Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
File: cIEc4M5zU_A-3py3ylEWJV-_t70.mft (raw, json)
Hash identifier: i7dnil904c5zIbKUlzcqDTMmI9WhS7Mwk2cMN9KUzUc=
Subject key identifier: C1:C4:B3:D8:08:CF:13:80:AC:BC:BA:BF:A4:45:E2:D1:1C:DE:56:88
Authority key identifier: 70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
Certificate issuer: /CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Certificate serial: 019A71B790D74864B236234E4C47337A6CBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
Manifest number: 0BD8
Signing time: Tue 11 Nov 2025 07:00:46 +0000
Manifest this update: Tue 11 Nov 2025 07:00:46 +0000
Manifest next update: Wed 12 Nov 2025 07:00:46 +0000
Files and hashes: 1: 1-VdOr1FUP7HNxfqfhOHB4LyOJ2Y.roa (hash: QB9LyYahw6voR06UwItPSAyVLMKgN6beiVidIvS+Rxs=)
2: cIEc4M5zU_A-3py3ylEWJV-_t70.crl (hash: /gTmI6nMglR4DugohFfJlNMJeQMJf6NbAvRoUUr+U7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:90:d7:48:64:b2:36:23:4e:4c:47:33:7a:6c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Validity
Not Before: Nov 11 07:00:46 2025 GMT
Not After : Nov 12 07:00:46 2025 GMT
Subject: CN=c1c4b3d808cf1380acbcbabfa445e2d11cde5688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d9:a5:10:69:31:c8:a6:01:ef:c2:b7:73:ef:
2c:38:7d:72:38:f9:e6:68:6c:f9:4c:18:a2:f2:a9:
93:f0:ca:b4:13:20:0a:f7:45:96:6e:32:87:5a:bc:
db:fb:74:f0:53:ae:14:09:cf:4b:cf:62:31:c7:6f:
35:96:9f:84:fa:01:3b:80:61:b3:cd:48:3a:dc:a3:
23:14:39:74:3f:0f:9f:25:42:89:cb:8d:9c:1c:9e:
ee:35:9d:44:45:26:cb:49:d4:c6:65:ef:f5:7e:c1:
0c:66:82:d9:5b:a6:83:1c:15:09:62:09:65:8c:a9:
45:a8:af:d7:6a:13:92:60:8a:6b:0a:ce:11:f3:d8:
44:d6:82:24:58:29:54:31:c3:53:17:34:80:4f:b7:
e7:d8:38:45:2e:d2:59:ab:58:77:54:d8:db:0a:5a:
ad:1c:a1:cd:45:89:af:91:e3:df:f3:65:6e:1d:44:
86:96:e9:d9:0e:39:f4:a9:61:9b:1f:29:de:37:1f:
e9:37:d4:fc:23:16:0e:77:03:25:d7:d0:d2:8b:66:
05:3a:b3:ba:98:3c:b2:8b:54:cb:e7:7f:87:7a:33:
df:3e:77:3f:c1:1f:18:54:09:6f:a5:c5:27:54:00:
cd:88:b7:f7:c3:42:be:64:89:0a:2b:a0:d4:5e:9c:
09:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:C4:B3:D8:08:CF:13:80:AC:BC:BA:BF:A4:45:E2:D1:1C:DE:56:88
X509v3 Authority Key Identifier:
keyid:70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:f3:ee:14:98:62:f5:52:69:9f:8b:de:1d:d2:0e:84:54:78:
54:f7:f0:50:b1:1b:df:2e:34:64:2a:1b:95:b8:f4:8c:5b:b6:
59:d5:58:6c:7b:88:03:85:74:f8:07:59:e4:68:5d:9b:be:d8:
04:4c:05:fc:a7:4c:c2:3a:04:83:b7:fb:55:7f:19:8e:55:4e:
f9:b4:35:d4:e9:0d:4a:04:d2:21:2b:d4:78:5c:50:68:00:04:
af:9a:91:1b:78:d3:34:76:4a:a6:ec:62:3b:30:f5:71:cd:12:
5e:63:8f:84:e2:e7:ef:25:e0:32:2d:57:6d:32:b9:09:d6:27:
2d:35:24:ff:3f:88:15:f1:44:b8:52:59:f9:2e:68:ae:bc:b4:
42:b8:51:fc:26:42:bb:5f:40:14:cd:42:55:db:d4:4e:2a:e6:
52:b2:96:4b:00:9e:75:a8:99:7c:e7:6b:66:f9:cd:f5:1c:18:
a1:86:74:24:3b:c2:f2:30:a6:ab:e2:71:1c:5b:d3:5d:3b:3b:
8e:7d:29:69:87:84:29:fa:d5:a2:e2:96:63:43:b3:ca:bb:bb:
7b:b2:8d:34:8b:c0:2f:95:83:f7:98:56:25:fd:2a:75:f7:95:
75:84:4a:a5:86:7c:cc:0c:fc:b4:96:38:44:be:26:d6:97:c9:
16:ab:ea:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxt5DXSGSyNiNOTEczemy9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwODExY2UwY2U3MzUzZjAzZWRlOWNiN2NhNTExNjI1NWZi
ZmI3YmQwHhcNMjUxMTExMDcwMDQ2WhcNMjUxMTEyMDcwMDQ2WjAzMTEwLwYDVQQD
EyhjMWM0YjNkODA4Y2YxMzgwYWNiY2JhYmZhNDQ1ZTJkMTFjZGU1Njg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArdmlEGkxyKYB78K3c+8sOH1yOPnm
aGz5TBii8qmT8Mq0EyAK90WWbjKHWrzb+3TwU64UCc9Lz2Ixx281lp+E+gE7gGGz
zUg63KMjFDl0Pw+fJUKJy42cHJ7uNZ1ERSbLSdTGZe/1fsEMZoLZW6aDHBUJYgll
jKlFqK/XahOSYIprCs4R89hE1oIkWClUMcNTFzSAT7fn2DhFLtJZq1h3VNjbClqt
HKHNRYmvkePf82VuHUSGlunZDjn0qWGbHyneNx/pN9T8IxYOdwMl19DSi2YFOrO6
mDyyi1TL53+HejPfPnc/wR8YVAlvpcUnVADNiLf3w0K+ZIkKK6DUXpwJZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMHEs9gIzxOArLy6v6RF4tEc3laIMB8GA1UdIwQY
MBaAFHCBHODOc1PwPt6ct8pRFiVfv7e9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0lFYzRNNXpVX0EtM3B5M3lsRVdKVi1fdDcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My80NWU2MzItYjBmZC00ZDgxLTljZjct
OGZkMjIxMDU4MDZiLzEvY0lFYzRNNXpVX0EtM3B5M3lsRVdKVi1fdDcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My80NWU2MzItYjBmZC00ZDgxLTljZjctOGZkMjIxMDU4MDZi
LzEvY0lFYzRNNXpVX0EtM3B5M3lsRVdKVi1fdDcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPvPuFJhi
9VJpn4veHdIOhFR4VPfwULEb3y40ZCoblbj0jFu2WdVYbHuIA4V0+AdZ5Ghdm77Y
BEwF/KdMwjoEg7f7VX8ZjlVO+bQ11OkNSgTSISvUeFxQaAAEr5qRG3jTNHZKpuxi
OzD1cc0SXmOPhOLn7yXgMi1XbTK5CdYnLTUk/z+IFfFEuFJZ+S5orry0QrhR/CZC
u19AFM1CVdvUTirmUrKWSwCedaiZfOdrZvnN9RwYoYZ0JDvC8jCmq+JxHFvTXTs7
jn0paYeEKfrVouKWY0Ozyru7e7KNNIvAL5WD95hWJf0qdfeVdYRKpYZ8zAz8tJY4
RL4m1pfJFqvqNg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:42:52 2025 by rpki-client