Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
File: cd9sdT6ghb7zcrOSYw90uldpbuU.mft (raw, json)
Hash identifier: pqG0SvVTfpv/ZyDvRV9lrgm2jK0gIRtlC7sLL+LwPoY=
Subject key identifier: EC:EB:16:02:70:49:B0:A7:8B:DC:14:76:29:69:21:6C:F9:75:11:FA
Authority key identifier: 71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5
Certificate issuer: /CN=71df6c753ea085bef372b392630f74ba57696ee5
Certificate serial: 0199FBEBBA95668A6BB9E1CFD24B92BE0144
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
Manifest number: 13F3
Signing time: Sun 19 Oct 2025 10:02:33 +0000
Manifest this update: Sun 19 Oct 2025 10:02:33 +0000
Manifest next update: Mon 20 Oct 2025 10:02:33 +0000
Files and hashes: 1: 26OroNSilLDsLnRmS90OawnRg8M.roa (hash: 2vZiL1ss373Q0TX+B8Q8SMDZKCr1m9fpyjjeqgVg0rI=)
2: cd9sdT6ghb7zcrOSYw90uldpbuU.crl (hash: 4LsKpEPe2/gO4bfEZylMBs7VRB+DOHY8mvfzrVKBw9A=)
3: yFq0JfOaNjdhRiNZMahKgBz5pBs.roa (hash: HLvs21UJM8ndMu/vC6YjvpshtGffGUPV1RHDv0ERCAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:ba:95:66:8a:6b:b9:e1:cf:d2:4b:92:be:01:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71df6c753ea085bef372b392630f74ba57696ee5
Validity
Not Before: Oct 19 10:02:33 2025 GMT
Not After : Oct 20 10:02:33 2025 GMT
Subject: CN=eceb16027049b0a78bdc14762969216cf97511fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:33:d6:45:b6:c2:af:d4:91:73:84:1f:7f:40:
08:71:62:c7:2d:42:61:c8:3d:d8:91:d2:d3:7e:e4:
95:44:90:62:6a:f5:41:47:c9:92:b4:55:4a:d5:fd:
62:58:99:30:2c:38:0b:51:7c:34:84:ed:5a:72:76:
e5:db:f1:58:d8:5d:77:6e:10:9f:53:d6:4d:38:c5:
55:e4:b8:7d:53:b9:0a:37:6b:8a:bb:71:b8:dd:7b:
16:94:72:64:9f:f8:1d:f8:e1:9a:05:53:51:1c:88:
1f:d7:6a:b0:8b:ab:6a:8c:0d:fd:e9:2a:6c:f5:8a:
d0:32:64:f7:1c:57:37:39:27:94:8f:77:73:14:79:
1d:d0:2b:e6:51:09:67:8e:0c:56:96:cd:93:6f:3d:
0f:b3:8d:9c:85:2a:c3:c8:83:d8:0f:4f:f4:08:9f:
22:b9:7b:48:a7:fa:26:e0:f5:98:0b:09:7f:b9:48:
cd:0e:2d:77:b9:ea:95:dc:cf:2d:bd:9b:9f:2a:41:
17:3e:ed:45:86:83:d9:2e:1d:e4:91:6d:32:8a:87:
1d:e2:40:94:df:bc:03:00:1d:1d:66:69:64:3e:50:
95:78:28:09:2d:e0:f6:90:4a:83:ba:17:e5:07:14:
4f:b6:7c:29:d3:2a:3c:e4:30:42:35:a8:54:d2:c2:
80:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:EB:16:02:70:49:B0:A7:8B:DC:14:76:29:69:21:6C:F9:75:11:FA
X509v3 Authority Key Identifier:
keyid:71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:6a:b5:d6:cf:98:43:59:b5:22:e1:f0:3f:8c:84:77:53:7d:
0f:77:dc:87:20:42:3b:02:99:93:ee:a5:e3:d1:c2:c5:7a:8a:
c1:b3:8a:5c:8b:a1:be:52:1b:af:87:62:5c:b0:78:52:3b:f5:
09:40:05:5b:7a:60:12:80:42:d8:9a:54:84:67:da:a4:1a:32:
92:8a:b8:cb:96:67:1d:d3:c7:54:d0:ff:13:34:13:84:35:76:
0a:c4:ac:c0:b5:5a:c4:bc:ee:38:3f:fb:9f:33:33:5a:35:52:
ab:b2:17:8c:0b:71:57:fd:d9:a8:ac:ca:22:c6:5b:a5:2d:48:
fb:74:0f:c3:7c:fc:29:bc:2e:c2:5c:ad:18:cf:0c:dd:4c:bd:
8e:e0:5d:72:55:09:f9:69:14:b7:34:25:61:d9:f6:5a:a8:27:
4e:18:8a:f5:8d:26:04:df:58:24:6f:f1:60:8e:e3:f2:29:b7:
d0:38:63:da:1d:cb:3c:4c:a0:cd:7d:f8:b0:e4:83:de:e3:b6:
f6:da:0a:cd:f5:0b:f9:56:f5:ea:b9:6f:07:82:39:37:d9:fc:
7a:45:67:2e:95:95:f7:88:6c:bd:f2:ca:8b:c5:14:29:6c:69:
73:df:ab:19:e2:d4:47:3d:d5:fd:ee:a8:98:ce:3b:65:79:3f:
0f:f9:c3:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn767qVZoprueHP0kuSvgFEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxZGY2Yzc1M2VhMDg1YmVmMzcyYjM5MjYzMGY3NGJhNTc2
OTZlZTUwHhcNMjUxMDE5MTAwMjMzWhcNMjUxMDIwMTAwMjMzWjAzMTEwLwYDVQQD
EyhlY2ViMTYwMjcwNDliMGE3OGJkYzE0NzYyOTY5MjE2Y2Y5NzUxMWZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnTPWRbbCr9SRc4Qff0AIcWLHLUJh
yD3YkdLTfuSVRJBiavVBR8mStFVK1f1iWJkwLDgLUXw0hO1acnbl2/FY2F13bhCf
U9ZNOMVV5Lh9U7kKN2uKu3G43XsWlHJkn/gd+OGaBVNRHIgf12qwi6tqjA396Sps
9YrQMmT3HFc3OSeUj3dzFHkd0CvmUQlnjgxWls2Tbz0Ps42chSrDyIPYD0/0CJ8i
uXtIp/om4PWYCwl/uUjNDi13ueqV3M8tvZufKkEXPu1FhoPZLh3kkW0yiocd4kCU
37wDAB0dZmlkPlCVeCgJLeD2kEqDuhflBxRPtnwp0yo85DBCNahU0sKARwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOzrFgJwSbCni9wUdilpIWz5dRH6MB8GA1UdIwQY
MBaAFHHfbHU+oIW+83KzkmMPdLpXaW7lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9jNTk0ODQtYjA3YS00Y2ExLWFiY2Qt
YTgzODQ1Y2FhYzIxLzEvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy9jNTk0ODQtYjA3YS00Y2ExLWFiY2QtYTgzODQ1Y2FhYzIx
LzEvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV2q11s+Y
Q1m1IuHwP4yEd1N9D3fchyBCOwKZk+6l49HCxXqKwbOKXIuhvlIbr4diXLB4Ujv1
CUAFW3pgEoBC2JpUhGfapBoykoq4y5ZnHdPHVND/EzQThDV2CsSswLVaxLzuOD/7
nzMzWjVSq7IXjAtxV/3ZqKzKIsZbpS1I+3QPw3z8KbwuwlytGM8M3Uy9juBdclUJ
+WkUtzQlYdn2WqgnThiK9Y0mBN9YJG/xYI7j8im30Dhj2h3LPEygzX34sOSD3uO2
9toKzfUL+Vb16rlvB4I5N9n8ekVnLpWV94hsvfLKi8UUKWxpc9+rGeLURz3V/e6o
mM47ZXk/D/nDSQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:04:59 2025 by rpki-client