Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
File: 0bS-sKan4ShKv0OFNIz0hhALn4A.mft (raw, json)
Hash identifier: y82NfXa9UN2iKPVvkFTYVcn3r9Mqy+ChAzTmoqwalaM=
Subject key identifier: E5:73:6B:59:2B:58:FA:93:83:65:A1:C4:DA:55:1F:D2:BC:E1:54:7A
Authority key identifier: D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
Certificate issuer: /CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Certificate serial: 019A4EF4981C9228F23C0571428A3025B38D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
Manifest number: 0F0D
Signing time: Tue 04 Nov 2025 13:00:43 +0000
Manifest this update: Tue 04 Nov 2025 13:00:43 +0000
Manifest next update: Wed 05 Nov 2025 13:00:43 +0000
Files and hashes: 1: 0bS-sKan4ShKv0OFNIz0hhALn4A.crl (hash: hQqHFd8SXy5YVDrjFMOEs34dLhzDHI/0TVZHudWJVAU=)
2: c4vhQn8zi1dmhfuFlEzS457ekqY.roa (hash: K0d7LR2NOcizL+J6fo8ZUFPUHzj1ReR3yGovArPpqzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:98:1c:92:28:f2:3c:05:71:42:8a:30:25:b3:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Validity
Not Before: Nov 4 13:00:43 2025 GMT
Not After : Nov 5 13:00:43 2025 GMT
Subject: CN=e5736b592b58fa938365a1c4da551fd2bce1547a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:af:4e:51:a0:de:13:e0:48:65:aa:c7:4b:43:
6e:ae:59:aa:01:ce:b5:f8:f1:86:d5:70:90:22:36:
d7:da:47:71:ff:a3:77:73:da:79:7c:3e:25:b5:66:
72:89:6a:a3:f0:8e:3f:79:70:7f:42:54:80:a1:5e:
76:09:f1:c1:22:3a:b2:58:48:9b:d1:45:60:9b:ad:
06:92:01:a7:b8:71:a0:9b:2c:14:7d:9f:46:33:d5:
9c:64:51:b4:7c:fc:d0:19:77:42:61:9f:ec:d8:00:
81:62:d6:0f:5b:2b:07:83:8f:37:da:2f:76:55:0d:
8f:ee:6c:c4:50:e2:ce:6b:de:12:74:e7:a7:a3:46:
ac:91:01:dc:c3:c4:c3:02:d9:1d:e9:77:bd:45:fc:
81:b4:3b:95:eb:59:22:60:07:fd:65:ef:64:f5:a6:
16:f9:64:84:e1:85:94:7f:0a:33:c1:8b:96:25:5a:
73:04:74:3e:6f:4b:12:23:d9:4c:e2:5b:14:da:b6:
d1:e5:d0:62:12:ac:4d:6c:08:8f:ce:a7:9f:1d:ae:
95:db:48:19:9d:ab:4c:e6:d3:c3:2d:94:4a:ff:61:
31:c1:ee:b4:45:78:1c:f8:82:c8:71:18:e7:56:ff:
76:9c:f2:de:a2:81:6b:e2:6a:c4:02:2e:3c:52:2f:
dc:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:73:6B:59:2B:58:FA:93:83:65:A1:C4:DA:55:1F:D2:BC:E1:54:7A
X509v3 Authority Key Identifier:
keyid:D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:a2:01:fc:7f:09:7e:ec:09:f0:d6:08:40:bb:46:9d:3e:f9:
b4:cc:74:b0:cb:97:e0:c7:b0:06:4e:d6:c8:db:b5:fc:77:6f:
24:3c:38:38:87:e6:13:d9:01:95:3c:3a:e9:c2:cc:81:98:9d:
39:11:23:cb:53:0d:2c:70:4e:8f:72:40:5c:41:51:8a:eb:1b:
6b:28:10:82:bb:9a:e0:b5:cb:a3:64:ee:d3:85:9a:a4:82:48:
d4:13:99:69:a4:83:2b:96:57:31:c2:b2:7e:dd:9e:7b:4c:92:
d8:e0:9f:fe:b1:12:95:74:2e:cb:61:4e:6e:11:57:43:e0:fb:
4d:44:11:9e:11:83:6d:d6:77:62:09:7e:84:47:a1:39:05:30:
f1:f2:d5:2a:b1:2a:2d:77:d6:d3:89:09:21:61:10:8f:ab:91:
e0:5d:eb:11:10:7a:39:f8:6e:4d:f9:ab:41:0f:38:e3:b6:21:
1f:ea:1d:d9:ac:d5:eb:47:22:d5:84:67:fd:8a:a4:a9:1c:7a:
11:1e:25:08:f2:b0:81:4d:c5:7e:1e:ed:2e:76:54:30:23:4c:
63:4a:31:6c:15:fa:5a:d4:ef:a4:3d:52:f6:1d:97:d8:ea:73:
c0:64:b3:b7:8f:44:92:73:a0:eb:7f:cf:ae:96:de:7d:b9:96:
00:04:40:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9JgckijyPAVxQoowJbONMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxYjRiZWIwYTZhN2UxMjg0YWJmNDM4NTM0OGNmNDg2MTAw
YjlmODAwHhcNMjUxMTA0MTMwMDQzWhcNMjUxMTA1MTMwMDQzWjAzMTEwLwYDVQQD
EyhlNTczNmI1OTJiNThmYTkzODM2NWExYzRkYTU1MWZkMmJjZTE1NDdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA769OUaDeE+BIZarHS0NurlmqAc61
+PGG1XCQIjbX2kdx/6N3c9p5fD4ltWZyiWqj8I4/eXB/QlSAoV52CfHBIjqyWEib
0UVgm60GkgGnuHGgmywUfZ9GM9WcZFG0fPzQGXdCYZ/s2ACBYtYPWysHg4832i92
VQ2P7mzEUOLOa94SdOeno0askQHcw8TDAtkd6Xe9RfyBtDuV61kiYAf9Ze9k9aYW
+WSE4YWUfwozwYuWJVpzBHQ+b0sSI9lM4lsU2rbR5dBiEqxNbAiPzqefHa6V20gZ
natM5tPDLZRK/2Exwe60RXgc+ILIcRjnVv92nPLeooFr4mrEAi48Ui/c9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOVza1krWPqTg2WhxNpVH9K84VR6MB8GA1UdIwQY
MBaAFNG0vrCmp+EoSr9DhTSM9IYQC5+AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGJTLXNLYW40U2hLdjBPRk5JejBoaEFMbjRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9mOGQ5OGQtMWZmZS00NjM5LWIzNzMt
OWJhMTE3MmE2OGMwLzEvMGJTLXNLYW40U2hLdjBPRk5JejBoaEFMbjRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9mOGQ5OGQtMWZmZS00NjM5LWIzNzMtOWJhMTE3MmE2OGMw
LzEvMGJTLXNLYW40U2hLdjBPRk5JejBoaEFMbjRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi6IB/H8J
fuwJ8NYIQLtGnT75tMx0sMuX4MewBk7WyNu1/HdvJDw4OIfmE9kBlTw66cLMgZid
OREjy1MNLHBOj3JAXEFRiusbaygQgrua4LXLo2Tu04WapIJI1BOZaaSDK5ZXMcKy
ft2ee0yS2OCf/rESlXQuy2FObhFXQ+D7TUQRnhGDbdZ3Ygl+hEehOQUw8fLVKrEq
LXfW04kJIWEQj6uR4F3rERB6OfhuTfmrQQ8447YhH+od2azV60ci1YRn/YqkqRx6
ER4lCPKwgU3Ffh7tLnZUMCNMY0oxbBX6WtTvpD1S9h2X2OpzwGSzt49EknOg63/P
rpbefbmWAARACA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 22:15:32 2025 by rpki-client