Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
File: _caA7hsnw6bwcBPI_CXr_wxn-50.mft (raw, json)
Hash identifier: rRd7OG7NLDOWsSHyf84XYE8/3Joj+znwxzl9k8XmGd8=
Subject key identifier: C8:03:42:40:63:BE:5B:95:DC:6F:89:A2:2A:3E:84:5D:DD:CB:D2:36
Authority key identifier: FD:C6:80:EE:1B:27:C3:A6:F0:70:13:C8:FC:25:EB:FF:0C:67:FB:9D
Certificate issuer: /CN=fdc680ee1b27c3a6f07013c8fc25ebff0c67fb9d
Certificate serial: 019A4DAB0DCF1A66D377612A6B213B03FC06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
Manifest number: 0DED
Signing time: Tue 04 Nov 2025 07:00:47 +0000
Manifest this update: Tue 04 Nov 2025 07:00:47 +0000
Manifest next update: Wed 05 Nov 2025 07:00:47 +0000
Files and hashes: 1: H5zExKsN_X1SPJQSwEakZzqeC2I.roa (hash: FjXiEi3V3MLLSMvrOdppNODHARmQ2b/yPySFztutI1Q=)
2: _caA7hsnw6bwcBPI_CXr_wxn-50.crl (hash: KPaoU/Rsd/RDS+uNozESneSCQL4ppBZCNTUV7MrbqTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:ab:0d:cf:1a:66:d3:77:61:2a:6b:21:3b:03:fc:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdc680ee1b27c3a6f07013c8fc25ebff0c67fb9d
Validity
Not Before: Nov 4 07:00:47 2025 GMT
Not After : Nov 5 07:00:47 2025 GMT
Subject: CN=c803424063be5b95dc6f89a22a3e845dddcbd236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1d:08:88:db:bd:01:38:70:33:ac:47:6f:bb:
8c:b6:31:4a:09:d9:0c:c7:5e:55:3d:d4:46:58:f4:
47:d4:92:26:bf:a1:1f:95:9f:84:72:f5:37:38:17:
4f:3a:5f:ba:44:74:88:45:86:6b:6c:f1:1a:c6:13:
8e:5b:26:a4:fc:3c:f6:7f:76:2a:0d:86:bb:bd:fb:
66:a4:9d:19:6c:57:3e:a5:d8:2f:d5:da:25:44:63:
c6:c7:4a:bf:ae:a8:a5:34:1f:7d:4c:91:18:e1:5f:
61:5c:4b:d4:2e:2c:24:4a:63:34:18:ff:30:c6:5d:
ef:4a:96:ec:78:9f:d1:b3:96:5e:c5:fb:4a:d1:d0:
0e:d1:5a:fa:35:07:6c:d6:5e:fe:ef:42:7b:9e:bf:
3a:38:61:6e:88:c2:55:b2:e4:1a:b1:45:3a:33:c9:
8e:1b:25:cd:d9:39:85:22:b9:33:44:1c:71:ef:f4:
7d:f3:78:68:87:0a:48:67:2c:6e:75:b5:80:4c:67:
cd:80:c7:d0:4f:80:7d:dc:88:36:55:f0:37:f9:d8:
d5:a5:0b:fc:08:0b:67:77:ec:c4:16:1e:08:66:59:
46:03:e2:c8:d6:92:fc:a2:76:d5:11:17:76:f5:cd:
87:dc:45:91:2c:4d:03:df:cf:16:c2:f7:a6:39:32:
73:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:03:42:40:63:BE:5B:95:DC:6F:89:A2:2A:3E:84:5D:DD:CB:D2:36
X509v3 Authority Key Identifier:
keyid:FD:C6:80:EE:1B:27:C3:A6:F0:70:13:C8:FC:25:EB:FF:0C:67:FB:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:1d:44:9a:2d:96:8d:35:d6:4a:ea:d3:da:b7:b6:17:b5:e6:
0c:9e:e1:dc:bf:1d:96:89:96:f0:cf:22:49:7d:01:93:7b:c1:
29:55:38:07:a6:5f:fe:67:39:cb:9e:cc:50:42:2d:2a:eb:83:
84:49:ce:9d:4e:91:ec:80:1f:4c:2e:d6:76:b5:5a:84:5f:c4:
7f:8f:ce:00:be:1e:41:2a:e8:d5:d3:f1:f7:53:56:d1:00:2b:
7d:e8:5a:a5:1d:91:c4:a7:e4:30:ed:8a:8d:ed:26:35:7a:0d:
5e:b2:4b:ca:aa:dc:1a:a6:66:8b:5a:47:0c:8e:29:14:e5:d3:
2a:52:64:32:3b:9b:3b:12:cf:59:9c:8b:43:1f:a4:f8:66:48:
54:86:86:91:94:33:8a:a4:ee:ba:95:29:52:d1:a6:da:c0:05:
cc:c7:05:3e:fa:89:db:de:0f:68:f7:4d:6e:9f:c3:9f:53:e3:
77:6e:77:02:a8:9a:1c:64:e4:68:99:b5:6a:75:a1:bd:5f:fc:
87:f4:8c:4f:de:67:e8:1d:3d:22:0d:1f:a7:72:cd:6d:9a:55:
ad:07:5e:28:f2:67:7b:49:a0:19:97:d2:e7:f9:98:27:3c:16:
1b:0b:b6:b3:df:96:f5:02:6c:f8:a4:88:f2:df:bc:61:c5:b7:
71:8e:16:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNqw3PGmbTd2EqayE7A/wGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkYzY4MGVlMWIyN2MzYTZmMDcwMTNjOGZjMjVlYmZmMGM2
N2ZiOWQwHhcNMjUxMTA0MDcwMDQ3WhcNMjUxMTA1MDcwMDQ3WjAzMTEwLwYDVQQD
EyhjODAzNDI0MDYzYmU1Yjk1ZGM2Zjg5YTIyYTNlODQ1ZGRkY2JkMjM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnR0IiNu9AThwM6xHb7uMtjFKCdkM
x15VPdRGWPRH1JImv6EflZ+EcvU3OBdPOl+6RHSIRYZrbPEaxhOOWyak/Dz2f3Yq
DYa7vftmpJ0ZbFc+pdgv1dolRGPGx0q/rqilNB99TJEY4V9hXEvULiwkSmM0GP8w
xl3vSpbseJ/Rs5ZexftK0dAO0Vr6NQds1l7+70J7nr86OGFuiMJVsuQasUU6M8mO
GyXN2TmFIrkzRBxx7/R983hohwpIZyxudbWATGfNgMfQT4B93Ig2VfA3+djVpQv8
CAtnd+zEFh4IZllGA+LI1pL8onbVERd29c2H3EWRLE0D388WwvemOTJzsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMgDQkBjvluV3G+Joio+hF3dy9I2MB8GA1UdIwQY
MBaAFP3GgO4bJ8Om8HATyPwl6/8MZ/udMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2NhQTdoc253NmJ3Y0JQSV9DWHJfd3huLTUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9hMTJlMWMtMWIxMC00OTM4LTk2ZDMt
N2JlZDI2NzQzYmNjLzEvX2NhQTdoc253NmJ3Y0JQSV9DWHJfd3huLTUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9hMTJlMWMtMWIxMC00OTM4LTk2ZDMtN2JlZDI2NzQzYmNj
LzEvX2NhQTdoc253NmJ3Y0JQSV9DWHJfd3huLTUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMh1Emi2W
jTXWSurT2re2F7XmDJ7h3L8dlomW8M8iSX0Bk3vBKVU4B6Zf/mc5y57MUEItKuuD
hEnOnU6R7IAfTC7WdrVahF/Ef4/OAL4eQSro1dPx91NW0QArfehapR2RxKfkMO2K
je0mNXoNXrJLyqrcGqZmi1pHDI4pFOXTKlJkMjubOxLPWZyLQx+k+GZIVIaGkZQz
iqTuupUpUtGm2sAFzMcFPvqJ294PaPdNbp/Dn1Pjd253AqiaHGTkaJm1anWhvV/8
h/SMT95n6B09Ig0fp3LNbZpVrQdeKPJne0mgGZfS5/mYJzwWGwu2s9+W9QJs+KSI
8t+8YcW3cY4WEA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 10:51:12 2025 by rpki-client