Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
File: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft (raw, json)
Hash identifier: kKrm4Z+AD+g/QII2udHN0RhQPZNthufLd4/ollpSe5A=
Subject key identifier: ED:BB:F3:FE:C2:D5:FC:A5:16:48:5B:5E:B5:69:64:A6:5E:76:B4:BF
Authority key identifier: AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
Certificate issuer: /CN=ac328756dece8f29f97f41b81a087db524e159b7
Certificate serial: 0199FC219657FB7ED51F0D7C422FD04C71CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
Manifest number: 132D
Signing time: Sun 19 Oct 2025 11:01:23 +0000
Manifest this update: Sun 19 Oct 2025 11:01:23 +0000
Manifest next update: Mon 20 Oct 2025 11:01:23 +0000
Files and hashes: 1: KhThgn0FLgtxgLmV5WuQd88UjJs.roa (hash: UVyvP36EKpZylxYZtY94LC7cB1Xoy48Pim7visCwDUs=)
2: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl (hash: GhpL2/q8Js5hzDmgJzUg2+zB97N9TA0FD6vbTsvtz9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:96:57:fb:7e:d5:1f:0d:7c:42:2f:d0:4c:71:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac328756dece8f29f97f41b81a087db524e159b7
Validity
Not Before: Oct 19 11:01:23 2025 GMT
Not After : Oct 20 11:01:23 2025 GMT
Subject: CN=edbbf3fec2d5fca516485b5eb56964a65e76b4bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:22:f5:3b:7c:67:a8:8e:74:47:54:0c:c2:d6:
13:11:0b:11:43:0f:7f:99:f2:fa:bc:af:2f:ea:44:
38:5b:3d:6e:40:73:57:19:e7:87:e2:5b:c2:50:9a:
5f:76:67:d4:e1:54:63:d3:d2:3b:38:00:26:27:65:
ab:40:f4:c1:d2:11:a4:62:8b:64:87:cf:e4:c1:3b:
40:76:7a:1d:5b:3f:ba:04:57:5a:95:1f:a8:33:73:
fa:a1:aa:07:e1:6d:af:09:6e:c5:ff:be:88:3e:20:
86:48:dc:f6:76:b9:ce:b8:fb:f0:5b:c1:5c:d1:1b:
9d:f8:19:c8:fe:66:9b:d9:65:84:21:18:ae:d7:86:
98:ea:cf:14:c9:9e:7c:29:e9:60:84:d0:8b:26:3b:
e7:d6:68:81:5d:73:16:59:b5:e5:5d:f4:5a:2e:0e:
94:5a:83:6d:15:cf:5f:d2:03:af:c3:b2:7b:13:87:
ed:f4:09:9b:14:87:01:f5:01:9e:59:5f:d2:0f:91:
5a:81:0b:27:7b:f2:fa:04:19:e9:be:b3:84:45:55:
a1:53:56:0b:16:df:d3:0d:9e:7f:82:6d:55:b6:54:
45:57:22:b1:5e:1f:ea:b7:29:81:95:dd:2e:87:ef:
59:26:fe:0d:df:dd:f1:4a:96:9a:fe:5d:8b:5f:4f:
71:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:BB:F3:FE:C2:D5:FC:A5:16:48:5B:5E:B5:69:64:A6:5E:76:B4:BF
X509v3 Authority Key Identifier:
keyid:AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:84:da:7b:a3:1d:a0:21:50:ac:a8:45:35:da:b6:f2:09:13:
95:e8:bd:a6:ee:28:66:43:6e:84:10:1a:dd:23:1e:db:ac:8d:
19:bc:b5:cc:20:98:6b:a9:14:1e:41:c1:03:47:5d:59:9c:c7:
b6:c9:c4:00:c9:1d:8d:fd:24:0a:56:6c:53:b8:ad:65:13:6d:
d5:2d:72:42:f1:c1:8b:a8:ec:58:0d:2d:56:a1:c7:13:36:ab:
b2:6d:3f:a8:ef:48:81:7e:d2:c3:82:97:f5:02:14:17:e0:d1:
5e:52:47:c7:88:f7:e2:72:73:0e:30:c7:7b:0f:6f:ed:15:a0:
28:b7:57:55:89:4c:92:68:aa:6a:5a:f2:29:ed:c9:dc:6f:e9:
af:c8:b7:1d:5e:29:1b:d8:6f:e3:f0:8c:bc:81:88:e3:03:12:
83:48:43:56:57:32:c4:44:9d:64:cd:20:f1:c2:75:d2:f3:f8:
98:15:97:9c:c7:f8:5a:01:6a:66:e2:90:dd:45:d0:24:1b:ff:
e4:73:2d:ea:9b:a5:17:6b:7b:1e:ec:93:30:6b:e4:1e:78:c5:
00:04:01:d6:83:f1:3c:13:46:4f:18:16:74:d0:17:79:8b:fb:
09:80:14:c5:13:d3:bc:b7:63:75:65:8d:5d:c4:66:93:37:00:
32:4e:5e:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8IZZX+37VHw18Qi/QTHHOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjMzI4NzU2ZGVjZThmMjlmOTdmNDFiODFhMDg3ZGI1MjRl
MTU5YjcwHhcNMjUxMDE5MTEwMTIzWhcNMjUxMDIwMTEwMTIzWjAzMTEwLwYDVQQD
EyhlZGJiZjNmZWMyZDVmY2E1MTY0ODViNWViNTY5NjRhNjVlNzZiNGJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyL1O3xnqI50R1QMwtYTEQsRQw9/
mfL6vK8v6kQ4Wz1uQHNXGeeH4lvCUJpfdmfU4VRj09I7OAAmJ2WrQPTB0hGkYotk
h8/kwTtAdnodWz+6BFdalR+oM3P6oaoH4W2vCW7F/76IPiCGSNz2drnOuPvwW8Fc
0Rud+BnI/mab2WWEIRiu14aY6s8UyZ58KelghNCLJjvn1miBXXMWWbXlXfRaLg6U
WoNtFc9f0gOvw7J7E4ft9AmbFIcB9QGeWV/SD5FagQsne/L6BBnpvrOERVWhU1YL
Ft/TDZ5/gm1VtlRFVyKxXh/qtymBld0uh+9ZJv4N393xSpaa/l2LX09xNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO278/7C1fylFkhbXrVpZKZedrS/MB8GA1UdIwQY
MBaAFKwyh1bezo8p+X9BuBoIfbUk4Vm3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckRLSFZ0N09qeW41ZjBHNEdnaDl0U1RoV2JjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9mYjc4YWQtOTE4ZS00NGMyLTk1MDEt
MDI0YWQ0ZmIzNzA4LzEvckRLSFZ0N09qeW41ZjBHNEdnaDl0U1RoV2JjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9mYjc4YWQtOTE4ZS00NGMyLTk1MDEtMDI0YWQ0ZmIzNzA4
LzEvckRLSFZ0N09qeW41ZjBHNEdnaDl0U1RoV2JjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFoTae6Md
oCFQrKhFNdq28gkTlei9pu4oZkNuhBAa3SMe26yNGby1zCCYa6kUHkHBA0ddWZzH
tsnEAMkdjf0kClZsU7itZRNt1S1yQvHBi6jsWA0tVqHHEzarsm0/qO9IgX7Sw4KX
9QIUF+DRXlJHx4j34nJzDjDHew9v7RWgKLdXVYlMkmiqalryKe3J3G/pr8i3HV4p
G9hv4/CMvIGI4wMSg0hDVlcyxESdZM0g8cJ10vP4mBWXnMf4WgFqZuKQ3UXQJBv/
5HMt6pulF2t7HuyTMGvkHnjFAAQB1oPxPBNGTxgWdNAXeYv7CYAUxRPTvLdjdWWN
XcRmkzcAMk5eIA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:55:57 2025 by rpki-client