Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: pHSQyIU3++i8V635q/TiohO/vOz1Kn8jVLZp4+pSp+w=
Subject key identifier: C2:EC:4B:48:4C:D4:A3:D3:49:31:31:D2:B8:B8:01:6C:B0:16:CB:65
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 019A54BF51757911F9A7C48F5027D0A97B2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 170F
Signing time: Wed 05 Nov 2025 16:00:15 +0000
Manifest this update: Wed 05 Nov 2025 16:00:15 +0000
Manifest next update: Thu 06 Nov 2025 16:00:15 +0000
Files and hashes: 1: APkFGhaR8YtianTelxgsgSDeVhM.roa (hash: 2Pdlo7CTCPlVPPRVRRuXnXVCI5TavhpFPnrp+xkks5o=)
2: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: nD5RxRUM0ndpaaq/0kmWHu6/yoyOJcIke+Egr/J5QMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:bf:51:75:79:11:f9:a7:c4:8f:50:27:d0:a9:7b:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: Nov 5 16:00:15 2025 GMT
Not After : Nov 6 16:00:15 2025 GMT
Subject: CN=c2ec4b484cd4a3d3493131d2b8b8016cb016cb65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:74:f1:49:0c:0b:3b:ea:c4:c8:a0:05:b1:9b:
a0:e0:52:af:73:10:70:76:da:ae:dc:fb:97:e6:18:
d3:24:77:0e:89:12:83:b7:29:44:4d:15:6b:17:0a:
91:3b:92:a5:a3:54:26:8b:7c:94:cc:f8:84:72:a0:
c5:55:69:03:d7:76:e8:5e:ec:7e:e6:9e:68:32:01:
5b:9d:ab:49:c3:ca:0b:bd:24:d5:97:c1:bf:ae:21:
b6:2b:01:c2:45:99:9f:f1:ef:86:f9:d9:b3:a3:a7:
e9:0a:23:ac:f5:83:e2:90:91:eb:2b:e2:c1:e3:e0:
68:83:58:6d:c9:95:48:09:ca:08:47:24:b4:89:15:
e0:51:0d:eb:4a:a7:e3:81:3f:9e:2b:c4:d9:56:af:
39:97:7c:55:94:6b:60:87:c7:c7:89:d7:4e:9e:dd:
7b:ed:4a:c5:b5:e7:c0:5e:e8:97:9d:f3:f2:14:17:
79:3d:27:a6:4a:a5:6c:55:70:63:39:f5:4b:c3:6e:
1f:7c:07:d5:fc:b0:15:43:52:48:be:53:5e:ad:f1:
e8:1a:27:f2:9e:55:20:a2:f2:ac:bb:c6:cc:56:27:
94:fa:26:f3:66:34:6d:0d:42:c4:45:e1:0e:02:41:
d8:c8:ed:a0:a5:da:cb:41:99:46:43:58:c2:9c:8f:
50:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:EC:4B:48:4C:D4:A3:D3:49:31:31:D2:B8:B8:01:6C:B0:16:CB:65
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:e4:0d:89:e5:1a:73:33:a3:d0:d7:77:2f:f4:44:42:96:c5:
3d:45:37:90:af:99:86:d4:4c:e9:e6:76:fc:27:8b:a6:0e:0d:
6c:8e:00:78:37:0b:37:26:35:c5:50:75:63:3a:56:d8:33:74:
1f:9f:c5:24:18:00:81:e2:07:17:cc:ba:9c:cb:c5:a4:6a:3d:
60:8d:65:f9:82:2b:a2:aa:9c:54:ae:48:20:c1:51:64:98:60:
46:99:46:b2:6e:c8:a9:5b:cd:7b:d1:27:e6:c4:f8:ad:6e:5c:
ad:46:5e:d5:75:14:13:1f:92:e4:cb:1e:c3:b6:6c:f0:da:c2:
3d:8d:ee:90:5b:95:51:28:aa:4f:39:8a:7c:be:04:bf:66:b2:
7d:2b:2d:ea:e1:10:2b:51:34:54:92:89:9f:45:ab:23:27:63:
86:1f:ac:80:81:57:ec:9c:98:3b:75:73:1d:88:d4:9d:5b:ac:
11:b4:05:f9:ce:9a:8e:a4:f1:7f:f7:53:fb:7f:c1:2f:3f:47:
dc:6d:e6:f4:a4:1d:98:56:65:43:f4:4d:80:8d:62:71:b1:64:
bd:f9:2a:79:a3:9d:12:1f:69:d5:07:7d:32:ed:a7:e2:89:99:
79:c7:58:a3:43:95:81:5e:64:50:a4:c4:9d:30:f3:73:35:be:
0a:21:bf:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpUv1F1eRH5p8SPUCfQqXsrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwZjZlNTNiNjk3YWQyNjNiNGJhNGVhNDk4MTQzNjZhODgz
YjU0YWQwHhcNMjUxMTA1MTYwMDE1WhcNMjUxMTA2MTYwMDE1WjAzMTEwLwYDVQQD
EyhjMmVjNGI0ODRjZDRhM2QzNDkzMTMxZDJiOGI4MDE2Y2IwMTZjYjY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3TxSQwLO+rEyKAFsZug4FKvcxBw
dtqu3PuX5hjTJHcOiRKDtylETRVrFwqRO5Klo1Qmi3yUzPiEcqDFVWkD13boXux+
5p5oMgFbnatJw8oLvSTVl8G/riG2KwHCRZmf8e+G+dmzo6fpCiOs9YPikJHrK+LB
4+Bog1htyZVICcoIRyS0iRXgUQ3rSqfjgT+eK8TZVq85l3xVlGtgh8fHiddOnt17
7UrFtefAXuiXnfPyFBd5PSemSqVsVXBjOfVLw24ffAfV/LAVQ1JIvlNerfHoGify
nlUgovKsu8bMVieU+ibzZjRtDULEReEOAkHYyO2gpdrLQZlGQ1jCnI9QSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMLsS0hM1KPTSTEx0ri4AWywFstlMB8GA1UdIwQY
MBaAFCD25TtpetJjtLpOpJgUNmqIO1StMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVBibE8ybDYwbU8wdWs2a21CUTJhb2c3VkswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9lNzU3NmEtNDM2My00OTg0LWI0Yzct
YjFmMjljY2NjZTU1LzEvSVBibE8ybDYwbU8wdWs2a21CUTJhb2c3VkswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi9lNzU3NmEtNDM2My00OTg0LWI0YzctYjFmMjljY2NjZTU1
LzEvSVBibE8ybDYwbU8wdWs2a21CUTJhb2c3VkswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj+QNieUa
czOj0Nd3L/REQpbFPUU3kK+ZhtRM6eZ2/CeLpg4NbI4AeDcLNyY1xVB1YzpW2DN0
H5/FJBgAgeIHF8y6nMvFpGo9YI1l+YIroqqcVK5IIMFRZJhgRplGsm7IqVvNe9En
5sT4rW5crUZe1XUUEx+S5Msew7Zs8NrCPY3ukFuVUSiqTzmKfL4Ev2ayfSst6uEQ
K1E0VJKJn0WrIydjhh+sgIFX7JyYO3VzHYjUnVusEbQF+c6ajqTxf/dT+3/BLz9H
3G3m9KQdmFZlQ/RNgI1icbFkvfkqeaOdEh9p1Qd9Mu2n4omZecdYo0OVgV5kUKTE
nTDzczW+CiG/aA==
-----END CERTIFICATE-----
Generated at Wed Nov 5 21:10:36 2025 by rpki-client