Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
File: 9OQPA5eaP05K052pg7Z7p-YhXA0.mft (raw, json)
Hash identifier: l+722442ZRTcEWFVvmbHV/0+VDek1otcM9zXsPoEBSg=
Subject key identifier: C6:55:85:4F:FA:57:B6:AA:C9:F4:EB:EE:11:88:50:DC:6F:9B:AC:CE
Authority key identifier: F4:E4:0F:03:97:9A:3F:4E:4A:D3:9D:A9:83:B6:7B:A7:E6:21:5C:0D
Certificate issuer: /CN=f4e40f03979a3f4e4ad39da983b67ba7e6215c0d
Certificate serial: 019A7293626B852C886A23EC6243931FEED6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
Manifest number: 1721
Signing time: Tue 11 Nov 2025 11:00:52 +0000
Manifest this update: Tue 11 Nov 2025 11:00:52 +0000
Manifest next update: Wed 12 Nov 2025 11:00:52 +0000
Files and hashes: 1: 9OQPA5eaP05K052pg7Z7p-YhXA0.crl (hash: 6Mng+N4QbkXjucHo4Cf5psHgxmEv0d1Xo05Q5fqfc1E=)
2: scYwC-e6lFDetGsqMlwn-CerbGM.roa (hash: zF9JwzHkhXPpsqlzXkaGHeYsm+/OmjpyP3gHhfOOwfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:62:6b:85:2c:88:6a:23:ec:62:43:93:1f:ee:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e40f03979a3f4e4ad39da983b67ba7e6215c0d
Validity
Not Before: Nov 11 11:00:52 2025 GMT
Not After : Nov 12 11:00:52 2025 GMT
Subject: CN=c655854ffa57b6aac9f4ebee118850dc6f9bacce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:39:d1:ef:03:af:ff:ea:89:96:53:f1:8a:44:
b7:3f:1f:80:e0:39:65:31:53:bc:1b:aa:29:e7:49:
db:47:49:b3:32:f5:c4:d6:69:4a:f2:fd:7a:4f:82:
49:d1:33:08:81:9d:75:4d:d2:5d:75:e9:e1:bc:15:
76:8d:9a:bd:57:a2:24:c4:1f:30:72:67:d2:90:a4:
df:83:30:f6:75:52:85:7b:3c:72:57:05:83:1f:58:
cf:f3:50:92:79:7f:1f:81:db:6a:1f:b4:f1:ad:85:
b6:0b:86:de:a9:2c:03:20:c5:a4:9f:b2:f3:f1:6f:
c5:84:64:d3:c3:a8:a9:0e:c6:05:cb:e4:ab:23:8c:
45:7d:3e:1a:c9:a4:70:09:f2:18:30:3c:7e:4d:e4:
6d:e5:1e:eb:f9:4a:20:94:bf:83:76:26:e7:17:2f:
87:f9:9f:31:cd:00:03:19:e8:4c:ab:f7:25:64:a2:
b6:6a:96:79:1f:17:2b:f5:e4:1f:49:ad:15:24:de:
eb:b9:dd:1f:b6:1a:e2:31:3c:bd:87:9e:97:b9:93:
db:a3:c5:18:2c:87:e1:bc:de:7f:07:a9:43:e1:2e:
ae:a9:83:eb:49:7b:13:2c:2a:4d:07:4c:7b:29:d2:
b2:3f:8b:a7:58:3c:d1:15:29:a9:10:3e:e7:32:dc:
75:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:55:85:4F:FA:57:B6:AA:C9:F4:EB:EE:11:88:50:DC:6F:9B:AC:CE
X509v3 Authority Key Identifier:
keyid:F4:E4:0F:03:97:9A:3F:4E:4A:D3:9D:A9:83:B6:7B:A7:E6:21:5C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:3a:ff:bc:20:22:49:d9:c6:cb:d7:0f:98:95:11:38:5c:12:
64:a6:4c:dc:b1:96:50:8a:67:77:a2:ea:f0:e1:c2:f6:b9:8f:
8b:47:ec:3b:18:cb:f9:37:c7:fd:5c:9b:dd:0b:41:da:10:c5:
46:3a:97:db:fb:fb:0a:55:ee:7c:f5:29:22:65:a3:e7:50:b4:
65:29:41:74:20:cb:98:e2:72:eb:19:ae:b4:64:9b:52:29:1d:
23:04:83:9c:9c:0c:df:98:ce:58:86:9a:4f:db:a5:cb:6d:15:
d8:27:28:4d:01:0c:f0:8a:16:76:49:6f:47:0f:10:48:3f:d0:
13:24:df:7a:0a:4d:e1:c7:b3:8d:aa:fb:73:5c:70:35:95:58:
ef:01:1c:80:ff:a2:43:46:96:25:ad:22:f7:bb:70:0f:67:7d:
b1:32:be:85:ac:c2:78:d9:c9:08:e6:92:5c:54:12:02:dd:d4:
5c:2c:95:6e:2b:ce:77:7c:00:b7:07:4e:d5:24:7c:43:4c:64:
7b:9b:e8:ee:79:c9:5e:ad:5c:fe:c6:2a:bf:c4:76:7c:1c:56:
45:27:ec:f4:82:0e:66:b4:e2:b5:56:2b:af:5d:29:1f:c2:43:
a3:fa:6a:77:03:8f:e2:ed:86:1f:99:e8:31:af:f8:51:55:d8:
be:9d:ff:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyk2JrhSyIaiPsYkOTH+7WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0ZTQwZjAzOTc5YTNmNGU0YWQzOWRhOTgzYjY3YmE3ZTYy
MTVjMGQwHhcNMjUxMTExMTEwMDUyWhcNMjUxMTEyMTEwMDUyWjAzMTEwLwYDVQQD
EyhjNjU1ODU0ZmZhNTdiNmFhYzlmNGViZWUxMTg4NTBkYzZmOWJhY2NlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArznR7wOv/+qJllPxikS3Px+A4Dll
MVO8G6op50nbR0mzMvXE1mlK8v16T4JJ0TMIgZ11TdJddenhvBV2jZq9V6IkxB8w
cmfSkKTfgzD2dVKFezxyVwWDH1jP81CSeX8fgdtqH7TxrYW2C4beqSwDIMWkn7Lz
8W/FhGTTw6ipDsYFy+SrI4xFfT4ayaRwCfIYMDx+TeRt5R7r+UoglL+DdibnFy+H
+Z8xzQADGehMq/clZKK2apZ5Hxcr9eQfSa0VJN7rud0fthriMTy9h56XuZPbo8UY
LIfhvN5/B6lD4S6uqYPrSXsTLCpNB0x7KdKyP4unWDzRFSmpED7nMtx1rwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMZVhU/6V7aqyfTr7hGIUNxvm6zOMB8GA1UdIwQY
MBaAFPTkDwOXmj9OStOdqYO2e6fmIVwNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU9RUEE1ZWFQMDVLMDUycGc3WjdwLVloWEEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9kNGZmYzAtYTUyZC00NjFiLTk3MTkt
YTkxNGUzY2UzOTQxLzEvOU9RUEE1ZWFQMDVLMDUycGc3WjdwLVloWEEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9kNGZmYzAtYTUyZC00NjFiLTk3MTktYTkxNGUzY2UzOTQx
LzEvOU9RUEE1ZWFQMDVLMDUycGc3WjdwLVloWEEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXzr/vCAi
SdnGy9cPmJUROFwSZKZM3LGWUIpnd6Lq8OHC9rmPi0fsOxjL+TfH/Vyb3QtB2hDF
RjqX2/v7ClXufPUpImWj51C0ZSlBdCDLmOJy6xmutGSbUikdIwSDnJwM35jOWIaa
T9uly20V2CcoTQEM8IoWdklvRw8QSD/QEyTfegpN4cezjar7c1xwNZVY7wEcgP+i
Q0aWJa0i97twD2d9sTK+hazCeNnJCOaSXFQSAt3UXCyVbivOd3wAtwdO1SR8Q0xk
e5vo7nnJXq1c/sYqv8R2fBxWRSfs9IIOZrTitVYrr10pH8JDo/pqdwOP4u2GH5no
Ma/4UVXYvp3/aQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:28:13 2025 by rpki-client