Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
File: 3hL5ZansM-LC6HthYb7vuL4obKM.mft (raw, json)
Hash identifier: UVIrGwF/o5dHPq104nCCviN0on9mfEy7yTw7IhUk/Yg=
Subject key identifier: BB:71:BA:DF:94:84:AF:1D:88:1A:1C:B8:82:65:9D:D5:02:28:B2:2B
Authority key identifier: DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
Certificate issuer: /CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Certificate serial: 019A503E5A6FFB1F56D04F6EFDFD5BA008F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
Manifest number: 1531
Signing time: Tue 04 Nov 2025 19:00:54 +0000
Manifest this update: Tue 04 Nov 2025 19:00:54 +0000
Manifest next update: Wed 05 Nov 2025 19:00:54 +0000
Files and hashes: 1: 3hL5ZansM-LC6HthYb7vuL4obKM.crl (hash: Rk7BxwHyKLrvRSs4lQMLxNxLPzxMq5NaJaMovM6OqKg=)
2: WwmcE7wGl7pyI1JEZUrcMqc8ydE.roa (hash: eYdzJRuLYCeHIGBMM52itYWmfWw58ujov0m3EgFoPMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3e:5a:6f:fb:1f:56:d0:4f:6e:fd:fd:5b:a0:08:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Validity
Not Before: Nov 4 19:00:54 2025 GMT
Not After : Nov 5 19:00:54 2025 GMT
Subject: CN=bb71badf9484af1d881a1cb882659dd50228b22b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0b:99:ab:b5:dc:6f:9f:ce:da:e4:48:ba:3a:
1f:07:b3:c1:cc:e0:67:c9:4e:89:4c:e9:9f:55:79:
f6:22:cc:b3:26:1a:13:76:72:2b:48:06:d7:02:42:
54:42:ca:e1:7a:e6:e1:d9:bd:aa:d7:8a:e8:28:c2:
a3:d7:26:79:89:dc:2f:93:ff:c4:0a:7c:e6:a4:6c:
1f:a2:97:2e:d9:5c:b3:07:1e:0e:06:21:b8:47:43:
ed:16:95:fb:dd:91:2e:56:34:38:a6:8f:91:50:62:
b3:43:62:8f:fb:d9:64:17:05:58:23:cb:71:ff:f3:
90:2d:64:9f:c6:d2:91:a8:f3:37:d0:1b:06:42:a5:
75:4e:c5:5a:56:e7:43:32:12:03:39:ad:e5:3c:cc:
e7:5a:d1:d1:cd:a0:32:19:97:41:e4:82:34:68:2f:
24:8c:af:44:81:89:fd:8e:45:7c:ed:17:5e:75:7a:
d3:38:57:96:3c:e9:13:aa:7b:2e:2f:2c:4e:37:81:
38:d1:e0:0c:26:1e:da:c3:88:a0:82:f7:92:93:5b:
1b:e1:ff:e6:d0:a9:1a:08:03:ca:09:d5:71:ed:f1:
07:b1:16:1d:91:e8:7f:62:b4:57:c2:91:67:99:6a:
9c:19:fa:af:12:d9:f9:65:5b:cc:cb:9b:d0:2e:06:
4a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:71:BA:DF:94:84:AF:1D:88:1A:1C:B8:82:65:9D:D5:02:28:B2:2B
X509v3 Authority Key Identifier:
keyid:DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:40:80:fb:84:c7:b8:12:f7:9e:b8:32:de:78:10:94:bd:d4:
b7:72:7d:31:86:79:69:c2:17:81:68:ed:e0:79:43:22:2c:47:
33:e9:b5:0c:f1:26:13:a2:d3:81:05:3e:b3:33:a8:15:1b:d9:
69:4a:bc:1d:1f:d3:6a:4f:16:32:ea:0a:1b:ad:85:1d:a7:7f:
f0:b8:fa:ce:29:eb:82:16:29:e8:52:a5:de:80:b0:07:33:b4:
20:53:f6:2f:d0:33:04:d2:d8:3c:bb:e0:82:cc:b5:f0:61:10:
81:77:02:72:f2:e8:c7:96:a7:5a:d6:18:ce:82:a9:c8:11:41:
f0:fd:8c:be:e1:4e:c0:82:79:0d:89:5b:f5:a4:e9:b2:72:a0:
f7:1b:ac:64:db:5e:6f:f2:44:dc:fb:fb:11:31:d9:ae:3c:3f:
46:74:96:e9:6b:57:2c:1a:02:1e:4f:58:7a:e3:68:ea:5c:3c:
82:bf:01:85:76:f7:97:b3:48:24:1a:64:d2:12:7e:6c:95:3b:
ac:1e:43:54:b8:00:0b:2b:95:55:98:74:39:a3:2e:41:a8:06:
fe:4e:0e:b7:73:78:3a:17:f1:2f:c0:f2:e3:99:c0:8d:78:a6:
9d:d0:7c:af:93:dc:41:32:e0:1f:8d:25:c3:22:d5:2a:ef:d6:
b6:7d:3b:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQPlpv+x9W0E9u/f1boAj5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMTJmOTY1YTllYzMzZTJjMmU4N2I2MTYxYmVlZmI4YmUy
ODZjYTMwHhcNMjUxMTA0MTkwMDU0WhcNMjUxMTA1MTkwMDU0WjAzMTEwLwYDVQQD
EyhiYjcxYmFkZjk0ODRhZjFkODgxYTFjYjg4MjY1OWRkNTAyMjhiMjJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwguZq7Xcb5/O2uRIujofB7PBzOBn
yU6JTOmfVXn2IsyzJhoTdnIrSAbXAkJUQsrheubh2b2q14roKMKj1yZ5idwvk//E
CnzmpGwfopcu2VyzBx4OBiG4R0PtFpX73ZEuVjQ4po+RUGKzQ2KP+9lkFwVYI8tx
//OQLWSfxtKRqPM30BsGQqV1TsVaVudDMhIDOa3lPMznWtHRzaAyGZdB5II0aC8k
jK9EgYn9jkV87RdedXrTOFeWPOkTqnsuLyxON4E40eAMJh7aw4iggveSk1sb4f/m
0KkaCAPKCdVx7fEHsRYdkeh/YrRXwpFnmWqcGfqvEtn5ZVvMy5vQLgZKDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLtxut+UhK8diBocuIJlndUCKLIrMB8GA1UdIwQY
MBaAFN4S+WWp7DPiwuh7YWG+77i+KGyjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2hMNVphbnNNLUxDNkh0aFliN3Z1TDRvYktNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8wZjAzNzMtZGI2ZC00Nzk3LTgyMGQt
YjZkMTJhYzY2ODMxLzEvM2hMNVphbnNNLUxDNkh0aFliN3Z1TDRvYktNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8wZjAzNzMtZGI2ZC00Nzk3LTgyMGQtYjZkMTJhYzY2ODMx
LzEvM2hMNVphbnNNLUxDNkh0aFliN3Z1TDRvYktNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfkCA+4TH
uBL3nrgy3ngQlL3Ut3J9MYZ5acIXgWjt4HlDIixHM+m1DPEmE6LTgQU+szOoFRvZ
aUq8HR/Tak8WMuoKG62FHad/8Lj6zinrghYp6FKl3oCwBzO0IFP2L9AzBNLYPLvg
gsy18GEQgXcCcvLox5anWtYYzoKpyBFB8P2MvuFOwIJ5DYlb9aTpsnKg9xusZNte
b/JE3Pv7ETHZrjw/RnSW6WtXLBoCHk9YeuNo6lw8gr8BhXb3l7NIJBpk0hJ+bJU7
rB5DVLgACyuVVZh0OaMuQagG/k4Ot3N4OhfxL8Dy45nAjXimndB8r5PcQTLgH40l
wyLVKu/Wtn074g==
-----END CERTIFICATE-----
Generated at Wed Nov 5 00:47:27 2025 by rpki-client