Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
File: dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft (raw, json)
Hash identifier: 9DvQfFr6t/zhe/ZESPi879k6dzQ0h7QtxK6T7k3lEyo=
Subject key identifier: 69:57:41:23:00:80:B8:F4:D2:E1:3A:DB:FE:B4:5D:A5:E3:69:16:36
Authority key identifier: 74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
Certificate issuer: /CN=74b975898d10f1a5052133e1e25036c6114d8876
Certificate serial: 0199FBEBBACFE3186FD770299239D58598B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
Manifest number: 137C
Signing time: Sun 19 Oct 2025 10:02:33 +0000
Manifest this update: Sun 19 Oct 2025 10:02:33 +0000
Manifest next update: Mon 20 Oct 2025 10:02:33 +0000
Files and hashes: 1: dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl (hash: ukJTQf5BPaqtogOzFfqaE1cyRBK0TyLIFEunlN5I7NQ=)
2: z_2rtoFCvPkDkADqibZPjoJmwkw.roa (hash: q/SzHtsnHuDBpVkpEWhHESnMoXOnwPbEJuDNiDhbwHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:ba:cf:e3:18:6f:d7:70:29:92:39:d5:85:98:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b975898d10f1a5052133e1e25036c6114d8876
Validity
Not Before: Oct 19 10:02:33 2025 GMT
Not After : Oct 20 10:02:33 2025 GMT
Subject: CN=695741230080b8f4d2e13adbfeb45da5e3691636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:9f:e9:88:62:bd:e5:05:b2:b2:12:3a:34:60:
47:ea:88:0b:34:cb:04:cb:4f:2b:73:ff:a7:66:fb:
b9:b2:fe:0b:e4:73:d9:3a:05:a3:37:06:c2:b1:89:
1a:93:02:df:fb:32:08:14:7c:2d:b6:3b:da:b7:4d:
c1:f6:ff:9e:c5:5a:24:51:5f:fe:db:67:c4:df:b7:
de:21:c7:b2:3b:fd:f8:67:06:cd:aa:19:1e:fb:18:
9e:55:fd:db:38:9b:a6:92:07:3a:b8:68:32:46:74:
4a:24:7c:68:e9:45:1e:35:68:04:1e:49:c9:8e:c3:
03:20:f4:fc:fc:f8:f3:a2:e6:d6:6a:2f:d9:3c:a4:
47:dc:f0:04:73:10:8a:a2:d4:ea:bc:2c:53:35:a7:
e8:6b:b9:53:a1:cc:90:c3:03:bd:7f:8a:34:5f:cf:
69:ef:6e:57:8e:d5:62:84:fb:e3:d7:55:37:05:71:
72:9e:4f:36:ed:ba:f9:b9:4c:67:52:cf:eb:9c:66:
68:01:94:cf:19:b7:a0:0a:8a:54:87:2a:6d:18:47:
79:19:2e:4d:d6:1b:75:ed:33:45:da:79:7b:69:1d:
b8:bc:ab:e3:0f:61:3a:8e:7e:a0:a2:2c:77:71:7e:
8f:cb:9e:58:f4:34:37:fe:2d:b6:26:b0:04:73:c0:
60:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:57:41:23:00:80:B8:F4:D2:E1:3A:DB:FE:B4:5D:A5:E3:69:16:36
X509v3 Authority Key Identifier:
keyid:74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:ec:b0:54:d2:32:c0:a9:10:11:e3:61:d7:8c:d6:75:b4:67:
3f:3f:d0:62:15:f3:77:84:18:27:98:ff:06:2a:4d:3f:aa:c2:
1a:0e:be:41:72:5d:a6:5e:17:b1:dd:d4:78:9a:0e:d7:62:66:
5f:62:84:99:7b:aa:90:0b:d0:2d:d4:7e:f3:22:04:da:62:eb:
81:4a:7e:a9:ea:97:59:0c:39:57:31:3a:10:b6:55:0d:33:21:
e3:11:ea:4b:90:03:f1:23:e4:97:d7:b9:62:3e:13:f2:b2:ae:
8d:9e:c9:be:7d:e0:62:8a:a2:7c:f5:9e:bb:c9:e0:b3:9d:86:
8e:6c:ab:c5:93:11:e2:06:19:a5:04:71:63:a5:ae:41:af:dd:
83:6e:5f:33:ce:00:43:e3:46:65:24:6e:dd:cd:31:55:6a:df:
bf:fc:11:57:60:25:41:41:c7:80:47:ab:49:af:24:d2:a9:2a:
01:33:4a:66:2d:2e:c3:ed:ff:a5:a1:7c:47:3c:5e:b6:ed:40:
92:1a:ea:c8:99:9f:76:9b:a4:9b:d7:2a:7e:6a:54:c1:64:9c:
04:f8:20:94:ef:04:e8:67:6e:91:93:3c:cc:9f:bf:3d:78:26:
ed:15:fd:ba:a9:ec:d7:29:90:9a:b0:e3:bc:c4:9c:ef:ec:2a:
5d:f1:31:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn767rP4xhv13ApkjnVhZi5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0Yjk3NTg5OGQxMGYxYTUwNTIxMzNlMWUyNTAzNmM2MTE0
ZDg4NzYwHhcNMjUxMDE5MTAwMjMzWhcNMjUxMDIwMTAwMjMzWjAzMTEwLwYDVQQD
Eyg2OTU3NDEyMzAwODBiOGY0ZDJlMTNhZGJmZWI0NWRhNWUzNjkxNjM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA45/piGK95QWyshI6NGBH6ogLNMsE
y08rc/+nZvu5sv4L5HPZOgWjNwbCsYkakwLf+zIIFHwttjvat03B9v+exVokUV/+
22fE37feIceyO/34ZwbNqhke+xieVf3bOJumkgc6uGgyRnRKJHxo6UUeNWgEHknJ
jsMDIPT8/PjzoubWai/ZPKRH3PAEcxCKotTqvCxTNafoa7lTocyQwwO9f4o0X89p
725XjtVihPvj11U3BXFynk827br5uUxnUs/rnGZoAZTPGbegCopUhyptGEd5GS5N
1ht17TNF2nl7aR24vKvjD2E6jn6goix3cX6Py55Y9DQ3/i22JrAEc8BgnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGlXQSMAgLj00uE62/60XaXjaRY2MB8GA1UdIwQY
MBaAFHS5dYmNEPGlBSEz4eJQNsYRTYh2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZExsMWlZMFE4YVVGSVRQaDRsQTJ4aEZOaUhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC85ZGNkMGUtZjMxOS00NDAzLWIxNjQt
YjdjODcyZGQ5Njc1LzEvZExsMWlZMFE4YVVGSVRQaDRsQTJ4aEZOaUhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC85ZGNkMGUtZjMxOS00NDAzLWIxNjQtYjdjODcyZGQ5Njc1
LzEvZExsMWlZMFE4YVVGSVRQaDRsQTJ4aEZOaUhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASuywVNIy
wKkQEeNh14zWdbRnPz/QYhXzd4QYJ5j/BipNP6rCGg6+QXJdpl4Xsd3UeJoO12Jm
X2KEmXuqkAvQLdR+8yIE2mLrgUp+qeqXWQw5VzE6ELZVDTMh4xHqS5AD8SPkl9e5
Yj4T8rKujZ7Jvn3gYoqifPWeu8ngs52GjmyrxZMR4gYZpQRxY6WuQa/dg25fM84A
Q+NGZSRu3c0xVWrfv/wRV2AlQUHHgEerSa8k0qkqATNKZi0uw+3/paF8Rzxetu1A
khrqyJmfdpukm9cqfmpUwWScBPgglO8E6GdukZM8zJ+/PXgm7RX9uqns1ymQmrDj
vMSc7+wqXfEx6Q==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:07 2025 by rpki-client