Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: zH6BT09BQYan1g3uqe8Y6vexJZlxWGa6m1mTqPWllcc=
Subject key identifier: 4A:AB:30:49:81:69:45:2C:9A:20:29:D3:42:8B:09:7A:64:55:E3:08
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 019A71B90E8D5FA799B8957B4C9648330456
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 07:02:24 +0000
Manifest this update: Tue 11 Nov 2025 07:02:24 +0000
Manifest next update: Wed 12 Nov 2025 07:02:24 +0000
Files and hashes: 1: APkFGhaR8YtianTelxgsgSDeVhM.roa (hash: 2Pdlo7CTCPlVPPRVRRuXnXVCI5TavhpFPnrp+xkks5o=)
2: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: tFlokvlfuMIdEecFAbSNytEpc6/+OOlEo/FLc7oV234=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:0e:8d:5f:a7:99:b8:95:7b:4c:96:48:33:04:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: Nov 11 07:02:24 2025 GMT
Not After : Nov 12 07:02:24 2025 GMT
Subject: CN=4aab30498169452c9a2029d3428b097a6455e308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9b:08:3e:ba:36:b1:f7:58:85:e5:53:68:ca:
4d:86:ec:a6:5d:f8:67:68:c3:1f:ba:87:89:86:be:
95:61:0a:7b:91:86:76:c9:99:88:65:d3:41:4c:f7:
4b:6e:ee:f2:19:4f:27:02:fc:bb:0b:e5:24:eb:cf:
26:66:69:01:50:34:b2:b3:a5:19:67:83:7b:85:39:
8b:e0:a0:8b:3d:a9:90:ab:92:1b:51:fd:f1:22:c8:
11:30:42:3f:e0:54:f5:18:6b:de:e4:69:e1:cb:f8:
5a:07:8b:00:04:86:c0:99:d8:c3:03:0b:69:9f:ab:
8f:4c:7f:26:c4:ca:21:ea:50:d7:bd:e0:05:60:0f:
c1:ee:b9:30:2b:3b:50:5a:2d:67:ac:cf:89:e5:39:
a7:ee:80:72:2f:10:35:00:d1:82:ec:48:65:1c:70:
dd:33:c0:e0:96:3f:7d:bb:f8:75:2a:b6:d9:33:26:
f6:3f:4c:0c:a4:a8:fb:6b:0b:62:d9:f3:98:54:56:
0f:5b:e2:af:a7:ba:93:b0:6d:f3:ae:5d:1a:1c:2a:
ba:27:f1:18:62:bd:21:be:8c:71:33:3c:4f:dd:2f:
64:fb:07:2a:00:de:58:23:61:31:d5:0b:f6:f1:b7:
c8:84:67:77:eb:24:60:e9:cf:69:f3:88:3d:b5:28:
2b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:AB:30:49:81:69:45:2C:9A:20:29:D3:42:8B:09:7A:64:55:E3:08
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:88:f9:99:76:08:f5:eb:50:96:93:c0:0d:46:91:29:36:e0:
48:26:ea:01:ee:9a:fc:43:47:ef:c9:a7:b7:0e:9c:9b:b3:ae:
4d:78:a6:49:a8:db:3f:d6:59:b4:47:28:dd:a8:12:0d:79:89:
3a:81:50:e7:38:f6:59:d0:94:36:a2:39:c9:6b:fd:23:a2:a8:
07:62:11:84:bd:ef:2c:ef:14:8c:87:d0:71:d5:72:cb:77:58:
c3:8a:4b:c5:7e:7f:91:47:6e:f5:b1:d0:00:23:f5:4c:35:84:
2e:1e:24:03:41:7e:f4:78:52:80:cf:df:f9:1e:21:44:b8:5a:
b9:a8:0c:71:9a:a6:69:e7:44:c8:10:9c:d5:0c:81:c3:cf:d4:
3b:03:c2:d2:b4:26:97:b9:67:01:c3:31:3d:7f:9c:56:b4:5c:
04:08:22:d9:f6:76:99:e1:bf:ca:ad:c3:d7:9d:ba:f7:eb:c3:
6a:cb:34:66:39:ab:69:ae:2f:4e:ca:58:08:42:77:6a:c0:6d:
21:a1:a4:70:20:75:d2:a1:4d:55:e2:6d:ae:65:9c:ba:59:cb:
3c:55:bf:d4:45:8f:c9:a7:e0:c9:d9:f4:31:15:12:0c:13:0a:
65:e9:f5:a0:57:d5:94:6f:48:18:d2:06:b8:56:fd:5a:8e:bd:
dd:08:f8:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuQ6NX6eZuJV7TJZIMwRWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwZjZlNTNiNjk3YWQyNjNiNGJhNGVhNDk4MTQzNjZhODgz
YjU0YWQwHhcNMjUxMTExMDcwMjI0WhcNMjUxMTEyMDcwMjI0WjAzMTEwLwYDVQQD
Eyg0YWFiMzA0OTgxNjk0NTJjOWEyMDI5ZDM0MjhiMDk3YTY0NTVlMzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzZsIPro2sfdYheVTaMpNhuymXfhn
aMMfuoeJhr6VYQp7kYZ2yZmIZdNBTPdLbu7yGU8nAvy7C+Uk688mZmkBUDSys6UZ
Z4N7hTmL4KCLPamQq5IbUf3xIsgRMEI/4FT1GGve5Gnhy/haB4sABIbAmdjDAwtp
n6uPTH8mxMoh6lDXveAFYA/B7rkwKztQWi1nrM+J5Tmn7oByLxA1ANGC7EhlHHDd
M8Dglj99u/h1KrbZMyb2P0wMpKj7awti2fOYVFYPW+Kvp7qTsG3zrl0aHCq6J/EY
Yr0hvoxxMzxP3S9k+wcqAN5YI2Ex1Qv28bfIhGd36yRg6c9p84g9tSgrwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEqrMEmBaUUsmiAp00KLCXpkVeMIMB8GA1UdIwQY
MBaAFCD25TtpetJjtLpOpJgUNmqIO1StMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVBibE8ybDYwbU8wdWs2a21CUTJhb2c3VkswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9lNzU3NmEtNDM2My00OTg0LWI0Yzct
YjFmMjljY2NjZTU1LzEvSVBibE8ybDYwbU8wdWs2a21CUTJhb2c3VkswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi9lNzU3NmEtNDM2My00OTg0LWI0YzctYjFmMjljY2NjZTU1
LzEvSVBibE8ybDYwbU8wdWs2a21CUTJhb2c3VkswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhoj5mXYI
9etQlpPADUaRKTbgSCbqAe6a/ENH78mntw6cm7OuTXimSajbP9ZZtEco3agSDXmJ
OoFQ5zj2WdCUNqI5yWv9I6KoB2IRhL3vLO8UjIfQcdVyy3dYw4pLxX5/kUdu9bHQ
ACP1TDWELh4kA0F+9HhSgM/f+R4hRLhauagMcZqmaedEyBCc1QyBw8/UOwPC0rQm
l7lnAcMxPX+cVrRcBAgi2fZ2meG/yq3D15269+vDass0Zjmraa4vTspYCEJ3asBt
IaGkcCB10qFNVeJtrmWculnLPFW/1EWPyafgydn0MRUSDBMKZen1oFfVlG9IGNIG
uFb9Wo693Qj4IA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:35:22 2025 by rpki-client