Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
File: rmRaywIXx0oP004XpT297lbwEeU.mft (raw, json)
Hash identifier: xlRwApLHuFQv2iR1fTt7R2Ht5fqNJXdWk2Ov/1hCcUo=
Subject key identifier: 72:F1:4C:C9:22:79:02:B7:4C:44:97:5A:DB:45:A1:D5:B4:57:CA:D1
Authority key identifier: AE:64:5A:CB:02:17:C7:4A:0F:D3:4E:17:A5:3D:BD:EE:56:F0:11:E5
Certificate issuer: /CN=ae645acb0217c74a0fd34e17a53dbdee56f011e5
Certificate serial: 0199FCC60826729D8D3456FDB7C9554A46E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
Manifest number: 10DA
Signing time: Sun 19 Oct 2025 14:01:00 +0000
Manifest this update: Sun 19 Oct 2025 14:01:00 +0000
Manifest next update: Mon 20 Oct 2025 14:01:00 +0000
Files and hashes: 1: 9gPdnlu8pzrUW3Ji0sxUHZw4ZQ4.roa (hash: tZpT15jv998HP7FRsRavbx2dzEDkME8mtW6HPMKG8Zg=)
2: rmRaywIXx0oP004XpT297lbwEeU.crl (hash: 5dfuwYwMA6+Ep9Kl10hJrE1TcMAJEWWnqK2bJIUR2EI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:08:26:72:9d:8d:34:56:fd:b7:c9:55:4a:46:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae645acb0217c74a0fd34e17a53dbdee56f011e5
Validity
Not Before: Oct 19 14:01:00 2025 GMT
Not After : Oct 20 14:01:00 2025 GMT
Subject: CN=72f14cc9227902b74c44975adb45a1d5b457cad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:65:f9:85:83:e2:9a:3c:d3:e7:70:44:f5:9f:
da:7d:95:09:76:6a:d5:54:bc:b0:61:85:1e:16:d9:
8b:12:9f:c2:b7:e0:cb:92:4b:1d:aa:5d:70:6a:1c:
1f:01:c9:52:d1:39:5a:8f:71:83:67:96:24:68:0d:
2e:ce:83:ca:f6:78:e5:fd:44:68:bf:ed:d7:23:4f:
59:16:4d:8e:a5:6e:25:8d:31:2b:7e:48:12:ab:fb:
44:20:b4:ff:2e:5c:f1:ca:c2:97:f7:02:b2:c4:8f:
b7:f4:ea:83:af:97:a2:f6:1a:ed:51:f1:b6:16:a1:
36:08:cf:7f:22:ab:41:82:8f:d2:a2:a9:9a:59:a9:
bd:9c:91:d0:53:84:a3:06:dc:f3:4d:30:a1:3c:88:
24:d6:5b:08:e4:1e:8f:20:b2:cf:20:55:8d:34:9c:
e0:5f:95:b2:86:e8:cb:97:b2:b2:0d:24:75:1e:bf:
f1:1d:e2:9a:4e:25:f4:7e:a7:fe:3c:c2:4c:a7:0b:
a1:2a:62:51:32:1d:87:28:24:fd:94:12:9e:f8:3d:
6a:9d:b2:e3:e6:08:28:40:43:99:0d:1a:dc:ee:c8:
6c:37:19:5a:82:10:e7:8f:c3:c6:ec:dc:02:b3:f8:
01:14:4c:25:56:88:a8:ec:a7:7d:0e:69:4e:9b:0b:
d7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:F1:4C:C9:22:79:02:B7:4C:44:97:5A:DB:45:A1:D5:B4:57:CA:D1
X509v3 Authority Key Identifier:
keyid:AE:64:5A:CB:02:17:C7:4A:0F:D3:4E:17:A5:3D:BD:EE:56:F0:11:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:1e:78:ce:c3:4b:45:ec:5b:5b:fb:48:af:3b:35:5b:ef:28:
7d:08:ab:fa:0b:6b:9a:09:35:95:fb:f1:57:61:a9:c4:f6:63:
e1:13:b0:75:00:57:8e:5c:e0:47:8c:35:07:f3:dd:89:96:b9:
3f:41:68:68:bd:7a:41:70:99:8f:db:69:c5:a9:c0:22:08:c6:
4d:ed:e9:9b:81:c5:1b:e7:13:7b:44:f9:36:24:3e:67:14:db:
09:63:fb:68:bb:34:f9:17:7f:28:e2:62:ee:30:53:57:a1:76:
e0:f1:7b:e5:49:f6:e6:e4:97:7a:b7:e7:fe:d5:5c:f2:6b:7b:
cd:83:d8:65:55:97:56:ad:4a:4a:89:9c:ad:68:6a:7a:4a:75:
0f:af:58:27:df:22:fa:5c:0d:c7:8f:00:95:e8:c5:63:e9:45:
bb:cf:dc:bb:ed:40:91:3e:fa:fc:b3:19:db:ac:6a:d2:2b:ad:
c2:87:e6:a9:34:ed:0f:8d:f5:2d:7a:43:64:ff:49:cc:1f:47:
5f:14:50:67:fd:71:af:cd:ed:06:1a:0f:e6:99:ac:7e:b9:a8:
ab:68:c5:10:e4:47:9c:c1:cd:6a:68:7e:93:ce:67:9a:49:79:
30:09:2e:8b:d4:13:17:56:5e:94:85:ea:89:4a:c4:15:f9:cf:
ca:0a:98:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xggmcp2NNFb9t8lVSkbiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlNjQ1YWNiMDIxN2M3NGEwZmQzNGUxN2E1M2RiZGVlNTZm
MDExZTUwHhcNMjUxMDE5MTQwMTAwWhcNMjUxMDIwMTQwMTAwWjAzMTEwLwYDVQQD
Eyg3MmYxNGNjOTIyNzkwMmI3NGM0NDk3NWFkYjQ1YTFkNWI0NTdjYWQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+GX5hYPimjzT53BE9Z/afZUJdmrV
VLywYYUeFtmLEp/Ct+DLkksdql1wahwfAclS0Tlaj3GDZ5YkaA0uzoPK9njl/URo
v+3XI09ZFk2OpW4ljTErfkgSq/tEILT/LlzxysKX9wKyxI+39OqDr5ei9hrtUfG2
FqE2CM9/IqtBgo/SoqmaWam9nJHQU4SjBtzzTTChPIgk1lsI5B6PILLPIFWNNJzg
X5WyhujLl7KyDSR1Hr/xHeKaTiX0fqf+PMJMpwuhKmJRMh2HKCT9lBKe+D1qnbLj
5ggoQEOZDRrc7shsNxlaghDnj8PG7NwCs/gBFEwlVoio7Kd9DmlOmwvXawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHLxTMkieQK3TESXWttFodW0V8rRMB8GA1UdIwQY
MBaAFK5kWssCF8dKD9NOF6U9ve5W8BHlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm1SYXl3SVh4MG9QMDA0WHBUMjk3bGJ3RWVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8wZWQzM2EtMWYxZC00MjgxLWFiMzkt
NDA4OTAxMzBkZDE4LzEvcm1SYXl3SVh4MG9QMDA0WHBUMjk3bGJ3RWVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC8wZWQzM2EtMWYxZC00MjgxLWFiMzktNDA4OTAxMzBkZDE4
LzEvcm1SYXl3SVh4MG9QMDA0WHBUMjk3bGJ3RWVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMh54zsNL
RexbW/tIrzs1W+8ofQir+gtrmgk1lfvxV2GpxPZj4ROwdQBXjlzgR4w1B/PdiZa5
P0FoaL16QXCZj9tpxanAIgjGTe3pm4HFG+cTe0T5NiQ+ZxTbCWP7aLs0+Rd/KOJi
7jBTV6F24PF75Un25uSXerfn/tVc8mt7zYPYZVWXVq1KSomcrWhqekp1D69YJ98i
+lwNx48AlejFY+lFu8/cu+1AkT76/LMZ26xq0iutwofmqTTtD431LXpDZP9JzB9H
XxRQZ/1xr83tBhoP5pmsfrmoq2jFEORHnMHNamh+k85nmkl5MAkui9QTF1ZelIXq
iUrEFfnPygqYUA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 21:12:32 2025 by rpki-client