Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.mft
File: sl2FaYjGKmAgc-wpOFgd1KWG-48.mft (raw, json)
Hash identifier: wWclLyWWFIlyr20lmaMlW4UDEHgibElFoDyDi47aoN4=
Subject key identifier: FF:15:50:71:30:C5:7F:49:52:E0:80:9D:A8:F8:CA:D0:D0:96:C5:79
Authority key identifier: B2:5D:85:69:88:C6:2A:60:20:73:EC:29:38:58:1D:D4:A5:86:FB:8F
Certificate issuer: /CN=b25d856988c62a602073ec2938581dd4a586fb8f
Certificate serial: 019A71B8087E86D07CBC91303F282F9B18A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sl2FaYjGKmAgc-wpOFgd1KWG-48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 07:01:17 +0000
Manifest this update: Tue 11 Nov 2025 07:01:17 +0000
Manifest next update: Wed 12 Nov 2025 07:01:17 +0000
Files and hashes: 1: 7ywY44F6W0hS7hjw1JX0UehS46M.roa (hash: EOy9avDsf7nOFq98ToM6bXsJvV8/Sd2CzZitSl4gKrE=)
2: sl2FaYjGKmAgc-wpOFgd1KWG-48.crl (hash: bJRk8lIZQWYeAG6OUiqUx+3PqNgosygMjH87VB3iI/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.mft
rsync://rpki.ripe.net/repository/DEFAULT/sl2FaYjGKmAgc-wpOFgd1KWG-48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:08:7e:86:d0:7c:bc:91:30:3f:28:2f:9b:18:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b25d856988c62a602073ec2938581dd4a586fb8f
Validity
Not Before: Nov 11 07:01:17 2025 GMT
Not After : Nov 12 07:01:17 2025 GMT
Subject: CN=ff15507130c57f4952e0809da8f8cad0d096c579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:22:de:56:93:e9:f9:05:ee:a1:96:2a:f6:a9:
d1:83:dd:81:7e:6a:10:0f:65:72:1c:d6:35:18:ba:
35:1f:76:2b:80:05:36:8c:ec:fc:3d:a1:3d:4c:47:
08:91:25:0e:29:58:a1:6a:f7:bc:14:46:31:70:16:
e4:b2:4b:f2:18:66:d8:8e:fa:cf:88:25:7b:19:4f:
5e:c6:0a:36:13:d4:27:52:6c:16:99:7c:7f:5a:e9:
38:3e:32:48:f2:52:b1:e7:24:62:4f:3e:e5:19:98:
c4:a3:66:07:43:a9:df:3b:5b:57:a7:4f:3b:3e:c7:
d3:ac:b7:f7:9e:94:7a:78:0a:86:02:ae:f1:67:62:
ec:de:61:5b:9c:b2:dd:f7:57:cd:d4:ab:c3:c1:18:
82:af:87:cb:ea:8d:70:13:8f:91:e1:72:2a:d5:c1:
fd:c0:d2:c9:ae:e9:ac:fe:eb:b2:96:2f:b1:b9:74:
a6:b2:4a:e8:a2:14:91:0b:70:88:74:a3:6e:09:fb:
4a:a2:97:98:72:44:08:b5:17:9d:20:c1:45:c1:5f:
e1:4f:f8:77:85:10:ca:a2:0d:ef:98:23:48:8a:15:
ae:19:e9:29:b6:51:62:d6:22:e1:3c:c7:48:46:37:
b9:7b:00:12:c6:0f:82:9b:a0:e0:38:23:a0:76:5a:
01:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:15:50:71:30:C5:7F:49:52:E0:80:9D:A8:F8:CA:D0:D0:96:C5:79
X509v3 Authority Key Identifier:
keyid:B2:5D:85:69:88:C6:2A:60:20:73:EC:29:38:58:1D:D4:A5:86:FB:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sl2FaYjGKmAgc-wpOFgd1KWG-48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:f3:2b:1b:a6:92:fa:54:da:95:9d:d3:f0:d7:e6:f1:a3:38:
ed:4e:3a:7f:0d:d0:cd:fb:60:55:c6:e0:31:63:44:44:11:49:
3f:4a:50:bc:4d:db:5a:65:ab:67:f6:b7:5a:d1:c2:94:e8:40:
cd:cc:66:20:b6:30:2d:d2:06:75:6d:b0:8a:fe:21:e4:42:4e:
70:e0:c1:a2:9c:05:d6:19:cd:01:f1:9b:e5:a0:14:7a:0e:73:
f1:39:ba:1f:bd:fc:63:cd:10:9c:03:9f:25:9b:a9:a6:d4:01:
75:49:45:0a:2a:b7:ee:3f:fb:03:01:0a:cc:2a:1f:d7:8f:a7:
21:c0:58:1c:05:41:ed:23:55:3b:31:b6:bd:fa:e0:51:cb:73:
3f:31:f4:23:ad:45:6d:fd:38:2b:1b:a8:00:93:2d:7c:f4:f2:
55:51:4d:76:b2:1e:41:a2:3b:0f:cd:63:8a:25:99:18:bb:b0:
5a:f7:5c:90:fd:4b:cb:4f:d3:24:5d:ca:58:64:4e:84:9f:4a:
d1:99:2c:ec:0c:3d:50:e8:ee:3a:69:13:07:4b:a5:a8:d7:0f:
ad:19:fe:78:cc:07:c2:ff:77:52:3c:96:7c:41:c8:6f:59:17:
ff:c6:85:f3:db:8d:bb:55:e3:1f:c6:7b:bd:32:34:98:d4:a0:
7e:4e:6c:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuAh+htB8vJEwPygvmxiiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyNWQ4NTY5ODhjNjJhNjAyMDczZWMyOTM4NTgxZGQ0YTU4
NmZiOGYwHhcNMjUxMTExMDcwMTE3WhcNMjUxMTEyMDcwMTE3WjAzMTEwLwYDVQQD
EyhmZjE1NTA3MTMwYzU3ZjQ5NTJlMDgwOWRhOGY4Y2FkMGQwOTZjNTc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAviLeVpPp+QXuoZYq9qnRg92BfmoQ
D2VyHNY1GLo1H3YrgAU2jOz8PaE9TEcIkSUOKVihave8FEYxcBbkskvyGGbYjvrP
iCV7GU9exgo2E9QnUmwWmXx/Wuk4PjJI8lKx5yRiTz7lGZjEo2YHQ6nfO1tXp087
PsfTrLf3npR6eAqGAq7xZ2Ls3mFbnLLd91fN1KvDwRiCr4fL6o1wE4+R4XIq1cH9
wNLJrums/uuyli+xuXSmskroohSRC3CIdKNuCftKopeYckQItRedIMFFwV/hT/h3
hRDKog3vmCNIihWuGekptlFi1iLhPMdIRje5ewASxg+Cm6DgOCOgdloBBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP8VUHEwxX9JUuCAnaj4ytDQlsV5MB8GA1UdIwQY
MBaAFLJdhWmIxipgIHPsKThYHdSlhvuPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2wyRmFZakdLbUFnYy13cE9GZ2QxS1dHLTQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9iYzk4ODgtYmYwYS00YmZkLTk0OTYt
OWQwODIxMTdkOGMxLzEvc2wyRmFZakdLbUFnYy13cE9GZ2QxS1dHLTQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy9iYzk4ODgtYmYwYS00YmZkLTk0OTYtOWQwODIxMTdkOGMx
LzEvc2wyRmFZakdLbUFnYy13cE9GZ2QxS1dHLTQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdvMrG6aS
+lTalZ3T8Nfm8aM47U46fw3QzftgVcbgMWNERBFJP0pQvE3bWmWrZ/a3WtHClOhA
zcxmILYwLdIGdW2wiv4h5EJOcODBopwF1hnNAfGb5aAUeg5z8Tm6H738Y80QnAOf
JZupptQBdUlFCiq37j/7AwEKzCof14+nIcBYHAVB7SNVOzG2vfrgUctzPzH0I61F
bf04KxuoAJMtfPTyVVFNdrIeQaI7D81jiiWZGLuwWvdckP1Ly0/TJF3KWGROhJ9K
0Zks7Aw9UOjuOmkTB0ulqNcPrRn+eMwHwv93UjyWfEHIb1kX/8aF89uNu1XjH8Z7
vTI0mNSgfk5skQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 13:58:42 2025 by rpki-client