Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft
File: 1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft (raw, json)
Hash identifier: 1q1M/r1INfDKijcM/1js0A5g66migR8OxvHyM3r83xE=
Subject key identifier: 2D:EB:D2:DD:AB:83:6C:84:9E:68:52:96:EC:AC:78:9F:68:CF:73:55
Authority key identifier: FA:14:E8:15:3C:D3:F9:1C:33:39:7F:9B:7D:F9:1B:F1:73:C4:D1:6B
Certificate issuer: /CN=fa14e8153cd3f91c33397f9b7df91bf173c4d16b
Certificate serial: 019A31C553FFB01B84919A5A1B3D04575838
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hToFTzT-RwzOX-bffkb8XPE0Ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft
Manifest number: 0108
Signing time: Wed 29 Oct 2025 21:00:06 +0000
Manifest this update: Wed 29 Oct 2025 21:00:06 +0000
Manifest next update: Thu 30 Oct 2025 21:00:06 +0000
Files and hashes: 1: 1-hToFTzT-RwzOX-bffkb8XPE0Ws.crl (hash: RA+E63mV14TZr5ilt1Bj5u+94RZsS5U5bPIIWbuYxss=)
2: i9PMkFjZgddcdQkvP1yxnZzZAzQ.roa (hash: AH1/HP90I2Jx2/ajhEGYd7uNt41g8Pva2Gq/dNXs1dY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-hToFTzT-RwzOX-bffkb8XPE0Ws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 17:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:31:c5:53:ff:b0:1b:84:91:9a:5a:1b:3d:04:57:58:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa14e8153cd3f91c33397f9b7df91bf173c4d16b
Validity
Not Before: Oct 29 21:00:06 2025 GMT
Not After : Oct 30 21:00:06 2025 GMT
Subject: CN=2debd2ddab836c849e685296ecac789f68cf7355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:13:ed:94:59:9b:e3:79:8a:ac:86:c5:35:ec:
0f:de:89:82:9b:27:af:95:57:eb:9f:7f:a8:79:7e:
d0:d5:1f:4f:5a:5d:db:43:0f:e3:07:72:43:e3:44:
a3:3c:ec:6d:ad:b0:dc:fe:ea:2b:96:6a:b2:11:76:
42:21:a9:f7:ec:4d:07:5d:09:76:c1:83:13:a6:1b:
bc:88:d9:3c:b2:f4:4b:dd:ff:70:24:66:d2:4d:a9:
e9:e6:d8:ff:d5:d7:48:40:0d:e2:d7:aa:25:09:04:
ed:42:9a:90:bf:d0:be:41:6b:73:ad:61:06:3b:a1:
9f:20:88:ff:56:68:e5:e8:49:88:32:d9:ab:ea:30:
c6:5f:3d:33:4e:ac:b7:90:39:fd:7f:d5:57:7d:3e:
73:f8:c1:e9:6f:83:38:4d:d6:bc:b7:73:8d:52:e8:
83:5a:37:52:9d:11:c5:9b:9d:6f:00:1c:4c:2e:d5:
8c:a0:b8:5a:af:11:92:16:10:0a:ad:01:96:50:38:
94:f1:34:e5:c6:a4:23:92:e3:f5:89:29:8b:6c:0c:
d6:69:ab:a6:17:08:53:29:12:79:85:94:71:31:f6:
ce:c5:8b:60:9e:86:08:0a:8c:a5:1b:95:76:45:b3:
9b:61:99:5b:26:7e:a6:0c:65:17:ec:38:f5:87:f0:
2f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:EB:D2:DD:AB:83:6C:84:9E:68:52:96:EC:AC:78:9F:68:CF:73:55
X509v3 Authority Key Identifier:
keyid:FA:14:E8:15:3C:D3:F9:1C:33:39:7F:9B:7D:F9:1B:F1:73:C4:D1:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hToFTzT-RwzOX-bffkb8XPE0Ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:d9:85:c2:54:cc:f0:e9:3d:5b:90:2c:8a:9a:79:e8:70:69:
d6:22:60:b4:d6:e3:8d:f5:fa:aa:38:29:f5:22:a7:77:59:dd:
14:63:08:fe:a6:8f:8d:2f:fc:a2:0f:09:72:af:ba:cc:a8:8e:
70:b7:33:7f:3c:6e:76:16:d1:17:3c:90:b7:cf:9b:6c:2f:70:
d0:e1:2f:30:15:3b:25:05:23:21:91:9a:f9:b0:5b:f2:32:41:
55:38:1b:50:8e:e2:a8:17:0e:67:60:19:bd:6b:07:1b:91:90:
06:3e:80:35:b1:57:1f:81:41:05:30:6e:ef:ab:cd:d2:f2:76:
80:cd:6a:27:49:79:1a:3f:5a:19:d0:55:46:87:45:64:b0:63:
0a:a6:a9:6f:9d:96:45:9c:ec:f9:a8:5b:a5:e6:88:2f:ab:6b:
cc:bc:75:ed:3c:f8:82:e1:29:e9:ec:f6:29:db:ba:7b:cf:6b:
49:33:27:f0:91:dd:00:41:fe:8b:6e:9b:bc:1b:73:fd:33:53:
43:1d:dc:ea:60:ec:09:98:84:e4:57:52:f3:30:fa:bc:ae:a7:
cf:3a:e0:d3:14:75:9d:b1:6c:89:9c:e0:a0:86:69:45:13:14:
cc:fe:4d:f1:3e:82:2d:c3:a7:53:84:35:6e:5f:76:26:66:c1:
31:83:78:93
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZoxxVP/sBuEkZpaGz0EV1g4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhMTRlODE1M2NkM2Y5MWMzMzM5N2Y5YjdkZjkxYmYxNzNj
NGQxNmIwHhcNMjUxMDI5MjEwMDA2WhcNMjUxMDMwMjEwMDA2WjAzMTEwLwYDVQQD
EygyZGViZDJkZGFiODM2Yzg0OWU2ODUyOTZlY2FjNzg5ZjY4Y2Y3MzU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0hPtlFmb43mKrIbFNewP3omCmyev
lVfrn3+oeX7Q1R9PWl3bQw/jB3JD40SjPOxtrbDc/uorlmqyEXZCIan37E0HXQl2
wYMTphu8iNk8svRL3f9wJGbSTanp5tj/1ddIQA3i16olCQTtQpqQv9C+QWtzrWEG
O6GfIIj/Vmjl6EmIMtmr6jDGXz0zTqy3kDn9f9VXfT5z+MHpb4M4Tda8t3ONUuiD
WjdSnRHFm51vABxMLtWMoLharxGSFhAKrQGWUDiU8TTlxqQjkuP1iSmLbAzWaaum
FwhTKRJ5hZRxMfbOxYtgnoYICoylG5V2RbObYZlbJn6mDGUX7Dj1h/AvdwIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFC3r0t2rg2yEnmhSluyseJ9oz3NVMB8GA1UdIwQY
MBaAFPoU6BU80/kcMzl/m335G/FzxNFrMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1oVG9GVHpULVJ3ek9YLWJmZmtiOFhQRTBXcy5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcvMjQwNzgwLTgxMTAtNDVkNy1iZDcz
LWZkZmQyZDcyYjU0MS8xLzEtaFRvRlR6VC1Sd3pPWC1iZmZrYjhYUEUwV3MubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxUL2M3LzI0MDc4MC04MTEwLTQ1ZDctYmQ3My1mZGZkMmQ3MmI1
NDEvMS8xLWhUb0ZUelQtUnd6T1gtYmZma2I4WFBFMFdzLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJdmF
wlTM8Ok9W5Asipp56HBp1iJgtNbjjfX6qjgp9SKnd1ndFGMI/qaPjS/8og8Jcq+6
zKiOcLczfzxudhbRFzyQt8+bbC9w0OEvMBU7JQUjIZGa+bBb8jJBVTgbUI7iqBcO
Z2AZvWsHG5GQBj6ANbFXH4FBBTBu76vN0vJ2gM1qJ0l5Gj9aGdBVRodFZLBjCqap
b52WRZzs+ahbpeaIL6trzLx17Tz4guEp6ez2Kdu6e89rSTMn8JHdAEH+i26bvBtz
/TNTQx3c6mDsCZiE5FdS8zD6vK6nzzrg0xR1nbFsiZzgoIZpRRMUzP5N8T6CLcOn
U4Q1bl92JmbBMYN4kw==
-----END CERTIFICATE-----
Generated at Wed Oct 29 23:06:02 2025 by rpki-client