Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
File: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft (raw, json)
Hash identifier: +zx1WZRhhWDWr+a5MCN8ihzUaAha9IYx8odeOI8W0hk=
Subject key identifier: 53:52:F3:A3:E6:E3:7E:BB:CB:56:93:8E:A5:FA:79:F1:08:29:BD:7C
Authority key identifier: DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
Certificate issuer: /CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Certificate serial: 019A4EF514C763C58D56A233A3B282456A3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
Manifest number: 0B12
Signing time: Tue 04 Nov 2025 13:01:15 +0000
Manifest this update: Tue 04 Nov 2025 13:01:15 +0000
Manifest next update: Wed 05 Nov 2025 13:01:15 +0000
Files and hashes: 1: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl (hash: Iv1k+/NF7rqVkr+F570O1bx1Idrtb1hodINeHO6oPlk=)
2: EiOjn6Cn36HWuMJFodH0EVbfYdc.roa (hash: prKCNtfilLl42pcGEF7Kjg7za6QhPHVZeIUhroTyVuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:14:c7:63:c5:8d:56:a2:33:a3:b2:82:45:6a:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Validity
Not Before: Nov 4 13:01:15 2025 GMT
Not After : Nov 5 13:01:15 2025 GMT
Subject: CN=5352f3a3e6e37ebbcb56938ea5fa79f10829bd7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:83:fb:f0:ab:fa:82:a4:f6:e8:df:ab:d5:17:
31:1b:d9:cf:07:ae:80:5e:f5:84:03:26:98:e9:77:
66:eb:92:0d:e2:17:a6:e5:b6:30:c4:5b:9e:d2:bd:
2b:99:1e:c8:b1:8b:c6:a0:d2:0c:8b:fd:69:73:81:
49:6a:da:42:db:49:1d:bb:86:8b:5c:a5:67:70:40:
8d:82:f2:ab:0b:48:da:00:06:ac:04:37:85:9f:01:
16:65:1c:3c:8d:20:aa:cd:aa:60:83:a1:ec:90:55:
c9:30:2d:1f:66:a6:58:da:a9:59:91:28:03:32:86:
d7:4b:00:67:c3:1a:f7:6b:88:9e:9d:92:7b:b7:00:
91:32:87:1f:34:9a:ef:f8:35:e9:33:27:ae:66:2e:
6f:97:cf:31:5f:6a:d7:64:44:af:5a:f7:6b:f9:18:
bc:fc:a5:87:64:b1:01:a3:50:cd:e7:27:f2:5e:8a:
89:1f:cd:81:ba:c6:be:20:90:31:68:cc:67:a5:5b:
9e:35:1c:50:ec:f8:95:9a:6f:72:b6:de:e0:48:09:
18:ba:19:e4:01:01:be:83:d5:db:bf:4c:8a:86:3e:
af:c7:d0:b2:8c:d9:53:38:9c:d4:15:5c:8a:09:ec:
35:65:7a:35:c5:fd:ea:26:e8:51:e6:c9:c6:ab:63:
52:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:52:F3:A3:E6:E3:7E:BB:CB:56:93:8E:A5:FA:79:F1:08:29:BD:7C
X509v3 Authority Key Identifier:
keyid:DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:cc:d5:cb:8f:94:60:2c:80:ad:c6:e5:63:41:64:68:08:43:
32:cb:35:89:2e:ac:0a:6e:f8:7e:88:be:91:fd:1a:d8:43:3b:
a3:25:dc:98:22:79:c1:70:10:92:95:04:24:ad:18:02:f3:65:
c8:e6:b4:60:58:83:65:ec:85:f7:76:e1:42:da:8c:23:2d:15:
f6:de:e2:f0:0a:a8:4b:d5:59:cc:05:0c:d4:b2:b8:34:fc:b7:
27:8e:cd:db:2d:56:ac:69:bf:3c:5b:59:5a:52:26:26:18:cf:
04:7f:0a:a1:34:85:e2:23:d2:03:4a:d8:ef:c1:31:d0:a8:f1:
18:8a:3f:aa:3c:a2:79:da:08:67:67:3e:f3:8b:e8:a2:96:25:
86:f2:eb:2e:ea:f4:98:5e:64:cd:6b:89:26:2b:6e:58:64:7f:
d6:33:a0:eb:3d:a5:40:60:18:4c:36:b4:98:df:3a:da:01:b7:
8e:65:11:7c:70:e0:e3:8f:9a:cc:a5:34:75:2f:9c:24:f1:4d:
4b:03:8e:a3:03:2d:02:95:c7:01:08:f3:13:30:cc:f4:4e:18:
08:78:e0:d4:27:8a:2e:d8:76:e9:07:b5:fc:04:98:6d:ec:ad:
c0:1a:3b:d6:37:79:3e:78:31:04:d8:38:6c:02:45:40:63:a3:
12:b5:67:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9RTHY8WNVqIzo7KCRWo+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMGI1OWZiNjgxNTFlMjFkYzk5ZDYyZmFmMDM1ODliZTQx
ZmJlYTIwHhcNMjUxMTA0MTMwMTE1WhcNMjUxMTA1MTMwMTE1WjAzMTEwLwYDVQQD
Eyg1MzUyZjNhM2U2ZTM3ZWJiY2I1NjkzOGVhNWZhNzlmMTA4MjliZDdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYP78Kv6gqT26N+r1RcxG9nPB66A
XvWEAyaY6Xdm65IN4hem5bYwxFue0r0rmR7IsYvGoNIMi/1pc4FJatpC20kdu4aL
XKVncECNgvKrC0jaAAasBDeFnwEWZRw8jSCqzapgg6HskFXJMC0fZqZY2qlZkSgD
MobXSwBnwxr3a4ienZJ7twCRMocfNJrv+DXpMyeuZi5vl88xX2rXZESvWvdr+Ri8
/KWHZLEBo1DN5yfyXoqJH82Busa+IJAxaMxnpVueNRxQ7PiVmm9ytt7gSAkYuhnk
AQG+g9Xbv0yKhj6vx9CyjNlTOJzUFVyKCew1ZXo1xf3qJuhR5snGq2NSnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFNS86Pm4367y1aTjqX6efEIKb18MB8GA1UdIwQY
MBaAFN4LWftoFR4h3JnWL68DWJvkH76iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2d0Wi0yZ1ZIaUhjbWRZdnJ3TlltLVFmdnFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi85YWQ1MDgtYmZjMS00YjhhLWJhZmMt
Y2QwMjQ3ODhlZDNjLzEvM2d0Wi0yZ1ZIaUhjbWRZdnJ3TlltLVFmdnFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi85YWQ1MDgtYmZjMS00YjhhLWJhZmMtY2QwMjQ3ODhlZDNj
LzEvM2d0Wi0yZ1ZIaUhjbWRZdnJ3TlltLVFmdnFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqMzVy4+U
YCyArcblY0FkaAhDMss1iS6sCm74foi+kf0a2EM7oyXcmCJ5wXAQkpUEJK0YAvNl
yOa0YFiDZeyF93bhQtqMIy0V9t7i8AqoS9VZzAUM1LK4NPy3J47N2y1WrGm/PFtZ
WlImJhjPBH8KoTSF4iPSA0rY78Ex0KjxGIo/qjyiedoIZ2c+84voopYlhvLrLur0
mF5kzWuJJituWGR/1jOg6z2lQGAYTDa0mN862gG3jmURfHDg44+azKU0dS+cJPFN
SwOOowMtApXHAQjzEzDM9E4YCHjg1CeKLth26Qe1/ASYbeytwBo71jd5PngxBNg4
bAJFQGOjErVnBg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 15:08:58 2025 by rpki-client