Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
File: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft (raw, json)
Hash identifier: lIorpZDGSc4K/ZFfxoZu8YSRZKTUDs4JEArMJ/leDqU=
Subject key identifier: 56:B7:83:DD:1D:FF:70:08:48:1D:D1:22:57:54:DF:63:D5:88:5F:73
Authority key identifier: A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA
Certificate issuer: /CN=a585e5e15aa34287cae4368cb58e7227fd87ecba
Certificate serial: 019A71B78C8449BF1747B922F8EFE209AD63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 07:00:45 +0000
Manifest this update: Tue 11 Nov 2025 07:00:45 +0000
Manifest next update: Wed 12 Nov 2025 07:00:45 +0000
Files and hashes: 1: BfRloUJHji-lEUaufwMc19LxiqE.roa (hash: 94Vq30eYX4ShhMgHZx9s+4a5DKBY3zN9CTPT6BVaH44=)
2: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl (hash: koiXbwNucihOAA8c1s53LoOI4tmdbrfsSOa2FBPeIYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:8c:84:49:bf:17:47:b9:22:f8:ef:e2:09:ad:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a585e5e15aa34287cae4368cb58e7227fd87ecba
Validity
Not Before: Nov 11 07:00:45 2025 GMT
Not After : Nov 12 07:00:45 2025 GMT
Subject: CN=56b783dd1dff7008481dd1225754df63d5885f73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:db:8a:ca:ab:b3:95:77:1b:96:e4:8f:87:29:
57:40:bf:9e:ab:a3:53:8d:0d:3e:2d:10:eb:90:fd:
7b:e5:07:80:f2:43:a3:75:d9:4f:9b:53:3a:5d:af:
8f:56:f3:08:51:6c:4d:52:56:5a:c7:ae:3d:a1:34:
67:54:61:1c:0a:ef:53:ad:cc:c8:a0:06:df:a9:77:
f9:f4:f0:4d:b6:fa:b6:35:b3:73:94:69:99:d1:74:
a8:6a:36:8f:40:62:f4:61:12:c4:d6:13:bd:61:16:
72:5d:c9:10:61:99:7f:75:23:33:7c:19:4f:88:c2:
17:da:52:bb:32:56:f6:56:b5:81:fa:78:95:94:29:
d3:bb:d0:04:53:58:65:d1:f5:63:ea:8c:d0:df:6a:
3e:53:14:2b:03:12:73:42:41:78:94:0c:01:3c:c1:
d7:fb:9a:2f:76:1a:93:2b:be:3d:7e:fc:81:82:6b:
d8:c0:96:0f:d0:25:c9:82:b2:7f:60:07:64:ce:7a:
7e:99:cc:1f:9b:b3:e5:ca:b9:ea:9c:ad:f3:88:39:
7d:d7:61:f1:4d:a6:80:d7:73:9b:57:b5:d7:76:c6:
46:6f:b2:36:42:98:b7:31:07:07:9e:71:81:1f:25:
11:6e:da:3d:5f:7e:fa:f4:1e:5f:8e:98:39:00:4a:
ba:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:B7:83:DD:1D:FF:70:08:48:1D:D1:22:57:54:DF:63:D5:88:5F:73
X509v3 Authority Key Identifier:
keyid:A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:1f:65:e4:da:1a:0d:74:ab:14:6e:1b:37:d7:c3:e3:cd:db:
4c:6d:ee:ef:79:a1:25:44:64:70:09:38:03:b9:a2:76:84:f6:
4e:65:e6:b1:a5:b7:35:e9:48:22:89:43:6a:45:e9:ae:91:2a:
ab:f4:54:f1:3d:61:96:26:34:78:ed:9a:9e:2c:71:93:e1:d5:
2c:30:8d:b9:94:a7:e3:16:fa:9f:1c:57:76:83:65:1a:66:97:
6f:cd:4b:f6:ee:2c:f1:a3:df:23:86:a3:97:26:2e:34:09:7a:
70:6a:5b:0b:07:26:20:d3:74:b8:9e:9d:e6:f8:07:1f:a0:1c:
c7:8b:11:5d:b2:76:8d:2c:09:0d:a6:b7:61:ea:74:b7:0c:f6:
97:6a:38:67:0d:a9:5b:b1:48:0e:dd:67:72:58:8e:f3:77:0f:
04:52:82:2b:34:c9:00:7b:de:51:9d:06:1e:66:30:54:6e:e7:
a3:0e:13:6b:60:56:5d:84:5c:13:15:43:aa:29:2b:6e:8d:14:
f3:f3:ba:ad:ea:f4:e1:5f:bb:25:dd:f9:49:5a:98:1f:b1:da:
e7:02:83:32:41:83:ba:ee:50:d6:44:e2:a4:e5:35:e8:56:b7:
57:e3:ed:24:99:2b:4a:bc:ca:69:ee:ec:c3:9f:31:2b:2e:f2:
32:c6:d7:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxt4yESb8XR7ki+O/iCa1jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1ODVlNWUxNWFhMzQyODdjYWU0MzY4Y2I1OGU3MjI3ZmQ4
N2VjYmEwHhcNMjUxMTExMDcwMDQ1WhcNMjUxMTEyMDcwMDQ1WjAzMTEwLwYDVQQD
Eyg1NmI3ODNkZDFkZmY3MDA4NDgxZGQxMjI1NzU0ZGY2M2Q1ODg1ZjczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhNuKyquzlXcbluSPhylXQL+eq6NT
jQ0+LRDrkP175QeA8kOjddlPm1M6Xa+PVvMIUWxNUlZax649oTRnVGEcCu9TrczI
oAbfqXf59PBNtvq2NbNzlGmZ0XSoajaPQGL0YRLE1hO9YRZyXckQYZl/dSMzfBlP
iMIX2lK7Mlb2VrWB+niVlCnTu9AEU1hl0fVj6ozQ32o+UxQrAxJzQkF4lAwBPMHX
+5ovdhqTK749fvyBgmvYwJYP0CXJgrJ/YAdkznp+mcwfm7PlyrnqnK3ziDl912Hx
TaaA13ObV7XXdsZGb7I2Qpi3MQcHnnGBHyURbto9X3769B5fjpg5AEq62wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFa3g90d/3AISB3RIldU32PViF9zMB8GA1UdIwQY
MBaAFKWF5eFao0KHyuQ2jLWOcif9h+y6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFlYbDRWcWpRb2ZLNURhTXRZNXlKXzJIN0xvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy8wNjY1MDktN2E5MS00NWY5LTllMTgt
YTllN2IzNDNiYzY2LzEvcFlYbDRWcWpRb2ZLNURhTXRZNXlKXzJIN0xvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy8wNjY1MDktN2E5MS00NWY5LTllMTgtYTllN2IzNDNiYzY2
LzEvcFlYbDRWcWpRb2ZLNURhTXRZNXlKXzJIN0xvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANh9l5Noa
DXSrFG4bN9fD483bTG3u73mhJURkcAk4A7midoT2TmXmsaW3NelIIolDakXprpEq
q/RU8T1hliY0eO2anixxk+HVLDCNuZSn4xb6nxxXdoNlGmaXb81L9u4s8aPfI4aj
lyYuNAl6cGpbCwcmINN0uJ6d5vgHH6Acx4sRXbJ2jSwJDaa3Yep0twz2l2o4Zw2p
W7FIDt1ncliO83cPBFKCKzTJAHveUZ0GHmYwVG7now4Ta2BWXYRcExVDqikrbo0U
8/O6rer04V+7Jd35SVqYH7Ha5wKDMkGDuu5Q1kTipOU16Fa3V+PtJJkrSrzKae7s
w58xKy7yMsbXZg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:35:20 2025 by rpki-client