Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft
File: 4awDIrPqtlcuzioKxavxZKW7_yA.mft (raw, json)
Hash identifier: 52z6aV/pFbhCE9hAqsx2gvmmdthCcRlVArkyqthy9U4=
Subject key identifier: B9:59:88:D7:36:92:B2:21:6F:50:F5:2E:32:E0:C9:E3:63:AB:B1:6A
Authority key identifier: E1:AC:03:22:B3:EA:B6:57:2E:CE:2A:0A:C5:AB:F1:64:A5:BB:FF:20
Certificate issuer: /CN=e1ac0322b3eab6572ece2a0ac5abf164a5bbff20
Certificate serial: 019A4E86DCEABBD9CB096D27CD0ACBFAC3CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft
Manifest number: 1717
Signing time: Tue 04 Nov 2025 11:00:52 +0000
Manifest this update: Tue 04 Nov 2025 11:00:52 +0000
Manifest next update: Wed 05 Nov 2025 11:00:52 +0000
Files and hashes: 1: 4awDIrPqtlcuzioKxavxZKW7_yA.crl (hash: rIl94oixRbrfxrZPGAMgdcwTDHkyvhxwCccfveNyAY0=)
2: 6L9DAlbkXK81Q7l3f78qPgHOMdg.roa (hash: H7lXA9IHNO8CGxsceOfFah+3Pwu6dBzOzorUprp44zU=)
3: AoQHR-c0TNu8hCvrBSny9rtvc-s.roa (hash: OjMzYAMFYdPVuu7HxYZKXpI6mzGVW1BBR3UyiRLx1pA=)
4: EQbezCZuZ92DkuV3XJNIJgpMcwQ.roa (hash: ouC7+qG8m6kvP27Cs9N1FzVBn73sZt27mXI2ZqqBOYg=)
5: LDm4Z6KcMo2VYx3_khyYeC8O4Iw.roa (hash: zcLdl9fx/6GOLrBrDhcPW18T+TQSB2ZgDSkWNEHGluY=)
6: OVTjGADJ7YYJwQ0oJOwTN2X0vSY.roa (hash: qsBTTkXpQxhgbXJV5zUDTdGyL3Kcpnnbr12OpzsF9V0=)
7: eXkwSgVPS9XZOX05ekvLiV3Hea8.roa (hash: hwC7YsLscA1OGWq1yDoBRShx/gTjgCqvH47aihQduUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:dc:ea:bb:d9:cb:09:6d:27:cd:0a:cb:fa:c3:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ac0322b3eab6572ece2a0ac5abf164a5bbff20
Validity
Not Before: Nov 4 11:00:52 2025 GMT
Not After : Nov 5 11:00:52 2025 GMT
Subject: CN=b95988d73692b2216f50f52e32e0c9e363abb16a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b1:96:ea:f2:8a:d8:37:ac:0c:a8:1d:56:8b:
17:a7:94:8a:82:77:ba:76:97:23:21:54:6f:9f:f1:
15:3b:64:db:7c:53:b9:71:ad:e5:07:03:5d:6e:2c:
e0:23:3a:b4:af:07:98:df:9c:d6:f4:dc:70:ae:25:
b7:b2:8e:34:31:2e:58:58:fe:9c:2a:3b:aa:10:59:
33:5e:2b:12:9a:c7:62:cb:ac:42:4b:b3:68:ef:a0:
fc:18:ce:19:98:92:98:fe:25:55:ff:38:39:5e:02:
58:56:a5:f2:d2:71:70:57:2e:67:00:1a:06:21:bd:
37:ad:56:12:63:48:b9:1c:5e:3e:6b:6e:ab:1f:e3:
68:e1:3a:34:54:80:68:96:d0:af:3e:6f:61:6d:b4:
66:bc:34:53:4b:f8:b4:01:16:28:77:84:44:48:ee:
14:f5:71:4b:b8:4b:fb:da:8f:b6:77:b0:87:53:b1:
e8:31:a4:98:67:e5:d3:76:1d:1b:fb:82:42:24:e4:
4e:9d:5c:49:be:1c:41:98:e2:0b:e0:b4:10:66:40:
09:3b:a6:ec:e2:4b:b1:f1:64:b8:d8:94:c4:4d:a7:
90:a9:8d:9f:36:83:cd:07:7a:4f:94:f9:92:ce:83:
66:9c:db:99:fb:aa:f0:36:3b:5d:c8:14:7c:be:f1:
28:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:59:88:D7:36:92:B2:21:6F:50:F5:2E:32:E0:C9:E3:63:AB:B1:6A
X509v3 Authority Key Identifier:
keyid:E1:AC:03:22:B3:EA:B6:57:2E:CE:2A:0A:C5:AB:F1:64:A5:BB:FF:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:5a:8d:4c:35:6f:43:af:3d:af:3c:99:03:5b:b2:85:5b:99:
87:f9:21:bd:b9:ea:51:84:89:07:a6:82:79:a9:df:c1:b3:06:
40:1c:d6:c7:be:f7:c8:f5:02:f2:52:e1:5b:5b:df:20:2d:e3:
cc:ec:90:c8:ba:29:06:a1:2c:6e:36:cd:81:16:1f:5a:05:f8:
52:31:87:fb:c0:69:63:5b:87:ba:e2:a4:11:25:c2:13:1a:e2:
42:68:47:15:8f:ec:73:90:1e:49:2a:94:1d:da:b4:b3:39:32:
f1:85:b4:07:57:1e:58:e2:95:42:5d:8d:3f:6f:21:aa:d2:de:
f8:c2:94:16:8a:0d:2d:a0:13:44:d1:dd:a0:51:7b:36:39:68:
46:7a:d9:9c:04:e6:bc:25:64:f7:11:7d:2b:7c:5d:bd:31:da:
16:d5:23:1b:2e:32:e5:38:e6:14:be:8d:0a:86:a4:0b:b3:7b:
51:8b:d1:8d:6a:12:96:04:92:b6:ac:6f:b2:7c:c1:7b:69:eb:
c2:28:3d:29:ec:64:a9:19:fd:67:9f:f0:a5:a6:d2:85:7f:13:
ab:47:27:a9:e6:57:f6:63:8d:6d:2a:c4:e5:1f:0a:a0:6b:1a:
10:82:3e:7e:94:9a:6c:10:2c:11:d9:37:6a:93:03:10:e4:d0:
79:fe:5c:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOhtzqu9nLCW0nzQrL+sPNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxYWMwMzIyYjNlYWI2NTcyZWNlMmEwYWM1YWJmMTY0YTVi
YmZmMjAwHhcNMjUxMTA0MTEwMDUyWhcNMjUxMTA1MTEwMDUyWjAzMTEwLwYDVQQD
EyhiOTU5ODhkNzM2OTJiMjIxNmY1MGY1MmUzMmUwYzllMzYzYWJiMTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbGW6vKK2DesDKgdVosXp5SKgne6
dpcjIVRvn/EVO2TbfFO5ca3lBwNdbizgIzq0rweY35zW9NxwriW3so40MS5YWP6c
KjuqEFkzXisSmsdiy6xCS7No76D8GM4ZmJKY/iVV/zg5XgJYVqXy0nFwVy5nABoG
Ib03rVYSY0i5HF4+a26rH+No4To0VIBoltCvPm9hbbRmvDRTS/i0ARYod4RESO4U
9XFLuEv72o+2d7CHU7HoMaSYZ+XTdh0b+4JCJOROnVxJvhxBmOIL4LQQZkAJO6bs
4kux8WS42JTETaeQqY2fNoPNB3pPlPmSzoNmnNuZ+6rwNjtdyBR8vvEo5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLlZiNc2krIhb1D1LjLgyeNjq7FqMB8GA1UdIwQY
MBaAFOGsAyKz6rZXLs4qCsWr8WSlu/8gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNGF3RElyUHF0bGN1emlvS3hhdnhaS1c3X3lBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9mZjAwMzYtODMxMy00YjNkLWFkN2Yt
OGQ4MWZkYzZmMTcwLzEvNGF3RElyUHF0bGN1emlvS3hhdnhaS1c3X3lBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS9mZjAwMzYtODMxMy00YjNkLWFkN2YtOGQ4MWZkYzZmMTcw
LzEvNGF3RElyUHF0bGN1emlvS3hhdnhaS1c3X3lBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB1qNTDVv
Q689rzyZA1uyhVuZh/khvbnqUYSJB6aCeanfwbMGQBzWx773yPUC8lLhW1vfIC3j
zOyQyLopBqEsbjbNgRYfWgX4UjGH+8BpY1uHuuKkESXCExriQmhHFY/sc5AeSSqU
Hdq0szky8YW0B1ceWOKVQl2NP28hqtLe+MKUFooNLaATRNHdoFF7NjloRnrZnATm
vCVk9xF9K3xdvTHaFtUjGy4y5TjmFL6NCoakC7N7UYvRjWoSlgSStqxvsnzBe2nr
wig9KexkqRn9Z5/wpabShX8Tq0cnqeZX9mONbSrE5R8KoGsaEII+fpSabBAsEdk3
apMDEOTQef5cCw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:23:47 2025 by rpki-client