Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.mft
File: _FlUn23SuDFEuIDCPwb7o7JdOYY.mft (raw, json)
Hash identifier: 25YPzU9QuMibyfkiiqXLEeI5UhQSGNYcLM8CErheOe4=
Subject key identifier: 12:0B:1E:C4:C6:FB:81:FA:78:96:9D:B5:EF:29:65:BB:0E:D7:26:32
Authority key identifier: FC:59:54:9F:6D:D2:B8:31:44:B8:80:C2:3F:06:FB:A3:B2:5D:39:86
Certificate issuer: /CN=fc59549f6dd2b83144b880c23f06fba3b25d3986
Certificate serial: 019A71B7DBED51EB08AA35B4942EDEA48421
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FlUn23SuDFEuIDCPwb7o7JdOYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.mft
Manifest number: 1119
Signing time: Tue 11 Nov 2025 07:01:06 +0000
Manifest this update: Tue 11 Nov 2025 07:01:06 +0000
Manifest next update: Wed 12 Nov 2025 07:01:06 +0000
Files and hashes: 1: Z6qviYCXQTeLJoJfMAOJcgB-9Qg.roa (hash: oDapm5Z+x3QJafhm3qUyzSGeINGec4KUVgNU/i7jaZI=)
2: _FlUn23SuDFEuIDCPwb7o7JdOYY.crl (hash: di3q/2SBld0v0/kxVyjDQnLTc7DUokN8wS4sLYZN21U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/_FlUn23SuDFEuIDCPwb7o7JdOYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:db:ed:51:eb:08:aa:35:b4:94:2e:de:a4:84:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc59549f6dd2b83144b880c23f06fba3b25d3986
Validity
Not Before: Nov 11 07:01:06 2025 GMT
Not After : Nov 12 07:01:06 2025 GMT
Subject: CN=120b1ec4c6fb81fa78969db5ef2965bb0ed72632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:96:fd:b0:80:1d:59:7b:af:ff:c2:6a:80:cd:
17:78:92:2a:f3:80:6c:1d:48:d5:09:b0:d6:59:3a:
b0:e6:95:4b:d0:56:47:55:1c:31:7c:be:a6:f4:06:
86:87:16:b6:bc:11:58:b9:ee:59:41:a6:3b:bc:a3:
31:48:6f:5e:99:6f:bf:fd:00:1e:f7:91:d5:c3:b5:
1c:b7:68:97:74:92:04:a4:32:eb:cc:e0:84:08:1c:
55:00:30:39:1c:1a:95:18:d9:24:d0:a8:07:10:7d:
34:29:e2:74:98:78:98:16:08:ce:4e:ef:21:c9:c7:
94:d0:c2:e7:02:69:48:49:2c:6d:59:5a:32:5d:cc:
ed:8e:1b:81:ea:98:2f:5f:ec:9f:75:da:ab:ff:5d:
78:8d:c0:17:90:fc:1b:67:2d:7b:d0:c2:74:1e:e8:
d6:f7:87:6b:5b:5b:69:53:27:fb:50:6d:0c:31:f5:
f8:75:66:77:c0:34:28:3c:cc:89:85:49:c7:a1:e7:
2d:9f:67:f5:7f:9a:80:6a:a5:13:4d:da:65:0e:67:
a6:52:db:15:15:80:98:82:bf:76:a2:8b:c3:7d:c5:
58:b0:8d:76:5a:20:ce:af:2a:6a:bd:3a:22:fd:bd:
2c:ad:66:a8:f2:58:51:83:b2:7e:3e:0b:5e:5c:ff:
35:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:0B:1E:C4:C6:FB:81:FA:78:96:9D:B5:EF:29:65:BB:0E:D7:26:32
X509v3 Authority Key Identifier:
keyid:FC:59:54:9F:6D:D2:B8:31:44:B8:80:C2:3F:06:FB:A3:B2:5D:39:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FlUn23SuDFEuIDCPwb7o7JdOYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:aa:0a:74:39:75:57:67:81:a3:31:c0:55:8a:3f:35:f7:9c:
79:40:91:3f:4b:84:16:2c:0d:fe:b5:85:a9:02:f7:83:e3:db:
39:e4:cb:68:95:fb:6b:12:02:4a:e4:2d:60:99:5a:84:8f:33:
b3:ce:13:05:9c:65:1a:53:3d:e5:3c:72:95:e2:37:62:36:db:
85:26:ac:ac:6e:08:e5:1e:62:65:a3:5c:19:72:89:2e:a2:84:
4e:ec:10:96:f8:f2:a6:3d:df:37:f1:e4:33:ef:c6:cc:95:fb:
02:e3:a8:ce:12:03:70:23:6d:a9:34:55:84:ad:c2:02:3a:b4:
bc:33:4c:c8:e9:c4:f7:ec:5c:2c:bf:90:e7:f5:1a:9c:ca:c5:
98:fb:20:32:be:ac:0f:c9:27:ab:20:91:6f:ca:43:d4:52:d7:
0c:58:ff:6f:bb:a1:d9:db:60:25:37:3a:b0:62:94:81:28:f8:
12:1d:d6:fa:c8:2c:eb:3c:79:e3:ff:c6:53:b6:23:dc:d2:19:
5e:f6:90:78:48:b5:a0:c6:17:6d:e2:db:95:d0:15:bc:76:2f:
1e:78:20:a1:3d:b3:d2:2b:48:e3:58:18:ca:48:80:d2:0b:52:
6f:fa:b9:ac:0c:bb:76:92:f0:d4:92:c6:b5:3a:f6:f5:9c:d0:
e9:92:ae:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxt9vtUesIqjW0lC7epIQhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjNTk1NDlmNmRkMmI4MzE0NGI4ODBjMjNmMDZmYmEzYjI1
ZDM5ODYwHhcNMjUxMTExMDcwMTA2WhcNMjUxMTEyMDcwMTA2WjAzMTEwLwYDVQQD
EygxMjBiMWVjNGM2ZmI4MWZhNzg5NjlkYjVlZjI5NjViYjBlZDcyNjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5b9sIAdWXuv/8JqgM0XeJIq84Bs
HUjVCbDWWTqw5pVL0FZHVRwxfL6m9AaGhxa2vBFYue5ZQaY7vKMxSG9emW+//QAe
95HVw7Uct2iXdJIEpDLrzOCECBxVADA5HBqVGNkk0KgHEH00KeJ0mHiYFgjOTu8h
yceU0MLnAmlISSxtWVoyXcztjhuB6pgvX+yfddqr/114jcAXkPwbZy170MJ0HujW
94drW1tpUyf7UG0MMfX4dWZ3wDQoPMyJhUnHoectn2f1f5qAaqUTTdplDmemUtsV
FYCYgr92oovDfcVYsI12WiDOrypqvToi/b0srWao8lhRg7J+PgteXP81HwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBILHsTG+4H6eJadte8pZbsO1yYyMB8GA1UdIwQY
MBaAFPxZVJ9t0rgxRLiAwj8G+6OyXTmGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX0ZsVW4yM1N1REZFdUlEQ1B3YjdvN0pkT1lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy85NjQwMzUtMzgxYS00MWIwLTlmZGQt
ZjY1ZDMzYTk5MjZiLzEvX0ZsVW4yM1N1REZFdUlEQ1B3YjdvN0pkT1lZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy85NjQwMzUtMzgxYS00MWIwLTlmZGQtZjY1ZDMzYTk5MjZi
LzEvX0ZsVW4yM1N1REZFdUlEQ1B3YjdvN0pkT1lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXqoKdDl1
V2eBozHAVYo/NfeceUCRP0uEFiwN/rWFqQL3g+PbOeTLaJX7axICSuQtYJlahI8z
s84TBZxlGlM95TxyleI3YjbbhSasrG4I5R5iZaNcGXKJLqKETuwQlvjypj3fN/Hk
M+/GzJX7AuOozhIDcCNtqTRVhK3CAjq0vDNMyOnE9+xcLL+Q5/UanMrFmPsgMr6s
D8knqyCRb8pD1FLXDFj/b7uh2dtgJTc6sGKUgSj4Eh3W+sgs6zx54//GU7Yj3NIZ
XvaQeEi1oMYXbeLbldAVvHYvHnggoT2z0itI41gYykiA0gtSb/q5rAy7dpLw1JLG
tTr29ZzQ6ZKuPw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:06:23 2025 by rpki-client