Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
File: toF3Ytn8jxGwHPUjS25DHPvsG80.mft (raw, json)
Hash identifier: ASJDApIOGDUKokZnAdZ5LH7g02TKe24moKspbWyWAJU=
Subject key identifier: 7E:42:D2:5E:B4:B5:94:08:C9:84:AB:E7:5A:55:8B:2F:B8:FF:A6:D6
Authority key identifier: B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
Certificate issuer: /CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Certificate serial: 0199FE0FDCF7DD137E30F0ED1F423EA3E384
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
Manifest number: 0A43
Signing time: Sun 19 Oct 2025 20:01:16 +0000
Manifest this update: Sun 19 Oct 2025 20:01:16 +0000
Manifest next update: Mon 20 Oct 2025 20:01:16 +0000
Files and hashes: 1: iFeMzfeEdL5eLiPhJVZH9fOR9os.roa (hash: Hluf44L3umjh9a1sEhuox24mM0+jKftFeuevrlqeW6M=)
2: toF3Ytn8jxGwHPUjS25DHPvsG80.crl (hash: tkFYWjAB80XEr9OSFhKVh3qoCNBgd91ebvJ19jdMTuc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:0f:dc:f7:dd:13:7e:30:f0:ed:1f:42:3e:a3:e3:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Validity
Not Before: Oct 19 20:01:16 2025 GMT
Not After : Oct 20 20:01:16 2025 GMT
Subject: CN=7e42d25eb4b59408c984abe75a558b2fb8ffa6d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c8:e7:7c:a4:c4:7b:57:32:0b:da:08:a0:9a:
8d:7b:e0:c8:8b:ec:d0:2a:44:be:ae:db:8e:90:98:
ce:dc:2f:9a:c8:f4:70:08:2c:02:50:b9:43:e8:96:
75:89:2b:13:4b:5a:06:1e:6c:f0:62:de:d8:53:b1:
80:76:ac:d2:a6:58:9b:92:42:7c:6c:8b:12:cb:ae:
0e:67:b4:88:5d:05:a6:b8:7c:14:03:b9:fb:55:31:
72:31:45:80:a7:b2:03:4c:e2:a8:08:d1:c8:a8:db:
70:14:0a:b4:6b:29:e6:d0:22:4d:a9:43:a1:27:1d:
3d:3a:61:58:35:ca:5d:05:79:02:62:e5:d4:d4:69:
a2:74:db:0c:6c:bc:01:bb:e3:0e:77:ad:ab:00:7b:
3b:96:d7:00:4b:e9:7a:cb:d9:e1:4c:f3:9e:e8:bd:
d8:1c:a1:75:62:b0:c8:d9:5e:7a:d0:ad:f6:05:99:
7d:f7:8b:39:9b:bc:d6:89:f7:ef:ee:b8:42:54:47:
00:3e:dc:3c:87:66:90:1d:c9:1b:95:27:00:7b:d1:
08:bb:88:de:ac:a1:78:2e:03:83:3c:ae:49:8b:8f:
b1:64:7f:01:40:77:0a:91:0d:1c:cc:5c:e5:bc:91:
83:b1:dc:e7:e8:b2:62:08:45:57:a4:70:28:2b:ba:
43:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:42:D2:5E:B4:B5:94:08:C9:84:AB:E7:5A:55:8B:2F:B8:FF:A6:D6
X509v3 Authority Key Identifier:
keyid:B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:93:73:c0:1c:97:4a:5f:1a:6e:02:c5:64:16:83:a8:2c:dc:
6d:41:9c:cc:06:f9:79:a7:5d:7d:0e:a1:07:49:86:a7:83:f9:
de:47:d4:a8:42:4d:d4:97:11:cb:5c:5d:7b:78:06:4e:13:b6:
de:b6:2f:4c:2c:09:43:13:e8:0c:34:17:6e:5f:c5:c6:2d:26:
0b:99:f0:37:49:28:a4:14:c3:60:7d:b0:c6:de:63:b0:0e:10:
c9:7a:3c:38:d5:51:6c:c4:ad:81:c6:ee:4b:6b:68:e4:26:91:
a2:43:f7:49:be:6a:e1:f5:49:71:6b:65:51:0f:8d:64:58:a0:
b3:b7:a4:f8:b6:2a:43:81:70:a7:11:c4:87:e9:73:e4:29:de:
03:69:c6:98:a7:b2:66:41:69:e6:63:b6:5c:d9:99:21:3b:13:
fe:06:54:e9:2b:8f:39:8b:e4:33:92:98:f8:68:8b:64:75:94:
e2:ee:c2:25:d2:bd:45:37:57:ff:5d:f2:9d:96:de:2b:fa:7b:
45:f6:de:47:59:60:0a:38:42:13:87:d7:68:89:2a:00:7a:35:
45:52:81:e3:35:11:3d:00:4e:ed:07:b7:97:e3:c2:4a:e9:9b:
9d:b8:1e:3f:08:6c:6b:c7:38:35:43:b9:09:d2:1f:32:23:e5:
c6:c8:e2:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+D9z33RN+MPDtH0I+o+OEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2ODE3NzYyZDlmYzhmMTFiMDFjZjUyMzRiNmU0MzFjZmJl
YzFiY2QwHhcNMjUxMDE5MjAwMTE2WhcNMjUxMDIwMjAwMTE2WjAzMTEwLwYDVQQD
Eyg3ZTQyZDI1ZWI0YjU5NDA4Yzk4NGFiZTc1YTU1OGIyZmI4ZmZhNmQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0MjnfKTEe1cyC9oIoJqNe+DIi+zQ
KkS+rtuOkJjO3C+ayPRwCCwCULlD6JZ1iSsTS1oGHmzwYt7YU7GAdqzSplibkkJ8
bIsSy64OZ7SIXQWmuHwUA7n7VTFyMUWAp7IDTOKoCNHIqNtwFAq0aynm0CJNqUOh
Jx09OmFYNcpdBXkCYuXU1GmidNsMbLwBu+MOd62rAHs7ltcAS+l6y9nhTPOe6L3Y
HKF1YrDI2V560K32BZl994s5m7zWiffv7rhCVEcAPtw8h2aQHckblScAe9EIu4je
rKF4LgODPK5Ji4+xZH8BQHcKkQ0czFzlvJGDsdzn6LJiCEVXpHAoK7pDTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH5C0l60tZQIyYSr51pViy+4/6bWMB8GA1UdIwQY
MBaAFLaBd2LZ/I8RsBz1I0tuQxz77BvNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdG9GM1l0bjhqeEd3SFBValMyNURIUHZzRzgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8xZTYzYTMtYjMwNi00MTNhLWFkZjQt
ZDNmMjY1YWQ1MTRmLzEvdG9GM1l0bjhqeEd3SFBValMyNURIUHZzRzgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8xZTYzYTMtYjMwNi00MTNhLWFkZjQtZDNmMjY1YWQ1MTRm
LzEvdG9GM1l0bjhqeEd3SFBValMyNURIUHZzRzgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlpNzwByX
Sl8abgLFZBaDqCzcbUGczAb5eaddfQ6hB0mGp4P53kfUqEJN1JcRy1xde3gGThO2
3rYvTCwJQxPoDDQXbl/Fxi0mC5nwN0kopBTDYH2wxt5jsA4QyXo8ONVRbMStgcbu
S2to5CaRokP3Sb5q4fVJcWtlUQ+NZFigs7ek+LYqQ4FwpxHEh+lz5CneA2nGmKey
ZkFp5mO2XNmZITsT/gZU6SuPOYvkM5KY+GiLZHWU4u7CJdK9RTdX/13ynZbeK/p7
RfbeR1lgCjhCE4fXaIkqAHo1RVKB4zURPQBO7Qe3l+PCSumbnbgePwhsa8c4NUO5
CdIfMiPlxsji1g==
-----END CERTIFICATE-----
Generated at Mon Oct 20 02:52:28 2025 by rpki-client