Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
File: 5YW66mL41gYmJIc4xF370iFzf0w.mft (raw, json)
Hash identifier: Nvs5QUvDNsDcnjWX12DkfyCzb94chK/1OhDnCK0qi/4=
Subject key identifier: 0D:22:1D:EE:45:20:E1:B7:B3:EC:F7:E5:56:DB:86:9F:34:23:A8:6B
Authority key identifier: E5:85:BA:EA:62:F8:D6:06:26:24:87:38:C4:5D:FB:D2:21:73:7F:4C
Certificate issuer: /CN=e585baea62f8d60626248738c45dfbd221737f4c
Certificate serial: 019A71EEF05893AC18F7204EBC971359D4BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
Manifest number: 16AF
Signing time: Tue 11 Nov 2025 08:01:15 +0000
Manifest this update: Tue 11 Nov 2025 08:01:15 +0000
Manifest next update: Wed 12 Nov 2025 08:01:15 +0000
Files and hashes: 1: 5YW66mL41gYmJIc4xF370iFzf0w.crl (hash: cw7H6gOTjzkHGF5g8pzJq61NkrZIpILYlaRhzj9gB5U=)
2: 8aYlnDZg4v75vC6LNHm5OghRmm0.roa (hash: ST2fwGD3DZOiSeI3vgn+uSP6XW7Dy6QYeIzwYCfP/n0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:f0:58:93:ac:18:f7:20:4e:bc:97:13:59:d4:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e585baea62f8d60626248738c45dfbd221737f4c
Validity
Not Before: Nov 11 08:01:15 2025 GMT
Not After : Nov 12 08:01:15 2025 GMT
Subject: CN=0d221dee4520e1b7b3ecf7e556db869f3423a86b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e5:55:af:59:76:71:f6:e5:17:b0:48:7c:f9:
19:1d:17:c5:54:c2:76:65:4d:10:79:ab:29:17:0b:
17:9f:26:4a:34:1c:38:87:df:27:dd:eb:2f:a6:0c:
0a:0e:42:6b:84:5a:8c:d8:0f:38:e2:5f:75:e1:26:
be:ff:94:72:8a:bf:c3:2f:78:b2:30:09:92:97:86:
f9:00:a1:02:91:c1:57:d0:c4:9a:f3:8b:32:34:b4:
e4:4d:f3:b6:cb:e1:15:ca:39:85:20:9f:5c:c8:05:
a5:8b:fd:9a:d7:07:3f:03:d7:4b:82:8b:32:38:68:
07:b1:72:7f:60:ff:6c:f3:ea:d8:0e:77:38:9c:54:
6f:c2:c2:d2:f2:64:78:f6:ce:4b:f1:6d:a9:39:41:
f7:cf:18:c8:59:90:9e:3a:9f:9a:98:09:62:7b:7b:
a0:d2:b8:96:fe:69:d5:42:3e:2d:74:98:c2:2e:d3:
51:c7:a9:93:42:b0:f9:64:ba:5e:e3:0b:26:38:6c:
66:a1:e3:cc:48:84:00:48:32:6b:5a:bf:0c:7c:99:
89:8b:e6:a7:8a:86:7b:b9:f1:b3:3f:45:3a:84:84:
36:37:1c:23:57:fd:6f:5e:ef:01:f3:0e:b5:38:8d:
55:ad:d0:f9:4b:06:f3:83:11:1c:47:95:a2:f0:ab:
51:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:22:1D:EE:45:20:E1:B7:B3:EC:F7:E5:56:DB:86:9F:34:23:A8:6B
X509v3 Authority Key Identifier:
keyid:E5:85:BA:EA:62:F8:D6:06:26:24:87:38:C4:5D:FB:D2:21:73:7F:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:10:3c:76:80:8b:9b:47:81:4f:3f:fe:44:28:ec:67:15:58:
a0:9d:dc:d5:c9:2e:3b:8d:d8:55:51:90:3e:2d:92:df:db:47:
67:93:d0:f4:69:c6:a1:17:1f:5e:d9:cd:c7:69:34:42:2f:16:
fd:4b:28:01:48:7a:d4:37:86:e9:0a:25:3a:57:8b:b7:d6:80:
12:b5:06:6a:8b:4a:43:a6:8c:0b:ed:ad:04:69:c7:fa:4f:bc:
6d:a8:ad:f9:53:62:34:ad:63:2f:d5:e5:46:c4:9e:fc:96:4a:
73:66:8a:5f:6c:6f:27:5a:4f:f9:2c:27:9f:d0:f0:5d:0e:29:
7e:41:ea:1d:ce:49:09:5a:21:a8:95:11:e9:f1:d3:df:8a:cf:
a0:c6:db:e6:e7:1f:d6:e8:21:e7:49:0e:98:96:50:91:f6:92:
d8:97:ba:bd:8b:fe:02:34:8f:55:d0:49:3d:a2:63:e9:b1:d4:
8e:b1:5a:b0:61:5c:ed:1f:cb:01:6e:16:24:e0:fe:91:00:17:
09:f0:a3:56:03:86:e2:4c:89:85:05:d8:73:79:8d:2e:01:ad:
82:68:0e:aa:87:73:81:51:fb:e3:21:12:51:5b:3f:b5:f2:11:
5b:8b:cd:30:4b:83:16:57:20:a5:6a:37:42:4a:de:94:81:4b:
32:d3:c3:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpx7vBYk6wY9yBOvJcTWdS9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1ODViYWVhNjJmOGQ2MDYyNjI0ODczOGM0NWRmYmQyMjE3
MzdmNGMwHhcNMjUxMTExMDgwMTE1WhcNMjUxMTEyMDgwMTE1WjAzMTEwLwYDVQQD
EygwZDIyMWRlZTQ1MjBlMWI3YjNlY2Y3ZTU1NmRiODY5ZjM0MjNhODZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+VVr1l2cfblF7BIfPkZHRfFVMJ2
ZU0QeaspFwsXnyZKNBw4h98n3esvpgwKDkJrhFqM2A844l914Sa+/5Ryir/DL3iy
MAmSl4b5AKECkcFX0MSa84syNLTkTfO2y+EVyjmFIJ9cyAWli/2a1wc/A9dLgosy
OGgHsXJ/YP9s8+rYDnc4nFRvwsLS8mR49s5L8W2pOUH3zxjIWZCeOp+amAlie3ug
0riW/mnVQj4tdJjCLtNRx6mTQrD5ZLpe4wsmOGxmoePMSIQASDJrWr8MfJmJi+an
ioZ7ufGzP0U6hIQ2NxwjV/1vXu8B8w61OI1VrdD5SwbzgxEcR5Wi8KtR6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA0iHe5FIOG3s+z35Vbbhp80I6hrMB8GA1UdIwQY
MBaAFOWFuupi+NYGJiSHOMRd+9Ihc39MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVlXNjZtTDQxZ1ltSkljNHhGMzcwaUZ6ZjB3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9iZGEzZWYtNGEyZi00Y2NjLWIyOTUt
YjIyZWI5NDg1MTVjLzEvNVlXNjZtTDQxZ1ltSkljNHhGMzcwaUZ6ZjB3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC9iZGEzZWYtNGEyZi00Y2NjLWIyOTUtYjIyZWI5NDg1MTVj
LzEvNVlXNjZtTDQxZ1ltSkljNHhGMzcwaUZ6ZjB3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWhA8doCL
m0eBTz/+RCjsZxVYoJ3c1ckuO43YVVGQPi2S39tHZ5PQ9GnGoRcfXtnNx2k0Qi8W
/UsoAUh61DeG6QolOleLt9aAErUGaotKQ6aMC+2tBGnH+k+8bait+VNiNK1jL9Xl
RsSe/JZKc2aKX2xvJ1pP+Swnn9DwXQ4pfkHqHc5JCVohqJUR6fHT34rPoMbb5ucf
1ugh50kOmJZQkfaS2Je6vYv+AjSPVdBJPaJj6bHUjrFasGFc7R/LAW4WJOD+kQAX
CfCjVgOG4kyJhQXYc3mNLgGtgmgOqodzgVH74yESUVs/tfIRW4vNMEuDFlcgpWo3
QkrelIFLMtPDhg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:43:12 2025 by rpki-client