Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
File: vttqTtOT2KO3UH-Wo4vuDEyLR38.mft (raw, json)
Hash identifier: skgvLs7DnhswJaV3HZ9S8RMKPbOvQtZ7FIZiPsYvCfo=
Subject key identifier: 58:4F:4E:BF:96:A8:6C:B1:6A:18:0F:5A:2D:D9:17:4C:A2:25:91:22
Authority key identifier: BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F
Certificate issuer: /CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f
Certificate serial: 019A71B94BABC0D0AA3ED1FFB7BA81F87B57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 07:02:39 +0000
Manifest this update: Tue 11 Nov 2025 07:02:39 +0000
Manifest next update: Wed 12 Nov 2025 07:02:39 +0000
Files and hashes: 1: 70lNK5fBDtyKP1-Uoyim5AlDIhs.roa (hash: j96/AeWDc3evjhceJaK+DEno6uY4hCQMsDxAEfX1LUM=)
2: vttqTtOT2KO3UH-Wo4vuDEyLR38.crl (hash: ubhYQR29ViBW9Y/r/8Usy0sbfdQ+rrdS/qsn2elKSZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:4b:ab:c0:d0:aa:3e:d1:ff:b7:ba:81:f8:7b:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f
Validity
Not Before: Nov 11 07:02:39 2025 GMT
Not After : Nov 12 07:02:39 2025 GMT
Subject: CN=584f4ebf96a86cb16a180f5a2dd9174ca2259122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:81:fe:8a:75:b4:8b:94:5e:6d:5c:a4:12:ce:
74:06:b0:42:79:d9:5a:b5:55:8d:d6:12:f9:8e:ec:
66:04:03:91:48:9f:fa:6b:29:3d:5b:df:25:7f:18:
dc:26:29:93:2e:82:5c:0d:c7:bc:08:85:39:e1:7e:
15:f2:33:96:72:e2:64:38:fb:39:60:41:32:96:7f:
8d:27:97:cc:3b:b0:dd:66:8c:c1:75:09:77:4c:54:
6b:78:c1:ee:45:1c:47:e5:18:85:86:34:07:72:d2:
58:ee:07:c1:1a:dd:d4:41:1d:67:8a:16:ff:0a:0c:
66:07:f8:02:8f:78:bb:f1:23:07:6f:5c:0e:29:90:
11:3e:5f:aa:49:11:d6:5c:07:2e:f3:aa:aa:0f:2a:
66:25:3f:2e:cd:f3:43:d7:83:cf:47:be:c7:2e:6a:
a7:d0:fc:c9:ec:47:d7:f5:d1:f3:3f:21:e9:2e:b5:
15:41:85:51:97:bb:98:fc:86:b9:63:5d:4f:40:09:
f5:df:5c:26:2d:3c:68:b4:4c:8f:1f:fd:52:17:ba:
9b:e6:52:79:90:f7:96:d1:83:a0:49:46:aa:d6:75:
e6:bf:b1:b2:b4:ba:cc:c4:c0:a4:96:c3:08:de:6a:
0a:bf:ef:88:88:cc:85:66:67:81:2d:4d:89:1b:a0:
9d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4F:4E:BF:96:A8:6C:B1:6A:18:0F:5A:2D:D9:17:4C:A2:25:91:22
X509v3 Authority Key Identifier:
keyid:BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:3a:5a:ce:09:2e:db:c0:50:3d:01:45:14:8e:fd:4e:50:b0:
03:65:16:df:ae:33:85:d7:a7:4f:d2:85:1b:de:fc:3a:02:17:
30:a5:c8:3d:e2:e9:1e:86:45:34:75:7b:f4:d5:b1:71:55:57:
89:1a:0d:91:01:bb:94:d2:03:01:d4:1b:29:01:6c:a8:43:58:
38:82:5b:62:dc:56:10:13:24:7c:f8:8f:bc:c3:28:1c:ae:98:
ee:26:e3:dc:ce:0e:fe:3a:bf:89:72:17:1c:93:c6:dc:68:16:
7a:53:66:ba:cc:0a:14:3a:a8:d3:3c:52:af:e6:10:31:5c:7e:
6e:46:74:91:b5:15:3b:51:c5:c3:7b:be:f5:f8:ac:e4:ab:e3:
32:59:92:08:38:b0:64:20:ce:82:3e:31:92:d3:4f:9f:ae:07:
ed:5b:52:2a:dd:cd:d1:5f:3d:84:f7:7f:34:ba:cf:92:14:43:
ff:90:19:3f:1a:89:b1:59:2f:28:38:8d:f8:af:9d:5b:cb:08:
dd:c8:59:81:c1:8d:5a:a3:9b:55:5a:79:75:1c:b9:50:cb:b5:
f0:b6:74:7d:c1:86:50:7b:e5:c7:0f:ba:95:f5:df:3c:ad:f0:
ed:d2:99:34:1d:40:65:81:b6:ba:56:66:28:a9:22:79:51:64:
72:27:b0:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuUurwNCqPtH/t7qB+HtXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlZGI2YTRlZDM5M2Q4YTNiNzUwN2Y5NmEzOGJlZTBjNGM4
YjQ3N2YwHhcNMjUxMTExMDcwMjM5WhcNMjUxMTEyMDcwMjM5WjAzMTEwLwYDVQQD
Eyg1ODRmNGViZjk2YTg2Y2IxNmExODBmNWEyZGQ5MTc0Y2EyMjU5MTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwoH+inW0i5RebVykEs50BrBCedla
tVWN1hL5juxmBAORSJ/6ayk9W98lfxjcJimTLoJcDce8CIU54X4V8jOWcuJkOPs5
YEEyln+NJ5fMO7DdZozBdQl3TFRreMHuRRxH5RiFhjQHctJY7gfBGt3UQR1nihb/
CgxmB/gCj3i78SMHb1wOKZARPl+qSRHWXAcu86qqDypmJT8uzfND14PPR77HLmqn
0PzJ7EfX9dHzPyHpLrUVQYVRl7uY/Ia5Y11PQAn131wmLTxotEyPH/1SF7qb5lJ5
kPeW0YOgSUaq1nXmv7GytLrMxMCklsMI3moKv++IiMyFZmeBLU2JG6CdEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFhPTr+WqGyxahgPWi3ZF0yiJZEiMB8GA1UdIwQY
MBaAFL7bak7Tk9ijt1B/lqOL7gxMi0d/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnR0cVR0T1QyS08zVUgtV280dnVERXlMUjM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9kNDYzNWYtMjE5NS00ZDk0LThkMTYt
NDcwYTkzYjNkM2U3LzEvdnR0cVR0T1QyS08zVUgtV280dnVERXlMUjM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9kNDYzNWYtMjE5NS00ZDk0LThkMTYtNDcwYTkzYjNkM2U3
LzEvdnR0cVR0T1QyS08zVUgtV280dnVERXlMUjM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkjpazgku
28BQPQFFFI79TlCwA2UW364zhdenT9KFG978OgIXMKXIPeLpHoZFNHV79NWxcVVX
iRoNkQG7lNIDAdQbKQFsqENYOIJbYtxWEBMkfPiPvMMoHK6Y7ibj3M4O/jq/iXIX
HJPG3GgWelNmuswKFDqo0zxSr+YQMVx+bkZ0kbUVO1HFw3u+9fis5KvjMlmSCDiw
ZCDOgj4xktNPn64H7VtSKt3N0V89hPd/NLrPkhRD/5AZPxqJsVkvKDiN+K+dW8sI
3chZgcGNWqObVVp5dRy5UMu18LZ0fcGGUHvlxw+6lfXfPK3w7dKZNB1AZYG2ulZm
KKkieVFkciewvg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:47:00 2025 by rpki-client