Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
File: p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft (raw, json)
Hash identifier: IEHKeAV4Ud6JYA01Ylz7QDlhiLRMRA7ayrrimuGfd7I=
Subject key identifier: F5:41:EB:E6:D6:32:41:3E:DF:78:A5:44:0F:29:B1:CA:9F:E4:1C:67
Authority key identifier: A7:73:25:E4:95:CB:01:50:20:3B:79:F2:46:F4:CD:4C:0F:EC:24:FF
Certificate issuer: /CN=a77325e495cb0150203b79f246f4cd4c0fec24ff
Certificate serial: 019A725C946FAE478ACC23808E291D015E57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
Manifest number: 0DD7
Signing time: Tue 11 Nov 2025 10:01:01 +0000
Manifest this update: Tue 11 Nov 2025 10:01:01 +0000
Manifest next update: Wed 12 Nov 2025 10:01:01 +0000
Files and hashes: 1: Z94Es0pJzdNNFG_pvtxbCrg0w94.roa (hash: uXR+OJPAQJAMUd3RxLmxlHyff75ZTmhyAoVDvTJyktM=)
2: p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl (hash: kP8inztX+RVRIMb3zdoxI2kdcO27MoWCZi+Rx+Y9ypc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:94:6f:ae:47:8a:cc:23:80:8e:29:1d:01:5e:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a77325e495cb0150203b79f246f4cd4c0fec24ff
Validity
Not Before: Nov 11 10:01:01 2025 GMT
Not After : Nov 12 10:01:01 2025 GMT
Subject: CN=f541ebe6d632413edf78a5440f29b1ca9fe41c67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d1:4d:07:6d:01:7a:b7:e8:b5:fa:00:9a:79:
7b:8d:25:71:45:d0:83:3b:06:fe:58:ba:73:3e:d4:
4c:86:86:a1:dd:61:e8:95:1c:71:5a:60:02:dd:c7:
9e:fe:a8:a9:0d:1f:3a:54:c0:7b:c5:16:06:d6:1f:
c2:83:11:4a:38:0e:71:dd:78:4b:ed:f8:a3:04:a8:
df:6f:6e:a5:44:fa:b0:bd:cf:b6:1d:92:13:e4:8d:
99:ca:2d:06:bb:5f:69:9a:96:84:6a:b8:3a:b8:b7:
ba:12:02:e3:fa:76:1a:19:79:30:bf:51:01:b5:b9:
48:2c:cf:8a:5b:71:1f:65:bb:5c:34:e9:be:ac:73:
06:5f:fd:0b:6f:e9:74:2e:c3:7f:77:57:19:24:c5:
0c:7c:c5:5c:74:41:71:80:e5:33:ad:95:bd:ea:9d:
4e:31:7a:ee:b0:fe:83:0c:40:69:64:08:05:dd:80:
5b:b0:c5:5b:00:30:0e:88:4b:ff:40:16:ac:60:48:
e0:f4:01:4f:48:69:47:ad:a2:72:e9:76:60:7a:36:
05:c1:18:8c:27:b6:d6:0f:b4:5a:e4:14:f4:76:1c:
6b:ff:54:d3:fb:84:9d:1a:9d:07:7c:5b:79:2d:5c:
53:2a:f3:74:e3:1b:67:b9:af:96:6e:00:bc:d4:25:
2e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:41:EB:E6:D6:32:41:3E:DF:78:A5:44:0F:29:B1:CA:9F:E4:1C:67
X509v3 Authority Key Identifier:
keyid:A7:73:25:E4:95:CB:01:50:20:3B:79:F2:46:F4:CD:4C:0F:EC:24:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:ee:48:20:95:66:1e:f6:c4:5c:cf:73:0a:14:7f:00:4c:e5:
b3:cf:e7:c7:60:7f:c9:53:51:33:f1:af:ba:35:7a:0b:7e:6f:
21:a7:fd:ff:a0:f2:71:db:2b:39:06:e5:bb:41:1f:24:1f:b0:
f9:4c:e8:55:73:6f:6e:19:1b:b8:bd:6b:95:d9:67:76:fb:eb:
1b:71:2d:4c:7e:36:02:71:48:76:c2:5b:8c:17:b6:b8:ad:98:
19:b1:5c:f3:99:78:b7:a6:ab:5c:e1:44:a0:71:ee:2b:8b:e4:
ad:e9:e0:54:ba:f0:29:fe:57:4e:ce:1f:67:a4:c6:77:ea:44:
a6:96:15:a4:e2:99:5b:5c:c7:08:e3:32:50:93:12:c5:9f:57:
dd:1e:d0:c2:ee:74:9f:b9:ac:de:08:fd:23:d9:c7:e1:3b:3a:
ff:4c:10:5f:bc:33:8d:ef:f8:af:0b:bb:f5:ea:72:83:28:48:
bb:33:88:93:1c:93:0e:c5:56:c0:83:16:0c:a2:e0:16:30:7c:
97:ff:91:49:18:a3:93:80:3a:0d:6e:fb:cb:bf:5d:13:09:91:
1e:57:90:44:8e:9d:a6:56:5d:d1:ba:f0:88:98:a7:cd:f7:fa:
42:a5:64:7a:0f:fc:b9:c3:17:02:5f:5d:a5:55:1d:fe:b0:2e:
81:b7:6f:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyXJRvrkeKzCOAjikdAV5XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3NzMyNWU0OTVjYjAxNTAyMDNiNzlmMjQ2ZjRjZDRjMGZl
YzI0ZmYwHhcNMjUxMTExMTAwMTAxWhcNMjUxMTEyMTAwMTAxWjAzMTEwLwYDVQQD
EyhmNTQxZWJlNmQ2MzI0MTNlZGY3OGE1NDQwZjI5YjFjYTlmZTQxYzY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdFNB20BerfotfoAmnl7jSVxRdCD
Owb+WLpzPtRMhoah3WHolRxxWmAC3cee/qipDR86VMB7xRYG1h/CgxFKOA5x3XhL
7fijBKjfb26lRPqwvc+2HZIT5I2Zyi0Gu19pmpaEarg6uLe6EgLj+nYaGXkwv1EB
tblILM+KW3EfZbtcNOm+rHMGX/0Lb+l0LsN/d1cZJMUMfMVcdEFxgOUzrZW96p1O
MXrusP6DDEBpZAgF3YBbsMVbADAOiEv/QBasYEjg9AFPSGlHraJy6XZgejYFwRiM
J7bWD7Ra5BT0dhxr/1TT+4SdGp0HfFt5LVxTKvN04xtnua+WbgC81CUuMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPVB6+bWMkE+33ilRA8pscqf5BxnMB8GA1UdIwQY
MBaAFKdzJeSVywFQIDt58kb0zUwP7CT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDNNbDVKWExBVkFnTzNueVJ2VE5UQV9zSlA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9iZjg0MTEtNjk2MC00Y2VmLTkxZjkt
MTNiNmE2ZDcxYTQxLzEvcDNNbDVKWExBVkFnTzNueVJ2VE5UQV9zSlA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9iZjg0MTEtNjk2MC00Y2VmLTkxZjktMTNiNmE2ZDcxYTQx
LzEvcDNNbDVKWExBVkFnTzNueVJ2VE5UQV9zSlA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb+5IIJVm
HvbEXM9zChR/AEzls8/nx2B/yVNRM/GvujV6C35vIaf9/6DycdsrOQblu0EfJB+w
+UzoVXNvbhkbuL1rldlndvvrG3EtTH42AnFIdsJbjBe2uK2YGbFc85l4t6arXOFE
oHHuK4vkrengVLrwKf5XTs4fZ6TGd+pEppYVpOKZW1zHCOMyUJMSxZ9X3R7Qwu50
n7ms3gj9I9nH4Ts6/0wQX7wzje/4rwu79epygyhIuzOIkxyTDsVWwIMWDKLgFjB8
l/+RSRijk4A6DW77y79dEwmRHleQRI6dplZd0brwiJinzff6QqVkeg/8ucMXAl9d
pVUd/rAugbdvjQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 17:16:16 2025 by rpki-client