Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
File: PheDehDbHT3XPiDfC0eeQNsiNv4.mft (raw, json)
Hash identifier: d+RWtNkzZMheM49RaF5T/GhXv6mtjEFxD5a+rlz2Ar4=
Subject key identifier: AA:26:3B:11:5F:F3:AE:B4:8A:89:68:E9:AD:C7:98:C4:E9:1F:A6:6C
Authority key identifier: 3E:17:83:7A:10:DB:1D:3D:D7:3E:20:DF:0B:47:9E:40:DB:22:36:FE
Certificate issuer: /CN=3e17837a10db1d3dd73e20df0b479e40db2236fe
Certificate serial: 019A4EF43DC385F19871875E60473FFCA4FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
Manifest number: 0F22
Signing time: Tue 04 Nov 2025 13:00:20 +0000
Manifest this update: Tue 04 Nov 2025 13:00:20 +0000
Manifest next update: Wed 05 Nov 2025 13:00:20 +0000
Files and hashes: 1: CZQAZEvMh_XTxw7BOmbx2zwgX-k.roa (hash: Ire9dW7Oeexx5f9et2qGgWkDs4AnuBBZcM9DwhOcJAg=)
2: PheDehDbHT3XPiDfC0eeQNsiNv4.crl (hash: jVxR9YB/BWeWGXVrYxgipX8DEg2MugcffrI9kBQGc+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:3d:c3:85:f1:98:71:87:5e:60:47:3f:fc:a4:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e17837a10db1d3dd73e20df0b479e40db2236fe
Validity
Not Before: Nov 4 13:00:20 2025 GMT
Not After : Nov 5 13:00:20 2025 GMT
Subject: CN=aa263b115ff3aeb48a8968e9adc798c4e91fa66c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:96:d7:14:6a:ca:b1:8b:4b:00:e9:81:ab:80:
7c:44:2d:a2:30:b3:7c:60:91:af:76:5d:27:e3:0f:
d5:ba:1d:df:26:db:bf:e8:f0:8a:19:02:f0:12:7e:
d8:24:56:c6:ba:72:e0:5a:b4:19:2e:fd:3f:cc:a1:
7d:f9:77:25:c3:80:d0:ee:c8:a9:31:3a:86:fa:11:
3e:46:46:6d:f0:c2:29:41:81:80:dc:df:0b:54:cb:
93:ca:4e:e5:42:ce:0f:0c:1a:6b:9a:58:24:f8:09:
12:2c:7f:73:58:04:09:40:cc:68:3d:9d:71:fe:f8:
83:dd:4b:2b:22:e0:ae:bc:c4:64:75:60:2f:05:8b:
aa:5d:d9:1d:64:39:6f:12:37:8a:f9:0d:dc:10:e6:
22:3d:a6:38:6f:b3:ec:6e:51:2f:01:c9:05:0c:35:
c0:67:f3:93:af:bd:fa:b7:32:e8:ed:9d:b7:16:53:
70:7a:cc:77:61:16:45:65:94:c7:54:4a:f3:ce:65:
c8:9d:12:d6:f5:bb:9c:55:3e:21:13:5b:77:57:42:
93:18:f5:23:ba:b2:cf:7e:4c:52:f1:f1:77:fe:4d:
4a:05:1c:0f:13:43:aa:7c:52:18:82:2a:0e:21:bb:
88:29:5e:f4:b3:17:58:60:4a:05:f5:4f:52:a7:6c:
cb:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:26:3B:11:5F:F3:AE:B4:8A:89:68:E9:AD:C7:98:C4:E9:1F:A6:6C
X509v3 Authority Key Identifier:
keyid:3E:17:83:7A:10:DB:1D:3D:D7:3E:20:DF:0B:47:9E:40:DB:22:36:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:30:39:97:47:45:0e:1e:0c:8a:e2:15:3b:af:f3:31:96:37:
b5:68:c7:ab:f5:eb:b1:57:77:8b:ac:1a:28:ed:92:0a:e2:cc:
2a:64:3e:d8:1f:2a:97:b3:f0:9c:5b:0e:ed:d1:a5:aa:39:53:
de:9c:15:95:f5:1c:14:ce:05:e6:35:e4:7f:91:fa:03:69:46:
d1:a6:6d:52:24:32:2c:66:f9:b8:03:f5:20:84:c9:ce:8f:96:
20:7e:e1:d3:2e:ef:00:04:09:11:d0:59:82:7d:41:e5:09:b8:
d7:51:32:a3:e9:c4:2a:e2:29:6e:9d:70:3e:c8:28:98:33:40:
fa:c0:1e:4d:2d:f8:8a:cb:84:da:cd:a0:96:14:69:29:85:1c:
45:0a:ec:54:97:e5:61:5f:64:6b:7c:f4:1a:fa:c0:46:1e:f6:
f7:40:68:fc:7d:bb:97:2d:d2:db:f9:d5:54:4f:7b:47:9b:4b:
b8:a8:24:04:c4:72:16:d1:8c:09:43:b3:0c:a0:8d:9d:17:b3:
2a:8e:90:87:3a:08:31:ab:8e:86:5b:c5:5e:d7:f0:6e:3a:06:
c6:05:07:a0:9f:01:95:9f:a8:d7:5e:af:16:bb:ad:8b:db:3c:
a5:63:7b:9c:4e:3b:d0:ce:1a:57:e9:19:da:93:8c:bc:98:a8:
fc:58:92:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9D3DhfGYcYdeYEc//KT8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlMTc4MzdhMTBkYjFkM2RkNzNlMjBkZjBiNDc5ZTQwZGIy
MjM2ZmUwHhcNMjUxMTA0MTMwMDIwWhcNMjUxMTA1MTMwMDIwWjAzMTEwLwYDVQQD
EyhhYTI2M2IxMTVmZjNhZWI0OGE4OTY4ZTlhZGM3OThjNGU5MWZhNjZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJbXFGrKsYtLAOmBq4B8RC2iMLN8
YJGvdl0n4w/Vuh3fJtu/6PCKGQLwEn7YJFbGunLgWrQZLv0/zKF9+Xclw4DQ7sip
MTqG+hE+RkZt8MIpQYGA3N8LVMuTyk7lQs4PDBprmlgk+AkSLH9zWAQJQMxoPZ1x
/viD3UsrIuCuvMRkdWAvBYuqXdkdZDlvEjeK+Q3cEOYiPaY4b7PsblEvAckFDDXA
Z/OTr736tzLo7Z23FlNwesx3YRZFZZTHVErzzmXInRLW9bucVT4hE1t3V0KTGPUj
urLPfkxS8fF3/k1KBRwPE0OqfFIYgioOIbuIKV70sxdYYEoF9U9Sp2zLDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKomOxFf8660iolo6a3HmMTpH6ZsMB8GA1UdIwQY
MBaAFD4Xg3oQ2x091z4g3wtHnkDbIjb+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS80YzA0M2MtNWZjZC00OGNiLWJkNTAt
YzU5NmFmMmE0MmJhLzEvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS80YzA0M2MtNWZjZC00OGNiLWJkNTAtYzU5NmFmMmE0MmJh
LzEvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAizA5l0dF
Dh4MiuIVO6/zMZY3tWjHq/XrsVd3i6waKO2SCuLMKmQ+2B8ql7PwnFsO7dGlqjlT
3pwVlfUcFM4F5jXkf5H6A2lG0aZtUiQyLGb5uAP1IITJzo+WIH7h0y7vAAQJEdBZ
gn1B5Qm411Eyo+nEKuIpbp1wPsgomDNA+sAeTS34isuE2s2glhRpKYUcRQrsVJfl
YV9ka3z0GvrARh7290Bo/H27ly3S2/nVVE97R5tLuKgkBMRyFtGMCUOzDKCNnRez
Ko6QhzoIMauOhlvFXtfwbjoGxgUHoJ8BlZ+o116vFruti9s8pWN7nE470M4aV+kZ
2pOMvJio/FiSiw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 15:05:04 2025 by rpki-client