Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json)
Hash identifier: sIfuK6W1qdAxkYHc0OWSnPzSBSJaxsG9x3CnF+pB7Os=
Subject key identifier: 01:DC:1F:9C:F6:03:2E:76:72:E0:C3:12:7B:71:79:00:BB:CA:52:02
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 0199FCFD70F0E253610C3D22C5F2CF5436ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
Manifest number: 036C
Signing time: Sun 19 Oct 2025 15:01:31 +0000
Manifest this update: Sun 19 Oct 2025 15:01:31 +0000
Manifest next update: Mon 20 Oct 2025 15:01:31 +0000
Files and hashes: 1: 5jBhyCclhjBWCSh1O-0WT6aKzvs.roa (hash: MRjgNDdW46vQb+SgK5+muMmigtF72q9wmhV3HqxuIuc=)
2: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: GbQ6uFNtsJXcoOXP1yE/nblFGbw0+sq3yE5SkYpW2Z8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:70:f0:e2:53:61:0c:3d:22:c5:f2:cf:54:36:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: Oct 19 15:01:31 2025 GMT
Not After : Oct 20 15:01:31 2025 GMT
Subject: CN=01dc1f9cf6032e7672e0c3127b717900bbca5202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a9:c3:35:0a:6e:58:a2:ce:33:bd:11:1d:c3:
c4:1c:60:20:20:5d:01:bd:bf:a2:d1:bc:64:0f:ca:
91:a2:13:f6:df:34:bf:81:13:7f:b8:1e:c6:d2:d9:
94:4e:9e:fe:aa:3d:12:1e:69:5d:ab:f8:63:2a:c5:
1f:e1:11:b6:eb:7c:9b:59:e2:f0:eb:40:3b:9c:b0:
1f:13:4b:47:9c:e2:a2:5b:ed:8b:18:40:79:52:49:
3b:0f:14:0a:71:a2:29:61:de:4e:32:d6:1a:7e:9c:
81:60:d4:b1:2d:ed:59:1f:da:03:d1:e0:a0:b9:83:
cf:0f:0b:32:99:98:0d:7d:80:f7:49:78:9c:fc:ae:
0e:10:89:44:51:4f:e7:da:f1:1e:8e:cc:52:66:b2:
14:f2:7b:35:69:ab:27:0a:7e:0a:b4:a1:e1:0c:6b:
3d:b2:6a:d3:12:a5:21:71:38:41:68:b1:ca:dc:0e:
d1:fb:ab:69:b3:46:27:aa:b5:4f:75:37:06:bb:b5:
ee:3f:a4:17:71:cf:72:83:07:16:9b:49:25:0c:fe:
6c:2d:13:bf:1c:62:19:84:5f:69:ce:2b:94:d4:60:
46:9e:56:49:6a:e1:00:64:aa:ed:a8:47:12:e1:f9:
83:b9:b4:de:c7:5f:53:fd:dd:bf:44:ba:54:08:ff:
7f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:DC:1F:9C:F6:03:2E:76:72:E0:C3:12:7B:71:79:00:BB:CA:52:02
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:19:e9:cd:23:e7:d4:d6:22:02:3b:82:38:fe:e8:02:7b:d7:
40:39:5e:72:52:a8:3a:a6:a1:b2:00:d0:dd:ad:67:b3:d3:25:
80:c4:06:38:9d:23:53:56:c5:f2:4a:75:19:f0:53:7d:d3:d5:
51:d4:78:78:c0:e5:6e:8c:c0:6b:af:ba:a0:56:5a:35:81:fd:
2b:18:d1:70:f6:5e:3a:20:e3:ec:78:64:c2:2e:83:ea:18:9b:
16:95:ae:b1:eb:a8:b1:a3:d4:51:9e:05:d9:5c:9b:0c:ab:92:
90:ec:10:40:b1:c0:4f:9f:f1:c3:36:c3:b3:c1:38:20:0e:28:
97:a4:24:3d:dc:cd:ae:5a:b7:6b:c3:cf:a0:37:75:46:a0:e1:
1f:6e:02:b0:61:4a:50:37:fb:a6:6e:71:90:4e:cf:12:8a:d2:
90:f2:c5:d0:e1:94:d6:17:a3:cf:25:c8:36:df:08:fd:4f:0c:
3c:e5:6e:b3:6a:41:04:d2:dd:ed:64:4f:60:bc:a0:06:bf:f2:
90:85:47:65:c5:f5:ea:87:75:7d:78:bb:99:dd:cb:d2:dc:8d:
b2:71:60:95:68:af:cd:03:6a:93:dd:5e:55:c5:7d:15:4a:7e:
17:0e:e2:6d:24:7a:e3:76:1f:85:92:2c:cb:f9:7f:17:26:9c:
11:d7:5d:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/XDw4lNhDD0ixfLPVDbtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmYThmYjUzOTlhMjdhNDMwYWU3MjdjNTMyY2QyMjQ5OTll
ODg2NGYwHhcNMjUxMDE5MTUwMTMxWhcNMjUxMDIwMTUwMTMxWjAzMTEwLwYDVQQD
EygwMWRjMWY5Y2Y2MDMyZTc2NzJlMGMzMTI3YjcxNzkwMGJiY2E1MjAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqnDNQpuWKLOM70RHcPEHGAgIF0B
vb+i0bxkD8qRohP23zS/gRN/uB7G0tmUTp7+qj0SHmldq/hjKsUf4RG263ybWeLw
60A7nLAfE0tHnOKiW+2LGEB5Ukk7DxQKcaIpYd5OMtYafpyBYNSxLe1ZH9oD0eCg
uYPPDwsymZgNfYD3SXic/K4OEIlEUU/n2vEejsxSZrIU8ns1aasnCn4KtKHhDGs9
smrTEqUhcThBaLHK3A7R+6tps0YnqrVPdTcGu7XuP6QXcc9ygwcWm0klDP5sLRO/
HGIZhF9pziuU1GBGnlZJauEAZKrtqEcS4fmDubTex19T/d2/RLpUCP9/pwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAHcH5z2Ay52cuDDEntxeQC7ylICMB8GA1UdIwQY
MBaAFA+o+1OZonpDCucnxTLNIkmZ6IZPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDZqN1U1bWlla01LNXlmRk1zMGlTWm5vaGs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zODZmODEtYjEzOS00OGFmLWJjZWEt
YTcxZmI0NjM1MDY1LzEvRDZqN1U1bWlla01LNXlmRk1zMGlTWm5vaGs4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8zODZmODEtYjEzOS00OGFmLWJjZWEtYTcxZmI0NjM1MDY1
LzEvRDZqN1U1bWlla01LNXlmRk1zMGlTWm5vaGs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAahnpzSPn
1NYiAjuCOP7oAnvXQDleclKoOqahsgDQ3a1ns9MlgMQGOJ0jU1bF8kp1GfBTfdPV
UdR4eMDlbozAa6+6oFZaNYH9KxjRcPZeOiDj7Hhkwi6D6hibFpWuseuosaPUUZ4F
2VybDKuSkOwQQLHAT5/xwzbDs8E4IA4ol6QkPdzNrlq3a8PPoDd1RqDhH24CsGFK
UDf7pm5xkE7PEorSkPLF0OGU1hejzyXINt8I/U8MPOVus2pBBNLd7WRPYLygBr/y
kIVHZcX16od1fXi7md3L0tyNsnFglWivzQNqk91eVcV9FUp+Fw7ibSR643YfhZIs
y/l/FyacEdddSQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:19:45 2025 by rpki-client