Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
File: cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft (raw, json)
Hash identifier: BZGPjSp4tutU47U/IcAthwIf4glJSmxwHSdUgKTiKa4=
Subject key identifier: 71:B8:AC:4A:EA:69:54:62:94:67:3A:A4:67:1A:37:4A:53:00:11:D6
Authority key identifier: 70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
Certificate issuer: /CN=70cee62b79472dcae51ead4d8ea06923870f5197
Certificate serial: 0199FC58859B6EBA0D31026441FFA686764B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
Manifest number: 16DE
Signing time: Sun 19 Oct 2025 12:01:23 +0000
Manifest this update: Sun 19 Oct 2025 12:01:23 +0000
Manifest next update: Mon 20 Oct 2025 12:01:23 +0000
Files and hashes: 1: cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl (hash: l0SPOP81tyJFzmVmbHP3LHZ6R7fE69yV/55xUAM96/I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:85:9b:6e:ba:0d:31:02:64:41:ff:a6:86:76:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cee62b79472dcae51ead4d8ea06923870f5197
Validity
Not Before: Oct 19 12:01:23 2025 GMT
Not After : Oct 20 12:01:23 2025 GMT
Subject: CN=71b8ac4aea69546294673aa4671a374a530011d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:12:00:59:71:b0:b2:39:ea:32:28:91:11:a3:
67:d6:a3:f6:b8:9a:2c:a0:7a:7e:6a:52:57:94:99:
26:25:e0:db:18:9a:ba:56:e2:23:25:4b:96:94:34:
f2:ea:bb:b4:d5:da:90:2e:69:4f:06:58:5d:c3:5b:
9b:bb:78:25:15:97:e6:6a:1a:09:9e:c6:6c:73:93:
79:1d:7f:2f:fd:e2:58:ff:5c:93:87:fa:e3:ec:cb:
b2:da:b0:07:22:ee:06:65:20:0c:ce:41:f3:49:43:
48:cb:47:4f:51:ef:17:78:f8:5a:0b:29:b6:57:54:
65:0f:53:9f:fd:90:13:22:2d:e8:e3:f1:53:ee:a3:
6d:30:3c:2b:34:73:72:b8:cf:a3:5e:7f:5d:4a:b3:
41:8c:18:b6:d1:f4:a1:a9:30:7c:27:e9:69:68:76:
43:83:5f:08:6d:0a:ed:fd:44:09:a4:c2:e7:0a:a2:
70:09:a7:bd:15:14:9a:5f:5b:5e:99:ca:42:f7:96:
ca:db:da:14:e5:a7:98:81:9a:bc:4b:26:b5:5a:6d:
21:d2:9f:1f:b4:6f:5a:6d:81:8d:08:25:28:28:6c:
05:5a:e8:ae:3c:29:d5:65:4c:ba:85:05:9a:ed:3c:
ec:3b:55:52:9f:ce:10:50:4d:d6:5e:b0:29:98:8d:
81:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B8:AC:4A:EA:69:54:62:94:67:3A:A4:67:1A:37:4A:53:00:11:D6
X509v3 Authority Key Identifier:
keyid:70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:14:0b:ba:5f:61:71:34:d6:7f:9e:73:2a:c4:4e:46:d1:fb:
d1:a4:c1:19:f0:71:b2:cd:28:66:80:06:2b:83:0b:1b:04:90:
eb:91:ea:b8:69:f2:9e:c2:f9:1f:80:d3:bd:5f:bf:29:be:22:
52:a3:d5:d7:ec:c4:4b:69:38:07:5c:56:b9:0f:02:c8:df:88:
c6:f1:90:f8:c2:85:23:94:0e:13:2f:5e:45:87:3d:e6:b3:b5:
8a:ec:65:8b:05:a1:e7:a0:e2:4a:44:81:9f:6c:24:f8:9d:1d:
a8:65:a9:74:a7:c8:95:9c:a3:df:20:74:b5:bd:81:b6:80:bb:
0d:2d:3a:bf:be:1e:52:01:5e:ba:70:f3:ea:49:0a:7a:26:ae:
a1:24:17:5e:80:32:90:cc:57:2c:a0:9a:bf:47:5c:c5:e1:42:
68:c4:00:90:dd:ae:18:be:25:be:17:d6:ae:9f:c8:03:47:5b:
3c:28:bd:e7:b2:d4:e3:d3:44:51:14:55:2a:14:11:c1:fd:d6:
07:67:e6:e6:39:f2:2f:18:60:ab:60:16:d4:33:19:24:ce:54:
96:c2:92:c7:1b:67:49:4f:9c:54:0a:cd:4f:ef:08:60:65:8f:
c2:8d:3a:0b:dd:07:bb:49:e6:5d:5a:8b:26:2d:49:64:86:17:
e1:d3:c5:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WIWbbroNMQJkQf+mhnZLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwY2VlNjJiNzk0NzJkY2FlNTFlYWQ0ZDhlYTA2OTIzODcw
ZjUxOTcwHhcNMjUxMDE5MTIwMTIzWhcNMjUxMDIwMTIwMTIzWjAzMTEwLwYDVQQD
Eyg3MWI4YWM0YWVhNjk1NDYyOTQ2NzNhYTQ2NzFhMzc0YTUzMDAxMWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxIAWXGwsjnqMiiREaNn1qP2uJos
oHp+alJXlJkmJeDbGJq6VuIjJUuWlDTy6ru01dqQLmlPBlhdw1ubu3glFZfmahoJ
nsZsc5N5HX8v/eJY/1yTh/rj7Muy2rAHIu4GZSAMzkHzSUNIy0dPUe8XePhaCym2
V1RlD1Of/ZATIi3o4/FT7qNtMDwrNHNyuM+jXn9dSrNBjBi20fShqTB8J+lpaHZD
g18IbQrt/UQJpMLnCqJwCae9FRSaX1temcpC95bK29oU5aeYgZq8Sya1Wm0h0p8f
tG9abYGNCCUoKGwFWuiuPCnVZUy6hQWa7TzsO1VSn84QUE3WXrApmI2BfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHG4rErqaVRilGc6pGcaN0pTABHWMB8GA1UdIwQY
MBaAFHDO5it5Ry3K5R6tTY6gaSOHD1GXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTkt
ZDBlMjRmMDE3MDg4LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iYTgxYjYtMTI4Mi00NTVmLThjNTktZDBlMjRmMDE3MDg4
LzEvY003bUszbEhMY3JsSHExTmpxQnBJNGNQVVpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPBQLul9h
cTTWf55zKsRORtH70aTBGfBxss0oZoAGK4MLGwSQ65HquGnynsL5H4DTvV+/Kb4i
UqPV1+zES2k4B1xWuQ8CyN+IxvGQ+MKFI5QOEy9eRYc95rO1iuxliwWh56DiSkSB
n2wk+J0dqGWpdKfIlZyj3yB0tb2BtoC7DS06v74eUgFeunDz6kkKeiauoSQXXoAy
kMxXLKCav0dcxeFCaMQAkN2uGL4lvhfWrp/IA0dbPCi957LU49NEURRVKhQRwf3W
B2fm5jnyLxhgq2AW1DMZJM5UlsKSxxtnSU+cVArNT+8IYGWPwo06C90Hu0nmXVqL
Ji1JZIYX4dPFmQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:09 2025 by rpki-client