Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
File: 1TVDIcElQ2AUXq8l9pk4uN80ezE.mft (raw, json)
Hash identifier: 0gbhMNmHRTcO0DWGRZLkH5lHPT+blMF5pspDOKX5XZY=
Subject key identifier: 31:CC:82:AD:F6:F9:D2:AB:D7:6F:6D:C0:CD:3D:E3:10:9B:7E:DC:C6
Authority key identifier: D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
Certificate issuer: /CN=d5354321c1254360145eaf25f69938b8df347b31
Certificate serial: 0199FC8FAC081AEC41C2B98E65B2642AD2DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
Manifest number: 0BE2
Signing time: Sun 19 Oct 2025 13:01:38 +0000
Manifest this update: Sun 19 Oct 2025 13:01:38 +0000
Manifest next update: Mon 20 Oct 2025 13:01:38 +0000
Files and hashes: 1: 1TVDIcElQ2AUXq8l9pk4uN80ezE.crl (hash: 3Ywlz9Opq98fHJVKFoi9D/gw3NOwHANlr4KT/ssTSkY=)
2: YLggX1zVSuzWscKfrJDHnrsh8ls.roa (hash: 7Jlfup6Pw3zmGnZu3LgfRRcWJ28VWesMcyWjGhyh+m8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:ac:08:1a:ec:41:c2:b9:8e:65:b2:64:2a:d2:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5354321c1254360145eaf25f69938b8df347b31
Validity
Not Before: Oct 19 13:01:38 2025 GMT
Not After : Oct 20 13:01:38 2025 GMT
Subject: CN=31cc82adf6f9d2abd76f6dc0cd3de3109b7edcc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:50:99:e5:f0:13:c1:0c:e7:54:35:26:dc:2c:
02:d5:ad:56:22:58:5d:2b:49:ac:cd:af:c5:3a:56:
0c:4d:fa:c6:85:22:2c:5a:40:75:8f:17:98:7f:fd:
f8:28:c5:fd:a8:52:e2:70:7a:de:ec:2f:3b:f5:ac:
6c:2c:ea:94:8b:c5:15:aa:0c:bb:5f:cc:b0:03:16:
2f:f6:5a:04:d4:1f:db:a4:fc:10:92:41:53:67:03:
ab:9f:25:a8:45:70:77:1f:e8:67:6a:f1:30:a6:d3:
6e:30:19:97:e6:1b:dd:77:ca:16:b0:3d:20:99:4b:
de:2f:72:fa:87:fd:2a:cc:a9:20:e9:19:41:3c:b0:
35:d2:e6:33:da:9a:28:e9:3e:62:1f:4e:7e:88:af:
50:d0:a9:cd:d9:33:49:bc:a8:a9:3f:35:7b:de:cb:
55:9f:08:1a:8b:22:d8:12:55:b3:8c:53:ea:19:93:
d8:07:c9:a2:2d:c1:f3:06:31:b3:89:da:72:99:29:
7b:c0:f0:01:21:87:df:33:ec:86:0b:33:f1:97:ec:
e2:98:ad:c8:be:a6:76:65:9e:05:11:23:8f:43:9f:
37:42:1f:d0:b3:ce:b4:59:a5:fb:47:28:52:0f:f4:
97:31:cc:da:ac:0d:62:d3:ba:70:ab:62:7b:93:ae:
ee:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CC:82:AD:F6:F9:D2:AB:D7:6F:6D:C0:CD:3D:E3:10:9B:7E:DC:C6
X509v3 Authority Key Identifier:
keyid:D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:0b:cd:24:e7:90:72:ca:15:b0:66:9b:10:a3:0f:0e:5b:21:
29:e5:4e:d1:8e:fe:bd:6f:2e:40:ad:94:9f:d9:9f:8e:07:60:
26:4c:33:48:81:3a:93:ae:6b:45:d8:32:7b:54:38:b6:1d:12:
1b:a3:87:c8:81:51:5b:de:c9:bd:0f:ff:99:c0:82:4b:51:ec:
0d:4c:a4:ff:df:20:10:9d:de:ae:9c:9f:34:eb:2d:26:ff:33:
0a:62:46:45:d5:db:f3:1c:08:68:1d:2a:8c:c2:58:ed:8b:5d:
8b:cf:5a:59:a9:5a:47:00:28:e3:13:08:f9:4e:dd:51:6e:b8:
35:90:68:4d:eb:65:aa:b2:38:3b:42:17:23:0c:5d:05:8b:3f:
c5:ce:74:d3:3a:48:e6:05:6b:d1:46:31:87:ae:fc:61:c0:a9:
be:ea:98:50:96:45:dc:d8:5c:e3:6f:1c:fc:41:99:b1:0f:ad:
ff:93:33:62:e2:ad:17:18:f5:a1:00:f9:07:5f:b6:7c:fa:8b:
18:eb:1d:35:2f:de:94:49:8b:02:72:c7:4e:d4:b6:50:8a:f4:
b4:00:10:30:4c:d4:19:ba:48:0c:48:81:dc:01:eb:f3:5a:68:
53:52:a4:e6:07:70:57:a0:95:e1:d5:0c:98:7e:db:dc:9c:b9:
42:ca:6f:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8j6wIGuxBwrmOZbJkKtLeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1MzU0MzIxYzEyNTQzNjAxNDVlYWYyNWY2OTkzOGI4ZGYz
NDdiMzEwHhcNMjUxMDE5MTMwMTM4WhcNMjUxMDIwMTMwMTM4WjAzMTEwLwYDVQQD
EygzMWNjODJhZGY2ZjlkMmFiZDc2ZjZkYzBjZDNkZTMxMDliN2VkY2M2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFCZ5fATwQznVDUm3CwC1a1WIlhd
K0msza/FOlYMTfrGhSIsWkB1jxeYf/34KMX9qFLicHre7C879axsLOqUi8UVqgy7
X8ywAxYv9loE1B/bpPwQkkFTZwOrnyWoRXB3H+hnavEwptNuMBmX5hvdd8oWsD0g
mUveL3L6h/0qzKkg6RlBPLA10uYz2poo6T5iH05+iK9Q0KnN2TNJvKipPzV73stV
nwgaiyLYElWzjFPqGZPYB8miLcHzBjGzidpymSl7wPABIYffM+yGCzPxl+zimK3I
vqZ2ZZ4FESOPQ583Qh/Qs860WaX7RyhSD/SXMczarA1i07pwq2J7k67u2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDHMgq32+dKr129twM094xCbftzGMB8GA1UdIwQY
MBaAFNU1QyHBJUNgFF6vJfaZOLjfNHsxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9kOWY5YTgtZGEwMS00ZDM1LTgyODQt
YjY0ZWI4ZDgzNjU4LzEvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS9kOWY5YTgtZGEwMS00ZDM1LTgyODQtYjY0ZWI4ZDgzNjU4
LzEvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANgvNJOeQ
csoVsGabEKMPDlshKeVO0Y7+vW8uQK2Un9mfjgdgJkwzSIE6k65rRdgye1Q4th0S
G6OHyIFRW97JvQ//mcCCS1HsDUyk/98gEJ3erpyfNOstJv8zCmJGRdXb8xwIaB0q
jMJY7Ytdi89aWalaRwAo4xMI+U7dUW64NZBoTetlqrI4O0IXIwxdBYs/xc500zpI
5gVr0UYxh678YcCpvuqYUJZF3Nhc428c/EGZsQ+t/5MzYuKtFxj1oQD5B1+2fPqL
GOsdNS/elEmLAnLHTtS2UIr0tAAQMEzUGbpIDEiB3AHr81poU1Kk5gdwV6CV4dUM
mH7b3Jy5QspvOw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:53 2025 by rpki-client