Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
File: _o6FIymApj8NTfWwSRY-P9AvVLM.mft (raw, json)
Hash identifier: TQJ6tkUY9M87DdL/JxXCSTKr7ODnsU+EkpdaFyf8he4=
Subject key identifier: AD:6B:98:D0:7A:FA:FE:03:93:C4:F7:3C:56:3C:C1:52:49:BE:AF:3C
Authority key identifier: FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
Certificate issuer: /CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Certificate serial: 019A722668CE080D613CA9F8B7F22C235952
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
Manifest number: 0B97
Signing time: Tue 11 Nov 2025 09:01:51 +0000
Manifest this update: Tue 11 Nov 2025 09:01:51 +0000
Manifest next update: Wed 12 Nov 2025 09:01:51 +0000
Files and hashes: 1: 7IkFNxuEd7zYMJ5GFmWYCrb0D3k.roa (hash: EbQqPJKQBhTvoE7/qrp3Wi8FH8cq4X28q+E9y9x/db0=)
2: _o6FIymApj8NTfWwSRY-P9AvVLM.crl (hash: 47dhbLTOMIfBlvvqzRRLqEW+3wHt5oxTvjXIXeUCrqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:68:ce:08:0d:61:3c:a9:f8:b7:f2:2c:23:59:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Validity
Not Before: Nov 11 09:01:51 2025 GMT
Not After : Nov 12 09:01:51 2025 GMT
Subject: CN=ad6b98d07afafe0393c4f73c563cc15249beaf3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:78:00:f1:e3:a0:a6:c6:c5:c4:7c:70:2c:a7:
c4:1c:89:96:1e:91:5b:8d:96:0c:8a:84:79:05:1f:
50:f2:56:6e:4a:4e:ed:81:53:f4:b4:84:00:73:31:
fa:1e:50:ff:1a:4f:c0:b4:52:a0:d7:1a:8c:61:e5:
7d:0c:b1:f8:57:9c:2b:93:db:65:7d:53:94:b5:20:
38:7a:c4:51:35:02:e2:71:11:bc:aa:d6:3d:db:78:
a1:6e:19:9f:77:6b:fd:e4:46:86:ee:76:31:a3:66:
5a:b8:63:fb:27:63:b1:eb:62:84:47:7e:04:87:18:
4e:12:d7:04:b6:54:bc:7b:42:1a:60:a1:b1:68:c8:
96:76:2a:15:ed:7d:38:9f:1c:32:69:07:4c:76:92:
4b:ff:97:39:e4:20:9a:dc:2d:33:bd:65:75:98:c2:
47:cc:4c:89:40:5c:dd:bc:78:df:77:0e:ff:7d:20:
e1:21:ce:74:cc:9d:9f:90:04:98:e1:b8:a1:00:30:
4f:02:87:71:d0:97:56:78:17:4d:c7:be:ce:7e:b2:
ab:da:ad:32:c3:11:f0:68:e9:8d:f5:ec:9b:00:67:
91:44:bc:77:14:85:b1:94:b9:0b:42:a2:71:e7:59:
6d:47:be:91:31:df:9d:fd:d2:7d:46:e0:57:1f:db:
63:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:6B:98:D0:7A:FA:FE:03:93:C4:F7:3C:56:3C:C1:52:49:BE:AF:3C
X509v3 Authority Key Identifier:
keyid:FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:37:d3:85:d5:10:fd:93:11:9d:8d:32:b4:00:28:63:9b:9b:
05:57:b3:fa:63:22:31:c7:99:e7:53:2b:42:55:a3:18:f7:36:
2f:ed:1c:2f:3b:91:2a:75:77:52:db:02:92:0a:15:cc:51:cc:
d3:e9:49:88:71:22:cc:2b:89:1f:13:e2:48:f8:17:3d:d4:9b:
dd:8e:f2:24:d8:f3:46:4f:53:21:49:12:f9:2a:7b:7a:a7:6f:
19:56:f7:f0:57:74:3c:d8:b4:16:72:df:f5:2a:ca:c2:af:81:
be:55:2c:f6:6e:22:f6:19:3b:f0:cc:04:56:88:7a:c3:92:b3:
0f:89:31:64:a2:6e:51:56:e3:0c:2b:cd:16:c3:81:b9:d4:4a:
ab:94:d5:9f:05:a9:89:ad:42:47:52:9c:15:3c:cc:fd:13:bd:
69:55:55:29:da:77:27:e1:ab:63:86:ea:dc:0d:03:52:a8:a2:
f5:4a:b2:26:5e:29:14:cb:c3:2f:ce:a9:e7:cd:a0:b5:fd:e4:
55:af:26:a9:e4:8e:73:ab:69:a7:d6:6b:c7:c3:32:52:ff:4b:
f7:4d:74:3a:98:e6:b2:f1:a6:77:a6:51:13:28:67:62:6f:af:
3c:b5:e9:8a:47:98:fc:83:07:fc:bb:3d:0f:b8:b2:af:3f:2f:
47:c5:53:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJmjOCA1hPKn4t/IsI1lSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlOGU4NTIzMjk4MGE2M2YwZDRkZjViMDQ5MTYzZTNmZDAy
ZjU0YjMwHhcNMjUxMTExMDkwMTUxWhcNMjUxMTEyMDkwMTUxWjAzMTEwLwYDVQQD
EyhhZDZiOThkMDdhZmFmZTAzOTNjNGY3M2M1NjNjYzE1MjQ5YmVhZjNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3gA8eOgpsbFxHxwLKfEHImWHpFb
jZYMioR5BR9Q8lZuSk7tgVP0tIQAczH6HlD/Gk/AtFKg1xqMYeV9DLH4V5wrk9tl
fVOUtSA4esRRNQLicRG8qtY923ihbhmfd2v95EaG7nYxo2ZauGP7J2Ox62KER34E
hxhOEtcEtlS8e0IaYKGxaMiWdioV7X04nxwyaQdMdpJL/5c55CCa3C0zvWV1mMJH
zEyJQFzdvHjfdw7/fSDhIc50zJ2fkASY4bihADBPAodx0JdWeBdNx77OfrKr2q0y
wxHwaOmN9eybAGeRRLx3FIWxlLkLQqJx51ltR76RMd+d/dJ9RuBXH9tjeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK1rmNB6+v4Dk8T3PFY8wVJJvq88MB8GA1UdIwQY
MBaAFP6OhSMpgKY/DU31sEkWPj/QL1SzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX282Rkl5bUFwajhOVGZXd1NSWS1QOUF2VkxNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kMzZiOGItODY1Ni00ODViLTkzYjIt
Mzg5MmFjYTI3N2IwLzEvX282Rkl5bUFwajhOVGZXd1NSWS1QOUF2VkxNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9kMzZiOGItODY1Ni00ODViLTkzYjItMzg5MmFjYTI3N2Iw
LzEvX282Rkl5bUFwajhOVGZXd1NSWS1QOUF2VkxNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJjfThdUQ
/ZMRnY0ytAAoY5ubBVez+mMiMceZ51MrQlWjGPc2L+0cLzuRKnV3UtsCkgoVzFHM
0+lJiHEizCuJHxPiSPgXPdSb3Y7yJNjzRk9TIUkS+Sp7eqdvGVb38Fd0PNi0FnLf
9SrKwq+BvlUs9m4i9hk78MwEVoh6w5KzD4kxZKJuUVbjDCvNFsOBudRKq5TVnwWp
ia1CR1KcFTzM/RO9aVVVKdp3J+GrY4bq3A0DUqii9UqyJl4pFMvDL86p582gtf3k
Va8mqeSOc6tpp9Zrx8MyUv9L9010OpjmsvGmd6ZREyhnYm+vPLXpikeY/IMH/Ls9
D7iyrz8vR8VTVQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 16:53:00 2025 by rpki-client