Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
File: 95d69YDIUMyL-QZJ-b2opqSL85Y.mft (raw, json)
Hash identifier: qhhyM/R4C+9nmnLfa5wPtHyDDksz1HKSbaile/A+i30=
Subject key identifier: DE:E5:E8:C2:76:C8:25:3D:A4:53:0B:9F:68:5D:79:8B:87:2A:56:77
Authority key identifier: F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96
Certificate issuer: /CN=f7977af580c850cc8bf90649f9bda8a6a48bf396
Certificate serial: 019A4C985CD3BA02E669BBB6128741B48A4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
Manifest number: 0D8F
Signing time: Tue 04 Nov 2025 02:00:44 +0000
Manifest this update: Tue 04 Nov 2025 02:00:44 +0000
Manifest next update: Wed 05 Nov 2025 02:00:44 +0000
Files and hashes: 1: 95d69YDIUMyL-QZJ-b2opqSL85Y.crl (hash: c70pmRNierZGkjXdXWuRpytM4hVAoQgdyisVVlm8Vj8=)
2: cmLjyeJCay-rIpV13cL4nS3umqA.roa (hash: zv80BsoFgYMaUhk2eqxE9kG1WrpCEraiiqsDzPaa4r8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 02:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:98:5c:d3:ba:02:e6:69:bb:b6:12:87:41:b4:8a:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7977af580c850cc8bf90649f9bda8a6a48bf396
Validity
Not Before: Nov 4 02:00:44 2025 GMT
Not After : Nov 5 02:00:44 2025 GMT
Subject: CN=dee5e8c276c8253da4530b9f685d798b872a5677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:de:4e:c4:2c:89:57:72:77:1d:59:58:65:76:
6a:cc:f5:74:42:2a:1f:ed:2e:55:b5:46:7d:5c:11:
67:84:7c:a8:40:5f:fd:d9:41:ba:64:92:af:bc:b5:
3b:7e:eb:b2:b9:31:e8:06:e3:a7:ac:54:61:c1:a3:
80:37:d6:06:ea:5d:67:df:4a:a6:48:a9:84:e9:1c:
70:6d:8b:de:54:67:a9:82:f3:56:2e:97:0a:e1:51:
cb:5e:dd:ef:4a:09:c3:a2:2d:a5:51:b3:6c:d0:58:
56:f2:d2:e0:e3:32:d8:77:1a:16:09:a2:f2:dd:15:
58:45:08:33:5d:91:1b:ab:1e:1d:47:85:f6:b1:18:
e9:f0:64:c6:b0:c3:a5:65:e7:dc:17:1a:f4:ef:8c:
26:2d:63:c6:f9:d9:d1:ea:da:a0:71:3a:23:69:17:
e9:47:da:78:fa:52:4c:29:e2:9b:60:42:89:ca:67:
b9:fb:54:1c:91:7f:62:b5:12:b0:ff:84:71:a4:78:
9e:e6:b2:48:e9:ac:5f:37:d0:21:8a:5c:a6:cb:53:
82:43:d0:0f:d8:74:99:cf:80:53:0d:73:23:74:0d:
37:39:0a:80:8c:e3:f9:18:56:0f:e7:8f:90:9d:86:
63:db:94:23:85:20:0b:76:63:19:1b:ab:b3:be:4a:
c9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E5:E8:C2:76:C8:25:3D:A4:53:0B:9F:68:5D:79:8B:87:2A:56:77
X509v3 Authority Key Identifier:
keyid:F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:7c:04:85:d0:94:d8:a3:25:38:65:03:4d:20:d5:21:7a:e8:
1d:56:0e:63:10:70:6f:5b:5d:95:df:01:12:22:90:89:17:7d:
1e:1e:a4:ee:1d:51:ba:5b:36:28:eb:b8:38:6d:28:3c:f6:0d:
59:3c:33:c7:d8:d4:d6:04:25:01:21:ab:eb:dc:c7:2c:3e:d2:
f3:85:4a:71:85:8c:02:2c:2e:7c:c3:72:e1:27:37:60:5b:05:
52:55:15:03:79:a1:60:4f:92:d4:8f:83:14:dd:33:4f:db:cc:
d0:f3:b5:cc:00:b8:42:62:e7:7b:d5:b2:db:c8:88:8d:67:fe:
f4:8e:21:a6:d3:cd:e4:ca:ce:d5:a1:15:8a:e7:ee:cb:01:26:
ce:12:55:05:e0:84:07:4f:1c:bd:5a:8f:2f:42:4e:5a:a6:8d:
ce:1a:15:a5:92:b6:5e:0d:fc:84:5c:86:0c:45:b1:d5:2d:38:
6a:6c:8f:57:f5:83:e2:32:1a:3c:c7:9b:67:3a:ec:ec:18:22:
5e:ae:1c:23:ce:ab:fe:9c:cc:cf:cf:00:08:3c:98:d1:0c:40:
a6:d9:58:4f:66:62:ad:75:32:69:db:be:d1:d3:64:1a:c2:7e:
58:13:08:ac:d1:cf:a9:01:0c:ea:bd:d6:ec:83:1c:a2:24:ba:
b3:01:e8:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpMmFzTugLmabu2EodBtIpKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3OTc3YWY1ODBjODUwY2M4YmY5MDY0OWY5YmRhOGE2YTQ4
YmYzOTYwHhcNMjUxMTA0MDIwMDQ0WhcNMjUxMTA1MDIwMDQ0WjAzMTEwLwYDVQQD
EyhkZWU1ZThjMjc2YzgyNTNkYTQ1MzBiOWY2ODVkNzk4Yjg3MmE1Njc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi95OxCyJV3J3HVlYZXZqzPV0Qiof
7S5VtUZ9XBFnhHyoQF/92UG6ZJKvvLU7fuuyuTHoBuOnrFRhwaOAN9YG6l1n30qm
SKmE6RxwbYveVGepgvNWLpcK4VHLXt3vSgnDoi2lUbNs0FhW8tLg4zLYdxoWCaLy
3RVYRQgzXZEbqx4dR4X2sRjp8GTGsMOlZefcFxr074wmLWPG+dnR6tqgcTojaRfp
R9p4+lJMKeKbYEKJyme5+1QckX9itRKw/4RxpHie5rJI6axfN9Ahilymy1OCQ9AP
2HSZz4BTDXMjdA03OQqAjOP5GFYP54+QnYZj25QjhSALdmMZG6uzvkrJUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN7l6MJ2yCU9pFMLn2hdeYuHKlZ3MB8GA1UdIwQY
MBaAFPeXevWAyFDMi/kGSfm9qKaki/OWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTVkNjlZRElVTXlMLVFaSi1iMm9wcVNMODVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9iMzYxZWYtNWY2OS00YmNiLTk4M2Mt
MjExMjgwMjcyNTVkLzEvOTVkNjlZRElVTXlMLVFaSi1iMm9wcVNMODVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi9iMzYxZWYtNWY2OS00YmNiLTk4M2MtMjExMjgwMjcyNTVk
LzEvOTVkNjlZRElVTXlMLVFaSi1iMm9wcVNMODVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADHwEhdCU
2KMlOGUDTSDVIXroHVYOYxBwb1tdld8BEiKQiRd9Hh6k7h1Ruls2KOu4OG0oPPYN
WTwzx9jU1gQlASGr69zHLD7S84VKcYWMAiwufMNy4Sc3YFsFUlUVA3mhYE+S1I+D
FN0zT9vM0PO1zAC4QmLne9Wy28iIjWf+9I4hptPN5MrO1aEViufuywEmzhJVBeCE
B08cvVqPL0JOWqaNzhoVpZK2Xg38hFyGDEWx1S04amyPV/WD4jIaPMebZzrs7Bgi
Xq4cI86r/pzMz88ACDyY0QxAptlYT2ZirXUyadu+0dNkGsJ+WBMIrNHPqQEM6r3W
7IMcoiS6swHodg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 10:45:15 2025 by rpki-client