bd:6c:f7:02:c9:ae:2b:db:e4:3b:8c:
66:ca:38:b2:cd:2e:be:6f:f9:f2:29:4f:e1:01:59:
53:5b:b5:fa:a3:0a:51:97:68:33:d0:43:d4:7f:83:
bd:c4:b0:d8:fd:6b:22:db:94:b3:19:e9:bb:69:73:
5b:14:46:e8:a1:99:79:c1:cc:99:75:27:8c:12:4f:
97:1a:94:80:46:d0:36:2e:01:5d:e4:52:10:6e:13:
0e:dd:22:16:fd:fb:ef:94:96:e8:04:8c:eb:bf:dc:
22:4e:ed:b7:97:33:aa:6b:58:84:13:c8:2a:bf:87:
16:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:8F:70:08:53:2E:1F:3B:74:F4:AB:7F:F6:12:29:DA:96:62:6C:88
X509v3 Authority Key Identifier:
keyid:FF:87:E0:AB:03:2B:0C:05:EB:5E:74:CC:2C:08:69:8D:D3:24:D9:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4fgqwMrDAXrXnTMLAhpjdMk2WM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1df18e-6c4d-434b-8e31-71eb95f50e5b/1/_4fgqwMrDAXrXnTMLAhpjdMk2WM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1df18e-6c4d-434b-8e31-71eb95f50e5b/1/_4fgqwMrDAXrXnTMLAhpjdMk2WM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:a3:c0:7a:20:07:6f:37:a9:d9:b3:35:36:bf:48:2f:a1:d0:
94:01:bd:4d:64:fb:46:e8:32:26:0c:c7:ed:3c:f5:59:0f:56:
f3:4b:1e:04:ff:e4:a6:f7:39:e9:51:88:d7:1f:88:7f:f8:79:
cc:59:21:a0:51:70:81:3b:34:1b:4b:46:5d:b5:53:dd:7c:0f:
00:53:6e:94:06:f4:4b:db:a8:b8:e3:70:ec:8e:20:6e:4e:6a:
de:ee:00:36:78:f1:14:66:5d:2e:8b:61:f6:7a:e4:44:19:81:
11:86:0a:97:bd:0b:a6:6a:5f:40:59:69:48:26:12:bc:d1:10:
91:7a:a6:0c:50:72:9b:7b:4e:0f:f6:4c:91:44:ea:74:ca:18:
16:e0:5b:06:36:9b:89:96:a0:0c:9c:2d:4d:2c:9b:cb:c2:d7:
45:3b:f3:e0:14:a9:75:1b:8b:f4:c0:0f:3c:48:a2:e4:8b:a8:
6d:b9:6f:f4:f5:60:39:45:15:d1:2d:29:ab:f0:df:bd:0d:3e:
f7:f8:68:40:0c:8e:0b:b4:3f:1b:05:2e:6e:c5:43:3e:9b:cb:
d0:97:98:9e:a6:91:92:f4:4c:35:19:0e:7d:9c:8c:87:0e:35:
a5:b4:79:dc:70:88:c3:b3:a0:75:9b:ab:92:dc:82:24:b4:fb:
92:c1:cd:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpf6GaRAZZwGYgqL45KLWwCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmODdlMGFiMDMyYjBjMDVlYjVlNzRjYzJjMDg2OThkZDMy
NGQ5NjMwHhcNMjUxMTA3MjAwMDU3WhcNMjUxMTA4MjAwMDU3WjAzMTEwLwYDVQQD
EygyYjhmNzAwODUzMmUxZjNiNzRmNGFiN2ZmNjEyMjlkYTk2NjI2Yzg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsenMBxf9fdId6pfqDSOXfwZzE+sJ
pyKXM8ID8TyyRIRGOZOBdOcUMD2LklgWTrrvXlFXPLhOQhEhcy0YcYjVGcJAf/Wa
u5k6gOluxy1GBRXPI2NEtEFhU+MK7nLHiGBj29KpxrBgLIuzwfCB7XHrZdmFBVmi
jXR3Gt2Q+NvGRr/bF6ynplrCg0o7vWz3AsmuK9vkO4xmyjiyzS6+b/nyKU/hAVlT
W7X6owpRl2gz0EPUf4O9xLDY/Wsi25SzGem7aXNbFEbooZl5wcyZdSeMEk+XGpSA
RtA2LgFd5FIQbhMO3SIW/fvvlJboBIzrv9wiTu23lzOqa1iEE8gqv4cWGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCuPcAhTLh87dPSrf/YSKdqWYmyIMB8GA1UdIwQY
MBaAFP+H4KsDKwwF6150zCwIaY3TJNljMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvXzRmZ3F3TXJEQVhyWG5UTUxBaHBqZE1rMldNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8xZGYxOGUtNmM0ZC00MzRiLThlMzEt
NzFlYjk1ZjUwZTViLzEvXzRmZ3F3TXJEQVhyWG5UTUxBaHBqZE1rMldNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8xZGYxOGUtNmM0ZC00MzRiLThlMzEtNzFlYjk1ZjUwZTVi
LzEvXzRmZ3F3TXJEQVhyWG5UTUxBaHBqZE1rMldNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARqPAeiAH
bzep2bM1Nr9IL6HQlAG9TWT7RugyJgzH7Tz1WQ9W80seBP/kpvc56VGI1x+If/h5
zFkhoFFwgTs0G0tGXbVT3XwPAFNulAb0S9uouONw7I4gbk5q3u4ANnjxFGZdLoth
9nrkRBmBEYYKl70LpmpfQFlpSCYSvNEQkXqmDFBym3tOD/ZMkUTqdMoYFuBbBjab
iZagDJwtTSyby8LXRTvz4BSpdRuL9MAPPEii5Iuobblv9PVgOUUV0S0pq/DfvQ0+
9/hoQAyOC7Q/GwUubsVDPpvL0JeYnqaRkvRMNRkOfZyMhw41pbR53HCIw7OgdZur
ktyCJLT7ksHNiA==
-----END CERTIFICATE-----
Generated at Sat Nov 8 04:51:59 2025 by rpki-client