Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft
File: 0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft (raw, json)
Hash identifier: aDof8kY31dDMuStUDALOoum8/ZFdhurdF0wVTA3jCCM=
Subject key identifier: E0:22:38:07:72:F5:AE:C9:82:E6:16:DB:F9:57:27:DD:DC:32:A6:1C
Authority key identifier: D2:D4:BD:71:A4:3D:8C:DD:46:2A:61:EE:E0:D9:47:00:C7:E6:42:5F
Certificate issuer: /CN=d2d4bd71a43d8cdd462a61eee0d94700c7e6425f
Certificate serial: 019A714A06893789B775DC02B6313B4AD739
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tS9caQ9jN1GKmHu4NlHAMfmQl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft
Manifest number: 99
Signing time: Tue 11 Nov 2025 05:01:08 +0000
Manifest this update: Tue 11 Nov 2025 05:01:08 +0000
Manifest next update: Wed 12 Nov 2025 05:01:08 +0000
Files and hashes: 1: 0tS9caQ9jN1GKmHu4NlHAMfmQl8.crl (hash: ZJGcpvkBw/s/RFV2rlx4LUqHP3TVej3k9PuNRQyEbDE=)
2: KKgMs-wElUJViKwmcf1fvk9lnVM.roa (hash: J4sRQGzBOdgtJ9HehK5V6sdntDrbSLepduIzznR8wJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tS9caQ9jN1GKmHu4NlHAMfmQl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:06:89:37:89:b7:75:dc:02:b6:31:3b:4a:d7:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d4bd71a43d8cdd462a61eee0d94700c7e6425f
Validity
Not Before: Nov 11 05:01:08 2025 GMT
Not After : Nov 12 05:01:08 2025 GMT
Subject: CN=e022380772f5aec982e616dbf95727dddc32a61c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3b:7f:5f:aa:d0:2e:e3:9e:5f:bd:4a:48:d2:
c1:6b:e0:b7:3e:91:57:44:bf:35:10:8d:65:8e:15:
fb:2a:38:5d:cb:6f:a0:fa:5f:98:26:d9:5a:6a:86:
f0:1f:0f:aa:99:a5:98:6d:53:5d:87:86:74:80:34:
e4:22:e5:f4:5a:99:5b:5b:e5:12:44:43:ec:d6:86:
6f:77:f7:89:70:a2:2d:af:02:a3:47:fd:1b:1a:84:
d1:16:16:df:d7:5e:83:c8:46:4f:1c:0d:f5:e0:50:
0d:b3:e0:dd:ed:72:84:57:6c:9a:78:e7:8b:44:65:
3c:ae:a8:9f:d5:39:65:7e:2e:36:8f:e7:58:5a:06:
08:b3:07:16:90:6c:6f:a5:72:0d:68:30:64:75:78:
88:2b:6e:e5:00:24:3e:30:4f:b6:5d:df:9e:12:b2:
54:b0:da:24:bb:70:93:e5:03:b9:16:66:95:03:55:
1e:fc:b8:47:81:06:fc:b3:65:9e:fe:ff:5e:6c:ea:
79:a7:05:62:e3:98:55:35:a4:91:20:ad:35:18:77:
1a:9c:fb:60:99:da:0e:3f:6f:a5:32:c0:30:02:fa:
3b:8f:d6:02:af:55:01:ba:57:c3:f7:c7:ea:68:29:
93:c4:5d:cc:48:7e:82:1a:2c:72:38:a6:9c:07:cb:
4a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:22:38:07:72:F5:AE:C9:82:E6:16:DB:F9:57:27:DD:DC:32:A6:1C
X509v3 Authority Key Identifier:
keyid:D2:D4:BD:71:A4:3D:8C:DD:46:2A:61:EE:E0:D9:47:00:C7:E6:42:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tS9caQ9jN1GKmHu4NlHAMfmQl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:0a:47:19:b0:79:06:52:07:a9:85:77:d1:aa:d5:c4:7b:4a:
ed:65:0d:c2:ad:87:1e:d4:96:0a:88:f8:5f:b3:24:25:25:86:
a9:2c:90:e6:13:1b:b1:73:a7:4c:8b:aa:5d:3c:f8:5e:32:ff:
7c:5b:2b:8c:d1:69:b2:60:0a:2d:f8:72:7f:20:06:0f:c1:df:
e4:03:69:e4:1a:96:a7:03:7a:6f:ce:42:13:ce:b7:7d:2c:b6:
bd:e1:94:b3:df:2d:e1:50:1c:47:06:80:b3:40:71:bb:06:8d:
9f:f9:a2:bf:51:e1:53:76:3c:10:54:d7:68:4c:f9:d2:31:eb:
43:55:33:f5:c9:f9:9f:a3:ba:8f:1c:08:c7:0e:73:f7:42:5e:
66:ea:cf:c2:f3:84:fa:88:47:c0:0b:88:07:63:5b:75:35:76:
56:b0:ca:9c:44:9d:16:7a:26:1b:15:c9:45:07:55:18:34:55:
82:6d:1a:d5:26:f1:cf:52:f2:d5:58:5f:cc:ef:63:9b:a9:51:
04:9a:79:68:55:2a:dd:df:c0:41:f8:06:c3:05:30:2b:ec:fb:
ac:af:f2:58:82:34:0b:4f:db:a8:1a:9b:f7:f6:8e:fa:9e:5e:
6c:79:0d:a5:e5:05:40:6e:78:5f:ea:a3:f1:e9:bd:c3:76:5f:
4e:2e:8b:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxSgaJN4m3ddwCtjE7Stc5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyZDRiZDcxYTQzZDhjZGQ0NjJhNjFlZWUwZDk0NzAwYzdl
NjQyNWYwHhcNMjUxMTExMDUwMTA4WhcNMjUxMTEyMDUwMTA4WjAzMTEwLwYDVQQD
EyhlMDIyMzgwNzcyZjVhZWM5ODJlNjE2ZGJmOTU3MjdkZGRjMzJhNjFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjt/X6rQLuOeX71KSNLBa+C3PpFX
RL81EI1ljhX7Kjhdy2+g+l+YJtlaaobwHw+qmaWYbVNdh4Z0gDTkIuX0WplbW+US
REPs1oZvd/eJcKItrwKjR/0bGoTRFhbf116DyEZPHA314FANs+Dd7XKEV2yaeOeL
RGU8rqif1Tllfi42j+dYWgYIswcWkGxvpXINaDBkdXiIK27lACQ+ME+2Xd+eErJU
sNoku3CT5QO5FmaVA1Ue/LhHgQb8s2We/v9ebOp5pwVi45hVNaSRIK01GHcanPtg
mdoOP2+lMsAwAvo7j9YCr1UBulfD98fqaCmTxF3MSH6CGixyOKacB8tK7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOAiOAdy9a7JguYW2/lXJ93cMqYcMB8GA1UdIwQY
MBaAFNLUvXGkPYzdRiph7uDZRwDH5kJfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHRTOWNhUTlqTjFHS21IdTRObEhBTWZtUWw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80MWRkMDAtYjU3Yi00NjM4LWEwOGIt
Njg1M2M0MWNhMDNlLzEvMHRTOWNhUTlqTjFHS21IdTRObEhBTWZtUWw4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi80MWRkMDAtYjU3Yi00NjM4LWEwOGItNjg1M2M0MWNhMDNl
LzEvMHRTOWNhUTlqTjFHS21IdTRObEhBTWZtUWw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIwpHGbB5
BlIHqYV30arVxHtK7WUNwq2HHtSWCoj4X7MkJSWGqSyQ5hMbsXOnTIuqXTz4XjL/
fFsrjNFpsmAKLfhyfyAGD8Hf5ANp5BqWpwN6b85CE863fSy2veGUs98t4VAcRwaA
s0BxuwaNn/miv1HhU3Y8EFTXaEz50jHrQ1Uz9cn5n6O6jxwIxw5z90JeZurPwvOE
+ohHwAuIB2NbdTV2VrDKnESdFnomGxXJRQdVGDRVgm0a1Sbxz1Ly1VhfzO9jm6lR
BJp5aFUq3d/AQfgGwwUwK+z7rK/yWII0C0/bqBqb9/aO+p5ebHkNpeUFQG54X+qj
8em9w3ZfTi6Lnw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:24:47 2025 by rpki-client