Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
File: Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft (raw, json)
Hash identifier: bJhFbxXcdOxhwVlvRQaKVk1fJMn9BghI4+1uV0VrKCQ=
Subject key identifier: 02:E5:FD:E5:B8:FB:56:7D:D0:A8:68:7F:42:97:34:A0:BC:7D:E6:5D
Authority key identifier: 02:8F:DF:71:9D:47:A1:00:33:45:1A:83:38:4A:6D:B6:8D:BD:5B:0F
Certificate issuer: /CN=028fdf719d47a10033451a83384a6db68dbd5b0f
Certificate serial: 019A589D9651C6FB66EBA351EC292E255768
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
Manifest number: 0D1A
Signing time: Thu 06 Nov 2025 10:01:53 +0000
Manifest this update: Thu 06 Nov 2025 10:01:53 +0000
Manifest next update: Fri 07 Nov 2025 10:01:53 +0000
Files and hashes: 1: Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl (hash: 9YU3GFxKT4symCEfh0Wd7wGAk9cD+E0zRmuf37ndn+c=)
2: PF_eVnR65kNetKj7PMmx-v4rMFw.roa (hash: /4k6yxxkJCQSm4rG3gdwumQHjo0wfUW3Pw4ZNvKY7P0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Nov 2025 10:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:58:9d:96:51:c6:fb:66:eb:a3:51:ec:29:2e:25:57:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028fdf719d47a10033451a83384a6db68dbd5b0f
Validity
Not Before: Nov 6 10:01:53 2025 GMT
Not After : Nov 7 10:01:53 2025 GMT
Subject: CN=02e5fde5b8fb567dd0a8687f429734a0bc7de65d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8b:e7:71:51:cc:44:d9:dc:cd:a6:8f:18:35:
85:a7:06:1c:b9:5a:d8:42:c0:8e:38:ad:6d:49:e5:
b1:ba:49:ae:4c:93:24:99:d8:ec:26:73:4b:48:20:
92:44:01:64:05:15:b4:44:1e:a4:1f:d9:cb:58:18:
96:31:bf:da:0c:53:44:60:4e:f2:f9:f9:40:a0:d1:
61:2c:98:d8:86:4e:9f:96:56:53:5f:83:ef:fb:91:
d3:6d:7a:12:9c:fb:e2:49:01:28:78:f6:ff:06:4a:
af:ef:cf:ed:6d:48:7a:ab:ff:26:de:c6:77:07:83:
1d:df:68:98:00:fb:b1:5c:15:4b:a0:58:e6:6e:fb:
5e:3f:ab:bd:49:44:8e:8d:94:de:e6:c8:24:2f:c7:
4e:3e:af:e1:4d:e3:85:e9:15:8a:2d:b2:50:d5:f9:
0e:a9:fb:b9:62:b6:ec:66:90:04:f7:e8:b7:48:4b:
09:ce:29:c7:48:7d:13:d7:fc:32:b2:77:b6:7d:e9:
cf:3c:b9:2a:4b:6c:ec:25:b8:d3:2e:f5:da:49:2d:
26:e8:93:c7:e8:34:f7:fd:cb:a3:38:73:e8:93:62:
e3:33:5c:81:d4:88:04:d7:03:79:5b:50:5e:df:a8:
d9:f3:26:0a:fb:e5:d0:64:80:7e:2f:63:4e:48:f6:
75:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E5:FD:E5:B8:FB:56:7D:D0:A8:68:7F:42:97:34:A0:BC:7D:E6:5D
X509v3 Authority Key Identifier:
keyid:02:8F:DF:71:9D:47:A1:00:33:45:1A:83:38:4A:6D:B6:8D:BD:5B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:9c:9e:6f:2d:2c:15:59:c4:cf:61:62:0b:cf:e5:71:57:52:
42:79:47:b1:d0:53:7c:f0:60:3b:08:47:93:26:47:cb:06:5e:
06:20:6f:ef:5c:a2:1b:c2:cb:58:65:85:7a:ae:4e:c2:9b:19:
4d:e4:88:b6:db:d8:35:d7:cb:93:81:a8:3d:e3:b4:88:b0:a0:
90:e8:c0:fb:bd:c6:b7:92:af:af:77:f2:c5:ca:27:5c:a1:21:
84:2f:18:de:b9:77:26:df:c0:eb:40:24:36:45:b9:b5:10:37:
34:61:25:eb:e7:58:75:0f:32:d8:cf:86:8a:31:c9:54:0d:50:
2b:7a:88:4f:3f:21:4e:58:a4:e9:cf:25:23:cf:8f:11:ed:19:
92:e4:76:ac:3a:7f:64:f6:6b:e2:10:47:76:62:a3:fd:99:90:
ca:4c:50:66:26:11:33:0e:b7:0d:27:6c:2d:b4:91:60:b9:48:
bc:67:08:db:c4:84:de:c0:47:e9:ed:21:4b:d1:36:07:09:b6:
d0:fd:bb:f0:9b:b6:b6:32:e3:c8:fd:aa:94:e9:e5:bb:b3:65:
c1:20:49:f6:67:79:3d:a4:c0:28:76:0a:a2:89:a3:15:d6:16:
ca:f0:c6:01:1a:42:40:69:8b:c3:c7:fb:5f:03:d8:cd:8e:00:
0f:07:ed:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpYnZZRxvtm66NR7CkuJVdoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyOGZkZjcxOWQ0N2ExMDAzMzQ1MWE4MzM4NGE2ZGI2OGRi
ZDViMGYwHhcNMjUxMTA2MTAwMTUzWhcNMjUxMTA3MTAwMTUzWjAzMTEwLwYDVQQD
EygwMmU1ZmRlNWI4ZmI1NjdkZDBhODY4N2Y0Mjk3MzRhMGJjN2RlNjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3IvncVHMRNnczaaPGDWFpwYcuVrY
QsCOOK1tSeWxukmuTJMkmdjsJnNLSCCSRAFkBRW0RB6kH9nLWBiWMb/aDFNEYE7y
+flAoNFhLJjYhk6fllZTX4Pv+5HTbXoSnPviSQEoePb/Bkqv78/tbUh6q/8m3sZ3
B4Md32iYAPuxXBVLoFjmbvteP6u9SUSOjZTe5sgkL8dOPq/hTeOF6RWKLbJQ1fkO
qfu5YrbsZpAE9+i3SEsJzinHSH0T1/wysne2fenPPLkqS2zsJbjTLvXaSS0m6JPH
6DT3/cujOHPok2LjM1yB1IgE1wN5W1Be36jZ8yYK++XQZIB+L2NOSPZ1iQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFALl/eW4+1Z90Khof0KXNKC8feZdMB8GA1UdIwQY
MBaAFAKP33GdR6EAM0UagzhKbbaNvVsPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW9fZmNaMUhvUUF6UlJxRE9FcHR0bzI5V3c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9kNDlkNTItNTBiMS00OTQ4LWIxZjct
MDU1YTljYWQ4ZGY3LzEvQW9fZmNaMUhvUUF6UlJxRE9FcHR0bzI5V3c4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9kNDlkNTItNTBiMS00OTQ4LWIxZjctMDU1YTljYWQ4ZGY3
LzEvQW9fZmNaMUhvUUF6UlJxRE9FcHR0bzI5V3c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR5yeby0s
FVnEz2FiC8/lcVdSQnlHsdBTfPBgOwhHkyZHywZeBiBv71yiG8LLWGWFeq5OwpsZ
TeSIttvYNdfLk4GoPeO0iLCgkOjA+73Gt5Kvr3fyxconXKEhhC8Y3rl3Jt/A60Ak
NkW5tRA3NGEl6+dYdQ8y2M+GijHJVA1QK3qITz8hTlik6c8lI8+PEe0ZkuR2rDp/
ZPZr4hBHdmKj/ZmQykxQZiYRMw63DSdsLbSRYLlIvGcI28SE3sBH6e0hS9E2Bwm2
0P278Ju2tjLjyP2qlOnlu7NlwSBJ9md5PaTAKHYKoomjFdYWyvDGARpCQGmLw8f7
XwPYzY4ADwftwQ==
-----END CERTIFICATE-----
Generated at Thu Nov 6 18:57:35 2025 by rpki-client