Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
File: rfDfdxFHQeE6F9chPmlWv5YntVg.mft (raw, json)
Hash identifier: jVoPwCxcSE0uf2gjN07sM2H5H15ctVm/K4XctMX1Fkk=
Subject key identifier: 58:BE:66:44:E0:C9:16:42:9B:73:AA:CE:F5:30:1D:B0:7A:2F:A5:55
Authority key identifier: AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
Certificate issuer: /CN=adf0df77114741e13a17d7213e6956bf9627b558
Certificate serial: 0199FCC685C01A374E8B15360AA5C23ED365
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
Manifest number: 1596
Signing time: Sun 19 Oct 2025 14:01:32 +0000
Manifest this update: Sun 19 Oct 2025 14:01:32 +0000
Manifest next update: Mon 20 Oct 2025 14:01:32 +0000
Files and hashes: 1: 53yfdczv1so3h7m6p_kJKapwYb0.roa (hash: 8fm3UETmOMmwp3oE4jpSkcDNkIYvAEXotF2eKRsyjLw=)
2: rfDfdxFHQeE6F9chPmlWv5YntVg.crl (hash: 0DKGprl/Jzx9s0uiJ+48sEvqEcYa66LjiI/4BLguRWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:85:c0:1a:37:4e:8b:15:36:0a:a5:c2:3e:d3:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf0df77114741e13a17d7213e6956bf9627b558
Validity
Not Before: Oct 19 14:01:32 2025 GMT
Not After : Oct 20 14:01:32 2025 GMT
Subject: CN=58be6644e0c916429b73aacef5301db07a2fa555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:0d:ef:67:ac:37:75:6f:d3:c0:e5:3b:dd:5a:
7e:df:66:42:4c:3a:22:ef:31:3a:a7:de:97:1a:4a:
42:63:b2:00:a8:cc:81:6a:1f:62:51:a6:08:47:92:
01:50:06:83:f9:66:9d:cb:34:00:4e:4c:af:8a:60:
83:d1:71:3a:e6:65:7c:3d:f7:4e:a4:df:74:ea:2d:
f9:7b:e5:13:5d:cb:c3:b5:34:e7:e8:ba:f9:87:28:
d6:b1:25:6c:b8:6e:99:8f:68:b9:34:39:d5:a1:bc:
2a:e2:11:a6:36:8d:71:1a:46:04:cc:6e:cb:3a:c6:
23:3e:ac:dc:4f:17:99:01:bd:98:d8:9a:b7:bf:c6:
23:1f:17:17:f3:31:ec:76:4e:8c:44:5a:cb:f5:35:
65:93:3e:18:30:04:b8:9e:87:48:47:b0:c7:39:eb:
8e:d0:d3:1b:20:f5:54:4f:dc:d0:0c:0d:87:bc:b0:
32:2e:f4:48:5c:cd:a7:69:b2:fe:7c:a8:e8:37:ab:
b6:63:d1:30:af:3c:10:eb:e3:9e:e1:7a:0f:b1:e1:
24:61:26:82:06:5a:7b:6e:3e:7b:17:c6:46:e3:43:
b4:36:fa:78:ce:b0:0b:c7:18:af:16:d7:55:3e:e6:
a2:00:81:8d:99:cd:0a:3f:3f:2d:b1:d4:52:2c:23:
fa:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:BE:66:44:E0:C9:16:42:9B:73:AA:CE:F5:30:1D:B0:7A:2F:A5:55
X509v3 Authority Key Identifier:
keyid:AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:77:cb:87:a8:e7:8b:17:ae:14:3b:bc:a0:d6:71:90:53:a0:
83:7f:18:4f:16:af:6e:51:0b:38:cf:5a:03:42:38:7d:8f:31:
69:40:be:50:d3:25:26:54:fe:8b:13:90:19:6f:3a:3a:d0:17:
b9:35:6e:bd:9d:20:58:79:20:15:34:e0:ca:bb:1c:dd:eb:3d:
77:83:f0:5d:d3:13:29:59:8a:38:f6:5e:14:ab:5e:6f:00:49:
4a:72:6a:f5:13:c8:52:5b:f9:5c:2d:7f:de:97:b2:21:67:ed:
b0:e9:db:f7:62:64:2c:b6:6a:4f:24:3f:91:8a:c3:44:72:96:
52:e9:9a:db:e2:5c:1f:ac:9c:b9:62:bf:27:b7:f3:cf:cb:ae:
18:54:23:eb:3a:d8:2c:09:4a:07:89:cb:17:b9:e9:ea:17:60:
1f:7d:37:a8:fc:c3:64:dc:4b:17:e0:95:74:eb:61:67:cb:4f:
78:cb:6f:5e:b8:4a:ec:b9:4a:d6:94:3d:1f:15:26:11:cc:bb:
78:d7:6b:dc:bd:83:9a:8a:84:c8:bd:a3:c3:f2:b1:33:73:fe:
2a:27:19:c2:26:bc:17:b9:6d:90:cb:51:18:7f:bb:0d:1b:fc:
9c:26:53:47:65:d6:86:12:ab:bb:d7:9d:ae:67:04:3c:67:c6:
60:3c:b4:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xoXAGjdOixU2CqXCPtNlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkZjBkZjc3MTE0NzQxZTEzYTE3ZDcyMTNlNjk1NmJmOTYy
N2I1NTgwHhcNMjUxMDE5MTQwMTMyWhcNMjUxMDIwMTQwMTMyWjAzMTEwLwYDVQQD
Eyg1OGJlNjY0NGUwYzkxNjQyOWI3M2FhY2VmNTMwMWRiMDdhMmZhNTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Q3vZ6w3dW/TwOU73Vp+32ZCTDoi
7zE6p96XGkpCY7IAqMyBah9iUaYIR5IBUAaD+WadyzQATkyvimCD0XE65mV8PfdO
pN906i35e+UTXcvDtTTn6Lr5hyjWsSVsuG6Zj2i5NDnVobwq4hGmNo1xGkYEzG7L
OsYjPqzcTxeZAb2Y2Jq3v8YjHxcX8zHsdk6MRFrL9TVlkz4YMAS4nodIR7DHOeuO
0NMbIPVUT9zQDA2HvLAyLvRIXM2nabL+fKjoN6u2Y9EwrzwQ6+Oe4XoPseEkYSaC
Blp7bj57F8ZG40O0Nvp4zrALxxivFtdVPuaiAIGNmc0KPz8tsdRSLCP6WwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFi+ZkTgyRZCm3OqzvUwHbB6L6VVMB8GA1UdIwQY
MBaAFK3w33cRR0HhOhfXIT5pVr+WJ7VYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9hMzBiZWEtOWU5My00MDkxLWI2ZTEt
ZTFlZjI3NzcyZWFmLzEvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9hMzBiZWEtOWU5My00MDkxLWI2ZTEtZTFlZjI3NzcyZWFm
LzEvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQXfLh6jn
ixeuFDu8oNZxkFOgg38YTxavblELOM9aA0I4fY8xaUC+UNMlJlT+ixOQGW86OtAX
uTVuvZ0gWHkgFTTgyrsc3es9d4PwXdMTKVmKOPZeFKtebwBJSnJq9RPIUlv5XC1/
3peyIWftsOnb92JkLLZqTyQ/kYrDRHKWUuma2+JcH6ycuWK/J7fzz8uuGFQj6zrY
LAlKB4nLF7np6hdgH303qPzDZNxLF+CVdOthZ8tPeMtvXrhK7LlK1pQ9HxUmEcy7
eNdr3L2DmoqEyL2jw/KxM3P+KicZwia8F7ltkMtRGH+7DRv8nCZTR2XWhhKru9ed
rmcEPGfGYDy0Qg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:37:03 2025 by rpki-client