Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
File: mSAfYJ56iT2obPDrvKS79HJ51hc.mft (raw, json)
Hash identifier: FL5QbDe+jvnQhzbATywH9oQGbVSqNKHjLm82upkeNqo=
Subject key identifier: 9E:BD:05:8B:D8:34:39:A8:ED:8E:CF:EB:F5:10:89:4F:63:FD:30:13
Authority key identifier: 99:20:1F:60:9E:7A:89:3D:A8:6C:F0:EB:BC:A4:BB:F4:72:79:D6:17
Certificate issuer: /CN=99201f609e7a893da86cf0ebbca4bbf47279d617
Certificate serial: 019A4E190873D6090AAA2C0C68879E10CEAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
Manifest number: 05A7
Signing time: Tue 04 Nov 2025 09:00:54 +0000
Manifest this update: Tue 04 Nov 2025 09:00:54 +0000
Manifest next update: Wed 05 Nov 2025 09:00:54 +0000
Files and hashes: 1: cZCe7z1SuEJO9uo7pUfRsMk3zUE.roa (hash: 4ghpEp3he5IP2eaKj/sfWjxMV98wRylBMDqZHenZGeE=)
2: mSAfYJ56iT2obPDrvKS79HJ51hc.crl (hash: ok4dj160i9qCn8dbELdTkMT+YornFxnvIhEV0GI0WDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:19:08:73:d6:09:0a:aa:2c:0c:68:87:9e:10:ce:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99201f609e7a893da86cf0ebbca4bbf47279d617
Validity
Not Before: Nov 4 09:00:54 2025 GMT
Not After : Nov 5 09:00:54 2025 GMT
Subject: CN=9ebd058bd83439a8ed8ecfebf510894f63fd3013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:55:b9:39:66:68:4a:93:0b:86:02:2e:b7:78:
fc:5e:07:bc:ec:e3:b6:45:ae:ee:0e:45:93:e6:4e:
11:59:0c:74:82:49:a0:0b:48:82:a0:63:99:9e:82:
42:55:7d:68:bf:bc:8e:89:32:14:2e:d2:3c:5c:f6:
dd:d1:80:fc:3b:b1:16:4d:9d:8e:ec:fa:bd:34:a3:
9e:fd:65:4c:81:5c:c8:35:ed:dc:e7:29:ce:6d:72:
73:a5:b9:7a:ef:a3:06:54:10:d5:03:df:31:2a:bf:
4f:10:0b:e4:bc:c0:15:71:19:61:01:5e:d3:6e:96:
8f:29:65:e6:97:2d:39:5d:b0:ab:70:a4:16:b1:ea:
4a:2e:32:4e:e3:a6:4b:3c:29:a7:fc:28:cb:42:57:
2f:bd:40:7d:0c:d2:0e:b1:67:3a:10:6a:38:68:bd:
07:0e:12:e4:c1:e5:2d:28:18:de:20:a1:91:7f:d0:
9b:a3:8c:2d:1e:fa:6a:a6:44:20:ac:cd:34:b3:53:
0f:08:1c:d3:96:f6:09:de:92:4b:3f:af:eb:64:9c:
f2:9a:7a:bf:c0:d7:5d:fb:fa:a6:d8:2b:a3:42:88:
f5:1e:8a:f0:28:76:45:e6:e1:34:da:32:b7:b3:83:
89:ab:da:aa:c2:23:89:c3:87:52:ea:d4:f0:35:8d:
ee:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:BD:05:8B:D8:34:39:A8:ED:8E:CF:EB:F5:10:89:4F:63:FD:30:13
X509v3 Authority Key Identifier:
keyid:99:20:1F:60:9E:7A:89:3D:A8:6C:F0:EB:BC:A4:BB:F4:72:79:D6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:2f:00:6d:78:3e:3a:28:6e:59:cb:73:48:30:a9:a0:fd:cc:
74:07:ec:06:f3:9a:18:7f:49:e5:6e:45:12:ef:55:a8:bc:11:
97:18:44:56:86:34:b7:b4:1a:55:08:0f:22:4e:98:14:98:37:
c0:0a:d1:55:b2:38:4f:be:19:bf:ab:11:31:9a:66:ab:06:76:
b8:89:a5:c3:09:94:61:c1:aa:d8:12:f6:75:91:75:1f:d2:e4:
20:72:b8:92:81:11:56:b8:b7:a2:09:10:da:06:24:b0:64:f8:
44:61:b7:32:4c:53:ed:10:98:6c:4c:0c:7a:2a:12:7f:9f:ef:
94:80:85:b7:53:5d:9f:3e:17:cb:65:95:fa:5f:11:02:2f:f2:
93:8c:9d:0e:bf:a4:6d:62:2e:e2:b8:d4:cf:86:b5:28:5e:96:
f4:da:50:29:45:0c:6e:69:c5:bd:0e:ff:13:7e:f2:72:54:6e:
f3:a3:16:1e:9f:d9:0f:12:dd:8d:ba:ff:88:fe:9a:c8:cc:af:
9e:ad:cb:c9:ca:10:f9:14:30:ea:a5:be:cf:a4:11:0c:5e:b3:
b6:0e:b2:98:5a:fc:69:88:88:f5:c4:88:bf:a8:ef:dc:9b:fc:
3d:38:7b:46:76:7e:31:2c:ce:ee:1d:1b:5e:b4:28:69:5b:dc:
55:70:43:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOGQhz1gkKqiwMaIeeEM6qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5MjAxZjYwOWU3YTg5M2RhODZjZjBlYmJjYTRiYmY0NzI3
OWQ2MTcwHhcNMjUxMTA0MDkwMDU0WhcNMjUxMTA1MDkwMDU0WjAzMTEwLwYDVQQD
Eyg5ZWJkMDU4YmQ4MzQzOWE4ZWQ4ZWNmZWJmNTEwODk0ZjYzZmQzMDEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0VW5OWZoSpMLhgIut3j8Xge87OO2
Ra7uDkWT5k4RWQx0gkmgC0iCoGOZnoJCVX1ov7yOiTIULtI8XPbd0YD8O7EWTZ2O
7Pq9NKOe/WVMgVzINe3c5ynObXJzpbl676MGVBDVA98xKr9PEAvkvMAVcRlhAV7T
bpaPKWXmly05XbCrcKQWsepKLjJO46ZLPCmn/CjLQlcvvUB9DNIOsWc6EGo4aL0H
DhLkweUtKBjeIKGRf9Cbo4wtHvpqpkQgrM00s1MPCBzTlvYJ3pJLP6/rZJzymnq/
wNdd+/qm2CujQoj1HorwKHZF5uE02jK3s4OJq9qqwiOJw4dS6tTwNY3uzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ69BYvYNDmo7Y7P6/UQiU9j/TATMB8GA1UdIwQY
MBaAFJkgH2Ceeok9qGzw67yku/RyedYXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVNBZllKNTZpVDJvYlBEcnZLUzc5SEo1MWhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni82NTM2ZjktODdkZC00ZWRkLWIwMWMt
YjIzMTcyZWI4MWZiLzEvbVNBZllKNTZpVDJvYlBEcnZLUzc5SEo1MWhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni82NTM2ZjktODdkZC00ZWRkLWIwMWMtYjIzMTcyZWI4MWZi
LzEvbVNBZllKNTZpVDJvYlBEcnZLUzc5SEo1MWhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPi8AbXg+
OihuWctzSDCpoP3MdAfsBvOaGH9J5W5FEu9VqLwRlxhEVoY0t7QaVQgPIk6YFJg3
wArRVbI4T74Zv6sRMZpmqwZ2uImlwwmUYcGq2BL2dZF1H9LkIHK4koERVri3ogkQ
2gYksGT4RGG3MkxT7RCYbEwMeioSf5/vlICFt1Ndnz4Xy2WV+l8RAi/yk4ydDr+k
bWIu4rjUz4a1KF6W9NpQKUUMbmnFvQ7/E37yclRu86MWHp/ZDxLdjbr/iP6ayMyv
nq3LycoQ+RQw6qW+z6QRDF6ztg6ymFr8aYiI9cSIv6jv3Jv8PTh7RnZ+MSzO7h0b
XrQoaVvcVXBD3g==
-----END CERTIFICATE-----
Generated at Tue Nov 4 10:52:45 2025 by rpki-client