Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
File: w-twdDgV_kRclYo8URfvJ1PTD34.mft (raw, json)
Hash identifier: 7FH4X95C8xSSn/WdBVFiZcRrCk509KKLp2XAhtYESPM=
Subject key identifier: 6F:45:5C:B2:55:60:9F:6E:93:84:3C:69:93:F0:4D:3D:E7:55:58:30
Authority key identifier: C3:EB:70:74:38:15:FE:44:5C:95:8A:3C:51:17:EF:27:53:D3:0F:7E
Certificate issuer: /CN=c3eb70743815fe445c958a3c5117ef2753d30f7e
Certificate serial: 019A71EE82DCD27494B6BFF89BE176829BB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 08:00:47 +0000
Manifest this update: Tue 11 Nov 2025 08:00:47 +0000
Manifest next update: Wed 12 Nov 2025 08:00:47 +0000
Files and hashes: 1: GzCIBu4tHiFH76_Ly9Ei_0SMBpg.roa (hash: ucUps3PWBgmn642QIizMtNVpME3QV9nJ//n0R1ijDxA=)
2: w-twdDgV_kRclYo8URfvJ1PTD34.crl (hash: W6BEKvCSXnZs+zqexVhd/yrg8B2dqC+ObGetDJcf+iA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:82:dc:d2:74:94:b6:bf:f8:9b:e1:76:82:9b:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3eb70743815fe445c958a3c5117ef2753d30f7e
Validity
Not Before: Nov 11 08:00:47 2025 GMT
Not After : Nov 12 08:00:47 2025 GMT
Subject: CN=6f455cb255609f6e93843c6993f04d3de7555830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:52:ef:a2:d8:6c:50:3e:75:c3:36:b1:62:2a:
9f:31:5a:cb:cf:94:97:96:49:51:66:31:8a:79:af:
7d:79:f2:16:c5:99:d1:8a:7f:ef:e4:23:d4:f8:b5:
9d:9e:a0:06:1a:fa:f2:b9:c3:ad:5a:63:5d:96:ce:
e7:7e:5f:55:e6:a3:5f:c4:0c:1e:03:0d:11:6c:7e:
7f:fb:f8:01:1a:fa:53:11:4c:3f:b9:a2:4e:84:36:
44:8e:34:91:df:f1:ab:9e:32:ad:57:f2:2b:11:4a:
46:54:fb:16:e4:68:d4:2d:3e:3c:db:1a:aa:02:43:
31:ed:8d:b3:e4:38:22:72:8d:77:b2:ca:6f:dd:62:
e5:e6:35:fe:e9:cf:3f:9b:36:21:7f:fa:92:a9:54:
2b:cb:c0:42:0c:2e:b8:63:4b:1c:91:35:a1:0e:97:
39:36:ff:0c:4b:12:90:03:90:7c:5d:e4:6f:f1:69:
4c:ca:9b:d4:15:26:fe:e3:be:bd:0f:8f:27:2f:14:
0a:da:18:e6:cf:f0:b3:39:8e:72:ac:3c:a4:05:1a:
72:4c:19:3f:89:2f:73:ca:65:5f:54:d0:8a:3a:cf:
cf:a3:4d:5e:85:b5:1b:97:a7:23:cf:d6:66:7f:b3:
02:5b:b3:17:5d:8b:c6:d3:06:dd:e2:67:a3:b0:b7:
6b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:45:5C:B2:55:60:9F:6E:93:84:3C:69:93:F0:4D:3D:E7:55:58:30
X509v3 Authority Key Identifier:
keyid:C3:EB:70:74:38:15:FE:44:5C:95:8A:3C:51:17:EF:27:53:D3:0F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:1d:c4:5f:aa:f8:ef:dd:fd:98:16:65:2f:26:f4:fa:2e:a6:
38:62:fc:c5:00:e1:99:70:47:d4:21:37:11:f8:14:8d:95:b3:
11:c1:01:43:4a:4d:ba:e4:3f:99:72:c7:99:36:62:b2:00:98:
e7:22:4e:54:ef:38:98:f2:a3:4d:80:81:c9:ef:2c:a8:f6:e1:
a2:05:4f:f0:f0:e3:2f:00:60:5e:86:2a:a4:c8:b2:53:cc:89:
ed:a9:43:fd:0a:7d:60:7c:63:ea:10:49:77:88:e9:0f:b4:77:
f6:60:18:6c:a2:91:39:29:af:2a:fa:c4:72:e6:14:12:d3:3c:
cb:2e:b5:fb:f0:ec:a3:fb:0b:03:e2:90:fd:b7:77:0f:48:bd:
29:0d:c2:3e:f2:ea:29:ac:55:cd:ff:da:c3:8e:c3:85:64:0e:
fa:db:2e:7e:0e:c7:49:ee:5b:13:8d:be:3d:29:6a:ef:2a:92:
f6:c0:98:be:c1:e1:53:76:5e:49:4f:fa:e3:3b:e3:98:0a:4b:
ba:a5:f1:a1:4c:04:a5:41:4c:2a:05:a5:5d:d7:e6:ce:72:8a:
c7:7d:54:26:03:b4:ab:f5:5c:8a:91:18:d0:7f:2a:db:b7:ae:
aa:97:a1:0b:9a:64:f1:fc:58:5d:11:d2:c0:cc:45:b4:2f:4a:
51:62:0e:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpx7oLc0nSUtr/4m+F2gpu5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzZWI3MDc0MzgxNWZlNDQ1Yzk1OGEzYzUxMTdlZjI3NTNk
MzBmN2UwHhcNMjUxMTExMDgwMDQ3WhcNMjUxMTEyMDgwMDQ3WjAzMTEwLwYDVQQD
Eyg2ZjQ1NWNiMjU1NjA5ZjZlOTM4NDNjNjk5M2YwNGQzZGU3NTU1ODMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlLvothsUD51wzaxYiqfMVrLz5SX
lklRZjGKea99efIWxZnRin/v5CPU+LWdnqAGGvryucOtWmNdls7nfl9V5qNfxAwe
Aw0RbH5/+/gBGvpTEUw/uaJOhDZEjjSR3/GrnjKtV/IrEUpGVPsW5GjULT482xqq
AkMx7Y2z5Dgico13sspv3WLl5jX+6c8/mzYhf/qSqVQry8BCDC64Y0sckTWhDpc5
Nv8MSxKQA5B8XeRv8WlMypvUFSb+4769D48nLxQK2hjmz/CzOY5yrDykBRpyTBk/
iS9zymVfVNCKOs/Po01ehbUbl6cjz9Zmf7MCW7MXXYvG0wbd4mejsLdrIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG9FXLJVYJ9uk4Q8aZPwTT3nVVgwMB8GA1UdIwQY
MBaAFMPrcHQ4Ff5EXJWKPFEX7ydT0w9+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdy10d2REZ1Zfa1JjbFlvOFVSZnZKMVBURDM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8xMzc1NGMtOGJlNy00NjBlLTg1MDct
MTM1NzVlZjcyOWYzLzEvdy10d2REZ1Zfa1JjbFlvOFVSZnZKMVBURDM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My8xMzc1NGMtOGJlNy00NjBlLTg1MDctMTM1NzVlZjcyOWYz
LzEvdy10d2REZ1Zfa1JjbFlvOFVSZnZKMVBURDM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATB3EX6r4
7939mBZlLyb0+i6mOGL8xQDhmXBH1CE3EfgUjZWzEcEBQ0pNuuQ/mXLHmTZisgCY
5yJOVO84mPKjTYCBye8sqPbhogVP8PDjLwBgXoYqpMiyU8yJ7alD/Qp9YHxj6hBJ
d4jpD7R39mAYbKKROSmvKvrEcuYUEtM8yy61+/Dso/sLA+KQ/bd3D0i9KQ3CPvLq
KaxVzf/aw47DhWQO+tsufg7HSe5bE42+PSlq7yqS9sCYvsHhU3ZeSU/64zvjmApL
uqXxoUwEpUFMKgWlXdfmznKKx31UJgO0q/VcipEY0H8q27euqpehC5pk8fxYXRHS
wMxFtC9KUWIO7Q==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:35:22 2025 by rpki-client