Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
File: DLvQEU2XGWdQ1IxeElbtBVpeniw.mft (raw, json)
Hash identifier: fc2T9+3FmtnW7rMeZwjqchrv1a09kvLNLdE8EYwzZ7A=
Subject key identifier: E6:F8:6E:B7:9C:D1:72:56:7C:30:F9:72:4F:FC:42:50:0A:09:35:79
Authority key identifier: 0C:BB:D0:11:4D:97:19:67:50:D4:8C:5E:12:56:ED:05:5A:5E:9E:2C
Certificate issuer: /CN=0cbbd0114d97196750d48c5e1256ed055a5e9e2c
Certificate serial: 0199FC216DBCE2A617F43611E2DD1C5AFD11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
Manifest number: 0B3A
Signing time: Sun 19 Oct 2025 11:01:13 +0000
Manifest this update: Sun 19 Oct 2025 11:01:13 +0000
Manifest next update: Mon 20 Oct 2025 11:01:13 +0000
Files and hashes: 1: C1pdtFvgr0xoHUm63plkKuj-C_Y.roa (hash: b/y/wC9aBMLG4uCve6DdHlmgdXRsPrspZQT4HGYlIp0=)
2: DLvQEU2XGWdQ1IxeElbtBVpeniw.crl (hash: xHSLJ/ddd1XIhrPT96xihAy/m/Ptvob0x0d71EoODF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:6d:bc:e2:a6:17:f4:36:11:e2:dd:1c:5a:fd:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cbbd0114d97196750d48c5e1256ed055a5e9e2c
Validity
Not Before: Oct 19 11:01:13 2025 GMT
Not After : Oct 20 11:01:13 2025 GMT
Subject: CN=e6f86eb79cd172567c30f9724ffc42500a093579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0f:c8:98:99:2d:bb:3e:be:b5:4e:b8:55:3e:
0d:d1:21:d3:a2:07:f3:0d:e9:b7:9c:28:76:82:96:
5d:b3:85:78:d7:53:2f:1f:cf:73:d8:d9:fa:76:a1:
c9:5f:1f:1a:31:9c:c0:1b:1b:a0:f9:df:ce:83:ad:
8a:da:5a:30:04:3e:66:22:b0:a9:c9:1b:0b:c3:10:
ac:5f:c2:29:12:9b:d6:82:5d:dd:d4:a4:49:e0:5b:
e2:0c:c8:a8:f9:08:0f:a1:75:f7:6e:6c:6a:38:8b:
50:bf:08:42:bb:25:df:4b:7c:08:48:ee:51:68:8f:
e9:25:fa:31:b8:80:88:5f:a1:1d:6c:97:f7:c2:c3:
43:72:2f:2e:c4:b7:b6:c1:e2:1d:59:9b:02:f2:09:
da:f1:a3:39:6b:ce:e1:1e:ec:ab:50:76:07:74:7e:
5f:ed:f5:2b:5a:52:04:28:04:4f:25:7c:7a:fc:60:
08:42:87:78:99:42:e5:16:86:2d:40:69:b8:42:bf:
02:eb:6b:fc:34:1b:3b:68:7e:07:18:ab:b9:a6:1e:
5c:92:d9:fd:12:59:8d:6b:b8:26:21:c8:e5:b5:f0:
c9:84:ca:7e:c6:d9:66:07:3d:ba:59:4c:af:f8:86:
d0:96:c1:af:84:b2:88:8e:cf:fc:15:bb:58:ae:7f:
24:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F8:6E:B7:9C:D1:72:56:7C:30:F9:72:4F:FC:42:50:0A:09:35:79
X509v3 Authority Key Identifier:
keyid:0C:BB:D0:11:4D:97:19:67:50:D4:8C:5E:12:56:ED:05:5A:5E:9E:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:b6:aa:20:ea:50:24:ab:b7:a5:d8:ba:d8:e7:1f:28:ba:9e:
bd:ed:db:eb:e7:69:64:4f:b0:81:e8:a6:58:c2:07:85:5a:14:
13:1b:a9:01:14:a6:30:2a:d9:3e:c3:8a:69:95:ba:ba:aa:75:
ed:e0:50:29:97:29:70:55:5d:ca:d5:2b:5d:2d:52:4b:89:79:
6e:bf:3e:24:65:68:1f:b8:66:24:f2:14:be:aa:78:0c:37:d4:
4a:9a:fe:f1:d8:48:50:bb:8c:55:8e:1d:76:d7:1b:54:34:cc:
e8:22:e6:01:f9:c2:3c:be:24:eb:a2:9a:21:5f:0c:e1:d1:2d:
a5:a3:ed:be:24:bc:31:71:4a:54:37:48:74:d0:fe:5b:11:ed:
10:1c:e1:cd:7f:ba:32:f8:a6:90:eb:f2:11:08:59:e8:62:bf:
ed:c4:0d:d6:36:3c:35:11:a4:29:39:52:d3:a2:dd:69:4a:ba:
b9:52:71:32:ec:db:eb:44:6a:13:24:2c:d3:c8:a3:e3:f6:ba:
a7:7b:bd:b8:75:97:2e:c8:66:25:2e:b0:83:e3:b7:6b:34:b7:
e3:77:4c:54:6e:36:df:6b:85:2f:03:23:fa:5e:48:63:1a:84:
12:0c:7b:d6:99:38:ed:67:c5:2d:63:16:67:1c:dc:76:0e:68:
73:9b:9a:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8IW284qYX9DYR4t0cWv0RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjYmJkMDExNGQ5NzE5Njc1MGQ0OGM1ZTEyNTZlZDA1NWE1
ZTllMmMwHhcNMjUxMDE5MTEwMTEzWhcNMjUxMDIwMTEwMTEzWjAzMTEwLwYDVQQD
EyhlNmY4NmViNzljZDE3MjU2N2MzMGY5NzI0ZmZjNDI1MDBhMDkzNTc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvw/ImJktuz6+tU64VT4N0SHTogfz
Dem3nCh2gpZds4V411MvH89z2Nn6dqHJXx8aMZzAGxug+d/Og62K2lowBD5mIrCp
yRsLwxCsX8IpEpvWgl3d1KRJ4FviDMio+QgPoXX3bmxqOItQvwhCuyXfS3wISO5R
aI/pJfoxuICIX6EdbJf3wsNDci8uxLe2weIdWZsC8gna8aM5a87hHuyrUHYHdH5f
7fUrWlIEKARPJXx6/GAIQod4mULlFoYtQGm4Qr8C62v8NBs7aH4HGKu5ph5cktn9
ElmNa7gmIcjltfDJhMp+xtlmBz26WUyv+IbQlsGvhLKIjs/8FbtYrn8ktQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOb4brec0XJWfDD5ck/8QlAKCTV5MB8GA1UdIwQY
MBaAFAy70BFNlxlnUNSMXhJW7QVaXp4sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREx2UUVVMlhHV2RRMUl4ZUVsYnRCVnBlbml3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8yYTFiNGUtZDc1NC00NDNjLWEzNjAt
YWZiNTY2Y2RmYWM2LzEvREx2UUVVMlhHV2RRMUl4ZUVsYnRCVnBlbml3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC8yYTFiNGUtZDc1NC00NDNjLWEzNjAtYWZiNTY2Y2RmYWM2
LzEvREx2UUVVMlhHV2RRMUl4ZUVsYnRCVnBlbml3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKLaqIOpQ
JKu3pdi62OcfKLqeve3b6+dpZE+wgeimWMIHhVoUExupARSmMCrZPsOKaZW6uqp1
7eBQKZcpcFVdytUrXS1SS4l5br8+JGVoH7hmJPIUvqp4DDfUSpr+8dhIULuMVY4d
dtcbVDTM6CLmAfnCPL4k66KaIV8M4dEtpaPtviS8MXFKVDdIdND+WxHtEBzhzX+6
MvimkOvyEQhZ6GK/7cQN1jY8NRGkKTlS06LdaUq6uVJxMuzb60RqEyQs08ij4/a6
p3u9uHWXLshmJS6wg+O3azS343dMVG4232uFLwMj+l5IYxqEEgx71pk47WfFLWMW
Zxzcdg5oc5uaLg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:07:11 2025 by rpki-client