Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
File: 43HOIIaAX5EvhRK3nF5mqcn01NI.mft (raw, json)
Hash identifier: PWyRQr0JFEYMEeeQeaNYUlrFrnQzTA6flYbzV2CIhwU=
Subject key identifier: BF:3E:8A:CE:0D:7B:92:F0:C3:33:15:AC:E9:C6:1D:BA:62:A2:AD:DA
Authority key identifier: E3:71:CE:20:86:80:5F:91:2F:85:12:B7:9C:5E:66:A9:C9:F4:D4:D2
Certificate issuer: /CN=e371ce2086805f912f8512b79c5e66a9c9f4d4d2
Certificate serial: 019A24AF2BF1A0C55BAD8345D1C553D5909E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
Manifest number: 0B50
Signing time: Mon 27 Oct 2025 08:00:50 +0000
Manifest this update: Mon 27 Oct 2025 08:00:50 +0000
Manifest next update: Tue 28 Oct 2025 08:00:50 +0000
Files and hashes: 1: 43HOIIaAX5EvhRK3nF5mqcn01NI.crl (hash: UgM/KOzfOSHww29O7EXIuYmu4oQdcVufaD1fG4b8nhs=)
2: oNzr7e9N0_nB7NG8uVVH1YFW8SA.roa (hash: E5UVvjB7YIozDhZ03PLtgPckm/pTCCT/ml1aJ8kENsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:27:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:af:2b:f1:a0:c5:5b:ad:83:45:d1:c5:53:d5:90:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e371ce2086805f912f8512b79c5e66a9c9f4d4d2
Validity
Not Before: Oct 27 08:00:50 2025 GMT
Not After : Oct 28 08:00:50 2025 GMT
Subject: CN=bf3e8ace0d7b92f0c33315ace9c61dba62a2adda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e4:bd:ee:4a:a9:62:04:39:c3:04:84:92:2c:
8f:11:77:1a:82:9d:7f:1f:2b:17:f3:5c:56:c1:fb:
87:a2:f4:4f:c2:37:42:d5:f2:89:12:c5:55:a2:e3:
69:20:c7:65:0d:e6:c5:e8:d8:7d:c8:f7:f0:96:56:
8f:d9:81:ac:06:eb:c7:24:ce:ed:52:34:58:9d:49:
d3:c9:a2:a7:65:2f:27:d7:ed:9b:53:cd:dc:50:16:
d5:9a:e5:2a:8d:d5:d9:f0:e5:92:c1:4f:5d:a7:63:
15:72:7f:90:0c:82:c1:a3:dc:86:13:83:68:73:6c:
f5:81:dc:ee:fc:66:08:d9:29:c6:f8:91:8c:03:63:
d0:87:6f:11:fa:7d:1c:23:3a:20:65:3c:46:f2:71:
f3:f6:e5:7c:8b:c9:1b:fa:f7:31:be:07:57:25:8e:
0a:55:d9:b0:b8:21:a4:6d:fc:50:95:0b:e6:2e:16:
f0:cb:20:2a:07:3d:28:8b:db:01:ed:a6:9f:6c:e2:
f8:1b:7c:95:b0:e9:44:f8:6c:18:3d:ca:11:60:f9:
d8:c8:93:75:f9:76:b0:e9:5b:f1:12:9e:22:08:8a:
ed:3d:1b:8b:7f:82:7c:b0:86:f3:3c:00:4a:18:73:
f4:82:65:40:5f:8f:04:47:4b:d0:c5:8d:4c:ec:5e:
cf:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:3E:8A:CE:0D:7B:92:F0:C3:33:15:AC:E9:C6:1D:BA:62:A2:AD:DA
X509v3 Authority Key Identifier:
keyid:E3:71:CE:20:86:80:5F:91:2F:85:12:B7:9C:5E:66:A9:C9:F4:D4:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:56:8b:70:25:e8:26:a3:d6:9c:85:db:7f:92:bc:cf:7f:e7:
e6:ae:4d:2b:a5:54:2c:85:c4:14:a1:b3:61:84:d5:a9:63:78:
43:ce:94:82:68:14:25:58:9d:c6:e5:41:9c:2b:a9:b3:50:70:
aa:f1:07:b9:7c:69:53:d6:73:12:35:b7:ed:3e:63:63:07:38:
2b:04:aa:2c:3d:ca:ac:4e:1e:24:5e:a6:46:da:59:25:a5:9f:
03:47:b8:06:5e:2e:29:8b:a2:5f:13:32:98:7c:46:85:c4:7b:
a4:e2:bf:38:1d:01:06:f6:e5:b2:4d:98:23:e1:bd:77:32:4f:
2e:e9:f2:47:94:88:c4:03:4f:17:88:33:bf:78:de:7a:0d:fd:
3a:01:aa:73:31:ea:8b:ae:93:81:a0:3a:da:c8:56:e7:98:66:
2f:62:2b:cb:2e:3a:9f:2d:bb:1f:73:3f:51:ab:b2:d0:66:4d:
5e:a2:9f:e4:40:a5:08:ca:c0:c0:fa:94:2d:12:2e:56:dc:e6:
a5:66:f3:89:56:cf:3e:a4:f5:f6:6e:c7:01:94:ca:0a:fb:5f:
8e:4a:79:2a:02:85:59:cc:0b:b5:2d:7a:50:b1:0c:1b:c3:9d:
fd:d2:1b:ed:cb:d6:77:e5:fa:84:7a:c4:a0:8c:ca:09:e4:74:
75:20:79:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZokryvxoMVbrYNF0cVT1ZCeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzNzFjZTIwODY4MDVmOTEyZjg1MTJiNzljNWU2NmE5Yzlm
NGQ0ZDIwHhcNMjUxMDI3MDgwMDUwWhcNMjUxMDI4MDgwMDUwWjAzMTEwLwYDVQQD
EyhiZjNlOGFjZTBkN2I5MmYwYzMzMzE1YWNlOWM2MWRiYTYyYTJhZGRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkeS97kqpYgQ5wwSEkiyPEXcagp1/
HysX81xWwfuHovRPwjdC1fKJEsVVouNpIMdlDebF6Nh9yPfwllaP2YGsBuvHJM7t
UjRYnUnTyaKnZS8n1+2bU83cUBbVmuUqjdXZ8OWSwU9dp2MVcn+QDILBo9yGE4No
c2z1gdzu/GYI2SnG+JGMA2PQh28R+n0cIzogZTxG8nHz9uV8i8kb+vcxvgdXJY4K
VdmwuCGkbfxQlQvmLhbwyyAqBz0oi9sB7aafbOL4G3yVsOlE+GwYPcoRYPnYyJN1
+Xaw6VvxEp4iCIrtPRuLf4J8sIbzPABKGHP0gmVAX48ER0vQxY1M7F7PrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL8+is4Ne5LwwzMVrOnGHbpioq3aMB8GA1UdIwQY
MBaAFONxziCGgF+RL4USt5xeZqnJ9NTSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNDNIT0lJYUFYNUV2aFJLM25GNW1xY24wMU5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC82ZGJkYWYtNTQ5NS00Y2M1LWI3NzAt
NzM1OTBhYTI5MGYxLzEvNDNIT0lJYUFYNUV2aFJLM25GNW1xY24wMU5JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC82ZGJkYWYtNTQ5NS00Y2M1LWI3NzAtNzM1OTBhYTI5MGYx
LzEvNDNIT0lJYUFYNUV2aFJLM25GNW1xY24wMU5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMFaLcCXo
JqPWnIXbf5K8z3/n5q5NK6VULIXEFKGzYYTVqWN4Q86UgmgUJVidxuVBnCups1Bw
qvEHuXxpU9ZzEjW37T5jYwc4KwSqLD3KrE4eJF6mRtpZJaWfA0e4Bl4uKYuiXxMy
mHxGhcR7pOK/OB0BBvblsk2YI+G9dzJPLunyR5SIxANPF4gzv3jeeg39OgGqczHq
i66TgaA62shW55hmL2Iryy46ny27H3M/Uauy0GZNXqKf5EClCMrAwPqULRIuVtzm
pWbziVbPPqT19m7HAZTKCvtfjkp5KgKFWcwLtS16ULEMG8Od/dIb7cvWd+X6hHrE
oIzKCeR0dSB58w==
-----END CERTIFICATE-----
Generated at Mon Oct 27 10:04:58 2025 by rpki-client