Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
File: _ORf1v09kyaEwMW8J_T6YVoQkOA.mft (raw, json)
Hash identifier: oZuHEdr1uXDThOwEfF+kSd6vf1QMiv0ERn8yjBY4ybA=
Subject key identifier: 2F:54:CD:3A:50:FD:2A:9D:77:22:1D:9A:F3:CA:2C:FB:02:8D:0A:61
Authority key identifier: FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
Certificate issuer: /CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Certificate serial: 019A51BED9FC807DD560708A0C520012DC71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
Manifest number: 0D92
Signing time: Wed 05 Nov 2025 02:00:53 +0000
Manifest this update: Wed 05 Nov 2025 02:00:53 +0000
Manifest next update: Thu 06 Nov 2025 02:00:53 +0000
Files and hashes: 1: 0q3J-c3dMCcb0fEi4kT4_OFKaDo.roa (hash: GFF2i9DOD9iNc83o9PQkrJQokdzx6TTVi4lrSIyhIgE=)
2: _ORf1v09kyaEwMW8J_T6YVoQkOA.crl (hash: X/Kz/Q7uxatXYhAQJdLIMjfAlUjG6ZbINnVRbMuuMyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 02:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:be:d9:fc:80:7d:d5:60:70:8a:0c:52:00:12:dc:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Validity
Not Before: Nov 5 02:00:53 2025 GMT
Not After : Nov 6 02:00:53 2025 GMT
Subject: CN=2f54cd3a50fd2a9d77221d9af3ca2cfb028d0a61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0c:45:7b:0f:24:fd:82:8f:90:4a:b3:01:df:
e7:34:24:18:e0:63:bd:14:79:d1:e4:16:34:21:6b:
ab:7e:5c:e2:32:e1:5c:42:61:36:7d:0a:01:ec:ad:
46:a2:c7:ae:2a:67:d6:32:f9:82:fd:54:bd:6b:90:
01:42:3d:c1:83:9b:07:d2:62:7e:29:cd:af:bc:c0:
61:6d:c4:02:af:8f:29:f6:9a:91:64:b4:d3:90:8c:
95:18:72:41:59:b7:33:b1:ff:4c:53:53:90:39:9b:
c5:b0:77:1e:64:4b:da:c1:2e:37:59:34:96:7e:35:
e4:19:b9:d2:31:39:f1:83:44:24:50:42:a3:02:cd:
99:07:23:3f:73:3d:46:2b:14:11:8d:50:d7:05:0a:
dd:ff:76:34:aa:62:42:0a:09:14:4c:46:14:fb:69:
41:f1:7d:b1:7f:01:04:d1:19:41:c9:cd:98:33:28:
4c:d1:9c:b2:cb:cb:d1:0f:f1:4d:52:50:83:25:cb:
c2:37:67:96:f7:44:7f:76:be:a6:a9:7c:c7:ef:53:
19:e3:ec:54:d0:4b:be:01:25:36:90:be:c8:4d:09:
17:38:35:d5:d7:41:33:47:7d:e9:53:ce:5d:0a:4a:
dc:eb:cb:2c:e2:70:22:d9:51:88:c1:ee:07:c6:73:
94:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:54:CD:3A:50:FD:2A:9D:77:22:1D:9A:F3:CA:2C:FB:02:8D:0A:61
X509v3 Authority Key Identifier:
keyid:FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:d5:bf:0f:89:fd:40:de:6d:66:df:17:c1:97:35:04:fe:5e:
cf:46:d2:98:f5:8d:55:63:d6:06:d5:09:c2:57:85:4c:c5:9c:
18:a8:e2:46:07:07:fb:c5:1c:bf:ad:32:35:20:b1:64:41:0e:
51:1a:59:71:8d:1f:ab:41:1b:f6:2d:23:5a:56:20:19:3e:39:
47:e8:ce:a9:81:ea:59:26:23:db:dc:be:8f:14:aa:3e:16:ae:
17:a1:e1:60:ce:b9:85:4c:36:2f:30:72:1a:a1:7d:18:5e:43:
5a:3e:22:ee:71:a9:21:0d:33:2b:e2:1e:fd:e0:27:94:2c:69:
54:56:b5:3b:14:4b:8b:43:9c:06:43:67:85:f5:bc:3d:f7:70:
a1:28:3b:86:2b:3f:f4:ea:0c:86:db:68:35:d3:16:5e:38:28:
1c:47:94:45:fb:46:6d:31:44:db:0c:03:ea:b2:5e:4c:97:23:
dd:9e:e2:c4:2a:5d:b1:5c:91:62:21:91:1e:c0:7f:70:b1:ff:
be:8b:58:00:87:99:27:75:90:a8:df:d1:c2:06:c7:c8:18:4d:
7a:11:57:5e:c6:61:b8:5c:0e:62:f4:cf:11:1d:47:26:ad:84:
f9:e0:7f:be:47:95:3f:8d:c1:70:4a:49:e8:ee:d7:61:7a:ae:
fa:67:1f:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpRvtn8gH3VYHCKDFIAEtxxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjZTQ1ZmQ2ZmQzZDkzMjY4NGMwYzViYzI3ZjRmYTYxNWEx
MDkwZTAwHhcNMjUxMTA1MDIwMDUzWhcNMjUxMTA2MDIwMDUzWjAzMTEwLwYDVQQD
EygyZjU0Y2QzYTUwZmQyYTlkNzcyMjFkOWFmM2NhMmNmYjAyOGQwYTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwxFew8k/YKPkEqzAd/nNCQY4GO9
FHnR5BY0IWurflziMuFcQmE2fQoB7K1GoseuKmfWMvmC/VS9a5ABQj3Bg5sH0mJ+
Kc2vvMBhbcQCr48p9pqRZLTTkIyVGHJBWbczsf9MU1OQOZvFsHceZEvawS43WTSW
fjXkGbnSMTnxg0QkUEKjAs2ZByM/cz1GKxQRjVDXBQrd/3Y0qmJCCgkUTEYU+2lB
8X2xfwEE0RlByc2YMyhM0Zyyy8vRD/FNUlCDJcvCN2eW90R/dr6mqXzH71MZ4+xU
0Eu+ASU2kL7ITQkXODXV10EzR33pU85dCkrc68ss4nAi2VGIwe4HxnOURQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC9UzTpQ/SqddyIdmvPKLPsCjQphMB8GA1UdIwQY
MBaAFPzkX9b9PZMmhMDFvCf0+mFaEJDgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX09SZjF2MDlreWFFd01XOEpfVDZZVm9Ra09BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9iZjVhNjQtOGFhZi00NGE4LWJhY2Ut
MzY4NTBkZjRlOTk3LzEvX09SZjF2MDlreWFFd01XOEpfVDZZVm9Ra09BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi9iZjVhNjQtOGFhZi00NGE4LWJhY2UtMzY4NTBkZjRlOTk3
LzEvX09SZjF2MDlreWFFd01XOEpfVDZZVm9Ra09BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATNW/D4n9
QN5tZt8XwZc1BP5ez0bSmPWNVWPWBtUJwleFTMWcGKjiRgcH+8Ucv60yNSCxZEEO
URpZcY0fq0Eb9i0jWlYgGT45R+jOqYHqWSYj29y+jxSqPhauF6HhYM65hUw2LzBy
GqF9GF5DWj4i7nGpIQ0zK+Ie/eAnlCxpVFa1OxRLi0OcBkNnhfW8PfdwoSg7his/
9OoMhttoNdMWXjgoHEeURftGbTFE2wwD6rJeTJcj3Z7ixCpdsVyRYiGRHsB/cLH/
votYAIeZJ3WQqN/RwgbHyBhNehFXXsZhuFwOYvTPER1HJq2E+eB/vkeVP43BcEpJ
6O7XYXqu+mcf/w==
-----END CERTIFICATE-----
Generated at Wed Nov 5 10:57:12 2025 by rpki-client