Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json)
Hash identifier: ydg1Hv/FCd7R1GMUw4/Xw4qKUt78UMcyyqwqSSd0Kfo=
Subject key identifier: 63:9D:9D:6A:DC:29:49:70:2D:41:CB:2C:BC:BC:4B:79:B3:72:02:32
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 019A4FD06666CF65A86F522471E5A6E3FFF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
Manifest number: 0DEF
Signing time: Tue 04 Nov 2025 17:00:48 +0000
Manifest this update: Tue 04 Nov 2025 17:00:48 +0000
Manifest next update: Wed 05 Nov 2025 17:00:48 +0000
Files and hashes: 1: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: KfRGbM8rqz8h8PbCAf6kGiuLvXP7jy6QsXCy2M1yYx4=)
2: ehQIMYmYwJQIMwezxzrnCxQWXrQ.roa (hash: K5j8O7wSUuuth3uj2946HM7L4q3WosF43ObE+K/eL8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 17:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:d0:66:66:cf:65:a8:6f:52:24:71:e5:a6:e3:ff:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: Nov 4 17:00:48 2025 GMT
Not After : Nov 5 17:00:48 2025 GMT
Subject: CN=639d9d6adc2949702d41cb2cbcbc4b79b3720232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ee:b5:53:8c:13:a3:0c:c5:0c:7d:d4:d6:fb:
08:00:04:29:d6:0a:80:f9:8e:96:fc:23:67:e0:b0:
fc:37:ab:a6:3c:e0:f5:40:99:88:04:35:7b:19:f8:
1d:8f:57:00:c4:62:a0:17:8d:73:1d:be:fb:0b:93:
8d:28:c8:63:e0:f1:96:88:d4:02:45:d4:8b:23:da:
cc:c8:98:38:49:42:61:c4:53:77:07:e2:fd:bf:4f:
97:61:6a:c7:f3:d6:12:98:1e:2f:21:50:2a:a3:3b:
36:21:e2:4c:27:d4:5e:54:33:f1:c8:e9:78:4a:d2:
b2:bf:47:8f:95:a7:30:22:41:a7:0a:58:54:d8:ee:
0f:56:c0:a9:1b:92:2a:64:9f:c2:7f:00:59:fa:9c:
45:e2:07:e6:1a:69:b9:98:a2:7a:88:4d:f5:cd:26:
eb:a5:bb:6f:dc:f9:94:64:e9:da:41:e9:ee:36:b3:
23:16:46:7a:c4:6d:63:57:be:3c:2c:fc:93:f0:c6:
a1:7f:d4:c8:35:06:f8:07:82:92:ee:a6:9c:0f:4a:
0a:b1:8f:c7:c8:83:57:d1:49:3b:fb:4c:6d:bb:f4:
dc:c0:39:2a:19:07:75:2e:7b:83:a1:3d:35:ee:77:
12:0f:68:fd:83:0c:ab:c5:c2:f8:22:7f:ea:c2:fe:
28:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:9D:9D:6A:DC:29:49:70:2D:41:CB:2C:BC:BC:4B:79:B3:72:02:32
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:e8:80:c0:fb:78:05:11:89:b9:c6:47:f4:14:4e:f3:8d:a4:
8c:bd:46:c5:52:bf:87:f7:b3:fc:87:56:83:c3:e5:f6:28:a1:
6b:39:7c:9f:2f:91:d6:0b:38:67:5c:5a:89:2f:70:08:eb:ca:
dd:40:89:6b:0b:7b:64:f3:72:fc:50:cf:cd:d0:5b:2c:6b:2e:
71:dc:75:b8:7c:d4:b9:5e:65:aa:35:43:67:da:e0:fc:49:f3:
89:d5:96:b3:d5:f2:79:15:0b:98:3a:90:97:eb:04:06:a8:1f:
56:b3:bb:7b:08:5f:d8:ac:2a:a8:f5:0f:b0:e3:87:a1:93:f0:
84:14:be:0d:0d:fb:b5:a1:48:6d:cd:b8:f7:52:74:54:66:08:
38:72:9e:af:2b:a5:69:15:b3:2b:e2:11:81:42:05:08:f6:3e:
51:a7:bc:65:9a:84:c6:b7:ad:f1:71:05:10:2a:6b:c3:65:a9:
9a:cf:5f:76:0e:97:8e:fd:43:07:b8:16:3a:9f:8c:93:a2:47:
f7:fa:75:02:85:a6:8c:f0:8c:6a:3d:54:f9:28:3a:88:06:16:
3b:08:b9:50:73:91:8c:08:d2:57:16:54:af:df:c5:d1:b4:b3:
d3:58:d3:31:96:ee:57:ad:5e:b7:d1:48:ca:bc:0a:53:9a:f1:
65:c9:6a:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpP0GZmz2Wob1IkceWm4//0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkMzY4Nzc0MmJlY2YzZDA4MDgyZWQxMmU5ZjM0NzBiODJk
YTdjZmYwHhcNMjUxMTA0MTcwMDQ4WhcNMjUxMTA1MTcwMDQ4WjAzMTEwLwYDVQQD
Eyg2MzlkOWQ2YWRjMjk0OTcwMmQ0MWNiMmNiY2JjNGI3OWIzNzIwMjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+61U4wTowzFDH3U1vsIAAQp1gqA
+Y6W/CNn4LD8N6umPOD1QJmIBDV7Gfgdj1cAxGKgF41zHb77C5ONKMhj4PGWiNQC
RdSLI9rMyJg4SUJhxFN3B+L9v0+XYWrH89YSmB4vIVAqozs2IeJMJ9ReVDPxyOl4
StKyv0ePlacwIkGnClhU2O4PVsCpG5IqZJ/CfwBZ+pxF4gfmGmm5mKJ6iE31zSbr
pbtv3PmUZOnaQenuNrMjFkZ6xG1jV748LPyT8Mahf9TINQb4B4KS7qacD0oKsY/H
yINX0Uk7+0xtu/TcwDkqGQd1LnuDoT017ncSD2j9gwyrxcL4In/qwv4opwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGOdnWrcKUlwLUHLLLy8S3mzcgIyMB8GA1UdIwQY
MBaAFE02h3Qr7PPQgILtEunzRwuC2nz/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQt
MTAzYjE3ZDNlYjQ1LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQtMTAzYjE3ZDNlYjQ1
LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV+iAwPt4
BRGJucZH9BRO842kjL1GxVK/h/ez/IdWg8Pl9iihazl8ny+R1gs4Z1xaiS9wCOvK
3UCJawt7ZPNy/FDPzdBbLGsucdx1uHzUuV5lqjVDZ9rg/EnzidWWs9XyeRULmDqQ
l+sEBqgfVrO7ewhf2KwqqPUPsOOHoZPwhBS+DQ37taFIbc2491J0VGYIOHKeryul
aRWzK+IRgUIFCPY+Uae8ZZqExret8XEFECprw2Wpms9fdg6Xjv1DB7gWOp+Mk6JH
9/p1AoWmjPCMaj1U+Sg6iAYWOwi5UHORjAjSVxZUr9/F0bSz01jTMZbuV61et9FI
yrwKU5rxZclqgA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 22:43:31 2025 by rpki-client