Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft
File: P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft (raw, json)
Hash identifier: pLHoVMyWG+zAnMptbe/7UI5j0bzL53z9y7jwuj9BPX8=
Subject key identifier: B5:84:7F:39:A9:32:B3:C3:2C:E0:0A:5A:EC:04:B4:EA:08:B5:A2:60
Authority key identifier: 3F:B7:8C:D1:A3:10:C9:9D:63:77:14:0E:52:8A:A3:E6:E0:DC:AB:9F
Certificate issuer: /CN=3fb78cd1a310c99d6377140e528aa3e6e0dcab9f
Certificate serial: 019A7293E27B542A80369A47B11EBFFC3204
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P7eM0aMQyZ1jdxQOUoqj5uDcq58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft
Manifest number: 0255
Signing time: Tue 11 Nov 2025 11:01:25 +0000
Manifest this update: Tue 11 Nov 2025 11:01:25 +0000
Manifest next update: Wed 12 Nov 2025 11:01:25 +0000
Files and hashes: 1: P7eM0aMQyZ1jdxQOUoqj5uDcq58.crl (hash: 7SSxtQX6PCqIqeA0TnGA2m7v9nn94x70kRZnCMrbArA=)
2: tO945n8IOH4m4HY-IByza0kUANU.roa (hash: 1Y70k1PM1fySvFZtbmtzuB2FgWQvwNTM4axab3kjR2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft
rsync://rpki.ripe.net/repository/DEFAULT/P7eM0aMQyZ1jdxQOUoqj5uDcq58.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:e2:7b:54:2a:80:36:9a:47:b1:1e:bf:fc:32:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fb78cd1a310c99d6377140e528aa3e6e0dcab9f
Validity
Not Before: Nov 11 11:01:25 2025 GMT
Not After : Nov 12 11:01:25 2025 GMT
Subject: CN=b5847f39a932b3c32ce00a5aec04b4ea08b5a260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:a3:62:d1:02:a4:10:25:90:b9:68:58:9f:88:
8f:23:f4:6b:4a:23:66:d3:b7:29:51:03:ed:96:4e:
ce:83:d6:9c:02:62:0a:64:b2:96:d8:56:a3:34:e4:
36:5d:06:e8:7e:0d:5c:ae:ee:bd:7c:54:2a:4a:21:
b1:c3:4a:c8:5a:d6:f6:fa:7a:93:3d:46:83:87:3d:
55:2f:cc:14:e3:c8:42:b0:e9:ce:83:fc:1f:61:31:
06:4b:1b:bf:ad:cc:98:e9:01:57:6b:3f:74:e7:0b:
97:65:2c:e2:49:8c:f8:64:2d:6f:11:ba:1d:9d:9e:
4c:e8:d1:52:30:55:11:e4:1e:47:50:69:b9:db:b7:
f7:96:01:65:c3:48:30:83:06:3c:e0:80:e1:72:bc:
b5:d2:b1:c2:86:90:c7:07:cc:0e:03:36:54:2b:9b:
f9:8d:2e:09:30:22:f2:a0:45:7a:5e:90:17:c3:95:
e7:5d:b6:d6:f4:f6:57:e2:e8:50:f4:bc:40:c8:e2:
92:fd:c0:e1:8a:2a:d5:0d:83:6c:98:7a:b1:58:af:
93:51:be:b5:f5:0b:8e:43:ca:b5:f3:56:eb:2c:15:
0a:1c:b1:a8:3a:87:07:84:38:fe:dd:8a:eb:a4:c9:
e5:43:e4:7c:a3:6d:0a:93:90:eb:8a:f7:0a:da:e2:
d1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:84:7F:39:A9:32:B3:C3:2C:E0:0A:5A:EC:04:B4:EA:08:B5:A2:60
X509v3 Authority Key Identifier:
keyid:3F:B7:8C:D1:A3:10:C9:9D:63:77:14:0E:52:8A:A3:E6:E0:DC:AB:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P7eM0aMQyZ1jdxQOUoqj5uDcq58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:24:b9:ba:c4:40:ae:d9:9c:84:2f:c4:27:bb:cc:e4:2a:00:
f3:8b:68:1d:32:28:0e:f0:b0:69:e5:b0:b2:70:10:20:51:01:
45:f1:81:c5:ad:23:9a:66:fe:ae:90:54:4c:1a:7b:3f:32:98:
7e:8a:fd:55:95:ee:2b:e4:27:7b:30:00:48:63:76:b5:e2:e2:
e5:65:56:9f:17:94:d2:16:9f:a2:89:a6:1c:68:23:57:71:c3:
0c:6c:5a:3c:08:35:e9:8f:08:17:5b:15:ed:38:96:5d:c4:41:
87:f7:df:54:9b:c3:71:fb:bc:a0:ce:e3:02:4a:55:b1:33:7a:
1a:53:63:83:6b:2a:92:e0:fa:4c:89:18:b0:8e:3c:7b:b8:88:
61:22:02:aa:ce:d4:73:68:de:00:09:8f:d2:ed:aa:87:33:f1:
bd:d7:39:ca:a7:70:03:f2:82:d5:87:9a:12:a6:30:b0:f5:88:
d7:3b:50:be:ef:12:02:1c:a8:de:d4:d4:8f:51:32:a7:61:9c:
2d:f1:48:a6:07:2f:b5:09:a8:72:0f:f3:e0:80:ed:2b:42:4e:
1f:58:9f:da:a0:2c:c1:8a:4a:4c:12:11:7e:b0:32:40:80:c3:
e0:bb:97:49:6f:9d:4a:45:ca:48:5b:5c:59:ce:80:15:d1:9f:
7d:54:1d:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyk+J7VCqANppHsR6//DIEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmYjc4Y2QxYTMxMGM5OWQ2Mzc3MTQwZTUyOGFhM2U2ZTBk
Y2FiOWYwHhcNMjUxMTExMTEwMTI1WhcNMjUxMTEyMTEwMTI1WjAzMTEwLwYDVQQD
EyhiNTg0N2YzOWE5MzJiM2MzMmNlMDBhNWFlYzA0YjRlYTA4YjVhMjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA76Ni0QKkECWQuWhYn4iPI/RrSiNm
07cpUQPtlk7Og9acAmIKZLKW2FajNOQ2XQbofg1cru69fFQqSiGxw0rIWtb2+nqT
PUaDhz1VL8wU48hCsOnOg/wfYTEGSxu/rcyY6QFXaz905wuXZSziSYz4ZC1vEbod
nZ5M6NFSMFUR5B5HUGm527f3lgFlw0gwgwY84IDhcry10rHChpDHB8wOAzZUK5v5
jS4JMCLyoEV6XpAXw5XnXbbW9PZX4uhQ9LxAyOKS/cDhiirVDYNsmHqxWK+TUb61
9QuOQ8q181brLBUKHLGoOocHhDj+3YrrpMnlQ+R8o20Kk5DrivcK2uLR6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLWEfzmpMrPDLOAKWuwEtOoItaJgMB8GA1UdIwQY
MBaAFD+3jNGjEMmdY3cUDlKKo+bg3KufMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDdlTTBhTVF5WjFqZHhRT1VvcWo1dURjcTU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8zMjNjM2YtYWFiMy00Njg0LTgxYzct
YzU4MTUxMThlNTJmLzEvUDdlTTBhTVF5WjFqZHhRT1VvcWo1dURjcTU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi8zMjNjM2YtYWFiMy00Njg0LTgxYzctYzU4MTUxMThlNTJm
LzEvUDdlTTBhTVF5WjFqZHhRT1VvcWo1dURjcTU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGCS5usRA
rtmchC/EJ7vM5CoA84toHTIoDvCwaeWwsnAQIFEBRfGBxa0jmmb+rpBUTBp7PzKY
for9VZXuK+QnezAASGN2teLi5WVWnxeU0hafoommHGgjV3HDDGxaPAg16Y8IF1sV
7TiWXcRBh/ffVJvDcfu8oM7jAkpVsTN6GlNjg2sqkuD6TIkYsI48e7iIYSICqs7U
c2jeAAmP0u2qhzPxvdc5yqdwA/KC1YeaEqYwsPWI1ztQvu8SAhyo3tTUj1Eyp2Gc
LfFIpgcvtQmocg/z4IDtK0JOH1if2qAswYpKTBIRfrAyQIDD4LuXSW+dSkXKSFtc
Wc6AFdGffVQdcA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 16:53:04 2025 by rpki-client