Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
File: D3jqRswh1F7WEmjUqfVnMsheIVA.mft (raw, json)
Hash identifier: yJLoxxX+YOOpzQRB4fSC7Y2bhmKviJDJ8I2cb4qi6UI=
Subject key identifier: 9A:D1:7C:D8:F9:52:55:93:CA:6F:39:7C:01:3E:AF:C7:E4:75:F0:EB
Authority key identifier: 0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
Certificate issuer: /CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Certificate serial: 0199FC216E49D86CCCCF64DEAA68E7B8C2BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 11:01:13 +0000
Manifest this update: Sun 19 Oct 2025 11:01:13 +0000
Manifest next update: Mon 20 Oct 2025 11:01:13 +0000
Files and hashes: 1: 8SQTxy_p8cY9en9UR93vjFnnH74.roa (hash: LPCNfHY24fbVR2x4GxfhYD0c8Fxi97g9FBcWFfU2h/o=)
2: D3jqRswh1F7WEmjUqfVnMsheIVA.crl (hash: aUDHH8R5GIydgndpuW9MPNuTfzW+XnC626oGTV82Qpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:6e:49:d8:6c:cc:cf:64:de:aa:68:e7:b8:c2:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Validity
Not Before: Oct 19 11:01:13 2025 GMT
Not After : Oct 20 11:01:13 2025 GMT
Subject: CN=9ad17cd8f9525593ca6f397c013eafc7e475f0eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:93:c1:81:e3:c8:ba:f6:eb:4a:82:72:03:b7:
6f:7d:01:98:64:90:87:92:ed:7a:c4:4a:31:b2:fc:
72:08:53:2a:5c:40:9d:78:e6:dc:91:30:dd:61:6e:
0c:aa:f9:8e:04:61:75:f6:a6:fe:2d:83:b7:69:ee:
08:77:3c:e9:fc:67:38:e3:2b:d7:66:ed:67:c7:b4:
46:0a:d3:29:5c:f3:cc:e7:3e:41:cf:4c:1b:5a:6d:
82:df:57:43:87:ad:38:cf:16:85:0b:f2:5a:0d:9f:
a6:c1:80:99:3e:bb:a8:7d:b9:85:01:e1:50:6f:30:
2a:75:e3:ff:86:fc:5e:a1:a8:b1:0c:94:76:47:64:
7d:cc:b4:d9:f5:ab:0b:88:eb:c9:28:f9:58:07:4c:
91:e0:24:ff:9a:61:5e:24:67:0c:db:47:6e:d2:ef:
aa:13:9b:a7:84:df:9c:c9:a9:c8:5f:3d:07:91:a3:
52:dc:13:40:e9:ff:94:65:63:71:9f:e4:d9:fb:e0:
76:70:87:3a:86:a3:8e:6d:17:05:01:72:80:4f:b9:
e4:e5:ee:a2:6e:96:53:e4:04:eb:73:8c:48:89:d9:
d0:3f:d4:30:06:5c:d0:73:58:31:64:a5:cd:63:97:
05:68:1e:34:32:11:37:e2:4b:c9:83:9a:4a:f2:ad:
1b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D1:7C:D8:F9:52:55:93:CA:6F:39:7C:01:3E:AF:C7:E4:75:F0:EB
X509v3 Authority Key Identifier:
keyid:0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:94:c4:63:1e:92:2c:d3:a2:a8:e6:59:29:58:4c:3d:be:58:
69:a6:c8:e4:85:ff:78:48:e2:95:4a:94:e5:95:52:c6:3d:69:
8f:3c:d4:62:6b:8e:ec:4b:d5:25:be:20:5e:4b:c8:2a:75:27:
af:c5:34:13:34:ad:93:ea:50:5a:d0:18:b6:48:b7:69:79:32:
9e:31:90:88:13:17:b5:12:07:7c:5f:a4:4a:e9:2b:88:c5:d4:
47:79:8a:10:37:ec:9b:a4:3a:0e:d5:ef:61:af:72:ab:09:6c:
91:60:4f:29:03:90:6a:12:e3:19:f0:98:62:15:1a:a6:3a:ef:
29:a6:7b:63:84:50:ce:d1:5a:60:2a:35:d8:75:88:11:27:d5:
06:b1:a7:a4:39:bb:aa:5b:a4:2e:33:8d:da:d1:44:ed:e1:e6:
58:34:ea:c9:bb:d7:fb:80:6f:32:9d:e3:d4:8b:d0:88:65:be:
0c:3a:b4:81:e2:8b:0f:e3:47:21:27:74:63:36:7d:6b:f7:05:
6d:14:dd:6c:2f:11:1c:24:b3:9e:7f:3d:bc:6c:08:93:0f:95:
35:ee:a0:76:dc:5b:be:da:56:e8:6a:8d:b1:8e:c3:54:7f:ef:
ab:88:f6:7b:dd:f0:c6:e9:c0:d5:71:12:c3:87:bb:b8:25:1e:
3f:e6:ec:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8IW5J2GzMz2TeqmjnuMK6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmNzhlYTQ2Y2MyMWQ0NWVkNjEyNjhkNGE5ZjU2NzMyYzg1
ZTIxNTAwHhcNMjUxMDE5MTEwMTEzWhcNMjUxMDIwMTEwMTEzWjAzMTEwLwYDVQQD
Eyg5YWQxN2NkOGY5NTI1NTkzY2E2ZjM5N2MwMTNlYWZjN2U0NzVmMGViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5PBgePIuvbrSoJyA7dvfQGYZJCH
ku16xEoxsvxyCFMqXECdeObckTDdYW4MqvmOBGF19qb+LYO3ae4Idzzp/Gc44yvX
Zu1nx7RGCtMpXPPM5z5Bz0wbWm2C31dDh604zxaFC/JaDZ+mwYCZPruofbmFAeFQ
bzAqdeP/hvxeoaixDJR2R2R9zLTZ9asLiOvJKPlYB0yR4CT/mmFeJGcM20du0u+q
E5unhN+cyanIXz0HkaNS3BNA6f+UZWNxn+TZ++B2cIc6hqOObRcFAXKAT7nk5e6i
bpZT5ATrc4xIidnQP9QwBlzQc1gxZKXNY5cFaB40MhE34kvJg5pK8q0bYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJrRfNj5UlWTym85fAE+r8fkdfDrMB8GA1UdIwQY
MBaAFA946kbMIdRe1hJo1Kn1ZzLIXiFQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDNqcVJzd2gxRjdXRW1qVXFmVm5Nc2hlSVZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8wMjE5YzEtYTU1MS00YjkxLTljYTMt
MDMyYjNiNjE0ZGQ4LzEvRDNqcVJzd2gxRjdXRW1qVXFmVm5Nc2hlSVZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi8wMjE5YzEtYTU1MS00YjkxLTljYTMtMDMyYjNiNjE0ZGQ4
LzEvRDNqcVJzd2gxRjdXRW1qVXFmVm5Nc2hlSVZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPpTEYx6S
LNOiqOZZKVhMPb5YaabI5IX/eEjilUqU5ZVSxj1pjzzUYmuO7EvVJb4gXkvIKnUn
r8U0EzStk+pQWtAYtki3aXkynjGQiBMXtRIHfF+kSukriMXUR3mKEDfsm6Q6DtXv
Ya9yqwlskWBPKQOQahLjGfCYYhUapjrvKaZ7Y4RQztFaYCo12HWIESfVBrGnpDm7
qlukLjON2tFE7eHmWDTqybvX+4BvMp3j1IvQiGW+DDq0geKLD+NHISd0YzZ9a/cF
bRTdbC8RHCSznn89vGwIkw+VNe6gdtxbvtpW6GqNsY7DVH/vq4j2e93wxunA1XES
w4e7uCUeP+bsyA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:18:07 2025 by rpki-client