Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.mft
File: Le43b1HIyKVVUo1MFesfTKOZxJE.mft (raw, json)
Hash identifier: yT2aRHq+X1hQ/LoRgXrjnIIuFPmSktoLbrzKv+rY/nQ=
Subject key identifier: 95:84:9F:B2:1E:EB:1C:8F:FB:E1:80:01:CD:53:A6:99:0E:E2:1E:49
Authority key identifier: 2D:EE:37:6F:51:C8:C8:A5:55:52:8D:4C:15:EB:1F:4C:A3:99:C4:91
Certificate issuer: /CN=2dee376f51c8c8a555528d4c15eb1f4ca399c491
Certificate serial: 019A50E27979C6CDC2AFCBE2919BEB54D2B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Le43b1HIyKVVUo1MFesfTKOZxJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.mft
Manifest number: 170A
Signing time: Tue 04 Nov 2025 22:00:10 +0000
Manifest this update: Tue 04 Nov 2025 22:00:10 +0000
Manifest next update: Wed 05 Nov 2025 22:00:10 +0000
Files and hashes: 1: Le43b1HIyKVVUo1MFesfTKOZxJE.crl (hash: 3Vh1asyRq8vpqxo3+3IdbYCOzfCi0mUZ7BR7DEfv3KM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Le43b1HIyKVVUo1MFesfTKOZxJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e2:79:79:c6:cd:c2:af:cb:e2:91:9b:eb:54:d2:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dee376f51c8c8a555528d4c15eb1f4ca399c491
Validity
Not Before: Nov 4 22:00:10 2025 GMT
Not After : Nov 5 22:00:10 2025 GMT
Subject: CN=95849fb21eeb1c8ffbe18001cd53a6990ee21e49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c8:80:5b:2a:1b:2c:98:16:09:0a:28:4e:03:
4d:76:05:f3:c5:02:8c:d8:8f:bd:f2:42:05:fa:aa:
5b:e0:1b:4a:24:98:fa:ea:92:49:88:20:2b:c6:73:
99:00:26:7a:23:bb:87:9a:4a:6b:df:16:43:42:00:
ea:2e:5f:3a:d2:01:c4:ec:13:6c:1d:c9:f0:23:6c:
8f:6e:8c:43:e2:29:55:3f:3f:96:03:bb:fe:49:fb:
4e:56:e7:ce:bd:36:a2:11:20:e3:41:5c:9e:4d:52:
f7:1b:66:46:bf:6c:72:81:83:96:05:e6:9d:68:7b:
c8:83:99:84:58:49:0a:be:ca:02:22:25:8e:77:cb:
72:e2:27:08:82:38:d2:ad:9c:73:cd:c1:e0:11:13:
07:32:e7:c9:7a:a9:df:b6:d8:02:6c:4d:57:be:0f:
e4:03:a8:8a:1d:5e:18:cf:2c:f8:c3:dc:1d:81:bc:
8b:a1:7e:91:d2:a5:e5:58:47:ed:1a:ba:97:91:8e:
49:da:a2:4a:5e:a6:1b:1e:35:25:2b:53:15:0e:62:
d9:ec:0e:7a:7d:99:ec:21:e9:b7:be:cd:ce:56:1c:
1e:45:e8:96:1a:60:03:04:9c:cc:8a:58:b9:d9:99:
a8:2a:ee:59:3a:79:90:ca:b6:ad:94:c7:94:19:e1:
43:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:84:9F:B2:1E:EB:1C:8F:FB:E1:80:01:CD:53:A6:99:0E:E2:1E:49
X509v3 Authority Key Identifier:
keyid:2D:EE:37:6F:51:C8:C8:A5:55:52:8D:4C:15:EB:1F:4C:A3:99:C4:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Le43b1HIyKVVUo1MFesfTKOZxJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:60:d7:c5:91:d6:53:ca:66:8c:83:1e:10:b3:76:be:17:4d:
37:74:38:1f:c7:d6:aa:c8:71:3c:b7:6a:87:6d:1a:23:c9:b5:
37:ec:fb:78:3e:58:aa:aa:ab:b3:ee:0a:b4:98:8f:ee:27:ac:
a6:8e:ba:ac:e5:cf:8b:3e:b2:3f:14:80:09:9d:b8:fb:1f:9a:
47:e1:8b:8a:bf:c6:55:ad:61:3c:c1:1d:24:fd:33:a9:8c:00:
2b:48:e3:ac:6a:6d:c0:5e:c8:6f:08:2e:06:9a:0c:d3:3a:63:
65:cf:29:c9:b6:63:f4:d2:b5:ad:d7:94:f0:d9:35:fe:e3:b5:
72:e0:63:8d:b1:64:e5:e1:5f:be:dc:19:a6:3f:07:e5:30:0d:
de:f6:7f:fc:ad:83:c2:92:14:34:86:56:1f:05:09:69:6a:ca:
7a:68:04:36:4d:5e:0a:71:66:f5:8c:e0:30:b6:b4:28:24:bf:
c9:76:74:eb:62:4a:27:19:fd:c0:47:57:be:9a:be:ad:5c:b9:
a4:58:b8:ed:11:ac:77:0f:9a:17:4a:09:e2:61:18:25:88:28:
9a:da:48:f4:81:d9:27:04:fb:6e:c8:51:c5:9b:5e:e9:aa:70:
7f:50:0e:69:21:9c:4b:81:2d:55:32:4c:df:6e:d4:9a:11:bf:
35:f7:8e:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQ4nl5xs3Cr8vikZvrVNK2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkZWUzNzZmNTFjOGM4YTU1NTUyOGQ0YzE1ZWIxZjRjYTM5
OWM0OTEwHhcNMjUxMTA0MjIwMDEwWhcNMjUxMTA1MjIwMDEwWjAzMTEwLwYDVQQD
Eyg5NTg0OWZiMjFlZWIxYzhmZmJlMTgwMDFjZDUzYTY5OTBlZTIxZTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlciAWyobLJgWCQooTgNNdgXzxQKM
2I+98kIF+qpb4BtKJJj66pJJiCArxnOZACZ6I7uHmkpr3xZDQgDqLl860gHE7BNs
HcnwI2yPboxD4ilVPz+WA7v+SftOVufOvTaiESDjQVyeTVL3G2ZGv2xygYOWBead
aHvIg5mEWEkKvsoCIiWOd8ty4icIgjjSrZxzzcHgERMHMufJeqnfttgCbE1Xvg/k
A6iKHV4Yzyz4w9wdgbyLoX6R0qXlWEftGrqXkY5J2qJKXqYbHjUlK1MVDmLZ7A56
fZnsIem3vs3OVhweReiWGmADBJzMili52ZmoKu5ZOnmQyratlMeUGeFDswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJWEn7Ie6xyP++GAAc1TppkO4h5JMB8GA1UdIwQY
MBaAFC3uN29RyMilVVKNTBXrH0yjmcSRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGU0M2IxSEl5S1ZWVW8xTUZlc2ZUS09aeEpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8zYmUwOTctMjhmNC00OWU4LWFkMjUt
ZmY1Y2JkYWM1ODQ1LzEvTGU0M2IxSEl5S1ZWVW8xTUZlc2ZUS09aeEpFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS8zYmUwOTctMjhmNC00OWU4LWFkMjUtZmY1Y2JkYWM1ODQ1
LzEvTGU0M2IxSEl5S1ZWVW8xTUZlc2ZUS09aeEpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcGDXxZHW
U8pmjIMeELN2vhdNN3Q4H8fWqshxPLdqh20aI8m1N+z7eD5Yqqqrs+4KtJiP7ies
po66rOXPiz6yPxSACZ24+x+aR+GLir/GVa1hPMEdJP0zqYwAK0jjrGptwF7Ibwgu
BpoM0zpjZc8pybZj9NK1rdeU8Nk1/uO1cuBjjbFk5eFfvtwZpj8H5TAN3vZ//K2D
wpIUNIZWHwUJaWrKemgENk1eCnFm9YzgMLa0KCS/yXZ062JKJxn9wEdXvpq+rVy5
pFi47RGsdw+aF0oJ4mEYJYgomtpI9IHZJwT7bshRxZte6apwf1AOaSGcS4EtVTJM
327UmhG/NfeObw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 23:56:07 2025 by rpki-client