Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
File: 43ipS5lk6l6fiwWThwK6WDFrUA8.mft (raw, json)
Hash identifier: 2/00sRi+qEj+1im/HAGMUmf/vIP+OGorZw9PMnZi1L0=
Subject key identifier: 33:F7:6C:D1:AF:7E:37:F2:78:63:C6:1A:DB:0B:BA:69:AA:0A:3C:02
Authority key identifier: E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
Certificate issuer: /CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Certificate serial: 019A5007303261C4F3F8D96A3CE7D044B371
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
Manifest number: 169D
Signing time: Tue 04 Nov 2025 18:00:39 +0000
Manifest this update: Tue 04 Nov 2025 18:00:39 +0000
Manifest next update: Wed 05 Nov 2025 18:00:39 +0000
Files and hashes: 1: 43ipS5lk6l6fiwWThwK6WDFrUA8.crl (hash: HvJAIv/RTzYH3cuQ9oz03Ob6pqf2exNfe6s8R7iPEnc=)
2: vvNRTPRqU8Pnch_p0B0gqgkil_Q.roa (hash: nLSnGecWyvHzo3G0jRopUHVVK/4X1Sw9XUMyVphgWSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:07:30:32:61:c4:f3:f8:d9:6a:3c:e7:d0:44:b3:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Validity
Not Before: Nov 4 18:00:39 2025 GMT
Not After : Nov 5 18:00:39 2025 GMT
Subject: CN=33f76cd1af7e37f27863c61adb0bba69aa0a3c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ba:e0:b7:65:68:65:e9:2b:9b:91:1c:34:67:
46:02:a1:67:23:2d:11:f4:4c:e8:1f:e1:dc:16:5c:
d1:81:c5:70:cb:72:23:b8:53:4f:31:d3:1d:99:ce:
98:d6:32:1b:09:9f:7f:7f:06:7f:e6:33:1c:af:7e:
f7:ef:4e:23:0a:1c:e6:77:73:f5:78:25:4a:f8:76:
86:b9:bd:27:fd:3a:e5:53:41:86:4f:a6:73:2d:60:
15:f2:cd:7a:c3:ac:af:92:82:a2:bf:0d:35:42:20:
d6:2b:a5:6d:c0:f4:d8:27:35:b6:1b:6d:66:1d:9a:
93:63:b5:0a:38:14:e1:d6:8e:18:3a:a9:6f:d4:bd:
8d:85:2b:ed:89:8f:7b:e7:06:46:33:2c:ff:10:16:
43:98:25:4e:f7:2b:ad:b5:59:cc:28:f1:f5:a4:a2:
49:b1:46:66:b2:73:f1:05:f7:1d:bd:45:da:76:b3:
1e:d5:e7:fa:dd:20:02:85:bb:30:f4:03:1b:54:66:
e5:40:20:fd:78:1e:fc:e7:c9:e4:fd:a4:6c:8d:41:
e4:00:e9:eb:62:09:0d:1d:93:a7:17:26:ee:4c:72:
ae:99:d1:2d:97:c9:16:72:f1:89:c5:84:74:83:3a:
9f:43:02:10:61:fe:ef:a9:02:a3:e0:5a:e5:27:4f:
e0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F7:6C:D1:AF:7E:37:F2:78:63:C6:1A:DB:0B:BA:69:AA:0A:3C:02
X509v3 Authority Key Identifier:
keyid:E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:90:31:80:35:f6:8f:ef:1f:8f:5d:92:a9:57:be:ec:f9:6b:
2f:16:ed:a4:8f:22:01:8a:86:03:58:21:e5:1d:f3:11:33:22:
15:39:f7:37:1e:80:47:15:52:b2:dc:74:e8:c3:f2:7d:4d:1e:
98:ae:b3:73:75:da:11:74:19:98:e3:dc:53:2b:53:3f:03:88:
4f:6f:b0:2c:ae:79:f5:77:1e:8a:e4:73:67:69:bb:d8:33:d3:
c2:cd:2c:be:58:9c:04:a0:70:56:ba:2b:b0:68:86:97:79:44:
fa:0d:8d:f4:9e:69:d6:a8:8c:28:e7:37:a8:5a:57:65:36:e3:
0f:2e:43:37:11:0a:d5:47:af:f2:cd:83:52:f3:b5:3b:1c:43:
ab:76:28:81:47:e4:e0:5b:ca:a0:6a:f9:f2:16:eb:d8:71:31:
0a:52:23:04:50:e3:ac:d1:92:d8:f8:71:83:04:be:32:00:1f:
e8:05:54:6c:5e:6f:49:dd:7d:74:0e:df:c6:23:f6:38:ea:32:
0f:18:7a:b7:b7:c3:7a:fe:42:10:a4:a1:98:e4:6b:2c:ea:a9:
ed:50:4b:4c:f0:22:4a:cb:16:7f:74:b7:ee:4a:cb:65:c0:e0:
b0:9c:1b:86:06:61:b5:2f:10:28:d2:22:ab:d0:bd:7d:9a:e7:
0a:e9:0b:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQBzAyYcTz+NlqPOfQRLNxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzNzhhOTRiOTk2NGVhNWU5ZjhiMDU5Mzg3MDJiYTU4MzE2
YjUwMGYwHhcNMjUxMTA0MTgwMDM5WhcNMjUxMTA1MTgwMDM5WjAzMTEwLwYDVQQD
EygzM2Y3NmNkMWFmN2UzN2YyNzg2M2M2MWFkYjBiYmE2OWFhMGEzYzAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0rrgt2VoZekrm5EcNGdGAqFnIy0R
9EzoH+HcFlzRgcVwy3IjuFNPMdMdmc6Y1jIbCZ9/fwZ/5jMcr373704jChzmd3P1
eCVK+HaGub0n/TrlU0GGT6ZzLWAV8s16w6yvkoKivw01QiDWK6VtwPTYJzW2G21m
HZqTY7UKOBTh1o4YOqlv1L2NhSvtiY975wZGMyz/EBZDmCVO9yuttVnMKPH1pKJJ
sUZmsnPxBfcdvUXadrMe1ef63SAChbsw9AMbVGblQCD9eB7858nk/aRsjUHkAOnr
YgkNHZOnFybuTHKumdEtl8kWcvGJxYR0gzqfQwIQYf7vqQKj4FrlJ0/giwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDP3bNGvfjfyeGPGGtsLummqCjwCMB8GA1UdIwQY
MBaAFON4qUuZZOpen4sFk4cCulgxa1APMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNDNpcFM1bGs2bDZmaXdXVGh3SzZXREZyVUE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy82YTVlOGMtZDgzMS00MWUzLTg0ZTUt
ZjQyMTc2Y2QwNDQ1LzEvNDNpcFM1bGs2bDZmaXdXVGh3SzZXREZyVUE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy82YTVlOGMtZDgzMS00MWUzLTg0ZTUtZjQyMTc2Y2QwNDQ1
LzEvNDNpcFM1bGs2bDZmaXdXVGh3SzZXREZyVUE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV5AxgDX2
j+8fj12SqVe+7PlrLxbtpI8iAYqGA1gh5R3zETMiFTn3Nx6ARxVSstx06MPyfU0e
mK6zc3XaEXQZmOPcUytTPwOIT2+wLK559XceiuRzZ2m72DPTws0svlicBKBwVror
sGiGl3lE+g2N9J5p1qiMKOc3qFpXZTbjDy5DNxEK1Uev8s2DUvO1OxxDq3YogUfk
4FvKoGr58hbr2HExClIjBFDjrNGS2PhxgwS+MgAf6AVUbF5vSd19dA7fxiP2OOoy
Dxh6t7fDev5CEKShmORrLOqp7VBLTPAiSssWf3S37krLZcDgsJwbhgZhtS8QKNIi
q9C9fZrnCukLlQ==
-----END CERTIFICATE-----
Generated at Wed Nov 5 00:59:30 2025 by rpki-client