Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft
File: fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft (raw, json)
Hash identifier: 40DOvs79rMULZoy+Fu+nWHZ7MeZop8XSFZW5tBEi7/w=
Subject key identifier: 9E:68:C5:6B:89:EB:A1:62:51:51:60:DD:6C:81:75:1D:D1:64:06:B2
Authority key identifier: 7E:04:DD:9C:82:B1:91:A5:F0:9D:60:6C:A5:50:C0:17:78:5A:EE:C4
Certificate issuer: /CN=7e04dd9c82b191a5f09d606ca550c017785aeec4
Certificate serial: 019A73A63300B6708C53B98F63E32BE8CE6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fgTdnIKxkaXwnWBspVDAF3ha7sQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft
Manifest number: 171C
Signing time: Tue 11 Nov 2025 16:01:02 +0000
Manifest this update: Tue 11 Nov 2025 16:01:02 +0000
Manifest next update: Wed 12 Nov 2025 16:01:02 +0000
Files and hashes: 1: fgTdnIKxkaXwnWBspVDAF3ha7sQ.crl (hash: Y31jnufFOKSpWEYQOrN2RCejb3zkdTbqbFXrz3/Cza0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/fgTdnIKxkaXwnWBspVDAF3ha7sQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:a6:33:00:b6:70:8c:53:b9:8f:63:e3:2b:e8:ce:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e04dd9c82b191a5f09d606ca550c017785aeec4
Validity
Not Before: Nov 11 16:01:02 2025 GMT
Not After : Nov 12 16:01:02 2025 GMT
Subject: CN=9e68c56b89eba162515160dd6c81751dd16406b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6e:9a:ec:5b:5f:05:9b:7d:e5:a8:2a:69:3f:
ba:c3:bb:c0:39:14:b4:ec:7f:ae:ff:05:9f:ba:5a:
a6:e6:a6:74:34:3b:d8:18:61:aa:ca:ac:c9:c1:c4:
a7:28:8f:ec:ff:aa:1f:c8:73:bf:ef:16:72:2d:a9:
31:c3:b9:6f:4c:03:1c:4b:1a:ba:9d:6c:cb:2d:17:
20:0a:03:c3:4d:de:08:60:ca:75:d0:c3:58:4b:b7:
66:8b:cf:0e:cd:11:a5:4b:84:45:68:20:34:bb:2d:
d2:84:f6:ff:43:cd:fb:c3:e0:37:2e:58:a2:43:33:
7f:09:40:83:da:75:8b:e7:8f:70:22:19:48:2f:92:
8f:0f:08:33:05:fd:6e:8e:a1:c5:dc:6f:d0:da:59:
30:38:c7:86:f4:ba:86:b1:c8:fe:25:85:bb:5c:9d:
0d:f5:8d:d0:8b:0d:ec:f2:a2:81:27:49:27:4e:34:
1c:8d:7a:f3:cf:1f:b4:ac:e0:41:40:6b:4c:cc:76:
18:80:ad:d4:31:d4:20:29:34:f7:57:ff:86:55:9e:
15:84:20:c8:54:5f:ab:7c:23:06:47:d3:19:57:65:
43:1a:30:a7:7b:10:9f:d5:e8:78:a6:86:30:fe:1a:
10:20:c6:3a:07:a1:92:0e:cd:fc:5a:ce:11:5c:b8:
15:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:68:C5:6B:89:EB:A1:62:51:51:60:DD:6C:81:75:1D:D1:64:06:B2
X509v3 Authority Key Identifier:
keyid:7E:04:DD:9C:82:B1:91:A5:F0:9D:60:6C:A5:50:C0:17:78:5A:EE:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fgTdnIKxkaXwnWBspVDAF3ha7sQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:69:68:f1:8a:ba:e6:84:36:16:7c:72:90:27:28:2e:0a:57:
e8:e5:72:c5:89:c3:81:c0:b7:2b:e9:77:6f:ef:39:b7:88:c9:
60:2d:7e:12:bb:de:b0:2e:61:ad:75:57:55:69:55:26:24:d0:
96:63:49:b5:64:a8:19:da:32:fb:dd:ba:ff:c2:86:59:22:ef:
43:36:43:f1:01:0f:39:30:1b:2b:4b:cb:10:0d:4c:e5:44:c2:
59:34:a1:a8:3a:49:5b:4e:c7:95:14:a1:9f:98:89:ac:c6:8f:
22:2f:db:c5:2b:92:3f:3b:b0:ae:79:60:bd:d8:28:d1:8f:ff:
2e:81:7c:a7:52:07:15:e8:7c:e1:21:ce:32:f6:b9:96:d2:20:
ca:43:29:41:d2:3f:93:4b:fd:08:e9:9f:90:60:68:20:b2:21:
32:1c:49:07:33:bb:a1:dc:60:0a:49:e6:34:97:dc:0d:31:15:
fd:03:76:0a:24:d1:0b:dc:ad:78:48:6a:e7:30:52:b6:6e:1a:
7c:9d:1c:f1:d0:3d:95:82:02:1b:cb:91:cb:0d:40:c5:6c:85:
7e:c7:a7:46:24:5d:be:b4:e8:f7:5c:ae:b0:f8:99:8a:77:7c:
3e:ba:8d:4e:4c:40:fd:42:1a:10:60:46:09:42:aa:5e:82:ad:
d6:ee:0d:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpzpjMAtnCMU7mPY+Mr6M5sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlMDRkZDljODJiMTkxYTVmMDlkNjA2Y2E1NTBjMDE3Nzg1
YWVlYzQwHhcNMjUxMTExMTYwMTAyWhcNMjUxMTEyMTYwMTAyWjAzMTEwLwYDVQQD
Eyg5ZTY4YzU2Yjg5ZWJhMTYyNTE1MTYwZGQ2YzgxNzUxZGQxNjQwNmIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvm6a7FtfBZt95agqaT+6w7vAORS0
7H+u/wWfulqm5qZ0NDvYGGGqyqzJwcSnKI/s/6ofyHO/7xZyLakxw7lvTAMcSxq6
nWzLLRcgCgPDTd4IYMp10MNYS7dmi88OzRGlS4RFaCA0uy3ShPb/Q837w+A3Llii
QzN/CUCD2nWL549wIhlIL5KPDwgzBf1ujqHF3G/Q2lkwOMeG9LqGscj+JYW7XJ0N
9Y3Qiw3s8qKBJ0knTjQcjXrzzx+0rOBBQGtMzHYYgK3UMdQgKTT3V/+GVZ4VhCDI
VF+rfCMGR9MZV2VDGjCnexCf1eh4poYw/hoQIMY6B6GSDs38Ws4RXLgVyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ5oxWuJ66FiUVFg3WyBdR3RZAayMB8GA1UdIwQY
MBaAFH4E3ZyCsZGl8J1gbKVQwBd4Wu7EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmdUZG5JS3hrYVh3bldCc3BWREFGM2hhN3NRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81NWI4YjItMThkNC00NTI3LThmNmIt
NTZlNDRmOWY5OTE0LzEvZmdUZG5JS3hrYVh3bldCc3BWREFGM2hhN3NRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS81NWI4YjItMThkNC00NTI3LThmNmItNTZlNDRmOWY5OTE0
LzEvZmdUZG5JS3hrYVh3bldCc3BWREFGM2hhN3NRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH2lo8Yq6
5oQ2FnxykCcoLgpX6OVyxYnDgcC3K+l3b+85t4jJYC1+ErvesC5hrXVXVWlVJiTQ
lmNJtWSoGdoy+926/8KGWSLvQzZD8QEPOTAbK0vLEA1M5UTCWTShqDpJW07HlRSh
n5iJrMaPIi/bxSuSPzuwrnlgvdgo0Y//LoF8p1IHFeh84SHOMva5ltIgykMpQdI/
k0v9COmfkGBoILIhMhxJBzO7odxgCknmNJfcDTEV/QN2CiTRC9yteEhq5zBStm4a
fJ0c8dA9lYICG8uRyw1AxWyFfsenRiRdvrTo91yusPiZind8PrqNTkxA/UIaEGBG
CUKqXoKt1u4NkA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 18:38:22 2025 by rpki-client