Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
File: TRYkCJewEwVoHJQl_lI_WPqydBU.mft (raw, json)
Hash identifier: eeCd5yuY9s43micEE0OHd8Bdju7h8frBVF/rcUR0kL8=
Subject key identifier: 55:8A:83:06:D2:33:24:28:ED:31:4D:09:DA:1D:46:F3:14:3E:BC:73
Authority key identifier: 4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15
Certificate issuer: /CN=4d16240897b01305681c9425fe523f58fab27415
Certificate serial: 019A72264AEF468A21AAD08F95E9D4D735A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 09:01:43 +0000
Manifest this update: Tue 11 Nov 2025 09:01:43 +0000
Manifest next update: Wed 12 Nov 2025 09:01:43 +0000
Files and hashes: 1: L587eFkH5wYc14IkuF8E7of-x9o.roa (hash: qZjZeJL5jZ5Dikm84ADOgn1QShjJOm5n3wbg8yoD9PY=)
2: TRYkCJewEwVoHJQl_lI_WPqydBU.crl (hash: dG5kD746Uj7um8Sbl43FvbQA76cMGm9Yfgg6xifId6k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:4a:ef:46:8a:21:aa:d0:8f:95:e9:d4:d7:35:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d16240897b01305681c9425fe523f58fab27415
Validity
Not Before: Nov 11 09:01:43 2025 GMT
Not After : Nov 12 09:01:43 2025 GMT
Subject: CN=558a8306d2332428ed314d09da1d46f3143ebc73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5a:8f:5b:d8:0b:e2:f7:fa:27:db:d6:98:55:
d5:43:0f:50:92:f4:48:7b:4c:d6:79:be:f5:1d:ea:
e5:2e:ec:8a:4b:d2:38:70:19:40:47:39:51:3a:10:
d0:ee:92:88:a8:18:8c:0e:35:a1:22:5f:fc:ad:e0:
5d:4e:e6:ab:dc:fa:c5:76:ff:d6:d1:44:10:be:59:
c0:49:6f:53:d7:97:3a:64:68:77:88:14:7d:79:6d:
2d:e6:cf:98:12:b5:b8:48:09:b6:e0:25:19:9c:5b:
83:43:1d:56:e4:7b:b3:4a:d2:2f:ba:04:c4:44:1e:
f4:ee:85:01:3c:0d:88:cd:df:1c:eb:7d:84:dd:08:
aa:1e:86:93:f6:41:82:f0:9a:12:1e:30:44:4c:e5:
cb:1b:f2:ef:a0:a5:17:27:db:a6:d6:88:3a:c5:5b:
4e:44:39:da:2e:a4:2b:1b:b5:56:5e:b0:4a:c7:85:
c8:d2:7e:f0:93:51:d9:2d:c9:b6:6c:4d:f9:98:bb:
40:67:27:72:e7:55:d5:2a:03:d6:f1:ab:a6:82:8d:
f7:92:2b:cf:44:f9:b7:e0:a7:ca:a8:19:05:91:fd:
23:1c:cb:6c:b2:82:18:a2:e7:f4:80:70:cb:e9:3c:
b3:5b:cd:69:dc:41:66:24:8a:b5:5f:26:5c:49:db:
c5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:8A:83:06:D2:33:24:28:ED:31:4D:09:DA:1D:46:F3:14:3E:BC:73
X509v3 Authority Key Identifier:
keyid:4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:a1:a9:e0:ad:c3:21:69:4f:c9:95:af:f6:9b:4d:75:ab:b0:
49:db:a9:68:b6:99:f8:7c:b5:fe:31:bc:f9:96:86:3c:d0:ca:
a2:a4:4a:e9:cc:ee:b4:3b:3c:cd:34:c2:37:74:6d:ff:7f:2e:
93:5f:b1:73:f0:5c:34:b3:09:f9:a4:62:0f:cf:03:11:a7:f3:
59:f6:b3:9e:de:31:36:22:29:07:03:28:6c:bc:59:f4:74:fd:
bc:e5:b6:c9:ca:a3:61:5b:1d:b4:4a:35:98:72:9c:f8:35:ca:
1c:e6:35:ef:5b:cc:37:00:05:7f:b0:5d:b5:3f:00:75:c1:46:
40:f2:50:c2:8e:52:71:bc:fe:b5:a0:ae:a1:73:da:c8:e0:56:
6f:3a:61:f0:08:e7:68:d5:b8:ee:f8:73:8f:fd:0a:55:99:31:
e9:e5:cb:1c:ec:d3:1a:50:b0:4d:2a:c0:06:2b:ef:89:f2:13:
cb:ac:2e:d1:7e:ba:ab:ac:33:60:a1:ab:37:db:d0:35:99:46:
7f:32:bd:43:90:03:2e:e6:f3:67:ce:5d:78:03:50:68:19:c8:
fc:02:d5:03:ba:2f:4f:65:bd:12:9a:17:4c:2d:6b:3a:dd:7b:
71:12:f3:d5:5e:44:6a:79:cf:ff:36:5d:4f:8f:d4:2f:d5:47:
03:ab:4f:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJkrvRoohqtCPlenU1zWjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkMTYyNDA4OTdiMDEzMDU2ODFjOTQyNWZlNTIzZjU4ZmFi
Mjc0MTUwHhcNMjUxMTExMDkwMTQzWhcNMjUxMTEyMDkwMTQzWjAzMTEwLwYDVQQD
Eyg1NThhODMwNmQyMzMyNDI4ZWQzMTRkMDlkYTFkNDZmMzE0M2ViYzczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslqPW9gL4vf6J9vWmFXVQw9QkvRI
e0zWeb71HerlLuyKS9I4cBlARzlROhDQ7pKIqBiMDjWhIl/8reBdTuar3PrFdv/W
0UQQvlnASW9T15c6ZGh3iBR9eW0t5s+YErW4SAm24CUZnFuDQx1W5HuzStIvugTE
RB707oUBPA2Izd8c632E3QiqHoaT9kGC8JoSHjBETOXLG/LvoKUXJ9um1og6xVtO
RDnaLqQrG7VWXrBKx4XI0n7wk1HZLcm2bE35mLtAZydy51XVKgPW8aumgo33kivP
RPm34KfKqBkFkf0jHMtssoIYouf0gHDL6TyzW81p3EFmJIq1XyZcSdvFcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFWKgwbSMyQo7TFNCdodRvMUPrxzMB8GA1UdIwQY
MBaAFE0WJAiXsBMFaByUJf5SP1j6snQVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFJZa0NKZXdFd1ZvSEpRbF9sSV9XUHF5ZEJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9mYzQ4MWEtYWIwMS00ZjgyLTllNmUt
ZWIwMmYzZDNmNDBjLzEvVFJZa0NKZXdFd1ZvSEpRbF9sSV9XUHF5ZEJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS9mYzQ4MWEtYWIwMS00ZjgyLTllNmUtZWIwMmYzZDNmNDBj
LzEvVFJZa0NKZXdFd1ZvSEpRbF9sSV9XUHF5ZEJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa6Gp4K3D
IWlPyZWv9ptNdauwSdupaLaZ+Hy1/jG8+ZaGPNDKoqRK6czutDs8zTTCN3Rt/38u
k1+xc/BcNLMJ+aRiD88DEafzWfaznt4xNiIpBwMobLxZ9HT9vOW2ycqjYVsdtEo1
mHKc+DXKHOY171vMNwAFf7BdtT8AdcFGQPJQwo5Scbz+taCuoXPayOBWbzph8Ajn
aNW47vhzj/0KVZkx6eXLHOzTGlCwTSrABivvifITy6wu0X66q6wzYKGrN9vQNZlG
fzK9Q5ADLubzZ85deANQaBnI/ALVA7ovT2W9EpoXTC1rOt17cRLz1V5EannP/zZd
T4/UL9VHA6tPsw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:08:47 2025 by rpki-client