Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
File: v99XKOyr1W70Y3NWlVhmylRoaRo.mft (raw, json)
Hash identifier: UxlmNMjFNyahx28fBu4ukE5mv6se2e4fM8otLFeJLnE=
Subject key identifier: 4B:AD:5E:F7:E8:D5:EA:1F:F4:4F:A1:E2:40:16:D0:3F:5F:4C:FC:FE
Authority key identifier: BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
Certificate issuer: /CN=bfdf5728ecabd56ef4637356955866ca5468691a
Certificate serial: 0199FCC6221396D92CD539788CF6CA84AB37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
Manifest number: 0305
Signing time: Sun 19 Oct 2025 14:01:07 +0000
Manifest this update: Sun 19 Oct 2025 14:01:07 +0000
Manifest next update: Mon 20 Oct 2025 14:01:07 +0000
Files and hashes: 1: 5ZRHOA8DDg_XhJ8JjCvhTOGiC1w.roa (hash: eWpgjaoVJC0L+xFRvzTJa/HrtM2zzM7SykfE1sq9g2I=)
2: v99XKOyr1W70Y3NWlVhmylRoaRo.crl (hash: idutznGBDM2kz5fwQbCaTKmC4fVLaejgJ0saqWSPmJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:22:13:96:d9:2c:d5:39:78:8c:f6:ca:84:ab:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfdf5728ecabd56ef4637356955866ca5468691a
Validity
Not Before: Oct 19 14:01:07 2025 GMT
Not After : Oct 20 14:01:07 2025 GMT
Subject: CN=4bad5ef7e8d5ea1ff44fa1e24016d03f5f4cfcfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:46:94:cc:16:8e:59:e2:0b:73:e3:16:8e:f2:
57:5e:9b:ec:b1:45:84:a7:75:07:60:df:cb:94:b0:
10:8f:91:6d:4c:73:90:73:4e:3e:4e:cc:ee:bd:ad:
86:3a:f1:ce:34:b4:05:2a:19:a8:3c:86:61:68:ce:
4b:14:ae:28:cb:50:64:f6:59:18:91:bc:89:de:bf:
98:e6:a6:2a:cb:ed:41:68:b5:e7:a8:5b:68:e2:96:
35:94:cf:c0:14:6d:6b:1d:2b:1f:20:f4:04:9f:d7:
ca:e0:86:c1:41:3b:2e:b1:02:d5:48:cc:59:80:aa:
0c:8f:64:6b:b0:12:42:e2:4f:d7:ee:24:3c:31:d9:
dd:41:50:d3:c7:f2:08:e1:3d:dc:56:70:6a:d8:39:
a2:d8:6d:10:56:29:eb:e7:51:53:3f:83:f9:94:6b:
3a:14:00:64:46:d7:e4:69:c6:ff:6b:f3:b6:88:8a:
af:2d:b5:87:7d:e2:1b:c9:de:eb:18:1d:c5:f5:b2:
d1:3e:d2:58:3f:d4:72:2d:ff:a0:92:a2:0f:e9:f3:
16:74:bb:79:82:7c:a6:bd:d5:ce:5a:0b:4d:ec:f4:
b4:ee:29:ea:df:c8:86:0f:2e:d8:27:b2:cb:45:1d:
8b:8a:00:a8:e7:07:fa:e8:00:e6:2e:51:c3:53:3e:
27:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:AD:5E:F7:E8:D5:EA:1F:F4:4F:A1:E2:40:16:D0:3F:5F:4C:FC:FE
X509v3 Authority Key Identifier:
keyid:BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:23:0f:20:eb:d4:71:f1:63:27:b0:5b:8b:b1:e8:d9:73:de:
5d:bf:92:3b:21:52:30:7b:f3:8e:76:c0:b2:75:3a:7b:1f:b9:
8e:9c:43:e7:d9:6b:9e:02:68:47:0b:71:ac:e4:66:45:93:80:
68:14:7f:71:cb:e5:b7:97:f2:47:c3:a5:0b:78:f4:61:dd:92:
89:0f:13:59:04:42:b7:4f:8b:1e:32:cf:82:b6:77:34:40:34:
81:90:ec:4c:1e:9a:5e:f0:f7:7c:9b:a0:da:32:85:dc:2b:d0:
d9:9a:4e:17:8b:f7:d8:08:70:e2:58:d6:dc:ca:de:80:4e:9b:
3b:2f:6c:a3:7f:e2:e4:d2:66:6b:10:84:b5:f2:7c:d3:5d:9f:
fc:bc:b8:12:88:6e:35:d3:eb:d2:11:27:1a:53:35:88:d6:47:
16:74:e5:d1:bb:62:d3:a7:92:00:00:8b:9f:8e:fd:de:8c:db:
70:95:02:2f:a0:ae:23:19:93:dc:6d:c3:bc:f1:36:78:f5:87:
2b:f7:af:1a:28:ec:57:f5:7d:2a:69:2f:f3:61:91:bf:8f:ff:
9b:af:86:fb:d7:c5:f2:66:6f:d1:80:87:8c:88:73:1a:fa:14:
33:f3:a9:f8:f2:e8:51:36:89:43:d1:bc:f9:58:a9:ca:78:38:
cd:e7:9b:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xiITltks1Tl4jPbKhKs3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmZGY1NzI4ZWNhYmQ1NmVmNDYzNzM1Njk1NTg2NmNhNTQ2
ODY5MWEwHhcNMjUxMDE5MTQwMTA3WhcNMjUxMDIwMTQwMTA3WjAzMTEwLwYDVQQD
Eyg0YmFkNWVmN2U4ZDVlYTFmZjQ0ZmExZTI0MDE2ZDAzZjVmNGNmY2ZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1EaUzBaOWeILc+MWjvJXXpvssUWE
p3UHYN/LlLAQj5FtTHOQc04+Tszuva2GOvHONLQFKhmoPIZhaM5LFK4oy1Bk9lkY
kbyJ3r+Y5qYqy+1BaLXnqFto4pY1lM/AFG1rHSsfIPQEn9fK4IbBQTsusQLVSMxZ
gKoMj2RrsBJC4k/X7iQ8MdndQVDTx/II4T3cVnBq2Dmi2G0QVinr51FTP4P5lGs6
FABkRtfkacb/a/O2iIqvLbWHfeIbyd7rGB3F9bLRPtJYP9RyLf+gkqIP6fMWdLt5
gnymvdXOWgtN7PS07inq38iGDy7YJ7LLRR2LigCo5wf66ADmLlHDUz4nswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEutXvfo1eof9E+h4kAW0D9fTPz+MB8GA1UdIwQY
MBaAFL/fVyjsq9Vu9GNzVpVYZspUaGkaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjk5WEtPeXIxVzcwWTNOV2xWaG15bFJvYVJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi9mY2YzMjItMTdjMS00ZjQwLWE2MTgt
YmQxNGQzNDRiYmYyLzEvdjk5WEtPeXIxVzcwWTNOV2xWaG15bFJvYVJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi9mY2YzMjItMTdjMS00ZjQwLWE2MTgtYmQxNGQzNDRiYmYy
LzEvdjk5WEtPeXIxVzcwWTNOV2xWaG15bFJvYVJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOyMPIOvU
cfFjJ7Bbi7Ho2XPeXb+SOyFSMHvzjnbAsnU6ex+5jpxD59lrngJoRwtxrORmRZOA
aBR/ccvlt5fyR8OlC3j0Yd2SiQ8TWQRCt0+LHjLPgrZ3NEA0gZDsTB6aXvD3fJug
2jKF3CvQ2ZpOF4v32Ahw4ljW3MregE6bOy9so3/i5NJmaxCEtfJ8012f/Ly4Eohu
NdPr0hEnGlM1iNZHFnTl0bti06eSAACLn4793ozbcJUCL6CuIxmT3G3DvPE2ePWH
K/evGijsV/V9Kmkv82GRv4//m6+G+9fF8mZv0YCHjIhzGvoUM/Op+PLoUTaJQ9G8
+Vipyng4zeebPg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:40:57 2025 by rpki-client