Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
File: sffQCUrcmNmwMnIOgePbWqdYHHQ.mft (raw, json)
Hash identifier: z/Z/AysbnsAzRKyc4jxvVfCAeMmTD65bWT1TUWyhMfk=
Subject key identifier: AE:97:35:D1:0B:28:8E:41:EE:A4:CA:8C:D0:43:4C:C8:A7:30:95:A7
Authority key identifier: B1:F7:D0:09:4A:DC:98:D9:B0:32:72:0E:81:E3:DB:5A:A7:58:1C:74
Certificate issuer: /CN=b1f7d0094adc98d9b032720e81e3db5aa7581c74
Certificate serial: 019A522C59E3F2AF6572B3595784AF25A09C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
Manifest number: 0C96
Signing time: Wed 05 Nov 2025 04:00:29 +0000
Manifest this update: Wed 05 Nov 2025 04:00:29 +0000
Manifest next update: Thu 06 Nov 2025 04:00:29 +0000
Files and hashes: 1: sffQCUrcmNmwMnIOgePbWqdYHHQ.crl (hash: Z3gb3uBUozB3k8byy34P/nZOdDX/HCehjmFlz6lQnBM=)
2: tkngR5wwQ6qh3iGid8LqkeZO0Sg.roa (hash: XAoboSbFoG6N+OZ4mfDqaXa/N9sFsWbZUGbRzqL5oH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:2c:59:e3:f2:af:65:72:b3:59:57:84:af:25:a0:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1f7d0094adc98d9b032720e81e3db5aa7581c74
Validity
Not Before: Nov 5 04:00:29 2025 GMT
Not After : Nov 6 04:00:29 2025 GMT
Subject: CN=ae9735d10b288e41eea4ca8cd0434cc8a73095a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8d:3e:fd:e7:0f:e0:51:3f:b5:84:d5:a1:d4:
58:37:2a:7c:6e:38:1b:ec:fd:3e:40:58:26:dc:c1:
24:3e:37:db:0e:cd:0a:c7:04:b8:8e:d7:32:05:58:
e4:09:b7:dc:2e:fb:f5:5c:a5:41:ed:a1:af:88:17:
af:1e:c9:d5:dc:d0:ed:53:7d:68:75:ed:85:0d:3c:
b8:7a:c4:61:41:43:d2:a4:01:89:21:7e:bc:10:4c:
60:71:ff:bb:a3:62:e2:bc:c3:67:d5:1f:16:1f:3e:
06:ab:59:2f:1f:0d:00:63:60:bf:8c:90:b6:45:dc:
b5:70:5c:30:de:8b:7d:61:39:4d:5c:1f:31:27:26:
b5:e0:fc:9f:4d:42:b6:04:29:85:5e:8e:19:8c:ee:
36:23:a7:fa:c3:56:d3:38:48:de:f7:f1:0e:b5:86:
ca:91:6e:d7:5a:72:70:fa:4e:d4:a1:7c:a0:fe:5e:
19:16:1f:18:f4:7b:f4:4f:16:6a:4b:36:f3:e9:31:
5b:2e:bd:48:c7:b1:58:79:aa:a9:2c:04:f0:27:d6:
a6:c3:e0:82:0e:67:89:f7:d6:76:6c:80:57:ca:5a:
c5:9c:7e:a3:9f:4b:04:c1:1a:bb:2e:17:07:f1:79:
fb:90:13:4b:36:bf:e8:7f:db:04:55:7b:4e:58:6a:
9a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:97:35:D1:0B:28:8E:41:EE:A4:CA:8C:D0:43:4C:C8:A7:30:95:A7
X509v3 Authority Key Identifier:
keyid:B1:F7:D0:09:4A:DC:98:D9:B0:32:72:0E:81:E3:DB:5A:A7:58:1C:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:ca:f9:96:4a:34:13:50:df:77:89:b6:14:0f:76:cc:e3:d6:
73:59:dc:80:e4:1d:d1:b6:69:87:6c:0f:5b:b2:4e:3b:a3:f6:
81:7e:b6:52:3b:13:dc:df:85:dc:80:d1:8c:3d:ee:40:e2:69:
60:c0:0d:2f:5e:91:8a:4d:af:ee:75:41:1f:a1:90:85:92:cd:
a9:de:52:89:3d:88:36:6e:50:d7:c2:05:85:ec:42:42:91:7d:
a3:2b:bf:fb:8d:e9:1a:64:79:08:b1:46:e5:bd:a8:43:0c:02:
97:de:2f:b8:d7:11:7d:97:10:b7:f4:22:fa:fc:36:e7:47:ca:
52:b1:b9:16:74:61:f2:8c:83:48:38:56:7a:45:7d:3d:cc:1e:
a2:b8:78:fc:7b:d5:29:1b:b6:3e:4e:a3:fc:ef:51:e2:86:85:
77:e7:1e:c8:19:fe:a8:47:e0:fe:84:ff:b3:82:08:8c:4c:e1:
b8:fd:96:b1:0a:0a:75:79:4b:c7:f3:bc:c9:7a:19:07:06:b4:
1c:38:63:ac:fe:84:be:fc:53:a0:20:8e:37:e2:53:13:ca:55:
d1:ca:e8:05:06:cb:7a:4e:6c:8e:01:c4:f4:94:2d:0c:5d:a5:
33:bb:be:44:24:4a:fa:cf:03:01:86:17:62:46:0a:cd:e7:29:
37:7e:f5:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpSLFnj8q9lcrNZV4SvJaCcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxZjdkMDA5NGFkYzk4ZDliMDMyNzIwZTgxZTNkYjVhYTc1
ODFjNzQwHhcNMjUxMTA1MDQwMDI5WhcNMjUxMTA2MDQwMDI5WjAzMTEwLwYDVQQD
EyhhZTk3MzVkMTBiMjg4ZTQxZWVhNGNhOGNkMDQzNGNjOGE3MzA5NWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlo0+/ecP4FE/tYTVodRYNyp8bjgb
7P0+QFgm3MEkPjfbDs0KxwS4jtcyBVjkCbfcLvv1XKVB7aGviBevHsnV3NDtU31o
de2FDTy4esRhQUPSpAGJIX68EExgcf+7o2LivMNn1R8WHz4Gq1kvHw0AY2C/jJC2
Rdy1cFww3ot9YTlNXB8xJya14PyfTUK2BCmFXo4ZjO42I6f6w1bTOEje9/EOtYbK
kW7XWnJw+k7UoXyg/l4ZFh8Y9Hv0TxZqSzbz6TFbLr1Ix7FYeaqpLATwJ9amw+CC
DmeJ99Z2bIBXylrFnH6jn0sEwRq7LhcH8Xn7kBNLNr/of9sEVXtOWGqauwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK6XNdELKI5B7qTKjNBDTMinMJWnMB8GA1UdIwQY
MBaAFLH30AlK3JjZsDJyDoHj21qnWBx0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2ZmUUNVcmNtTm13TW5JT2dlUGJXcWRZSEhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC9lOGRkNmItNDYyNy00YTNjLWJhNzMt
YTU0Yjg2OWRjZDI3LzEvc2ZmUUNVcmNtTm13TW5JT2dlUGJXcWRZSEhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC9lOGRkNmItNDYyNy00YTNjLWJhNzMtYTU0Yjg2OWRjZDI3
LzEvc2ZmUUNVcmNtTm13TW5JT2dlUGJXcWRZSEhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi8r5lko0
E1Dfd4m2FA92zOPWc1ncgOQd0bZph2wPW7JOO6P2gX62UjsT3N+F3IDRjD3uQOJp
YMANL16Rik2v7nVBH6GQhZLNqd5SiT2INm5Q18IFhexCQpF9oyu/+43pGmR5CLFG
5b2oQwwCl94vuNcRfZcQt/Qi+vw250fKUrG5FnRh8oyDSDhWekV9Pcweorh4/HvV
KRu2Pk6j/O9R4oaFd+ceyBn+qEfg/oT/s4IIjEzhuP2WsQoKdXlLx/O8yXoZBwa0
HDhjrP6EvvxToCCON+JTE8pV0croBQbLek5sjgHE9JQtDF2lM7u+RCRK+s8DAYYX
YkYKzecpN371dA==
-----END CERTIFICATE-----
Generated at Wed Nov 5 06:53:59 2025 by rpki-client