Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
File: Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft (raw, json)
Hash identifier: 1NDbiRetysQxOSgnIj5PZIfnb5nCDlBAvetY+GC4KbU=
Subject key identifier: AC:68:B2:92:95:B8:27:8C:FB:34:2B:E0:76:08:85:61:96:23:65:AE
Authority key identifier: 16:5F:AD:41:09:28:3B:33:B6:F3:BA:53:FA:E8:3A:14:5D:19:34:E2
Certificate issuer: /CN=165fad4109283b33b6f3ba53fae83a145d1934e2
Certificate serial: 019A4EF5A1F5C5A4BADD6FEE21589C95BD10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fl-tQQkoOzO287pT-ug6FF0ZNOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
Manifest number: 0416
Signing time: Tue 04 Nov 2025 13:01:51 +0000
Manifest this update: Tue 04 Nov 2025 13:01:51 +0000
Manifest next update: Wed 05 Nov 2025 13:01:51 +0000
Files and hashes: 1: Fl-tQQkoOzO287pT-ug6FF0ZNOI.crl (hash: EjeyayJcSFSlXot4CWDy52yt1BVir0dTUL/mTp43Svs=)
2: Ln2JbGXgQ88O79Pg1zLA68Pqxy0.roa (hash: Mstyw2j7AKFxamlwfGacDBtId3D916+hLBKPld0IQWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fl-tQQkoOzO287pT-ug6FF0ZNOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:a1:f5:c5:a4:ba:dd:6f:ee:21:58:9c:95:bd:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165fad4109283b33b6f3ba53fae83a145d1934e2
Validity
Not Before: Nov 4 13:01:51 2025 GMT
Not After : Nov 5 13:01:51 2025 GMT
Subject: CN=ac68b29295b8278cfb342be076088561962365ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:5b:fc:29:cd:2d:dd:d8:a2:8f:f2:48:5e:ed:
53:96:56:7a:20:91:2a:e6:6b:f1:06:df:6a:9d:07:
11:eb:f0:58:a2:94:09:e6:10:26:80:0b:81:18:d2:
2e:62:75:30:df:9a:1d:e8:6d:65:bd:50:df:2c:4a:
e3:b0:44:88:db:0c:bf:e4:b8:cd:84:3b:5a:8d:13:
64:15:d1:7c:98:b4:ba:a1:88:2d:7c:10:32:9d:99:
c0:e0:e9:d4:d3:5b:f4:d8:b3:34:47:ba:39:3d:88:
3f:25:84:f7:87:70:2c:03:87:02:d1:fd:5a:f5:63:
a0:97:7c:73:c3:16:63:4c:22:3f:37:80:52:6b:fe:
0e:a6:4e:ec:d7:a3:c6:12:24:31:9e:c7:59:c3:37:
b7:b2:85:29:19:3a:65:6b:19:18:1b:9d:4a:6f:7e:
c6:a4:d8:d8:8d:4b:65:0a:f9:eb:d9:cb:06:11:94:
9c:42:98:aa:25:4d:7d:6a:c1:6c:ef:70:71:c2:ad:
36:a2:51:23:9c:80:75:6b:e1:6f:bd:b3:57:45:4e:
16:86:4c:d0:da:52:5a:12:b9:03:c0:dd:b9:45:8e:
b6:f4:23:73:c0:d0:93:3e:6c:8d:e3:af:c9:aa:39:
85:93:c7:7d:8a:f8:29:a4:1c:7a:d6:8e:84:4e:28:
82:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:68:B2:92:95:B8:27:8C:FB:34:2B:E0:76:08:85:61:96:23:65:AE
X509v3 Authority Key Identifier:
keyid:16:5F:AD:41:09:28:3B:33:B6:F3:BA:53:FA:E8:3A:14:5D:19:34:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fl-tQQkoOzO287pT-ug6FF0ZNOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:d0:76:cb:90:e9:65:2a:b7:c8:74:3d:fe:84:be:1f:89:33:
8e:bd:c0:e7:45:80:29:09:7c:62:28:aa:54:6d:75:d5:ec:ed:
01:45:e2:4d:36:47:4d:ca:85:0a:63:42:29:f5:67:a6:65:d0:
fc:07:cb:ff:f4:ba:21:22:82:63:4a:95:57:30:56:1b:78:c0:
e5:b2:b8:f7:91:74:d2:70:4c:2a:86:09:19:ee:09:24:da:cf:
3a:7c:33:37:0e:10:d3:b5:a0:72:2e:96:a0:36:09:08:0d:ae:
84:e8:1f:a4:83:a0:f1:e0:56:f7:b8:3c:3b:91:b8:90:da:cc:
b1:8c:96:f2:5e:7a:01:79:c2:71:ab:62:68:82:f7:c2:53:80:
35:d8:e9:bc:33:48:3c:1d:4f:d8:46:9d:49:a4:94:8c:fa:99:
43:b5:e7:eb:6c:0d:b1:3a:2c:91:79:91:d3:c1:3d:9e:72:24:
9c:d0:b1:b5:4b:9c:ee:5c:db:b7:fb:7d:8f:26:ee:00:b4:1b:
a6:df:bc:8e:5e:53:15:dc:91:b7:69:f0:0c:59:05:a6:e0:70:
6f:6d:18:d3:77:64:af:9c:02:e4:ff:a7:ce:97:cd:ee:8d:04:
62:6d:b7:06:90:fd:78:51:d6:75:f9:2a:5b:0c:97:3a:b0:43:
37:1d:24:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9aH1xaS63W/uIViclb0QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2NWZhZDQxMDkyODNiMzNiNmYzYmE1M2ZhZTgzYTE0NWQx
OTM0ZTIwHhcNMjUxMTA0MTMwMTUxWhcNMjUxMTA1MTMwMTUxWjAzMTEwLwYDVQQD
EyhhYzY4YjI5Mjk1YjgyNzhjZmIzNDJiZTA3NjA4ODU2MTk2MjM2NWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7lv8Kc0t3diij/JIXu1TllZ6IJEq
5mvxBt9qnQcR6/BYopQJ5hAmgAuBGNIuYnUw35od6G1lvVDfLErjsESI2wy/5LjN
hDtajRNkFdF8mLS6oYgtfBAynZnA4OnU01v02LM0R7o5PYg/JYT3h3AsA4cC0f1a
9WOgl3xzwxZjTCI/N4BSa/4Opk7s16PGEiQxnsdZwze3soUpGTplaxkYG51Kb37G
pNjYjUtlCvnr2csGEZScQpiqJU19asFs73Bxwq02olEjnIB1a+FvvbNXRU4WhkzQ
2lJaErkDwN25RY629CNzwNCTPmyN46/JqjmFk8d9ivgppBx61o6ETiiCmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKxospKVuCeM+zQr4HYIhWGWI2WuMB8GA1UdIwQY
MBaAFBZfrUEJKDsztvO6U/roOhRdGTTiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmwtdFFRa29Pek8yODdwVC11ZzZGRjBaTk9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8zYjcyYzAtNWRlOS00NmE0LWFiZDQt
MzFiNjAzMTFjMzE1LzEvRmwtdFFRa29Pek8yODdwVC11ZzZGRjBaTk9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8zYjcyYzAtNWRlOS00NmE0LWFiZDQtMzFiNjAzMTFjMzE1
LzEvRmwtdFFRa29Pek8yODdwVC11ZzZGRjBaTk9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATNB2y5Dp
ZSq3yHQ9/oS+H4kzjr3A50WAKQl8YiiqVG111eztAUXiTTZHTcqFCmNCKfVnpmXQ
/AfL//S6ISKCY0qVVzBWG3jA5bK495F00nBMKoYJGe4JJNrPOnwzNw4Q07Wgci6W
oDYJCA2uhOgfpIOg8eBW97g8O5G4kNrMsYyW8l56AXnCcatiaIL3wlOANdjpvDNI
PB1P2EadSaSUjPqZQ7Xn62wNsToskXmR08E9nnIknNCxtUuc7lzbt/t9jybuALQb
pt+8jl5TFdyRt2nwDFkFpuBwb20Y03dkr5wC5P+nzpfN7o0EYm23BpD9eFHWdfkq
WwyXOrBDNx0k/A==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:55:58 2025 by rpki-client