Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
File: vPnwsJRzjFKC-_SzBnDsX9y1id8.mft (raw, json)
Hash identifier: lxDhyPurAn4ar5AwiSOMMQAIPYEE4KkAqYI8LVDoZuQ=
Subject key identifier: C6:D5:25:BE:CF:A5:4F:93:90:F3:D0:43:8F:90:8D:EB:2C:27:56:5C
Authority key identifier: BC:F9:F0:B0:94:73:8C:52:82:FB:F4:B3:06:70:EC:5F:DC:B5:89:DF
Certificate issuer: /CN=bcf9f0b094738c5282fbf4b30670ec5fdcb589df
Certificate serial: 019A4EF4A0138612BF14CD3CB5768D334006
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vPnwsJRzjFKC-_SzBnDsX9y1id8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
Manifest number: 170B
Signing time: Tue 04 Nov 2025 13:00:45 +0000
Manifest this update: Tue 04 Nov 2025 13:00:45 +0000
Manifest next update: Wed 05 Nov 2025 13:00:45 +0000
Files and hashes: 1: GcXZXurTGrAnFXKjvUHU9XD_YyQ.roa (hash: CVqER74xo0XyQrFlwwf0CdK9BC9SAVXvCBJxlFB4CBw=)
2: vPnwsJRzjFKC-_SzBnDsX9y1id8.crl (hash: YI48vlseN/4ezwVUCnVFleC+inGoKpL20tZanBta2MY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
rsync://rpki.ripe.net/repository/DEFAULT/vPnwsJRzjFKC-_SzBnDsX9y1id8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:a0:13:86:12:bf:14:cd:3c:b5:76:8d:33:40:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcf9f0b094738c5282fbf4b30670ec5fdcb589df
Validity
Not Before: Nov 4 13:00:45 2025 GMT
Not After : Nov 5 13:00:45 2025 GMT
Subject: CN=c6d525becfa54f9390f3d0438f908deb2c27565c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f9:2e:04:d4:4e:b2:1c:69:98:8b:d6:b0:cf:
a5:f7:2d:2e:48:02:b3:16:48:6f:2e:59:eb:67:8c:
f2:79:dc:b7:23:23:99:97:92:c1:1d:5c:21:6e:2d:
67:64:70:7f:46:4c:df:22:f7:71:39:00:bd:2e:71:
8f:74:cb:64:6b:7c:60:f2:f1:3a:e8:43:27:1a:c1:
36:04:76:02:af:b1:8d:79:99:26:01:7f:f9:57:be:
45:63:4f:95:5d:4b:e3:d7:94:a6:9b:e2:7e:52:8f:
75:87:e1:e0:40:e4:2b:21:c5:ae:bd:c7:f2:f7:c5:
f6:cc:05:ce:96:cb:fe:47:90:4f:42:25:47:72:f3:
cc:80:55:b0:12:ff:a9:26:ed:eb:b9:2d:d7:cb:bf:
63:3f:b1:e1:42:fb:3c:6d:0a:51:1b:96:f0:42:76:
c3:70:3d:93:c7:6d:87:8d:ea:8c:8d:ac:a5:98:09:
48:eb:57:c3:cf:33:1e:44:98:d2:cf:ee:19:6a:c4:
f8:e2:57:2d:5a:5f:d2:01:14:e2:8c:a3:e7:60:7c:
a2:15:07:4e:99:42:67:db:08:b6:13:9d:83:88:8d:
8c:93:5e:b2:07:c4:f8:a3:37:4a:df:56:e8:69:7d:
2a:ac:31:85:67:7c:50:45:92:87:b8:c7:00:22:a0:
88:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D5:25:BE:CF:A5:4F:93:90:F3:D0:43:8F:90:8D:EB:2C:27:56:5C
X509v3 Authority Key Identifier:
keyid:BC:F9:F0:B0:94:73:8C:52:82:FB:F4:B3:06:70:EC:5F:DC:B5:89:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vPnwsJRzjFKC-_SzBnDsX9y1id8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:52:4c:8e:9d:96:87:ca:0a:2a:74:89:30:76:c1:dd:8b:b5:
a5:e5:57:d2:ed:80:7f:7c:64:36:97:18:33:66:ed:ea:b0:39:
74:a8:ee:8b:d1:ca:bf:8d:5b:75:97:71:e4:fd:2d:5e:76:b9:
95:60:aa:3c:a0:4e:c1:7a:a6:24:81:f3:29:35:01:96:dd:d0:
52:96:a7:42:e9:75:81:bc:eb:04:19:bb:44:9d:07:4a:ee:be:
85:04:ea:e7:fc:f8:24:34:61:47:cb:67:63:54:c5:cd:07:6c:
05:b7:fe:2a:2e:d3:1f:26:e5:30:ce:94:b2:bf:d6:c7:d5:6d:
f8:ac:f7:ac:94:72:0b:24:63:19:84:04:e7:99:19:8d:eb:97:
e6:27:2f:8c:05:d6:b0:e9:d5:93:98:0a:df:aa:4e:b3:e4:4d:
58:0a:2c:63:8c:a3:df:2b:14:57:33:c4:c6:76:0b:65:d4:e9:
5a:28:ba:51:bf:cc:11:c2:8c:cb:06:e7:6e:ab:f3:b3:f0:5c:
a5:8f:81:70:ce:38:67:97:17:09:31:78:4b:64:7b:e2:af:0c:
14:93:a2:60:9c:ed:1f:c4:19:f6:e8:ca:db:72:68:1e:93:04:
72:46:cd:10:14:78:72:07:0d:dd:17:aa:ea:6a:b3:92:d5:14:
8c:7c:f1:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9KAThhK/FM08tXaNM0AGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjZjlmMGIwOTQ3MzhjNTI4MmZiZjRiMzA2NzBlYzVmZGNi
NTg5ZGYwHhcNMjUxMTA0MTMwMDQ1WhcNMjUxMTA1MTMwMDQ1WjAzMTEwLwYDVQQD
EyhjNmQ1MjViZWNmYTU0ZjkzOTBmM2QwNDM4ZjkwOGRlYjJjMjc1NjVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfkuBNROshxpmIvWsM+l9y0uSAKz
FkhvLlnrZ4zyedy3IyOZl5LBHVwhbi1nZHB/RkzfIvdxOQC9LnGPdMtka3xg8vE6
6EMnGsE2BHYCr7GNeZkmAX/5V75FY0+VXUvj15Smm+J+Uo91h+HgQOQrIcWuvcfy
98X2zAXOlsv+R5BPQiVHcvPMgFWwEv+pJu3ruS3Xy79jP7HhQvs8bQpRG5bwQnbD
cD2Tx22HjeqMjaylmAlI61fDzzMeRJjSz+4ZasT44lctWl/SARTijKPnYHyiFQdO
mUJn2wi2E52DiI2Mk16yB8T4ozdK31boaX0qrDGFZ3xQRZKHuMcAIqCIDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMbVJb7PpU+TkPPQQ4+QjessJ1ZcMB8GA1UdIwQY
MBaAFLz58LCUc4xSgvv0swZw7F/ctYnfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlBud3NKUnpqRktDLV9TekJuRHNYOXkxaWQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8zZjE5ZjktODM5NS00MDg4LWFmMTct
ZTVjYTY3YzExNTMzLzEvdlBud3NKUnpqRktDLV9TekJuRHNYOXkxaWQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy8zZjE5ZjktODM5NS00MDg4LWFmMTctZTVjYTY3YzExNTMz
LzEvdlBud3NKUnpqRktDLV9TekJuRHNYOXkxaWQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm1JMjp2W
h8oKKnSJMHbB3Yu1peVX0u2Af3xkNpcYM2bt6rA5dKjui9HKv41bdZdx5P0tXna5
lWCqPKBOwXqmJIHzKTUBlt3QUpanQul1gbzrBBm7RJ0HSu6+hQTq5/z4JDRhR8tn
Y1TFzQdsBbf+Ki7THyblMM6Usr/Wx9Vt+Kz3rJRyCyRjGYQE55kZjeuX5icvjAXW
sOnVk5gK36pOs+RNWAosY4yj3ysUVzPExnYLZdTpWii6Ub/MEcKMywbnbqvzs/Bc
pY+BcM44Z5cXCTF4S2R74q8MFJOiYJztH8QZ9ujK23JoHpMEckbNEBR4cgcN3Req
6mqzktUUjHzxtQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 17:36:34 2025 by rpki-client