Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
File: 0ccPHzPFgdt4oUm8htc5zcfOJqc.mft (raw, json)
Hash identifier: APlAoXDLjp42XPAhCe76437Jdfti1rMoETLGJn6f3FY=
Subject key identifier: 4C:1E:10:2E:6C:63:B2:D9:12:51:0B:62:91:73:C0:A5:D3:DD:7F:C3
Authority key identifier: D1:C7:0F:1F:33:C5:81:DB:78:A1:49:BC:86:D7:39:CD:C7:CE:26:A7
Certificate issuer: /CN=d1c70f1f33c581db78a149bc86d739cdc7ce26a7
Certificate serial: 019A71B7F0953AEFC132AAD3B66552DCBAD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
Manifest number: 05B5
Signing time: Tue 11 Nov 2025 07:01:11 +0000
Manifest this update: Tue 11 Nov 2025 07:01:11 +0000
Manifest next update: Wed 12 Nov 2025 07:01:11 +0000
Files and hashes: 1: 00FQiMdjUQle4zFwKcr67i8rD5o.roa (hash: vAwK94aBbQ1WLXSLlow/JuiTreizX+JgqV5lHzwa2Js=)
2: 0ccPHzPFgdt4oUm8htc5zcfOJqc.crl (hash: 3Z+WnxyeGCSm9dkEwUYMUqtlP/txlUxkCHWvSGMc0c0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:f0:95:3a:ef:c1:32:aa:d3:b6:65:52:dc:ba:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1c70f1f33c581db78a149bc86d739cdc7ce26a7
Validity
Not Before: Nov 11 07:01:11 2025 GMT
Not After : Nov 12 07:01:11 2025 GMT
Subject: CN=4c1e102e6c63b2d912510b629173c0a5d3dd7fc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6a:4f:6c:0d:0a:fc:b9:4e:08:63:0b:52:4c:
5c:2e:7d:87:a9:46:0e:f7:96:4c:35:b9:37:a6:ae:
11:ff:4e:1e:ee:e4:bc:f0:b8:e8:df:3e:49:1a:f6:
4b:a4:d0:de:56:fa:48:e2:74:73:89:a5:d8:23:98:
8b:ce:35:ec:eb:d5:06:c0:68:95:3e:33:80:39:6a:
32:97:fc:ab:2b:af:c6:8f:f0:70:da:99:61:a6:37:
9f:f1:37:d8:57:1a:82:b0:bc:c3:31:c9:91:ba:36:
62:55:d9:7b:70:8e:64:62:b9:a8:15:5f:2c:ae:cb:
4a:86:4d:c5:a4:17:1c:55:dd:60:08:39:0e:fe:2c:
ea:52:85:36:f7:70:ab:bd:9a:e9:eb:f6:35:01:95:
92:71:46:3b:a0:b1:37:4c:ab:67:7b:3b:0e:90:d7:
bb:87:0a:14:5c:9f:85:b3:2a:4b:b2:d8:ed:53:d9:
6d:0a:e9:2f:fd:c5:5e:f5:ea:63:56:5c:81:68:36:
21:4a:cc:aa:8e:ea:7b:ef:6a:a7:0c:65:c9:4b:75:
c8:36:9d:ed:79:56:69:9c:94:ea:ec:98:36:6e:53:
61:ce:0a:80:15:7b:bb:d2:dd:67:33:10:9f:32:cc:
6f:ef:6b:bd:17:7f:01:f0:14:7a:27:34:9c:9f:18:
ae:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:1E:10:2E:6C:63:B2:D9:12:51:0B:62:91:73:C0:A5:D3:DD:7F:C3
X509v3 Authority Key Identifier:
keyid:D1:C7:0F:1F:33:C5:81:DB:78:A1:49:BC:86:D7:39:CD:C7:CE:26:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:d4:62:15:fa:42:a7:fe:3b:94:34:be:9d:39:19:74:a6:91:
c0:c0:f7:f4:a9:16:51:40:d7:d7:a2:10:4c:81:57:94:3d:0b:
38:1f:2b:b4:d2:9b:6b:43:c5:cf:0f:c2:a1:94:5a:59:0c:0a:
86:38:51:0f:09:e0:16:1b:9a:89:34:80:93:1a:1b:f2:36:32:
b4:db:e6:98:e1:99:0c:53:3b:96:07:5f:6e:2e:8a:78:c8:a4:
86:59:a8:32:f8:ff:5f:f6:9b:8d:54:c2:7f:d6:47:a3:41:db:
01:66:62:8c:f1:f2:fb:47:1a:ba:75:68:5d:e5:54:55:bc:06:
54:4e:d9:f6:d3:1a:fa:26:db:48:85:91:d3:10:eb:96:49:75:
5f:85:74:38:00:7a:56:bf:dd:b9:6b:71:43:97:4a:2c:97:30:
d8:3d:72:9a:0c:0f:74:e2:8a:25:6b:94:59:09:77:49:1d:4a:
76:a7:57:6b:0a:5c:38:97:f6:9d:6f:4b:24:46:bf:e7:04:5d:
06:99:7b:e2:21:53:ca:a9:f3:1d:10:17:46:24:f2:dc:ce:d8:
f9:a0:78:88:bd:55:92:21:ea:5c:03:59:70:ef:3a:68:88:54:
d2:43:0c:88:1c:77:38:c8:2b:c7:fb:b3:62:fc:50:7a:59:73:
fb:21:2b:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxt/CVOu/BMqrTtmVS3LrZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxYzcwZjFmMzNjNTgxZGI3OGExNDliYzg2ZDczOWNkYzdj
ZTI2YTcwHhcNMjUxMTExMDcwMTExWhcNMjUxMTEyMDcwMTExWjAzMTEwLwYDVQQD
Eyg0YzFlMTAyZTZjNjNiMmQ5MTI1MTBiNjI5MTczYzBhNWQzZGQ3ZmMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlmpPbA0K/LlOCGMLUkxcLn2HqUYO
95ZMNbk3pq4R/04e7uS88Ljo3z5JGvZLpNDeVvpI4nRziaXYI5iLzjXs69UGwGiV
PjOAOWoyl/yrK6/Gj/Bw2plhpjef8TfYVxqCsLzDMcmRujZiVdl7cI5kYrmoFV8s
rstKhk3FpBccVd1gCDkO/izqUoU293CrvZrp6/Y1AZWScUY7oLE3TKtnezsOkNe7
hwoUXJ+FsypLstjtU9ltCukv/cVe9epjVlyBaDYhSsyqjup772qnDGXJS3XINp3t
eVZpnJTq7Jg2blNhzgqAFXu70t1nMxCfMsxv72u9F38B8BR6JzScnxiuTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEweEC5sY7LZElELYpFzwKXT3X/DMB8GA1UdIwQY
MBaAFNHHDx8zxYHbeKFJvIbXOc3HzianMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGNjUEh6UEZnZHQ0b1VtOGh0YzV6Y2ZPSnFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9kM2QyNTctNmU0Yy00ZDYwLTljOTMt
ZGZjYWUzNmEzZWY4LzEvMGNjUEh6UEZnZHQ0b1VtOGh0YzV6Y2ZPSnFjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9kM2QyNTctNmU0Yy00ZDYwLTljOTMtZGZjYWUzNmEzZWY4
LzEvMGNjUEh6UEZnZHQ0b1VtOGh0YzV6Y2ZPSnFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqdRiFfpC
p/47lDS+nTkZdKaRwMD39KkWUUDX16IQTIFXlD0LOB8rtNKba0PFzw/CoZRaWQwK
hjhRDwngFhuaiTSAkxob8jYytNvmmOGZDFM7lgdfbi6KeMikhlmoMvj/X/abjVTC
f9ZHo0HbAWZijPHy+0caunVoXeVUVbwGVE7Z9tMa+ibbSIWR0xDrlkl1X4V0OAB6
Vr/duWtxQ5dKLJcw2D1ymgwPdOKKJWuUWQl3SR1KdqdXawpcOJf2nW9LJEa/5wRd
Bpl74iFTyqnzHRAXRiTy3M7Y+aB4iL1VkiHqXANZcO86aIhU0kMMiBx3OMgrx/uz
YvxQellz+yEr3w==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:33 2025 by rpki-client