Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
File: rARWSrE5dm8d7mSLNaChi702IQk.mft (raw, json)
Hash identifier: l7J0UokfliBYvuOHt2t8TUiJQM4E6HaBh6tVgWbBz/I=
Subject key identifier: C7:2D:19:20:1A:4D:FA:11:A6:37:31:0B:67:1A:A8:9F:C2:C7:9A:E6
Authority key identifier: AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
Certificate issuer: /CN=ac04564ab139766f1dee648b35a0a18bbd362109
Certificate serial: 019A51198BC139D12CEDF54C12D9341FB35D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
Manifest number: 170B
Signing time: Tue 04 Nov 2025 23:00:19 +0000
Manifest this update: Tue 04 Nov 2025 23:00:19 +0000
Manifest next update: Wed 05 Nov 2025 23:00:19 +0000
Files and hashes: 1: rARWSrE5dm8d7mSLNaChi702IQk.crl (hash: 57fpmpLuzoC+DZuji80G8QqQRgtch7E77DETzV/jmc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:19:8b:c1:39:d1:2c:ed:f5:4c:12:d9:34:1f:b3:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac04564ab139766f1dee648b35a0a18bbd362109
Validity
Not Before: Nov 4 23:00:19 2025 GMT
Not After : Nov 5 23:00:19 2025 GMT
Subject: CN=c72d19201a4dfa11a637310b671aa89fc2c79ae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f9:dc:25:91:63:9d:8a:66:23:a7:58:30:01:
b1:68:65:82:82:dd:40:eb:ca:a5:14:bd:46:2f:1f:
93:f9:dd:dd:a0:95:52:17:fc:ea:ee:1c:af:34:08:
9b:bc:97:33:c5:30:92:42:4c:51:7b:46:83:22:21:
2b:21:9d:f0:d8:08:b4:6c:41:5f:e8:f5:b6:60:a6:
fd:f4:b5:0a:60:e5:3d:69:fb:14:c3:62:59:61:62:
67:cf:f5:af:8e:3a:a2:6f:7a:33:2d:25:0e:cb:d9:
c9:c6:08:53:6b:a4:37:6f:d0:87:99:d9:5c:d2:5d:
40:a9:0d:70:aa:8d:bb:63:f9:e0:db:ac:a9:e3:5c:
c5:30:cd:5c:22:a6:76:de:be:2b:af:20:69:4c:a3:
9d:f7:03:a8:16:b2:7e:07:aa:9b:07:f5:8b:7c:f4:
dd:b4:fe:7a:a3:7c:e3:ba:91:91:83:9f:b3:9e:0d:
ef:b8:c2:f9:33:a0:7f:2b:24:2c:f0:ab:ce:ef:a9:
3d:ec:b3:b3:09:90:71:26:b0:cd:d1:c4:1c:5e:c5:
a2:4f:9e:b5:a5:ef:c1:48:61:ad:d8:34:83:94:8e:
b7:f3:73:f9:32:58:58:0c:d0:82:39:3e:3c:6f:45:
3d:1e:63:ed:cd:9c:ce:c4:84:ac:09:10:98:77:62:
70:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:2D:19:20:1A:4D:FA:11:A6:37:31:0B:67:1A:A8:9F:C2:C7:9A:E6
X509v3 Authority Key Identifier:
keyid:AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:20:e0:d5:5b:d7:ef:90:f4:af:18:56:7c:4c:13:8c:7f:1b:
e7:4c:48:47:67:6d:b0:1a:1f:1d:9f:ac:ca:98:ba:ca:ad:6d:
cf:a3:e2:26:3a:9f:18:97:07:fb:ad:a3:2d:b7:9b:89:ab:a1:
d5:b7:71:99:f6:99:b2:11:47:69:58:97:69:69:5a:82:7a:bf:
58:fe:cf:0c:ce:dc:e4:f6:46:1e:f2:42:2b:69:94:7a:57:af:
19:8b:22:13:0a:cc:cc:a7:2c:c4:4c:ea:16:da:34:d5:d9:f0:
61:2a:8a:8e:12:29:04:78:fd:e3:3d:c4:18:6e:47:0b:68:30:
fe:84:a5:f8:a0:53:94:fb:e7:09:bd:54:6c:b3:93:cb:bb:b9:
1f:e2:3a:2c:eb:22:42:4b:6b:56:3c:fc:e2:76:f0:85:dc:94:
76:27:b8:9f:c3:dc:57:94:bd:07:c6:56:28:ae:c0:36:46:5b:
ff:90:fb:2c:b0:e2:92:5b:51:50:c5:bb:0b:7b:a4:31:35:90:
4b:a8:54:5d:f2:52:f2:2a:e1:09:81:53:24:42:77:98:90:29:
8b:af:28:16:20:a1:e0:40:44:90:68:c0:12:e8:ec:84:69:ce:
0f:4a:fd:2a:49:81:48:ac:9f:b2:9d:31:70:16:08:dd:1a:f2:
e7:6a:f5:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpRGYvBOdEs7fVMEtk0H7NdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjMDQ1NjRhYjEzOTc2NmYxZGVlNjQ4YjM1YTBhMThiYmQz
NjIxMDkwHhcNMjUxMTA0MjMwMDE5WhcNMjUxMTA1MjMwMDE5WjAzMTEwLwYDVQQD
EyhjNzJkMTkyMDFhNGRmYTExYTYzNzMxMGI2NzFhYTg5ZmMyYzc5YWU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6/ncJZFjnYpmI6dYMAGxaGWCgt1A
68qlFL1GLx+T+d3doJVSF/zq7hyvNAibvJczxTCSQkxRe0aDIiErIZ3w2Ai0bEFf
6PW2YKb99LUKYOU9afsUw2JZYWJnz/Wvjjqib3ozLSUOy9nJxghTa6Q3b9CHmdlc
0l1AqQ1wqo27Y/ng26yp41zFMM1cIqZ23r4rryBpTKOd9wOoFrJ+B6qbB/WLfPTd
tP56o3zjupGRg5+zng3vuML5M6B/KyQs8KvO76k97LOzCZBxJrDN0cQcXsWiT561
pe/BSGGt2DSDlI6383P5MlhYDNCCOT48b0U9HmPtzZzOxISsCRCYd2JwjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMctGSAaTfoRpjcxC2caqJ/Cx5rmMB8GA1UdIwQY
MBaAFKwEVkqxOXZvHe5kizWgoYu9NiEJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckFSV1NyRTVkbThkN21TTE5hQ2hpNzAySVFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80NjY4ZDEtMjJhNC00MzJlLTgxZmMt
Mjg0ZTliY2Y4MmM1LzEvckFSV1NyRTVkbThkN21TTE5hQ2hpNzAySVFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80NjY4ZDEtMjJhNC00MzJlLTgxZmMtMjg0ZTliY2Y4MmM1
LzEvckFSV1NyRTVkbThkN21TTE5hQ2hpNzAySVFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAyDg1VvX
75D0rxhWfEwTjH8b50xIR2dtsBofHZ+sypi6yq1tz6PiJjqfGJcH+62jLbebiauh
1bdxmfaZshFHaViXaWlagnq/WP7PDM7c5PZGHvJCK2mUelevGYsiEwrMzKcsxEzq
Fto01dnwYSqKjhIpBHj94z3EGG5HC2gw/oSl+KBTlPvnCb1UbLOTy7u5H+I6LOsi
QktrVjz84nbwhdyUdie4n8PcV5S9B8ZWKK7ANkZb/5D7LLDikltRUMW7C3ukMTWQ
S6hUXfJS8irhCYFTJEJ3mJApi68oFiCh4EBEkGjAEujshGnOD0r9KkmBSKyfsp0x
cBYI3Rry52r1JA==
-----END CERTIFICATE-----
Generated at Wed Nov 5 01:52:15 2025 by rpki-client