Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
File: 3_XMSEiUO0_onSznH9weT_fX8-M.mft (raw, json)
Hash identifier: M0sxgGv39laFftyznWU6E2rrq/09WbXK/d4y/jxt3eQ=
Subject key identifier: FD:08:16:6B:0B:80:36:8F:7E:4E:E3:CD:3B:3D:B9:6E:D8:76:4B:A8
Authority key identifier: DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
Certificate issuer: /CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Certificate serial: 0199FE104F1DBF6AA59821A2D427030787E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
Manifest number: 16BF
Signing time: Sun 19 Oct 2025 20:01:45 +0000
Manifest this update: Sun 19 Oct 2025 20:01:45 +0000
Manifest next update: Mon 20 Oct 2025 20:01:45 +0000
Files and hashes: 1: 3_XMSEiUO0_onSznH9weT_fX8-M.crl (hash: 4Bn/51eSSxQEvxpqicWwWS+lEyBweuDZ+rewbbNblmA=)
2: EsL5vRvD6Hsz2Ac1BO5dG0iZtiE.roa (hash: 6YJicTgp9qVMpWAlIAbPHHma7brtZhgeBhN6tMg/gfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:10:4f:1d:bf:6a:a5:98:21:a2:d4:27:03:07:87:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Validity
Not Before: Oct 19 20:01:45 2025 GMT
Not After : Oct 20 20:01:45 2025 GMT
Subject: CN=fd08166b0b80368f7e4ee3cd3b3db96ed8764ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c1:fa:dd:66:03:da:4d:72:33:64:99:ab:f7:
8c:9f:e0:87:7a:50:54:bf:c9:0f:fd:26:dd:c3:ce:
40:c3:88:7e:b7:22:73:bd:65:50:cb:d5:f9:8f:db:
01:f8:17:d9:fe:8f:f9:b9:66:b6:fa:2f:2e:40:e6:
e9:2a:0c:2f:79:29:0d:26:82:73:13:35:03:97:8e:
e3:3b:43:cc:a8:48:11:6e:be:3d:b1:a3:da:8f:4b:
94:52:f3:2b:a6:97:2b:0f:da:95:9d:79:ec:7c:84:
d6:7e:71:f4:46:21:5e:3d:5c:cf:4b:99:c8:6e:15:
b7:d3:07:d8:d1:0b:a7:ea:5a:0d:be:33:6e:fb:f6:
d7:5e:11:ec:6f:e0:56:06:a2:b2:85:2c:3d:9c:81:
2f:91:b0:eb:f5:cd:dd:48:64:5b:88:ff:c2:18:c5:
c8:45:92:33:4e:e2:0b:6f:e1:e6:86:f4:13:18:6b:
55:88:73:46:10:a8:b9:b2:bd:7e:27:33:18:6d:b0:
56:a0:76:e8:3c:b8:2d:0f:76:a8:f0:aa:8a:04:15:
8d:d3:61:25:77:e1:50:93:d7:0c:e1:7f:35:bd:68:
de:d9:62:5c:db:0f:fe:0e:11:09:20:63:71:19:8e:
83:c6:db:11:d0:50:8c:8b:d8:29:3d:92:eb:b0:a1:
87:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:08:16:6B:0B:80:36:8F:7E:4E:E3:CD:3B:3D:B9:6E:D8:76:4B:A8
X509v3 Authority Key Identifier:
keyid:DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:7a:90:9e:f1:b6:24:a0:9f:36:d0:36:c3:1b:70:21:2d:95:
e1:40:93:e6:9a:57:62:2c:56:c4:37:57:c3:01:ac:10:53:2e:
11:38:dc:33:11:f6:b8:ab:dc:2b:44:a9:be:56:ec:7e:68:31:
d1:54:d8:57:82:9e:eb:80:f2:74:c4:88:0b:af:c3:fd:c4:63:
b0:6d:f9:c2:5e:ef:7d:06:ee:52:cc:db:fe:7e:ca:f2:4d:2f:
ca:c8:9b:a1:a2:ec:af:2f:44:6f:97:18:1a:45:03:92:e3:53:
e3:dd:1e:7c:96:ec:bb:63:04:06:6b:87:06:c2:96:40:ae:19:
27:ce:75:a4:62:88:c7:7e:ca:e3:ed:69:1d:53:7d:79:13:07:
04:38:9f:75:c1:ca:33:52:71:48:9a:a4:4a:60:5b:69:4f:f0:
e8:5d:77:eb:bb:2f:93:13:e7:f5:cb:72:fa:1c:32:b9:98:8e:
c1:ef:0c:d5:d6:10:2b:1b:a0:5d:83:bd:9a:85:6e:d0:5e:97:
69:46:2c:cc:ee:9e:ed:98:23:f0:6b:73:c0:aa:95:b1:35:2f:
2c:f9:ed:8d:ed:cb:46:07:a8:af:3a:58:a8:f7:b8:e8:bd:01:
bb:07:dd:3b:53:93:35:63:6d:0d:7a:f2:bb:47:00:8d:0b:32:
88:c3:59:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+EE8dv2qlmCGi1CcDB4flMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmZjVjYzQ4NDg5NDNiNGZlODlkMmNlNzFmZGMxZTRmZjdk
N2YzZTMwHhcNMjUxMDE5MjAwMTQ1WhcNMjUxMDIwMjAwMTQ1WjAzMTEwLwYDVQQD
EyhmZDA4MTY2YjBiODAzNjhmN2U0ZWUzY2QzYjNkYjk2ZWQ4NzY0YmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0sH63WYD2k1yM2SZq/eMn+CHelBU
v8kP/Sbdw85Aw4h+tyJzvWVQy9X5j9sB+BfZ/o/5uWa2+i8uQObpKgwveSkNJoJz
EzUDl47jO0PMqEgRbr49saPaj0uUUvMrppcrD9qVnXnsfITWfnH0RiFePVzPS5nI
bhW30wfY0Qun6loNvjNu+/bXXhHsb+BWBqKyhSw9nIEvkbDr9c3dSGRbiP/CGMXI
RZIzTuILb+HmhvQTGGtViHNGEKi5sr1+JzMYbbBWoHboPLgtD3ao8KqKBBWN02El
d+FQk9cM4X81vWje2WJc2w/+DhEJIGNxGY6DxtsR0FCMi9gpPZLrsKGHuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP0IFmsLgDaPfk7jzTs9uW7YdkuoMB8GA1UdIwQY
MBaAFN/1zEhIlDtP6J0s5x/cHk/31/PjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM19YTVNFaVVPMF9vblN6bkg5d2VUX2ZYOC1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNDE5ZWItMjMzMS00YmM3LThmMWIt
MjY4OWM4NTg3OGFkLzEvM19YTVNFaVVPMF9vblN6bkg5d2VUX2ZYOC1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mNDE5ZWItMjMzMS00YmM3LThmMWItMjY4OWM4NTg3OGFk
LzEvM19YTVNFaVVPMF9vblN6bkg5d2VUX2ZYOC1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAknqQnvG2
JKCfNtA2wxtwIS2V4UCT5ppXYixWxDdXwwGsEFMuETjcMxH2uKvcK0Spvlbsfmgx
0VTYV4Ke64DydMSIC6/D/cRjsG35wl7vfQbuUszb/n7K8k0vysiboaLsry9Eb5cY
GkUDkuNT490efJbsu2MEBmuHBsKWQK4ZJ851pGKIx37K4+1pHVN9eRMHBDifdcHK
M1JxSJqkSmBbaU/w6F1367svkxPn9cty+hwyuZiOwe8M1dYQKxugXYO9moVu0F6X
aUYszO6e7Zgj8GtzwKqVsTUvLPntje3LRgeorzpYqPe46L0BuwfdO1OTNWNtDXry
u0cAjQsyiMNZGg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 06:59:21 2025 by rpki-client