Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
File: i5HgoQS1s93x9dCOessreeDVZvk.mft (raw, json)
Hash identifier: 5vFka0DZSi/yWhG0iLivZ/osIBMjuRPQF39s5e7hFm8=
Subject key identifier: 80:F8:3C:6A:0F:7D:A2:33:94:DB:20:C4:07:19:1B:48:E3:AC:27:93
Authority key identifier: 8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
Certificate issuer: /CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Certificate serial: 019A4EF53517871F034A22DF15D0DF3398E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
Manifest number: 1118
Signing time: Tue 04 Nov 2025 13:01:23 +0000
Manifest this update: Tue 04 Nov 2025 13:01:23 +0000
Manifest next update: Wed 05 Nov 2025 13:01:23 +0000
Files and hashes: 1: KwomHtAHnCM0D-yGdW_0Sf3mopc.roa (hash: nJuUP0j6H239g1R7GMJyKq0zviXnK+AhK7Q4U43dyg4=)
2: ZYlcf7X6lFUqPdlZgjx7h6pY7f0.roa (hash: Z91lhusvfId6xXTKVa6gm5qmkQJNcO8M7YoIqY37LFU=)
3: i5HgoQS1s93x9dCOessreeDVZvk.crl (hash: 1UsXs9H3erq4usP7L9MALPMbR6B9eyGyE0TyKSJtEv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:35:17:87:1f:03:4a:22:df:15:d0:df:33:98:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Validity
Not Before: Nov 4 13:01:23 2025 GMT
Not After : Nov 5 13:01:23 2025 GMT
Subject: CN=80f83c6a0f7da23394db20c407191b48e3ac2793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:da:e2:ea:52:77:c5:1b:10:9c:2d:a3:4b:45:
92:d8:36:27:2b:d9:9e:17:2e:41:31:2b:8b:6c:b0:
ed:f6:1b:ce:0a:86:a0:b4:41:aa:d3:15:b9:79:c8:
23:0d:5a:91:ce:9c:f0:f9:e4:99:ba:53:85:fe:55:
87:b1:51:47:26:db:00:e2:e6:4b:2a:d5:75:aa:3c:
8a:15:2b:27:aa:94:a2:62:f5:8a:e3:86:d8:89:66:
ea:0f:76:c8:05:7c:4f:bf:54:1e:db:68:f6:dd:4e:
ce:f8:93:ce:43:f9:4c:b4:f1:9a:45:02:b6:d9:0f:
43:69:e3:03:99:01:62:ef:54:8c:7f:f4:17:0a:be:
9a:23:52:b4:8c:49:bd:0f:eb:64:f3:fa:d4:2e:31:
c5:20:c5:4c:4a:d5:20:bf:e2:12:6b:54:f5:84:6e:
7b:21:b0:09:d8:11:1a:86:bf:1f:08:a7:c8:79:5f:
1a:26:a0:5d:da:e0:bf:34:a4:7b:79:c2:9e:eb:92:
1b:a8:c7:ed:3f:f3:39:f7:c0:36:7e:bc:6f:28:37:
91:7f:62:90:13:aa:27:12:7f:03:d6:27:79:38:d5:
f4:76:02:73:ba:3b:fd:73:e0:bf:2b:51:71:1f:55:
9d:51:ee:e4:5d:b5:35:f1:3a:18:fa:d3:2c:cf:6b:
20:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:F8:3C:6A:0F:7D:A2:33:94:DB:20:C4:07:19:1B:48:E3:AC:27:93
X509v3 Authority Key Identifier:
keyid:8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:41:e1:4a:5f:be:96:a0:c0:be:5c:14:0a:05:47:09:14:46:
18:7b:63:4a:f7:86:7a:09:ae:85:7e:c7:bf:cd:32:de:42:c5:
8b:ec:06:64:3a:2a:61:7f:6c:e6:4e:86:5b:85:ef:4d:b0:f9:
d1:ef:4b:23:1a:a1:23:fa:27:bf:c4:c7:47:8c:07:ff:eb:2c:
b8:36:1b:13:bd:ea:5a:b8:57:9b:c9:d3:42:6b:cc:f5:13:7f:
dc:6a:a1:d4:22:ae:cf:05:d8:8c:b4:70:95:0f:59:c5:84:7d:
96:6c:99:6f:44:5d:d2:f0:82:26:34:93:80:50:0f:60:cb:b9:
60:0d:59:2a:91:f0:cd:bd:1f:d9:2a:36:f8:7f:c7:4e:9f:29:
44:ac:93:32:a0:19:11:db:56:f0:01:d8:21:03:0a:ec:53:2b:
9b:25:7f:e5:91:54:b4:bf:ee:51:6f:b0:d7:17:98:87:91:8a:
c9:d3:de:70:c5:30:13:19:0e:1f:ac:72:eb:f6:cb:d6:ed:e0:
61:3b:45:40:96:ee:f2:83:c7:81:a9:73:ef:59:b0:fa:1c:bf:
45:c9:aa:3e:41:71:07:eb:43:a2:27:a9:7e:65:4a:94:a2:5e:
c5:68:73:15:da:a4:c0:d7:26:95:67:08:d7:60:d5:3b:88:c9:
ad:95:9d:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9TUXhx8DSiLfFdDfM5jlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiOTFlMGExMDRiNWIzZGRmMWY1ZDA4ZTdhY2IyYjc5ZTBk
NTY2ZjkwHhcNMjUxMTA0MTMwMTIzWhcNMjUxMTA1MTMwMTIzWjAzMTEwLwYDVQQD
Eyg4MGY4M2M2YTBmN2RhMjMzOTRkYjIwYzQwNzE5MWI0OGUzYWMyNzkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8tri6lJ3xRsQnC2jS0WS2DYnK9me
Fy5BMSuLbLDt9hvOCoagtEGq0xW5ecgjDVqRzpzw+eSZulOF/lWHsVFHJtsA4uZL
KtV1qjyKFSsnqpSiYvWK44bYiWbqD3bIBXxPv1Qe22j23U7O+JPOQ/lMtPGaRQK2
2Q9DaeMDmQFi71SMf/QXCr6aI1K0jEm9D+tk8/rULjHFIMVMStUgv+ISa1T1hG57
IbAJ2BEahr8fCKfIeV8aJqBd2uC/NKR7ecKe65IbqMftP/M598A2frxvKDeRf2KQ
E6onEn8D1id5ONX0dgJzujv9c+C/K1FxH1WdUe7kXbU18ToY+tMsz2sg6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFID4PGoPfaIzlNsgxAcZG0jjrCeTMB8GA1UdIwQY
MBaAFIuR4KEEtbPd8fXQjnrLK3ng1Wb5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9kZmJmYzQtY2MzZi00NzdjLThkNzYt
YThjNTc2MjI0YmEyLzEvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9kZmJmYzQtY2MzZi00NzdjLThkNzYtYThjNTc2MjI0YmEy
LzEvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAakHhSl++
lqDAvlwUCgVHCRRGGHtjSveGegmuhX7Hv80y3kLFi+wGZDoqYX9s5k6GW4XvTbD5
0e9LIxqhI/onv8THR4wH/+ssuDYbE73qWrhXm8nTQmvM9RN/3Gqh1CKuzwXYjLRw
lQ9ZxYR9lmyZb0Rd0vCCJjSTgFAPYMu5YA1ZKpHwzb0f2So2+H/HTp8pRKyTMqAZ
EdtW8AHYIQMK7FMrmyV/5ZFUtL/uUW+w1xeYh5GKydPecMUwExkOH6xy6/bL1u3g
YTtFQJbu8oPHgalz71mw+hy/RcmqPkFxB+tDoiepfmVKlKJexWhzFdqkwNcmlWcI
12DVO4jJrZWdPg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:26:15 2025 by rpki-client