Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
File: mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft (raw, json)
Hash identifier: sD7yuC0qA0FUJWq0HwvaJIPbEH3Oc7ZHGBNjQIys9/s=
Subject key identifier: F2:5E:B2:EF:E3:71:6C:6E:D1:8A:2B:BD:1D:4A:6F:F1:FD:17:4F:8F
Authority key identifier: 99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
Certificate issuer: /CN=991b5422cd5578d4715ebe4c5097202523dd5658
Certificate serial: 0199FDD9039034292F99EF4535C95C0AA164
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
Manifest number: 156B
Signing time: Sun 19 Oct 2025 19:01:21 +0000
Manifest this update: Sun 19 Oct 2025 19:01:21 +0000
Manifest next update: Mon 20 Oct 2025 19:01:21 +0000
Files and hashes: 1: dUzHcv1qzeux_y2IL7xdvYNLLOQ.roa (hash: nSNOUC9fK3tMm0ddVALi9dbfVwMcfIB34jQG6rm/2t0=)
2: mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl (hash: GGe6rsG98WMPIuGbneeuKHue3zvD6ZgiSJpZDENUS9c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:03:90:34:29:2f:99:ef:45:35:c9:5c:0a:a1:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991b5422cd5578d4715ebe4c5097202523dd5658
Validity
Not Before: Oct 19 19:01:21 2025 GMT
Not After : Oct 20 19:01:21 2025 GMT
Subject: CN=f25eb2efe3716c6ed18a2bbd1d4a6ff1fd174f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:c9:f7:fc:17:45:0c:00:76:87:c6:66:d3:2c:
10:8c:e6:b5:22:70:28:28:fb:11:2e:bf:58:f6:2e:
6a:3a:51:6f:38:77:f5:22:ba:56:9b:ef:35:8a:55:
60:d4:98:8e:bb:1b:c0:52:b4:04:76:ca:91:05:1d:
e9:1b:61:ac:88:62:1d:fe:20:6f:9b:61:a0:79:16:
2c:9b:13:d5:07:61:67:87:e0:75:3d:6b:12:0f:70:
48:56:ba:ac:d3:bf:b6:76:1f:3d:21:99:01:d7:39:
05:ca:13:6a:1f:f7:67:9a:a3:22:cc:ec:43:24:13:
ca:1c:78:69:23:9a:b1:41:04:ac:4f:a4:cd:23:81:
1f:5d:5c:f7:25:48:9c:ac:22:7d:d2:a5:e1:95:ca:
89:8c:51:0d:aa:d9:5d:b3:f2:b3:3e:5c:dc:30:c1:
3c:00:ff:8b:eb:cf:4f:5c:86:16:85:0e:cf:91:d5:
81:1b:7a:f0:b0:55:c6:a4:1e:8c:5b:13:7b:c6:32:
56:aa:f9:76:32:83:bd:39:11:23:76:1f:3b:5a:14:
af:e0:85:c2:88:86:43:41:c3:14:49:48:ae:41:16:
b6:cc:72:99:72:ea:5f:5e:f0:2c:35:66:c6:80:85:
2b:7a:79:c8:c9:a9:73:cc:26:77:41:0c:91:28:8c:
5b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:5E:B2:EF:E3:71:6C:6E:D1:8A:2B:BD:1D:4A:6F:F1:FD:17:4F:8F
X509v3 Authority Key Identifier:
keyid:99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:2d:53:77:02:3a:b0:57:78:5b:c8:00:ed:6b:2a:56:8e:6e:
dd:63:55:d2:27:ef:0e:98:56:66:85:8a:8a:19:b1:ac:c4:53:
59:b9:08:ac:e9:f8:ab:bb:f7:51:dc:d6:fd:d5:b3:5d:1a:69:
04:13:80:f2:fd:30:5b:3f:54:fc:0d:62:85:76:66:b5:a9:44:
5d:32:d0:ea:5a:c7:55:f9:90:c2:bc:df:37:89:c8:de:8c:cc:
e6:32:ed:ce:26:3c:0d:0e:d6:94:e5:67:eb:4c:0d:71:17:0a:
5c:88:a9:be:fc:37:79:39:d1:42:45:1b:f2:9f:82:5a:48:e4:
87:45:10:39:c5:7d:ac:aa:9a:49:d7:26:20:f1:a5:3a:49:b8:
80:27:19:41:df:4e:eb:cd:31:05:08:fa:05:da:73:46:f1:60:
dc:cb:4b:c0:a6:22:51:ee:5a:58:bc:1d:3f:d2:64:79:2c:88:
4a:3a:2a:9f:85:75:f0:b0:73:a8:62:21:64:73:8c:d4:5c:f7:
54:1d:6b:54:5e:2d:b9:b1:0a:9b:b0:1c:68:a9:61:1b:9d:61:
c9:a3:57:5c:57:f8:18:a5:8d:47:5a:76:8a:f1:5e:eb:38:93:
8a:ab:9b:6b:4a:25:61:00:ab:f9:14:2d:c7:6c:4a:9c:bc:4d:
df:dc:06:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92QOQNCkvme9FNclcCqFkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5MWI1NDIyY2Q1NTc4ZDQ3MTVlYmU0YzUwOTcyMDI1MjNk
ZDU2NTgwHhcNMjUxMDE5MTkwMTIxWhcNMjUxMDIwMTkwMTIxWjAzMTEwLwYDVQQD
EyhmMjVlYjJlZmUzNzE2YzZlZDE4YTJiYmQxZDRhNmZmMWZkMTc0ZjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Mn3/BdFDAB2h8Zm0ywQjOa1InAo
KPsRLr9Y9i5qOlFvOHf1IrpWm+81ilVg1JiOuxvAUrQEdsqRBR3pG2GsiGId/iBv
m2GgeRYsmxPVB2Fnh+B1PWsSD3BIVrqs07+2dh89IZkB1zkFyhNqH/dnmqMizOxD
JBPKHHhpI5qxQQSsT6TNI4EfXVz3JUicrCJ90qXhlcqJjFENqtlds/KzPlzcMME8
AP+L689PXIYWhQ7PkdWBG3rwsFXGpB6MWxN7xjJWqvl2MoO9OREjdh87WhSv4IXC
iIZDQcMUSUiuQRa2zHKZcupfXvAsNWbGgIUrennIyalzzCZ3QQyRKIxbewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPJesu/jcWxu0YorvR1Kb/H9F0+PMB8GA1UdIwQY
MBaAFJkbVCLNVXjUcV6+TFCXICUj3VZYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVJ0VUlzMVZlTlJ4WHI1TVVKY2dKU1BkVmxnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy81ODExYzAtNmRhZS00ZGQ0LTk4N2Mt
ZDQ2ZmZjNTAxZjM2LzEvbVJ0VUlzMVZlTlJ4WHI1TVVKY2dKU1BkVmxnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy81ODExYzAtNmRhZS00ZGQ0LTk4N2MtZDQ2ZmZjNTAxZjM2
LzEvbVJ0VUlzMVZlTlJ4WHI1TVVKY2dKU1BkVmxnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmi1TdwI6
sFd4W8gA7WsqVo5u3WNV0ifvDphWZoWKihmxrMRTWbkIrOn4q7v3UdzW/dWzXRpp
BBOA8v0wWz9U/A1ihXZmtalEXTLQ6lrHVfmQwrzfN4nI3ozM5jLtziY8DQ7WlOVn
60wNcRcKXIipvvw3eTnRQkUb8p+CWkjkh0UQOcV9rKqaSdcmIPGlOkm4gCcZQd9O
680xBQj6BdpzRvFg3MtLwKYiUe5aWLwdP9JkeSyISjoqn4V18LBzqGIhZHOM1Fz3
VB1rVF4tubEKm7AcaKlhG51hyaNXXFf4GKWNR1p2ivFe6ziTiquba0olYQCr+RQt
x2xKnLxN39wGHw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:49:32 2025 by rpki-client