Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/4581b7-35bc-4bc8-85b3-f4596e7767a8/1/3UftWIupBpRXoqiY_HoMuXfR-B4.mft
File: 3UftWIupBpRXoqiY_HoMuXfR-B4.mft (raw, json)
Hash identifier: E/XWlSC3OrH12qyiqKFrXI5K+eehzP9vuTv+uv3tMiM=
Subject key identifier: 3E:E5:E5:8B:33:28:3B:18:7A:95:4E:AC:A7:88:47:2E:14:C6:53:54
Authority key identifier: DD:47:ED:58:8B:A9:06:94:57:A2:A8:98:FC:7A:0C:B9:77:D1:F8:1E
Certificate issuer: /CN=dd47ed588ba9069457a2a898fc7a0cb977d1f81e
Certificate serial: 019A7149A0F490EEB97E7CEC86796F34F9C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3UftWIupBpRXoqiY_HoMuXfR-B4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/4581b7-35bc-4bc8-85b3-f4596e7767a8/1/3UftWIupBpRXoqiY_HoMuXfR-B4.mft
Manifest number: 1723
Signing time: Tue 11 Nov 2025 05:00:41 +0000
Manifest this update: Tue 11 Nov 2025 05:00:41 +0000
Manifest next update: Wed 12 Nov 2025 05:00:41 +0000
Files and hashes: 1: 3UftWIupBpRXoqiY_HoMuXfR-B4.crl (hash: lBvQP2Tq86slbnDdCGfmJFPOG/+INFljB5Hm4duW9iw=)
2: NjNc1F_noFOuVoizuwyNmIiyikg.roa (hash: IrtAGIN7Mq5Prcg2l/Rn0ppsqJX7JmRhzfI5wRDO3Ps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/4581b7-35bc-4bc8-85b3-f4596e7767a8/1/3UftWIupBpRXoqiY_HoMuXfR-B4.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/4581b7-35bc-4bc8-85b3-f4596e7767a8/1/3UftWIupBpRXoqiY_HoMuXfR-B4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3UftWIupBpRXoqiY_HoMuXfR-B4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:a0:f4:90:ee:b9:7e:7c:ec:86:79:6f:34:f9:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd47ed588ba9069457a2a898fc7a0cb977d1f81e
Validity
Not Before: Nov 11 05:00:41 2025 GMT
Not After : Nov 12 05:00:41 2025 GMT
Subject: CN=3ee5e58b33283b187a954eaca788472e14c65354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:21:8d:dd:1e:c6:d4:0c:64:32:83:11:02:4a:
7b:03:a3:7b:3b:29:49:1d:b7:8c:cf:50:6a:50:d2:
83:91:2a:78:e7:60:90:e2:8e:c3:f9:85:cb:2e:27:
17:b8:9a:6a:bd:2e:6e:7d:ab:19:02:58:d2:82:e4:
72:03:cc:7a:5a:6d:f4:72:d9:23:c3:b7:9f:65:78:
88:a1:04:87:df:8d:2b:40:67:a3:4e:36:fd:7d:48:
8c:ff:54:48:62:1e:fd:45:39:fe:0d:27:fc:51:0b:
4b:e4:4d:84:e2:91:ad:5b:fe:00:12:99:d1:8a:7a:
ef:3b:06:fa:f8:78:98:cb:f2:6b:80:f0:ac:f0:b3:
ed:42:e1:94:2b:56:b8:4a:e7:c9:5b:5f:57:f6:9c:
a0:0d:36:5b:aa:66:f6:81:85:33:3c:95:f7:1d:00:
d8:34:d9:36:e8:f0:ca:e0:35:33:b8:14:16:27:9f:
0a:67:8c:28:aa:ed:54:0d:ff:ce:d7:14:a3:bf:69:
44:a8:d1:4f:0e:8a:43:3e:db:73:1b:e1:fb:37:40:
f8:18:e6:9a:94:08:9f:14:0f:e7:00:70:13:55:a6:
cb:98:da:05:bd:b3:05:f0:5b:7a:a2:93:53:12:e2:
1a:0f:f8:75:a5:94:9e:2b:3e:b0:22:e0:4b:bd:b1:
30:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E5:E5:8B:33:28:3B:18:7A:95:4E:AC:A7:88:47:2E:14:C6:53:54
X509v3 Authority Key Identifier:
keyid:DD:47:ED:58:8B:A9:06:94:57:A2:A8:98:FC:7A:0C:B9:77:D1:F8:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3UftWIupBpRXoqiY_HoMuXfR-B4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4581b7-35bc-4bc8-85b3-f4596e7767a8/1/3UftWIupBpRXoqiY_HoMuXfR-B4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4581b7-35bc-4bc8-85b3-f4596e7767a8/1/3UftWIupBpRXoqiY_HoMuXfR-B4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:20:6a:09:8d:a5:2b:94:db:ec:fb:7d:09:3e:99:df:ee:09:
9a:bc:24:8f:37:aa:94:e4:80:ee:8c:a3:26:03:b9:eb:ea:99:
ee:7f:93:3a:2f:2f:e1:8a:f2:dc:c7:20:20:46:ca:73:b9:1c:
99:39:63:19:20:ed:9e:3b:4f:ad:99:1d:e6:9d:fe:0e:24:23:
82:65:95:f7:20:6e:99:0a:da:5c:52:95:8f:ea:b7:ca:a5:4e:
85:d9:0a:8e:14:0c:3e:5e:65:be:99:eb:a3:17:08:84:a0:95:
a9:bc:db:29:dd:0e:60:7b:81:13:79:d2:f7:0d:d4:79:dd:92:
9f:9d:0a:3d:3d:1a:6c:0c:29:11:39:4e:ca:66:80:ef:74:04:
09:0b:95:84:57:9c:9c:e9:2b:ff:5e:fb:ae:46:66:c2:62:61:
8e:d2:6f:88:b8:2c:4b:ca:a8:69:cc:35:38:f8:84:b7:ab:56:
2e:01:57:b0:e9:f4:03:6a:b7:1b:c0:e9:da:58:21:0b:a8:ea:
52:29:c5:c0:64:7b:5f:ab:95:42:bb:a2:d8:4d:84:e4:27:17:
a4:ce:95:81:54:0a:1c:f3:4f:89:76:9d:11:39:11:6a:a2:f4:
af:91:1f:ea:e1:88:ef:0d:4f:da:68:f3:c1:17:d5:7c:e0:c1:
93:43:5f:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxSaD0kO65fnzshnlvNPnFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNDdlZDU4OGJhOTA2OTQ1N2EyYTg5OGZjN2EwY2I5Nzdk
MWY4MWUwHhcNMjUxMTExMDUwMDQxWhcNMjUxMTEyMDUwMDQxWjAzMTEwLwYDVQQD
EygzZWU1ZTU4YjMzMjgzYjE4N2E5NTRlYWNhNzg4NDcyZTE0YzY1MzU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2yGN3R7G1AxkMoMRAkp7A6N7OylJ
HbeMz1BqUNKDkSp452CQ4o7D+YXLLicXuJpqvS5ufasZAljSguRyA8x6Wm30ctkj
w7efZXiIoQSH340rQGejTjb9fUiM/1RIYh79RTn+DSf8UQtL5E2E4pGtW/4AEpnR
inrvOwb6+HiYy/JrgPCs8LPtQuGUK1a4SufJW19X9pygDTZbqmb2gYUzPJX3HQDY
NNk26PDK4DUzuBQWJ58KZ4woqu1UDf/O1xSjv2lEqNFPDopDPttzG+H7N0D4GOaa
lAifFA/nAHATVabLmNoFvbMF8Ft6opNTEuIaD/h1pZSeKz6wIuBLvbEw8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD7l5YszKDsYepVOrKeIRy4UxlNUMB8GA1UdIwQY
MBaAFN1H7ViLqQaUV6KomPx6DLl30fgeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1VmdFdJdXBCcFJYb3FpWV9Ib011WGZSLUI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny80NTgxYjctMzViYy00YmM4LTg1YjMt
ZjQ1OTZlNzc2N2E4LzEvM1VmdFdJdXBCcFJYb3FpWV9Ib011WGZSLUI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny80NTgxYjctMzViYy00YmM4LTg1YjMtZjQ1OTZlNzc2N2E4
LzEvM1VmdFdJdXBCcFJYb3FpWV9Ib011WGZSLUI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASyBqCY2l
K5Tb7Pt9CT6Z3+4JmrwkjzeqlOSA7oyjJgO56+qZ7n+TOi8v4Yry3McgIEbKc7kc
mTljGSDtnjtPrZkd5p3+DiQjgmWV9yBumQraXFKVj+q3yqVOhdkKjhQMPl5lvpnr
oxcIhKCVqbzbKd0OYHuBE3nS9w3Ued2Sn50KPT0abAwpETlOymaA73QECQuVhFec
nOkr/177rkZmwmJhjtJviLgsS8qoacw1OPiEt6tWLgFXsOn0A2q3G8Dp2lghC6jq
UinFwGR7X6uVQrui2E2E5CcXpM6VgVQKHPNPiXadETkRaqL0r5Ef6uGI7w1P2mjz
wRfVfODBk0NfNQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:55 2025 by rpki-client