Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
File: b14CML55nkSCnIcgyjg0cEVJTiA.mft (raw, json)
Hash identifier: PG/6iKUaiXdYpTNg8WRofX5TMv2SlDa3ssJ89ZtYRNQ=
Subject key identifier: 03:CE:E7:1B:FF:82:BD:E4:D9:4A:80:F6:7C:22:11:13:D1:D5:15:B3
Authority key identifier: 6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
Certificate issuer: /CN=6f5e0230be799e44829c8720ca38347045494e20
Certificate serial: 019A28F97B8060FB984F3AF74E3B6A6EE369
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
Manifest number: 173E
Signing time: Tue 28 Oct 2025 04:00:29 +0000
Manifest this update: Tue 28 Oct 2025 04:00:29 +0000
Manifest next update: Wed 29 Oct 2025 04:00:29 +0000
Files and hashes: 1: B8q_Ibebc5xuxzRGd478Vz8wacc.roa (hash: 7TxxkXjJMigm1zrdep1gr/0+c2ofcQeuEJMCWogNg+s=)
2: b14CML55nkSCnIcgyjg0cEVJTiA.crl (hash: ac+YG7W6PMQoUKVSA7imrAXMX4TILOe3u1amBjI+FQ4=)
3: fokVVRta6Se4qMfm0QW8Wvhb8to.roa (hash: GVDAbNxQsgJw7rFS4VJXxWwqpIOjbAD4y/lPqd19DXM=)
4: jN3YKyZr7fLBbaM-ys_51VKLM4I.roa (hash: /Z7rTH+6bXmxYBkfBLPrrW+aXm6fTfnVD3Lj/2mMT08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 04:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:f9:7b:80:60:fb:98:4f:3a:f7:4e:3b:6a:6e:e3:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f5e0230be799e44829c8720ca38347045494e20
Validity
Not Before: Oct 28 04:00:29 2025 GMT
Not After : Oct 29 04:00:29 2025 GMT
Subject: CN=03cee71bff82bde4d94a80f67c221113d1d515b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e8:cd:82:d0:a9:15:20:fa:3c:54:b5:56:9b:
b7:10:4d:3c:78:6b:f4:0c:db:5d:1d:54:e8:78:9f:
22:3d:40:3e:d9:cd:b7:da:10:9e:b4:3b:db:9f:39:
5d:1d:e6:60:6a:47:8d:9d:88:1f:ab:eb:ac:71:06:
66:b8:23:5e:9d:ea:80:45:08:a9:5f:40:2e:37:31:
ef:24:36:2c:79:75:59:47:06:de:b6:2d:47:99:73:
3f:95:a9:40:63:64:55:3a:4f:16:31:3e:ba:f4:30:
8c:e2:9e:b9:d4:d1:a8:bc:be:a7:c3:f2:2e:05:e1:
4d:c9:de:51:ed:0c:e8:4e:de:ec:be:6e:f4:a3:0c:
50:43:87:2a:95:36:5f:a8:c4:b8:27:5e:75:94:58:
9a:ea:10:3f:f9:99:b1:12:67:b6:ef:1b:45:46:d1:
2b:e1:e5:03:fe:c7:a4:10:9c:3b:06:aa:89:ce:c3:
6b:07:b6:1f:ea:76:39:c3:79:7c:1c:92:ac:2b:f5:
02:d8:2d:87:17:e9:67:ed:2d:c4:9e:9c:78:1b:5e:
a9:ba:b9:4e:6d:85:74:e1:5e:af:e9:c5:a2:38:15:
79:d9:65:f5:06:d2:59:3a:4e:38:9c:1c:ac:eb:70:
4c:a8:48:d4:5d:00:0b:48:39:e4:7d:9e:0b:1b:a3:
77:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:CE:E7:1B:FF:82:BD:E4:D9:4A:80:F6:7C:22:11:13:D1:D5:15:B3
X509v3 Authority Key Identifier:
keyid:6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:35:ff:c9:ca:fc:34:04:69:52:3c:bf:70:30:a3:c7:17:f9:
23:81:52:a2:9c:55:19:f0:87:ca:6f:30:30:2c:47:0e:8a:24:
38:e7:33:ec:be:32:79:39:a2:6f:65:a5:95:82:6b:27:78:6b:
81:af:19:10:c2:33:66:71:50:84:cd:1a:81:00:72:86:f7:16:
c1:fb:1b:4a:0b:e6:fa:9a:fa:ea:70:16:af:fe:b6:1d:60:10:
88:fb:70:38:60:e7:03:12:97:b9:54:60:fa:bb:a2:1d:5b:f4:
28:71:ed:81:b5:17:91:ac:50:2f:37:2c:0b:d3:1d:d6:ba:8a:
f1:3f:0f:e8:4c:f3:dd:55:6d:2c:d7:5f:5c:96:88:9f:22:ac:
48:e8:28:d3:3e:fe:a6:27:4b:4d:a6:e0:db:8d:79:7b:54:2c:
ee:69:b4:a6:31:6c:11:b8:42:b8:2d:40:1b:ae:a5:9f:9b:c9:
aa:3f:13:5d:5b:06:f9:03:d8:89:07:64:45:f6:95:67:3b:9b:
1c:bc:35:43:11:d4:17:28:0d:8f:ea:06:66:b1:4e:a7:65:e9:
18:90:a7:e1:81:61:b2:db:cd:e4:97:47:de:2b:c3:9f:93:16:
ec:51:de:5e:ba:90:a0:6b:19:79:7f:82:db:f2:69:8e:19:36:
47:de:fd:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoo+XuAYPuYTzr3TjtqbuNpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmNWUwMjMwYmU3OTllNDQ4MjljODcyMGNhMzgzNDcwNDU0
OTRlMjAwHhcNMjUxMDI4MDQwMDI5WhcNMjUxMDI5MDQwMDI5WjAzMTEwLwYDVQQD
EygwM2NlZTcxYmZmODJiZGU0ZDk0YTgwZjY3YzIyMTExM2QxZDUxNWIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOjNgtCpFSD6PFS1Vpu3EE08eGv0
DNtdHVToeJ8iPUA+2c232hCetDvbnzldHeZgakeNnYgfq+uscQZmuCNeneqARQip
X0AuNzHvJDYseXVZRwbeti1HmXM/lalAY2RVOk8WMT669DCM4p651NGovL6nw/Iu
BeFNyd5R7QzoTt7svm70owxQQ4cqlTZfqMS4J151lFia6hA/+ZmxEme27xtFRtEr
4eUD/sekEJw7BqqJzsNrB7Yf6nY5w3l8HJKsK/UC2C2HF+ln7S3Enpx4G16purlO
bYV04V6v6cWiOBV52WX1BtJZOk44nBys63BMqEjUXQALSDnkfZ4LG6N3iQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAPO5xv/gr3k2UqA9nwiERPR1RWzMB8GA1UdIwQY
MBaAFG9eAjC+eZ5EgpyHIMo4NHBFSU4gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjE0Q01MNTVua1NDbkljZ3lqZzBjRVZKVGlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83MGNjZWYtMTdmMy00OTI4LTljMGIt
YmE3YzdkODE5MGNhLzEvYjE0Q01MNTVua1NDbkljZ3lqZzBjRVZKVGlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny83MGNjZWYtMTdmMy00OTI4LTljMGItYmE3YzdkODE5MGNh
LzEvYjE0Q01MNTVua1NDbkljZ3lqZzBjRVZKVGlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJzX/ycr8
NARpUjy/cDCjxxf5I4FSopxVGfCHym8wMCxHDookOOcz7L4yeTmib2WllYJrJ3hr
ga8ZEMIzZnFQhM0agQByhvcWwfsbSgvm+pr66nAWr/62HWAQiPtwOGDnAxKXuVRg
+ruiHVv0KHHtgbUXkaxQLzcsC9Md1rqK8T8P6Ezz3VVtLNdfXJaInyKsSOgo0z7+
pidLTabg2415e1Qs7mm0pjFsEbhCuC1AG66ln5vJqj8TXVsG+QPYiQdkRfaVZzub
HLw1QxHUFygNj+oGZrFOp2XpGJCn4YFhstvN5JdH3ivDn5MW7FHeXrqQoGsZeX+C
2/Jpjhk2R979WA==
-----END CERTIFICATE-----
Generated at Tue Oct 28 12:15:07 2025 by rpki-client