Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: 26eq7iikIPlJntayag9zJt/eMKHmBtTrIw8+E/Y76pA=
Subject key identifier: 96:B6:6A:5C:92:8F:27:8C:A2:66:2F:11:8E:D3:F9:A4:A5:B0:22:C9
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 019A7149BA172FACFFD807FDD084C0142700
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0D1B
Signing time: Tue 11 Nov 2025 05:00:48 +0000
Manifest this update: Tue 11 Nov 2025 05:00:48 +0000
Manifest next update: Wed 12 Nov 2025 05:00:48 +0000
Files and hashes: 1: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: FX2cN5+1tjtw2Bx0aGYC4snJtFodbMIKBz/fXx9rBMw=)
2: WNeWcYI--FrvgqVvkbFu12LIaYA.roa (hash: k8USa1JcWCZakgNPmvbG30Z+DpfHdvNnOH9UZ98bnDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:ba:17:2f:ac:ff:d8:07:fd:d0:84:c0:14:27:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Nov 11 05:00:48 2025 GMT
Not After : Nov 12 05:00:48 2025 GMT
Subject: CN=96b66a5c928f278ca2662f118ed3f9a4a5b022c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9a:dc:9e:b3:ca:ca:b5:cd:27:2f:2f:e1:f2:
cd:6f:21:46:ed:b2:a1:a1:4f:66:0a:ad:4f:67:92:
19:17:0c:c9:8d:47:31:65:f1:dd:16:4d:f8:5f:b5:
04:47:9c:2a:aa:5b:e6:29:ee:c6:8a:b0:98:02:20:
a5:03:ea:aa:c0:84:1e:38:57:79:35:8e:8e:06:62:
95:0e:d7:93:1d:10:32:ae:2f:0d:ac:56:4a:b7:fa:
3c:f2:69:11:76:6a:45:75:09:42:21:0c:54:83:5a:
21:46:9b:ae:4a:89:66:94:e2:31:c1:75:ed:90:34:
df:f3:37:4e:ad:04:75:c7:51:e9:af:76:91:40:c4:
c8:37:b5:57:34:6d:02:ea:91:36:66:cb:5d:b6:40:
ec:d6:0d:50:b7:e8:3f:2a:ba:82:3b:28:b0:f1:66:
f2:0b:25:10:32:40:1e:a7:a0:9f:7b:76:aa:76:de:
9c:91:ce:e3:82:61:a7:c3:de:09:a8:1c:4e:f7:ff:
f6:c4:8c:e0:64:df:92:65:e3:11:45:19:e7:03:62:
20:fb:93:ec:b8:e5:2a:16:01:d8:4c:e2:05:be:20:
66:67:40:15:ec:5c:39:ef:f7:52:2f:c0:e9:83:1d:
9a:75:4b:9b:99:5d:60:af:2d:dd:41:20:3f:61:fa:
e3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B6:6A:5C:92:8F:27:8C:A2:66:2F:11:8E:D3:F9:A4:A5:B0:22:C9
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:84:9b:47:95:a0:8a:6b:ca:c3:13:1e:10:1a:f4:31:cc:91:
dd:81:00:6b:8b:34:8a:7b:6d:ea:07:4e:b6:9c:96:ad:bf:29:
db:b1:42:b3:dc:ef:11:b2:45:ba:70:be:7c:49:64:92:bf:49:
eb:25:04:58:d5:d0:f3:76:f3:af:a7:1d:f5:71:26:bb:52:70:
ea:6b:dc:38:99:ab:28:5a:e9:f5:90:d7:77:de:4b:05:0f:7d:
13:61:3a:29:96:42:c6:55:cd:83:35:70:e4:fd:10:51:61:1f:
af:f3:78:2c:3c:a2:ae:e0:d4:f0:eb:3e:0e:f4:0e:6f:65:68:
33:2a:df:e6:c5:80:f0:dc:a0:26:5f:01:2f:0b:88:d9:72:c4:
cf:30:3c:de:d4:6b:a1:d9:9d:cf:31:b5:d2:2a:93:53:29:b4:
08:b2:2a:2e:3f:cc:b1:3e:66:e5:6c:74:a7:50:7a:26:f9:70:
dd:3a:d7:1d:62:0b:e1:9e:0a:8d:ab:85:2a:4a:cb:9b:fd:aa:
b8:02:3d:e7:cc:1a:c5:db:e6:1a:0c:f5:57:a2:d6:28:c5:ad:
da:00:c6:c4:19:6d:dd:e9:d4:cd:52:f2:78:87:0a:90:0a:0a:
09:a0:3e:05:fd:b4:87:15:80:13:5a:49:e5:11:a7:2d:26:79:
6f:fe:b0:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxSboXL6z/2Af90ITAFCcAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxMmUyN2JlODkxYjE5ZWNhOWJjZWI1M2U0ZGMyMzdjNWEz
NTU2OTcwHhcNMjUxMTExMDUwMDQ4WhcNMjUxMTEyMDUwMDQ4WjAzMTEwLwYDVQQD
Eyg5NmI2NmE1YzkyOGYyNzhjYTI2NjJmMTE4ZWQzZjlhNGE1YjAyMmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApprcnrPKyrXNJy8v4fLNbyFG7bKh
oU9mCq1PZ5IZFwzJjUcxZfHdFk34X7UER5wqqlvmKe7GirCYAiClA+qqwIQeOFd5
NY6OBmKVDteTHRAyri8NrFZKt/o88mkRdmpFdQlCIQxUg1ohRpuuSolmlOIxwXXt
kDTf8zdOrQR1x1Hpr3aRQMTIN7VXNG0C6pE2ZstdtkDs1g1Qt+g/KrqCOyiw8Wby
CyUQMkAep6Cfe3aqdt6ckc7jgmGnw94JqBxO9//2xIzgZN+SZeMRRRnnA2Ig+5Ps
uOUqFgHYTOIFviBmZ0AV7Fw57/dSL8Dpgx2adUubmV1gry3dQSA/Yfrj4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJa2alySjyeMomYvEY7T+aSlsCLJMB8GA1UdIwQY
MBaAFFEuJ76JGxnsqbzrU+TcI3xaNVaXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVM0bnZva2JHZXlwdk90VDVOd2pmRm8xVnBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wZjFiOGYtMWQ0Ny00MmYwLWEwNTAt
NWExMTRlZjliMmFhLzEvVVM0bnZva2JHZXlwdk90VDVOd2pmRm8xVnBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8wZjFiOGYtMWQ0Ny00MmYwLWEwNTAtNWExMTRlZjliMmFh
LzEvVVM0bnZva2JHZXlwdk90VDVOd2pmRm8xVnBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPISbR5Wg
imvKwxMeEBr0McyR3YEAa4s0intt6gdOtpyWrb8p27FCs9zvEbJFunC+fElkkr9J
6yUEWNXQ83bzr6cd9XEmu1Jw6mvcOJmrKFrp9ZDXd95LBQ99E2E6KZZCxlXNgzVw
5P0QUWEfr/N4LDyiruDU8Os+DvQOb2VoMyrf5sWA8NygJl8BLwuI2XLEzzA83tRr
odmdzzG10iqTUym0CLIqLj/MsT5m5Wx0p1B6Jvlw3TrXHWIL4Z4KjauFKkrLm/2q
uAI958waxdvmGgz1V6LWKMWt2gDGxBlt3enUzVLyeIcKkAoKCaA+Bf20hxWAE1pJ
5RGnLSZ5b/6wdg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:43:22 2025 by rpki-client