Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft
File: TRCb5Q1A4ys9UW_B63LqsyxeC84.mft (raw, json)
Hash identifier: Tj0+TGWM1tcvVaS5DQdC0klOB7jvHyGrb0fYKkFqa6w=
Subject key identifier: AB:0F:2C:66:FF:D3:6F:1B:AD:94:E7:FA:4F:2F:8F:5E:DE:12:6A:28
Authority key identifier: 4D:10:9B:E5:0D:40:E3:2B:3D:51:6F:C1:EB:72:EA:B3:2C:5E:0B:CE
Certificate issuer: /CN=4d109be50d40e32b3d516fc1eb72eab32c5e0bce
Certificate serial: 0199FC2172F2B1B0A7A6535812837EFC45A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRCb5Q1A4ys9UW_B63LqsyxeC84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft
Manifest number: 01D7
Signing time: Sun 19 Oct 2025 11:01:14 +0000
Manifest this update: Sun 19 Oct 2025 11:01:14 +0000
Manifest next update: Mon 20 Oct 2025 11:01:14 +0000
Files and hashes: 1: TRCb5Q1A4ys9UW_B63LqsyxeC84.crl (hash: KB5Lx0oABL6WvpxgGlZktQHqszOrCtXptWmq1u9accg=)
2: _ysqE-Sv0fTgw_gy8qUtBvX43Zw.roa (hash: XDdFm9ijjrDqLsWMBsXWF0Txzhfv7gyIMnkn7RG7zb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRCb5Q1A4ys9UW_B63LqsyxeC84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:72:f2:b1:b0:a7:a6:53:58:12:83:7e:fc:45:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d109be50d40e32b3d516fc1eb72eab32c5e0bce
Validity
Not Before: Oct 19 11:01:14 2025 GMT
Not After : Oct 20 11:01:14 2025 GMT
Subject: CN=ab0f2c66ffd36f1bad94e7fa4f2f8f5ede126a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a3:db:b2:56:25:de:94:26:f1:aa:fe:32:2e:
8a:61:c7:10:cc:d7:32:ea:cb:9b:4e:d2:6e:8a:e3:
44:f7:ce:19:34:66:05:e7:22:48:18:6b:2e:6a:a4:
08:c1:5b:71:d1:da:0a:94:a7:f7:59:50:4d:7d:23:
92:5d:27:6b:d8:76:2e:86:1b:46:4d:66:b7:cb:bb:
dd:be:31:15:fa:58:73:ee:5f:b5:a8:94:ad:55:d2:
64:ad:89:89:12:58:50:80:e0:d1:a9:2c:1c:fd:0a:
fd:f9:0e:10:3c:e7:33:b3:b1:f5:80:c8:8c:77:e9:
6e:28:9d:0e:c7:50:9c:90:7e:81:9f:51:62:24:a4:
c6:13:b5:1f:66:e3:a0:34:5c:1b:4f:53:57:fa:dc:
b5:ac:66:f3:30:de:98:05:e4:94:b6:e0:e5:7a:9d:
37:6b:36:ab:34:d4:33:32:d8:92:b3:1a:b5:c8:36:
52:f1:f0:6d:0e:31:5d:c4:da:c6:e1:50:ce:b2:88:
65:27:85:f6:b6:c4:3a:ac:64:09:91:b7:bf:55:1a:
db:e1:1d:e8:4d:1c:52:12:71:44:a8:81:dd:1a:f3:
b6:d1:b1:a7:69:6a:95:dc:e8:6a:38:85:4f:b5:22:
38:b5:79:f1:ef:ec:13:b8:5b:fe:0c:13:c4:06:8b:
34:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:0F:2C:66:FF:D3:6F:1B:AD:94:E7:FA:4F:2F:8F:5E:DE:12:6A:28
X509v3 Authority Key Identifier:
keyid:4D:10:9B:E5:0D:40:E3:2B:3D:51:6F:C1:EB:72:EA:B3:2C:5E:0B:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRCb5Q1A4ys9UW_B63LqsyxeC84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:b4:27:09:3e:46:eb:61:5a:7a:1d:5c:51:cd:bb:18:95:8b:
1e:86:a3:55:c8:34:85:ae:8a:33:35:4d:57:7e:4f:f2:fa:7f:
3b:57:79:ab:23:73:f4:4a:1d:f1:d7:70:83:6a:e1:d4:f5:6d:
ef:63:0f:08:04:62:b5:5c:b5:27:7d:22:5c:41:4b:50:0a:c6:
13:68:e6:d9:87:07:f4:00:07:52:24:e4:71:fc:a2:3a:26:33:
27:f8:bc:9b:ae:23:8e:b2:03:86:65:0f:a3:30:8c:35:e8:e3:
8a:18:33:40:9a:af:03:47:31:5a:b2:d8:b6:89:aa:be:cd:2b:
28:5b:30:4e:f2:29:cf:4f:d4:a2:53:85:d4:e5:8d:7e:58:84:
d8:ba:44:53:ef:97:31:b3:06:18:6b:d4:70:13:97:c4:16:a8:
af:f8:8d:26:23:e3:84:f3:27:00:13:1e:3d:51:50:01:08:ec:
c0:de:29:2c:7a:53:49:66:f5:26:79:ba:b7:51:05:94:83:dc:
4c:0e:ea:3d:b7:f4:9c:cf:1a:87:a2:7d:44:34:a4:34:a2:89:
4e:33:76:d7:96:2f:b2:2d:bf:82:84:26:1b:55:43:0c:c1:70:
be:38:12:8a:e9:ac:ef:27:dc:c7:52:3e:28:0f:e8:8d:ab:8c:
b0:fa:3e:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8IXLysbCnplNYEoN+/EWkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkMTA5YmU1MGQ0MGUzMmIzZDUxNmZjMWViNzJlYWIzMmM1
ZTBiY2UwHhcNMjUxMDE5MTEwMTE0WhcNMjUxMDIwMTEwMTE0WjAzMTEwLwYDVQQD
EyhhYjBmMmM2NmZmZDM2ZjFiYWQ5NGU3ZmE0ZjJmOGY1ZWRlMTI2YTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuaPbslYl3pQm8ar+Mi6KYccQzNcy
6subTtJuiuNE984ZNGYF5yJIGGsuaqQIwVtx0doKlKf3WVBNfSOSXSdr2HYuhhtG
TWa3y7vdvjEV+lhz7l+1qJStVdJkrYmJElhQgODRqSwc/Qr9+Q4QPOczs7H1gMiM
d+luKJ0Ox1CckH6Bn1FiJKTGE7UfZuOgNFwbT1NX+ty1rGbzMN6YBeSUtuDlep03
azarNNQzMtiSsxq1yDZS8fBtDjFdxNrG4VDOsohlJ4X2tsQ6rGQJkbe/VRrb4R3o
TRxSEnFEqIHdGvO20bGnaWqV3OhqOIVPtSI4tXnx7+wTuFv+DBPEBos0bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKsPLGb/028brZTn+k8vj17eEmooMB8GA1UdIwQY
MBaAFE0Qm+UNQOMrPVFvwety6rMsXgvOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFJDYjVRMUE0eXM5VVdfQjYzTHFzeXhlQzg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8zNmViMzItOTVmYS00MmYzLThmZGYt
YWI5NTMzNzcyMzM5LzEvVFJDYjVRMUE0eXM5VVdfQjYzTHFzeXhlQzg0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC8zNmViMzItOTVmYS00MmYzLThmZGYtYWI5NTMzNzcyMzM5
LzEvVFJDYjVRMUE0eXM5VVdfQjYzTHFzeXhlQzg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAerQnCT5G
62Faeh1cUc27GJWLHoajVcg0ha6KMzVNV35P8vp/O1d5qyNz9Eod8ddwg2rh1PVt
72MPCARitVy1J30iXEFLUArGE2jm2YcH9AAHUiTkcfyiOiYzJ/i8m64jjrIDhmUP
ozCMNejjihgzQJqvA0cxWrLYtomqvs0rKFswTvIpz0/UolOF1OWNfliE2LpEU++X
MbMGGGvUcBOXxBaor/iNJiPjhPMnABMePVFQAQjswN4pLHpTSWb1Jnm6t1EFlIPc
TA7qPbf0nM8ah6J9RDSkNKKJTjN215Yvsi2/goQmG1VDDMFwvjgSiums7yfcx1I+
KA/ojauMsPo+lw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:29:56 2025 by rpki-client