Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
File: tPSWmNCOjCg8DfKoLxaZfmJZurY.mft (raw, json)
Hash identifier: s5G+zAnxqUwFLWs0TcxAPTdal4hi8dR4c1yys7WbYSo=
Subject key identifier: D7:DA:99:A9:2E:E6:D5:38:89:B2:C8:87:E5:D2:DB:CC:CB:0C:63:04
Authority key identifier: B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6
Certificate issuer: /CN=b4f49698d08e8c283c0df2a82f16997e6259bab6
Certificate serial: 019A7293D798EE85127614EA4692C7AA0C54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
Manifest number: 08EC
Signing time: Tue 11 Nov 2025 11:01:22 +0000
Manifest this update: Tue 11 Nov 2025 11:01:22 +0000
Manifest next update: Wed 12 Nov 2025 11:01:22 +0000
Files and hashes: 1: tPSWmNCOjCg8DfKoLxaZfmJZurY.crl (hash: nTZ7yFPdDYwaycdVj145MIxd84nWF4+7qZa+5slyKPY=)
2: xzawIGSZ9gaUq6klJYybOrl_u8k.roa (hash: 1673awjNQrA/kSjVn3AcQmjZN9mvF8MpaJPKmYa0E/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:d7:98:ee:85:12:76:14:ea:46:92:c7:aa:0c:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f49698d08e8c283c0df2a82f16997e6259bab6
Validity
Not Before: Nov 11 11:01:22 2025 GMT
Not After : Nov 12 11:01:22 2025 GMT
Subject: CN=d7da99a92ee6d53889b2c887e5d2dbcccb0c6304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bd:e9:c6:14:53:13:fc:bf:1e:14:be:43:92:
84:e1:3f:ef:01:14:02:0c:d6:46:1d:10:44:6b:62:
cf:37:87:50:72:21:11:00:f0:97:49:96:25:8a:71:
fa:8b:28:5d:70:3b:8a:2c:00:87:75:0c:aa:79:98:
56:ec:47:e1:70:4a:be:04:73:8d:9b:e0:f7:88:50:
93:e2:67:7f:7e:f0:af:90:22:b3:75:c4:58:13:07:
ca:ee:77:c7:b8:d2:c0:df:5a:46:28:7f:0b:0c:5e:
4b:7f:2d:77:40:27:d2:3c:d6:84:b7:74:e7:63:a8:
19:cb:b6:3b:9b:d2:a1:4b:9b:eb:b1:80:52:a2:71:
a2:1a:81:de:c9:b2:02:14:b2:a4:6b:9b:fd:ba:bf:
aa:66:eb:a5:e4:dc:f5:b1:23:20:2d:2e:cd:e2:0a:
05:32:70:5f:01:0c:b7:48:50:28:5e:0f:10:d5:57:
cc:da:a4:da:82:00:3f:e5:d1:f6:54:aa:5c:44:19:
ef:17:48:be:34:10:68:00:b8:09:08:87:6f:80:a2:
ba:b6:19:26:48:99:d0:a3:ea:76:da:94:2d:6f:10:
8c:5e:62:77:b0:8a:5c:4a:ae:26:01:f4:40:ed:9d:
76:71:8f:d1:a4:a0:4b:9d:3a:2a:b6:99:cd:19:93:
de:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:DA:99:A9:2E:E6:D5:38:89:B2:C8:87:E5:D2:DB:CC:CB:0C:63:04
X509v3 Authority Key Identifier:
keyid:B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:45:ae:af:1f:6b:e3:fc:7d:1e:50:05:1e:89:4f:c9:a1:6c:
27:61:a6:e3:b8:64:2b:d4:af:bd:b3:26:66:0e:19:9b:0d:57:
9e:1d:02:e9:a8:2c:f5:e1:78:b6:a6:6d:06:09:4a:93:69:f5:
52:24:06:9e:33:be:40:81:34:06:68:9c:3a:6d:9d:91:4d:49:
49:bb:79:94:27:b2:80:99:16:4a:92:8f:2c:72:75:60:73:52:
12:57:5e:d4:47:c1:d4:d6:e9:78:a4:5c:c0:02:5b:3e:b8:9e:
ef:d4:73:09:87:0b:92:81:f3:24:86:0b:09:f1:de:69:58:b5:
f8:bc:4d:0b:ee:d4:ab:c4:71:0b:e2:7a:7c:8e:9d:dd:77:cb:
83:f6:70:13:67:a5:fb:2b:14:c0:56:21:9e:b5:fc:9a:e5:e4:
fe:6a:17:5f:a4:ab:00:a8:5b:dc:03:b1:72:5f:b0:37:86:5d:
5f:78:af:de:03:23:0c:1e:df:d5:0a:71:9f:62:3b:2a:84:5d:
53:2a:27:73:ca:5f:8e:be:2d:40:f4:1e:ff:4d:28:61:ae:78:
6d:dd:0b:68:5a:85:b9:be:7a:65:2d:93:80:67:89:a4:fc:62:
4e:87:5f:7b:d7:d5:54:d2:87:7d:29:62:27:f1:4c:16:f3:5f:
96:6f:1f:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyk9eY7oUSdhTqRpLHqgxUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0ZjQ5Njk4ZDA4ZThjMjgzYzBkZjJhODJmMTY5OTdlNjI1
OWJhYjYwHhcNMjUxMTExMTEwMTIyWhcNMjUxMTEyMTEwMTIyWjAzMTEwLwYDVQQD
EyhkN2RhOTlhOTJlZTZkNTM4ODliMmM4ODdlNWQyZGJjY2NiMGM2MzA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp73pxhRTE/y/HhS+Q5KE4T/vARQC
DNZGHRBEa2LPN4dQciERAPCXSZYlinH6iyhdcDuKLACHdQyqeZhW7EfhcEq+BHON
m+D3iFCT4md/fvCvkCKzdcRYEwfK7nfHuNLA31pGKH8LDF5Lfy13QCfSPNaEt3Tn
Y6gZy7Y7m9KhS5vrsYBSonGiGoHeybICFLKka5v9ur+qZuul5Nz1sSMgLS7N4goF
MnBfAQy3SFAoXg8Q1VfM2qTaggA/5dH2VKpcRBnvF0i+NBBoALgJCIdvgKK6thkm
SJnQo+p22pQtbxCMXmJ3sIpcSq4mAfRA7Z12cY/RpKBLnToqtpnNGZPe1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNfamaku5tU4ibLIh+XS28zLDGMEMB8GA1UdIwQY
MBaAFLT0lpjQjowoPA3yqC8WmX5iWbq2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBTV21OQ09qQ2c4RGZLb0x4YVpmbUpadXJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9mNjNkNzYtMmZiNi00M2EyLWJmZWMt
OWY3YWEwOTQzMDNiLzEvdFBTV21OQ09qQ2c4RGZLb0x4YVpmbUpadXJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS9mNjNkNzYtMmZiNi00M2EyLWJmZWMtOWY3YWEwOTQzMDNi
LzEvdFBTV21OQ09qQ2c4RGZLb0x4YVpmbUpadXJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXEWurx9r
4/x9HlAFHolPyaFsJ2Gm47hkK9SvvbMmZg4Zmw1Xnh0C6ags9eF4tqZtBglKk2n1
UiQGnjO+QIE0BmicOm2dkU1JSbt5lCeygJkWSpKPLHJ1YHNSElde1EfB1NbpeKRc
wAJbPrie79RzCYcLkoHzJIYLCfHeaVi1+LxNC+7Uq8RxC+J6fI6d3XfLg/ZwE2el
+ysUwFYhnrX8muXk/moXX6SrAKhb3AOxcl+wN4ZdX3iv3gMjDB7f1Qpxn2I7KoRd
Uyonc8pfjr4tQPQe/00oYa54bd0LaFqFub56ZS2TgGeJpPxiTodfe9fVVNKHfSli
J/FMFvNflm8fcA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:20:21 2025 by rpki-client