Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft
File: FLcYAN3cSX9g-e23gzyUlzq33Bw.mft (raw, json)
Hash identifier: cf5Y5/ZRZMNN/tZoMoFP+rw7HQOiUkrFxlHW8ARv3K0=
Subject key identifier: 3F:E6:4B:B7:28:7F:F4:DE:71:C0:20:D0:97:FF:14:A8:18:C4:01:44
Authority key identifier: 14:B7:18:00:DD:DC:49:7F:60:F9:ED:B7:83:3C:94:97:3A:B7:DC:1C
Certificate issuer: /CN=14b71800dddc497f60f9edb7833c94973ab7dc1c
Certificate serial: 019A24AEEBFD2744DB6A663BA5FD0D1D45B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft
Manifest number: 15E3
Signing time: Mon 27 Oct 2025 08:00:34 +0000
Manifest this update: Mon 27 Oct 2025 08:00:34 +0000
Manifest next update: Tue 28 Oct 2025 08:00:34 +0000
Files and hashes: 1: FLcYAN3cSX9g-e23gzyUlzq33Bw.crl (hash: /G8BY5LVFYQWfU1UGoZjIlR1zGmYKjFuwzocx3Airs0=)
2: jh-TOxpxIUBWeRHqyE_TsQ3xZPw.roa (hash: h4140lmsN13+jNtLubDuYn8kTL6T4/sAQ4MD0yMdaVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:ae:eb:fd:27:44:db:6a:66:3b:a5:fd:0d:1d:45:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14b71800dddc497f60f9edb7833c94973ab7dc1c
Validity
Not Before: Oct 27 08:00:34 2025 GMT
Not After : Oct 28 08:00:34 2025 GMT
Subject: CN=3fe64bb7287ff4de71c020d097ff14a818c40144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:05:0f:b8:93:06:72:f9:98:b3:e3:08:57:01:
47:ab:1d:31:b6:60:fc:b7:05:61:6d:4f:17:e5:0b:
0e:64:44:75:af:d7:20:77:a5:7b:be:3d:3a:3a:c3:
3d:4c:9a:f9:c1:24:71:57:c8:38:c8:93:39:f8:39:
a7:74:8f:a3:ae:ac:3d:1e:f5:72:30:dd:89:26:25:
45:96:f7:23:1b:06:bc:67:27:6b:0c:18:34:77:93:
f4:59:2d:e8:18:57:f5:8e:cc:d8:6c:e3:0b:d9:fb:
06:ee:40:2f:b0:a7:8b:15:e7:24:58:8c:6a:af:05:
29:27:85:79:20:9f:2d:28:de:0a:55:0d:f4:0d:55:
f7:4b:93:96:aa:80:d3:e8:7d:16:74:24:55:a7:ed:
de:5a:7d:58:de:43:78:b0:a3:11:a9:f6:5c:11:38:
a9:72:22:c6:b4:aa:9f:b3:b4:12:20:14:43:6b:0d:
66:03:f8:2a:ce:83:44:69:36:dc:35:54:21:fd:45:
cc:d7:81:5e:f7:04:5d:2d:35:cb:1f:47:88:16:b3:
24:55:f4:fb:44:99:5f:01:26:bc:1c:57:2e:ae:54:
d1:23:19:04:3f:1a:ae:bf:3b:5c:c7:f8:e7:14:a3:
12:49:b4:99:00:1e:af:d9:a6:6a:d7:dd:f2:4f:31:
de:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:E6:4B:B7:28:7F:F4:DE:71:C0:20:D0:97:FF:14:A8:18:C4:01:44
X509v3 Authority Key Identifier:
keyid:14:B7:18:00:DD:DC:49:7F:60:F9:ED:B7:83:3C:94:97:3A:B7:DC:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:b0:24:9c:b0:dc:35:10:f5:fa:44:d8:5b:08:d4:6e:9b:c2:
50:92:a3:c6:16:8e:d1:f9:b8:bb:1d:09:07:d3:bc:5b:4f:6a:
8d:cb:db:df:8f:6e:12:e7:a0:51:1c:ed:80:80:fa:d8:df:ff:
9e:22:65:b2:8d:ad:6a:18:d1:39:3d:18:1f:53:73:10:87:47:
da:a1:e7:84:3c:d6:ef:35:7e:eb:ce:e9:71:3b:45:f3:1f:87:
f1:6d:63:b4:13:0d:5d:be:3b:ab:79:63:35:3d:6e:9c:eb:6a:
e8:ba:8b:2f:90:70:35:fc:04:65:fa:72:21:a4:9b:ca:1c:f1:
be:a0:21:58:36:93:d0:ff:a2:c1:1d:46:74:01:68:97:ac:1c:
22:2b:64:ba:64:f1:9e:66:93:8e:b6:d3:fe:33:8c:62:d3:dd:
73:6b:65:39:94:be:ca:49:c1:e8:90:24:8b:f4:53:e6:41:13:
70:4e:ad:8b:3c:ec:42:fe:66:e1:05:06:db:b1:43:2f:2b:ed:
8d:cd:a7:98:7a:0d:26:93:b8:23:cd:b8:7a:6b:a4:c7:33:98:
7d:0d:a2:c0:ec:6f:b8:f1:05:d3:84:14:10:f1:e7:fd:80:13:
38:1d:c6:49:7d:74:3c:80:f8:47:40:23:8a:a9:a1:83:1b:6f:
6c:af:86:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZokruv9J0TbamY7pf0NHUW4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0YjcxODAwZGRkYzQ5N2Y2MGY5ZWRiNzgzM2M5NDk3M2Fi
N2RjMWMwHhcNMjUxMDI3MDgwMDM0WhcNMjUxMDI4MDgwMDM0WjAzMTEwLwYDVQQD
EygzZmU2NGJiNzI4N2ZmNGRlNzFjMDIwZDA5N2ZmMTRhODE4YzQwMTQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAUPuJMGcvmYs+MIVwFHqx0xtmD8
twVhbU8X5QsOZER1r9cgd6V7vj06OsM9TJr5wSRxV8g4yJM5+DmndI+jrqw9HvVy
MN2JJiVFlvcjGwa8ZydrDBg0d5P0WS3oGFf1jszYbOML2fsG7kAvsKeLFeckWIxq
rwUpJ4V5IJ8tKN4KVQ30DVX3S5OWqoDT6H0WdCRVp+3eWn1Y3kN4sKMRqfZcETip
ciLGtKqfs7QSIBRDaw1mA/gqzoNEaTbcNVQh/UXM14Fe9wRdLTXLH0eIFrMkVfT7
RJlfASa8HFcurlTRIxkEPxquvztcx/jnFKMSSbSZAB6v2aZq193yTzHe/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD/mS7cof/TeccAg0Jf/FKgYxAFEMB8GA1UdIwQY
MBaAFBS3GADd3El/YPntt4M8lJc6t9wcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRkxjWUFOM2NTWDlnLWUyM2d6eVVsenEzM0J3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy80MTVkNGItZjdhNi00OWQ2LWE3YWQt
ZGRmMGI4YjA5NjE2LzEvRkxjWUFOM2NTWDlnLWUyM2d6eVVsenEzM0J3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy80MTVkNGItZjdhNi00OWQ2LWE3YWQtZGRmMGI4YjA5NjE2
LzEvRkxjWUFOM2NTWDlnLWUyM2d6eVVsenEzM0J3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjbAknLDc
NRD1+kTYWwjUbpvCUJKjxhaO0fm4ux0JB9O8W09qjcvb349uEuegURztgID62N//
niJlso2tahjROT0YH1NzEIdH2qHnhDzW7zV+687pcTtF8x+H8W1jtBMNXb47q3lj
NT1unOtq6LqLL5BwNfwEZfpyIaSbyhzxvqAhWDaT0P+iwR1GdAFol6wcIitkumTx
nmaTjrbT/jOMYtPdc2tlOZS+yknB6JAki/RT5kETcE6tizzsQv5m4QUG27FDLyvt
jc2nmHoNJpO4I824emukxzOYfQ2iwOxvuPEF04QUEPHn/YATOB3GSX10PID4R0Aj
iqmhgxtvbK+GlA==
-----END CERTIFICATE-----
Generated at Mon Oct 27 17:32:50 2025 by rpki-client