Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
File: pOuetVR8f18ar8CtoUCAVBlhhyY.mft (raw, json)
Hash identifier: E0mnhf6DBfoWb4TCiFTI9AC+0J1Ctu0dLSfVbFtjtrw=
Subject key identifier: 3C:A1:3E:62:AB:3B:E0:55:CB:1E:B8:68:4B:94:72:0D:F4:C4:5E:C8
Authority key identifier: A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
Certificate issuer: /CN=a4eb9eb5547c7f5f1aafc0ada140805419618726
Certificate serial: 0199FCFDAEE9E825233C72C6347C99CF3833
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
Manifest number: 0AD3
Signing time: Sun 19 Oct 2025 15:01:47 +0000
Manifest this update: Sun 19 Oct 2025 15:01:47 +0000
Manifest next update: Mon 20 Oct 2025 15:01:47 +0000
Files and hashes: 1: J_w-klg8Fz7usxtg6f6kBplmW2Q.roa (hash: wSUiP/GQT3afkhYb4zAVk2weNrXx80BBBUvY2crSbB8=)
2: pOuetVR8f18ar8CtoUCAVBlhhyY.crl (hash: B+V4647W8g/rF76nsV1JJSpp4wqY7CsEtq2HRjy2Luo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:ae:e9:e8:25:23:3c:72:c6:34:7c:99:cf:38:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4eb9eb5547c7f5f1aafc0ada140805419618726
Validity
Not Before: Oct 19 15:01:47 2025 GMT
Not After : Oct 20 15:01:47 2025 GMT
Subject: CN=3ca13e62ab3be055cb1eb8684b94720df4c45ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cb:20:d2:9e:60:7c:aa:3d:47:80:7a:1c:0a:
23:fd:be:e8:a5:ec:4a:2c:8c:3f:88:eb:78:4e:33:
b9:23:a4:8c:75:15:15:bc:8e:b9:0b:d5:f7:98:9c:
53:10:b2:9c:4e:01:f7:30:14:9a:cd:8d:eb:f5:67:
26:3c:24:d1:d5:63:08:e8:16:57:be:b4:e6:79:dd:
d0:1c:3a:13:da:9f:f4:f5:a5:ba:5a:d6:57:f9:ab:
b0:6f:39:ff:6c:c3:67:1d:49:a9:1e:4d:41:fb:a7:
59:13:73:ef:c2:b2:63:ff:b2:76:15:af:37:0c:f2:
25:dd:ba:3e:68:43:99:51:50:ce:ca:8a:ec:c6:97:
23:66:cb:37:ca:a1:84:fa:28:7f:54:82:d9:aa:6e:
3b:16:05:52:e8:f8:8e:15:23:70:47:62:7e:19:64:
39:03:ac:d4:2a:d4:1e:3b:37:fc:30:ac:3b:7c:45:
ed:0a:15:d1:0b:db:a9:fa:46:0a:6a:1f:48:e8:02:
8f:2d:3f:5b:a3:59:ba:73:bd:75:80:70:d0:af:f4:
85:3f:96:7a:27:ee:75:6d:4d:91:9f:e7:d0:7a:c5:
31:7e:02:87:cb:a9:00:e4:be:ab:a3:22:46:40:85:
f9:83:83:26:36:e2:52:5a:df:bf:e7:cc:06:5c:b4:
ad:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:A1:3E:62:AB:3B:E0:55:CB:1E:B8:68:4B:94:72:0D:F4:C4:5E:C8
X509v3 Authority Key Identifier:
keyid:A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:5c:14:96:1e:31:eb:de:15:bf:0a:3c:cd:d5:bb:fe:59:ec:
70:0e:55:89:d6:dc:9c:8a:5a:61:95:1c:f9:b9:53:9c:8b:da:
de:97:17:f5:0b:6c:9f:52:72:60:20:fd:af:36:da:f5:70:01:
99:dd:50:c2:a1:d1:2f:fa:eb:cc:f0:37:54:50:ef:7a:13:6a:
87:cb:86:f2:91:59:39:df:5c:b4:42:52:85:82:f6:2b:03:74:
02:d0:3e:69:b8:ec:4a:71:91:b6:08:e6:bf:91:1f:23:94:8e:
eb:f4:25:01:20:a2:88:ea:90:85:9c:c4:df:a3:6c:5c:e2:7a:
38:35:34:1c:eb:3a:94:4d:01:5a:16:69:82:7f:c3:d7:7c:38:
ec:06:21:97:8f:44:fb:24:fa:69:83:d5:9c:21:87:05:65:18:
93:56:e6:98:94:6d:4c:d8:36:d1:29:dc:10:ca:da:69:7b:7e:
fb:5c:a2:a0:cb:d6:10:51:42:c4:50:b4:ce:d9:e0:78:93:e9:
1d:08:13:f3:99:a8:8b:22:e1:2c:bc:16:0a:4e:ea:b5:30:c3:
f5:66:d8:29:96:a4:a5:96:25:9c:47:10:02:2e:0a:b3:e8:c0:
c4:99:fa:3e:8d:e3:bf:9f:71:8a:b4:18:1c:db:dd:4f:8f:75:
16:3d:72:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/a7p6CUjPHLGNHyZzzgzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0ZWI5ZWI1NTQ3YzdmNWYxYWFmYzBhZGExNDA4MDU0MTk2
MTg3MjYwHhcNMjUxMDE5MTUwMTQ3WhcNMjUxMDIwMTUwMTQ3WjAzMTEwLwYDVQQD
EygzY2ExM2U2MmFiM2JlMDU1Y2IxZWI4Njg0Yjk0NzIwZGY0YzQ1ZWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMsg0p5gfKo9R4B6HAoj/b7opexK
LIw/iOt4TjO5I6SMdRUVvI65C9X3mJxTELKcTgH3MBSazY3r9WcmPCTR1WMI6BZX
vrTmed3QHDoT2p/09aW6WtZX+auwbzn/bMNnHUmpHk1B+6dZE3PvwrJj/7J2Fa83
DPIl3bo+aEOZUVDOyorsxpcjZss3yqGE+ih/VILZqm47FgVS6PiOFSNwR2J+GWQ5
A6zUKtQeOzf8MKw7fEXtChXRC9up+kYKah9I6AKPLT9bo1m6c711gHDQr/SFP5Z6
J+51bU2Rn+fQesUxfgKHy6kA5L6royJGQIX5g4MmNuJSWt+/58wGXLStqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDyhPmKrO+BVyx64aEuUcg30xF7IMB8GA1UdIwQY
MBaAFKTrnrVUfH9fGq/AraFAgFQZYYcmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80Y2Q3MmQtZDhhNS00NmNlLTg2NzQt
MGQyMjIzMmMzNGEwLzEvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi80Y2Q3MmQtZDhhNS00NmNlLTg2NzQtMGQyMjIzMmMzNGEw
LzEvcE91ZXRWUjhmMThhcjhDdG9VQ0FWQmxoaHlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEVwUlh4x
694Vvwo8zdW7/lnscA5VidbcnIpaYZUc+blTnIva3pcX9Qtsn1JyYCD9rzba9XAB
md1QwqHRL/rrzPA3VFDvehNqh8uG8pFZOd9ctEJShYL2KwN0AtA+abjsSnGRtgjm
v5EfI5SO6/QlASCiiOqQhZzE36NsXOJ6ODU0HOs6lE0BWhZpgn/D13w47AYhl49E
+yT6aYPVnCGHBWUYk1bmmJRtTNg20SncEMraaXt++1yioMvWEFFCxFC0ztngeJPp
HQgT85moiyLhLLwWCk7qtTDD9WbYKZakpZYlnEcQAi4Ks+jAxJn6Po3jv59xirQY
HNvdT491Fj1yLA==
-----END CERTIFICATE-----
Generated at Mon Oct 20 01:17:39 2025 by rpki-client