Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft
File: IBBUhPGH8gh9Egytlx1oLbMVmWU.mft (raw, json)
Hash identifier: 0R9njp972zU3I35kfV4h2lHK8u9QYFPAEQbVQGYMcCc=
Subject key identifier: BB:97:23:60:5C:0B:45:81:CD:10:6B:A3:50:B9:EE:1C:03:1B:DD:7C
Authority key identifier: 20:10:54:84:F1:87:F2:08:7D:12:0C:AD:97:1D:68:2D:B3:15:99:65
Certificate issuer: /CN=20105484f187f2087d120cad971d682db3159965
Certificate serial: 019A72CA3FD3719BE1A053881D3DFAE65F0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft
Manifest number: 02C2
Signing time: Tue 11 Nov 2025 12:00:48 +0000
Manifest this update: Tue 11 Nov 2025 12:00:48 +0000
Manifest next update: Wed 12 Nov 2025 12:00:48 +0000
Files and hashes: 1: IBBUhPGH8gh9Egytlx1oLbMVmWU.crl (hash: Jz41MIFWei3Yb4Fvh506nrowivgENJkWqtNLA2XWlZ8=)
2: Rh0IEx7nLGjWZjM91m5L9ROERFI.roa (hash: ueZbxYCJshLwHxcAfnLZtqfa1hKKEGpxZF9hNshflTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:3f:d3:71:9b:e1:a0:53:88:1d:3d:fa:e6:5f:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20105484f187f2087d120cad971d682db3159965
Validity
Not Before: Nov 11 12:00:48 2025 GMT
Not After : Nov 12 12:00:48 2025 GMT
Subject: CN=bb9723605c0b4581cd106ba350b9ee1c031bdd7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:80:bb:4c:06:81:8d:95:e8:40:98:6f:ba:77:
1a:2d:a7:bf:aa:3c:b4:59:b1:d1:d4:8c:89:0b:56:
80:9a:e1:da:74:0b:6d:d3:4b:b1:fe:59:b6:09:86:
12:04:72:71:7d:30:b6:7b:48:43:ca:b0:70:84:78:
a9:21:ba:e9:30:dc:2f:72:d0:79:46:6f:d5:69:7f:
78:dc:d9:55:37:50:57:df:a1:be:29:5b:08:74:81:
9e:6b:02:ca:e4:36:f6:c0:19:9b:15:d6:9f:52:93:
92:ba:e6:62:b4:70:ee:c8:6c:17:f6:1c:b4:8d:15:
8a:e4:28:99:f1:59:e8:bc:d9:54:3e:8c:66:0a:6c:
d8:20:22:22:c4:af:81:c7:be:48:93:5d:88:73:c2:
8f:c2:e5:3b:26:f5:d4:01:3b:25:95:c9:dc:36:0d:
0c:2f:ac:0a:c5:6a:4d:2a:eb:b4:6c:c1:b0:e5:86:
a5:82:ba:00:e1:ee:6d:77:02:9e:91:de:8d:ee:3d:
ac:9b:d7:6e:49:64:5f:5d:38:4e:fd:88:66:d0:9a:
74:93:b5:78:5b:f2:69:59:fd:a4:b8:61:6a:82:5a:
cb:f4:07:10:4d:23:1c:f2:8a:1b:45:b1:b6:cc:af:
75:15:8c:d1:e0:75:6b:1d:3e:64:ca:d9:16:27:cb:
c7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:97:23:60:5C:0B:45:81:CD:10:6B:A3:50:B9:EE:1C:03:1B:DD:7C
X509v3 Authority Key Identifier:
keyid:20:10:54:84:F1:87:F2:08:7D:12:0C:AD:97:1D:68:2D:B3:15:99:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:fe:cc:dc:f9:0c:3e:ec:97:5c:d3:5b:89:a6:3a:51:e5:7f:
63:6f:20:e7:c9:d9:4c:63:a9:d2:5a:ce:60:0d:ba:c0:99:07:
2a:a4:a0:fb:fc:57:e1:7e:ad:1a:10:88:2c:6c:6a:2a:53:b8:
2c:84:d3:53:ba:ec:f6:ee:92:15:bb:b4:9c:b1:51:ed:bd:57:
8b:86:8d:93:f7:53:33:48:2b:83:56:b3:86:1f:18:1a:49:5d:
e3:1a:2b:4d:31:f6:92:82:67:fc:21:0d:93:e1:ca:3c:e2:2a:
e4:81:0b:da:a6:b1:38:f8:ce:df:8b:1b:8e:b1:1d:a8:4b:42:
c5:9f:95:ae:ee:27:66:4f:81:18:a5:eb:d4:4e:31:35:68:99:
06:2e:13:38:12:59:26:a5:79:36:97:cd:1a:e9:58:a2:3e:1f:
2d:3d:b3:51:03:fc:09:cb:8e:ae:29:28:0f:d2:b5:a9:80:70:
0d:33:c6:f6:f1:cd:03:ad:8c:7a:aa:7a:33:19:49:8d:a7:bb:
f2:b5:aa:fe:d3:0b:84:63:9c:d2:a4:b7:49:a1:63:f1:da:57:
78:77:5f:03:99:fa:fa:6d:12:41:f3:5b:43:be:88:ac:17:2c:
98:7c:0e:b7:19:c1:5c:e0:16:e1:d3:a6:0b:ed:5b:c2:5e:8b:
49:0d:49:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyyj/TcZvhoFOIHT365l8OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwMTA1NDg0ZjE4N2YyMDg3ZDEyMGNhZDk3MWQ2ODJkYjMx
NTk5NjUwHhcNMjUxMTExMTIwMDQ4WhcNMjUxMTEyMTIwMDQ4WjAzMTEwLwYDVQQD
EyhiYjk3MjM2MDVjMGI0NTgxY2QxMDZiYTM1MGI5ZWUxYzAzMWJkZDdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkYC7TAaBjZXoQJhvuncaLae/qjy0
WbHR1IyJC1aAmuHadAtt00ux/lm2CYYSBHJxfTC2e0hDyrBwhHipIbrpMNwvctB5
Rm/VaX943NlVN1BX36G+KVsIdIGeawLK5Db2wBmbFdafUpOSuuZitHDuyGwX9hy0
jRWK5CiZ8VnovNlUPoxmCmzYICIixK+Bx75Ik12Ic8KPwuU7JvXUATsllcncNg0M
L6wKxWpNKuu0bMGw5YalgroA4e5tdwKekd6N7j2sm9duSWRfXThO/Yhm0Jp0k7V4
W/JpWf2kuGFqglrL9AcQTSMc8oobRbG2zK91FYzR4HVrHT5kytkWJ8vH5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLuXI2BcC0WBzRBro1C57hwDG918MB8GA1UdIwQY
MBaAFCAQVITxh/IIfRIMrZcdaC2zFZllMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUJCVWhQR0g4Z2g5RWd5dGx4MW9MYk1WbVdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9jZWY2ZDAtZjQ4OC00ZDI1LTg2YjUt
MjZhZWY4ODJmOTRmLzEvSUJCVWhQR0g4Z2g5RWd5dGx4MW9MYk1WbVdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My9jZWY2ZDAtZjQ4OC00ZDI1LTg2YjUtMjZhZWY4ODJmOTRm
LzEvSUJCVWhQR0g4Z2g5RWd5dGx4MW9MYk1WbVdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEP7M3PkM
PuyXXNNbiaY6UeV/Y28g58nZTGOp0lrOYA26wJkHKqSg+/xX4X6tGhCILGxqKlO4
LITTU7rs9u6SFbu0nLFR7b1Xi4aNk/dTM0grg1azhh8YGkld4xorTTH2koJn/CEN
k+HKPOIq5IEL2qaxOPjO34sbjrEdqEtCxZ+Vru4nZk+BGKXr1E4xNWiZBi4TOBJZ
JqV5NpfNGulYoj4fLT2zUQP8CcuOrikoD9K1qYBwDTPG9vHNA62Meqp6MxlJjae7
8rWq/tMLhGOc0qS3SaFj8dpXeHdfA5n6+m0SQfNbQ76IrBcsmHwOtxnBXOAW4dOm
C+1bwl6LSQ1Jnw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 18:36:48 2025 by rpki-client