Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
File: Mns0IMJQE3legioq5Q043B04J5M.mft (raw, json)
Hash identifier: HQHI3jJOvXted75pdTmOKIPH2ZS44D4N5wbYNNBsUTI=
Subject key identifier: D9:56:3D:32:4B:67:5A:87:64:7F:ED:03:B8:55:A8:49:09:35:DC:2B
Authority key identifier: 32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93
Certificate issuer: /CN=327b3420c25013795e822a2ae50d38dc1d382793
Certificate serial: 019A5006D523CC18398BD8721AD2C5855894
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 18:00:16 +0000
Manifest this update: Tue 04 Nov 2025 18:00:16 +0000
Manifest next update: Wed 05 Nov 2025 18:00:16 +0000
Files and hashes: 1: Mns0IMJQE3legioq5Q043B04J5M.crl (hash: TlR8pohKmz5kIWPlQEqZDOAU2NXGf5Z2sThnP48fKWE=)
2: v9geoE7KmWCRnCztGaTkN5bSNF0.roa (hash: yJ1Hvyh5t82gNQ9PRDa/lCyqTlzjssbfVD5EEeI11lA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:06:d5:23:cc:18:39:8b:d8:72:1a:d2:c5:85:58:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=327b3420c25013795e822a2ae50d38dc1d382793
Validity
Not Before: Nov 4 18:00:16 2025 GMT
Not After : Nov 5 18:00:16 2025 GMT
Subject: CN=d9563d324b675a87647fed03b855a8490935dc2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c7:91:5f:13:99:be:c2:c1:5b:f1:3f:0d:b7:
5d:c1:67:ec:fd:65:fe:6b:15:5d:6d:00:15:5b:a0:
56:90:35:8a:5e:05:67:a4:42:b0:d4:d7:e5:54:f5:
ce:bc:92:86:5e:ec:74:c3:9b:56:b5:8d:00:58:ed:
c7:ba:10:2c:4e:cf:83:dd:69:cf:4c:51:bd:d6:7d:
0f:69:be:07:c4:e5:95:95:93:d3:21:6a:92:6c:21:
dc:c3:77:3e:39:0f:0a:f7:a5:5a:7d:cd:51:d5:5f:
2f:7c:83:b3:ec:34:60:34:33:d0:03:51:c4:9d:22:
5c:8c:5e:ba:2f:8c:fb:69:55:64:15:a3:34:7c:8a:
60:54:6b:1e:c7:19:58:c4:37:36:14:53:92:9c:41:
53:52:02:65:db:90:f0:a1:f1:37:5f:60:61:1f:9d:
7d:a9:87:b3:06:6c:0b:12:03:b0:f9:75:ec:a9:04:
bc:b3:0f:9c:55:4c:4a:64:f4:a0:43:50:d9:f4:c8:
42:a8:52:fd:f2:b6:be:db:0b:98:a5:07:b5:68:de:
65:63:7e:5c:ac:31:d5:4f:6b:04:0f:05:48:21:eb:
b4:51:94:8f:fe:1d:77:3b:a8:e8:94:8e:e0:9e:83:
d2:72:a9:a4:af:0f:5e:e7:f6:b0:9f:4c:4f:d2:38:
1f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:56:3D:32:4B:67:5A:87:64:7F:ED:03:B8:55:A8:49:09:35:DC:2B
X509v3 Authority Key Identifier:
keyid:32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:1f:31:fe:86:07:c9:85:b0:37:8e:ab:bd:01:36:11:7f:32:
14:d3:99:d5:ba:8f:4a:0c:e4:72:c1:ce:22:bd:d0:05:41:ab:
ba:e2:ae:e4:d5:37:57:56:40:30:9d:e0:54:78:4b:10:e4:a2:
e0:6e:39:14:37:a8:9a:38:b4:dd:ba:b7:ad:d2:ed:0a:b3:eb:
f5:c9:8c:36:b0:44:15:9d:49:c4:6e:27:42:81:f9:6a:1a:03:
c2:77:7c:51:34:1f:ed:ee:66:d5:88:c9:03:13:4d:ce:f0:61:
1f:76:3f:6a:de:4a:78:65:c6:03:36:95:e7:36:1e:68:87:42:
32:4a:a9:9d:c3:75:8b:82:74:ee:d0:6b:e9:9e:2d:52:a3:b1:
a7:d9:05:08:c2:83:13:c8:48:ac:11:2c:cb:fd:c2:8b:bd:5b:
4b:e6:cb:2f:4f:9a:9e:c6:e4:d2:b7:d0:9f:99:6b:ec:98:49:
4a:e6:82:c9:93:02:5a:26:e0:00:f9:dc:b4:9b:f4:80:82:5c:
10:53:d7:b2:ec:dd:ba:64:69:4d:1c:fa:93:80:2b:2b:24:cf:
ce:ae:2c:e5:77:d3:8d:fc:e0:06:8b:1a:51:3e:8e:d3:c1:9e:
87:3f:ad:06:e0:50:2a:de:8f:0c:b5:ce:e2:58:1c:a5:3c:72:
34:e8:d1:52
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQBtUjzBg5i9hyGtLFhViUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyN2IzNDIwYzI1MDEzNzk1ZTgyMmEyYWU1MGQzOGRjMWQz
ODI3OTMwHhcNMjUxMTA0MTgwMDE2WhcNMjUxMTA1MTgwMDE2WjAzMTEwLwYDVQQD
EyhkOTU2M2QzMjRiNjc1YTg3NjQ3ZmVkMDNiODU1YTg0OTA5MzVkYzJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuceRXxOZvsLBW/E/DbddwWfs/WX+
axVdbQAVW6BWkDWKXgVnpEKw1NflVPXOvJKGXux0w5tWtY0AWO3HuhAsTs+D3WnP
TFG91n0Pab4HxOWVlZPTIWqSbCHcw3c+OQ8K96Vafc1R1V8vfIOz7DRgNDPQA1HE
nSJcjF66L4z7aVVkFaM0fIpgVGsexxlYxDc2FFOSnEFTUgJl25DwofE3X2BhH519
qYezBmwLEgOw+XXsqQS8sw+cVUxKZPSgQ1DZ9MhCqFL98ra+2wuYpQe1aN5lY35c
rDHVT2sEDwVIIeu0UZSP/h13O6jolI7gnoPScqmkrw9e5/awn0xP0jgfIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNlWPTJLZ1qHZH/tA7hVqEkJNdwrMB8GA1UdIwQY
MBaAFDJ7NCDCUBN5XoIqKuUNONwdOCeTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTW5zMElNSlFFM2xlZ2lvcTVRMDQzQjA0SjVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My8zNjMxZTAtNTZkNy00YzI5LTk1YzQt
NjY4MmIwN2ZhOTQ3LzEvTW5zMElNSlFFM2xlZ2lvcTVRMDQzQjA0SjVNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My8zNjMxZTAtNTZkNy00YzI5LTk1YzQtNjY4MmIwN2ZhOTQ3
LzEvTW5zMElNSlFFM2xlZ2lvcTVRMDQzQjA0SjVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjR8x/oYH
yYWwN46rvQE2EX8yFNOZ1bqPSgzkcsHOIr3QBUGruuKu5NU3V1ZAMJ3gVHhLEOSi
4G45FDeomji03bq3rdLtCrPr9cmMNrBEFZ1JxG4nQoH5ahoDwnd8UTQf7e5m1YjJ
AxNNzvBhH3Y/at5KeGXGAzaV5zYeaIdCMkqpncN1i4J07tBr6Z4tUqOxp9kFCMKD
E8hIrBEsy/3Ci71bS+bLL0+ansbk0rfQn5lr7JhJSuaCyZMCWibgAPnctJv0gIJc
EFPXsuzdumRpTRz6k4ArKyTPzq4s5XfTjfzgBosaUT6O08Gehz+tBuBQKt6PDLXO
4lgcpTxyNOjRUg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:22:41 2025 by rpki-client