Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: cJcIdjoV1HpmnC/RXpcxm7oLIqN7SE6c+wMOkEWnWtc=
Subject key identifier: AC:43:0A:92:87:1E:66:ED:99:9B:CC:4F:9B:92:5A:B0:FC:67:3B:18
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 019A4E18D97462CBA20239D856F1E777EDF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 0986
Signing time: Tue 04 Nov 2025 09:00:42 +0000
Manifest this update: Tue 04 Nov 2025 09:00:42 +0000
Manifest next update: Wed 05 Nov 2025 09:00:42 +0000
Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: EQN78mU6TPskuj0WF30HOnbJzHYrXI1O8366X21buf0=)
2: eScdjGWs1U9IpMmrjPWOhIIwqvU.roa (hash: x3okkqhpjy6dpCXY46GTivoDmGIYftmyUmWz/IE8R4c=)
3: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=)
4: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:d9:74:62:cb:a2:02:39:d8:56:f1:e7:77:ed:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Nov 4 09:00:42 2025 GMT
Not After : Nov 5 09:00:42 2025 GMT
Subject: CN=ac430a92871e66ed999bcc4f9b925ab0fc673b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:66:1d:e7:d5:99:ec:64:d0:2b:8a:ee:01:4a:
3d:65:8e:a7:82:3f:75:cc:92:cd:48:c9:f3:09:8f:
a2:02:f1:3d:59:7f:df:4a:8c:c1:4e:23:30:28:9e:
e7:bc:88:96:40:ba:a1:60:73:44:47:f1:1a:a6:e5:
07:83:5b:e1:fa:02:91:6e:06:09:a8:1a:40:50:6d:
3d:ae:c1:5d:b3:07:3e:67:f0:88:bb:5b:a3:66:74:
e5:12:fc:eb:38:64:29:3d:e3:f3:c0:6f:15:96:49:
d5:ae:c5:62:ab:df:91:3e:80:9a:06:07:99:00:3e:
d9:95:6f:82:85:16:45:b1:78:4e:46:c2:af:b8:26:
32:00:34:5a:4b:ca:dd:20:54:e7:a0:56:1e:d4:97:
3a:54:e1:63:f0:8b:7b:37:3b:3a:e2:9e:43:2e:1d:
4c:b2:ee:d2:3e:bb:6b:ab:d2:4e:dd:94:23:74:12:
f7:22:13:62:9b:be:18:e1:22:57:b2:32:d0:98:9a:
07:d7:17:fb:5d:66:b1:3f:d4:71:8c:d5:7d:f7:a8:
ec:d5:35:fd:bc:0b:cf:c2:27:5d:8f:bd:71:f6:ff:
14:2f:43:dd:18:2b:24:f9:1f:f3:28:39:f1:c8:eb:
7c:f1:49:0c:08:93:7e:83:10:ab:fa:fd:79:27:01:
b2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:43:0A:92:87:1E:66:ED:99:9B:CC:4F:9B:92:5A:B0:FC:67:3B:18
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:db:8c:c0:3b:b8:4e:39:58:50:e4:1f:bb:26:b1:c4:16:05:
86:3c:27:ee:0d:2d:03:45:08:12:43:6b:f0:b9:4a:32:6a:31:
69:e3:41:c6:d1:57:33:8f:72:eb:d4:48:16:4c:69:1a:0a:ee:
e9:8b:aa:66:21:0e:79:ba:f3:a2:c1:01:22:23:65:52:9f:7c:
5d:b5:d6:fa:d9:e3:8a:4f:12:db:28:68:a5:35:3c:4f:14:7d:
d7:3a:98:d2:43:0b:bd:ed:41:5f:44:e1:b6:7d:56:d4:ea:88:
99:37:e0:62:ca:9c:b3:04:47:fa:19:a4:d1:5a:d5:5c:2f:5e:
f1:b3:6e:2e:bc:5b:57:de:9d:45:03:06:e3:35:67:41:e8:a0:
de:65:44:69:f9:fd:32:e3:42:ff:c9:95:78:4a:0b:4d:f3:b1:
13:51:cd:dd:86:aa:2f:08:ae:5d:5c:7c:80:1a:2c:cf:3f:85:
3f:6f:05:63:3f:53:c6:dc:1d:17:f3:bf:56:41:0f:97:70:bc:
78:0a:46:58:d9:0b:6c:92:d4:ae:1a:a3:12:dc:99:c0:0c:9f:
1d:08:09:46:2d:cd:df:f7:89:c0:28:69:b6:0e:b8:51:58:8c:
e9:3a:73:e2:ec:47:92:87:3d:53:a4:c2:c5:b4:c9:bb:07:38:
3f:ce:99:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOGNl0YsuiAjnYVvHnd+3wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZjY4Y2RlZDM5ZTNlYzU0Y2VlMjIzMzI1MmVmMzkzN2Jh
OTgyOGQwHhcNMjUxMTA0MDkwMDQyWhcNMjUxMTA1MDkwMDQyWjAzMTEwLwYDVQQD
EyhhYzQzMGE5Mjg3MWU2NmVkOTk5YmNjNGY5YjkyNWFiMGZjNjczYjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWYd59WZ7GTQK4ruAUo9ZY6ngj91
zJLNSMnzCY+iAvE9WX/fSozBTiMwKJ7nvIiWQLqhYHNER/EapuUHg1vh+gKRbgYJ
qBpAUG09rsFdswc+Z/CIu1ujZnTlEvzrOGQpPePzwG8VlknVrsViq9+RPoCaBgeZ
AD7ZlW+ChRZFsXhORsKvuCYyADRaS8rdIFTnoFYe1Jc6VOFj8It7Nzs64p5DLh1M
su7SPrtrq9JO3ZQjdBL3IhNim74Y4SJXsjLQmJoH1xf7XWaxP9RxjNV996js1TX9
vAvPwiddj71x9v8UL0PdGCsk+R/zKDnxyOt88UkMCJN+gxCr+v15JwGypwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKxDCpKHHmbtmZvMT5uSWrD8ZzsYMB8GA1UdIwQY
MBaAFHD2jN7Tnj7FTO4iMyUu85N7qYKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYt
MjlkZjRlMjYxMWYxLzEvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYtMjlkZjRlMjYxMWYx
LzEvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoduMwDu4
TjlYUOQfuyaxxBYFhjwn7g0tA0UIEkNr8LlKMmoxaeNBxtFXM49y69RIFkxpGgru
6YuqZiEOebrzosEBIiNlUp98XbXW+tnjik8S2yhopTU8TxR91zqY0kMLve1BX0Th
tn1W1OqImTfgYsqcswRH+hmk0VrVXC9e8bNuLrxbV96dRQMG4zVnQeig3mVEafn9
MuNC/8mVeEoLTfOxE1HN3YaqLwiuXVx8gBoszz+FP28FYz9TxtwdF/O/VkEPl3C8
eApGWNkLbJLUrhqjEtyZwAyfHQgJRi3N3/eJwChptg64UViM6Tpz4uxHkoc9U6TC
xbTJuwc4P86ZXA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 15:05:17 2025 by rpki-client