Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
File: S1KaTSL67yMTXW7_iRImZiPEklU.mft (raw, json)
Hash identifier: ETEgTlXl+zXOvdIVeEuYS2KbHFfY3gtFXTQkeJSZAZ4=
Subject key identifier: 62:F4:AE:4A:14:2C:2C:C9:8B:10:BC:D0:17:F0:57:56:35:4B:35:01
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 019A4E86984D1290ACBE07613C3F35F8D299
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
Manifest number: 172A
Signing time: Tue 04 Nov 2025 11:00:34 +0000
Manifest this update: Tue 04 Nov 2025 11:00:34 +0000
Manifest next update: Wed 05 Nov 2025 11:00:34 +0000
Files and hashes: 1: 1-dpFpZ66BUopKTWddAy3aYd5Q58.roa (hash: a/nFyI+oVdi7douUuLnGlPqM2YOH9iXTA2Ltk7+EQUM=)
2: DL1hBwC058Ly5gbOYmTudqMnhLY.roa (hash: ZP95RnK2lnoKaBDaVLfKRWdtbqYZIJodq0FZ93fqmj4=)
3: S1KaTSL67yMTXW7_iRImZiPEklU.crl (hash: Qb7DMpGLTvpsRCE2CNP4HHbr8kyIR8DyzSKg3G5BPRA=)
4: TSdQZeiJv87sxq_OJ-PJSQE8GTQ.roa (hash: zeHI0YzPke/O83NDkRPiKpR8/sA4EMZWB7tgWAf8HNc=)
5: YG4GH2kbor4nZ_HdlU4bXsM_ISU.roa (hash: orPHPnq001m59xqGhWWhOTcNNv+UhgU5D7ZAydlYwJ0=)
6: _YciLAUMll_l6Ad-S-3jEr-WUP0.roa (hash: YLNVgwBOiutPhe7HbfVw0eYS7E9cfJJEs9zT8+FOZFI=)
7: ct-_W27EwoC0fOGDJoYPaUOCh1k.roa (hash: Ry7d3ypfHQ+1XBY6nTPep5IZIfXf1osPEMavue76/1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:98:4d:12:90:ac:be:07:61:3c:3f:35:f8:d2:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Nov 4 11:00:34 2025 GMT
Not After : Nov 5 11:00:34 2025 GMT
Subject: CN=62f4ae4a142c2cc98b10bcd017f05756354b3501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:85:d2:b9:ca:6b:f7:29:f4:39:7d:ca:85:9f:
09:44:3b:48:c5:6d:20:2f:d0:fa:f5:2e:05:c8:9f:
af:17:11:7f:af:1d:1f:2c:37:e1:e5:9a:82:87:89:
fc:e2:5c:fc:02:ae:9c:c7:72:20:72:62:88:a2:00:
2b:c1:d8:a4:18:89:ce:d0:5a:4b:dc:47:12:b0:59:
26:ba:e2:5f:21:63:df:2c:be:98:a3:2e:5d:ce:a5:
04:98:93:61:64:11:9d:da:bb:b1:98:81:4f:10:47:
1f:15:2f:76:79:bd:6f:91:44:bb:2b:59:ee:c8:f3:
2a:f3:21:2f:43:52:ee:cd:1e:25:7f:c9:02:5c:3e:
3e:2b:cc:f0:64:3e:27:e3:06:8b:0c:b1:f3:d8:73:
c1:d3:a6:1f:80:c7:6e:1c:86:94:2a:58:22:a8:92:
14:8f:04:be:36:9a:c0:97:37:57:77:81:ab:73:5b:
d4:cf:24:21:d0:bd:72:59:0a:7a:93:8f:20:6b:4f:
76:34:2e:86:2a:3d:ce:cb:06:d7:ad:f9:fd:fe:ae:
f7:b9:9b:90:d0:bc:e5:47:87:ab:fd:a3:c9:bf:f1:
02:ee:2d:89:b1:53:e2:19:cd:18:8f:43:0a:b8:25:
2f:9c:45:98:87:71:82:4f:42:d2:d2:0e:c5:66:35:
a7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F4:AE:4A:14:2C:2C:C9:8B:10:BC:D0:17:F0:57:56:35:4B:35:01
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:b8:e9:b8:ed:9f:6b:e1:d8:16:2b:a9:94:b8:58:63:be:ea:
91:4e:38:af:a3:db:41:06:94:2a:df:fa:25:84:87:e7:94:34:
3c:99:15:32:d8:b0:c7:74:f1:5c:f0:a9:c3:b9:22:69:f3:1f:
b5:0d:db:dc:ee:50:17:ce:14:b8:76:dd:1b:9e:2b:cd:b8:1a:
43:62:68:a3:be:83:a6:20:22:01:67:31:83:51:6c:e0:e2:2a:
bd:6b:f2:25:f1:fd:71:dd:9b:66:b5:a0:38:4c:07:5e:68:ab:
e4:30:4c:81:c9:8c:75:29:82:4d:57:03:30:4e:b3:1b:ab:e2:
00:0a:3e:0f:9a:e9:87:b3:8a:4f:7f:7b:2d:09:56:d6:30:e0:
6f:b8:c1:17:94:41:7a:48:eb:30:50:a8:69:4a:76:1b:87:44:
d3:cb:55:a9:24:20:e1:ea:fd:5a:2c:83:03:7c:74:69:6f:fe:
6d:5c:29:e4:ce:6e:f5:11:b9:ee:17:fc:da:33:6f:2d:89:df:
6f:a5:58:d9:7d:47:cc:4c:21:c8:c4:32:5a:2f:37:7c:83:68:
cc:26:6b:1a:79:ba:d7:c9:38:43:82:d8:b3:bf:58:d9:dd:d8:
17:26:74:26:21:2d:fa:48:d5:cf:2d:d7:89:9b:98:48:6d:92:
de:62:04:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOhphNEpCsvgdhPD81+NKZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiNTI5YTRkMjJmYWVmMjMxMzVkNmVmZjg5MTIyNjY2MjNj
NDkyNTUwHhcNMjUxMTA0MTEwMDM0WhcNMjUxMTA1MTEwMDM0WjAzMTEwLwYDVQQD
Eyg2MmY0YWU0YTE0MmMyY2M5OGIxMGJjZDAxN2YwNTc1NjM1NGIzNTAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIXSucpr9yn0OX3KhZ8JRDtIxW0g
L9D69S4FyJ+vFxF/rx0fLDfh5ZqCh4n84lz8Aq6cx3IgcmKIogArwdikGInO0FpL
3EcSsFkmuuJfIWPfLL6Yoy5dzqUEmJNhZBGd2ruxmIFPEEcfFS92eb1vkUS7K1nu
yPMq8yEvQ1LuzR4lf8kCXD4+K8zwZD4n4waLDLHz2HPB06YfgMduHIaUKlgiqJIU
jwS+NprAlzdXd4Grc1vUzyQh0L1yWQp6k48ga092NC6GKj3OywbXrfn9/q73uZuQ
0LzlR4er/aPJv/EC7i2JsVPiGc0Yj0MKuCUvnEWYh3GCT0LS0g7FZjWnJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGL0rkoULCzJixC80BfwV1Y1SzUBMB8GA1UdIwQY
MBaAFEtSmk0i+u8jE11u/4kSJmYjxJJVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8xZDliMDUtZWM2MS00YzMzLWEwOTct
MzZhZTc2ZWU5ODNlLzEvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8xZDliMDUtZWM2MS00YzMzLWEwOTctMzZhZTc2ZWU5ODNl
LzEvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAw7jpuO2f
a+HYFiuplLhYY77qkU44r6PbQQaUKt/6JYSH55Q0PJkVMtiwx3TxXPCpw7kiafMf
tQ3b3O5QF84UuHbdG54rzbgaQ2Joo76DpiAiAWcxg1Fs4OIqvWvyJfH9cd2bZrWg
OEwHXmir5DBMgcmMdSmCTVcDME6zG6viAAo+D5rph7OKT397LQlW1jDgb7jBF5RB
ekjrMFCoaUp2G4dE08tVqSQg4er9WiyDA3x0aW/+bVwp5M5u9RG57hf82jNvLYnf
b6VY2X1HzEwhyMQyWi83fINozCZrGnm618k4Q4LYs79Y2d3YFyZ0JiEt+kjVzy3X
iZuYSG2S3mIE3Q==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:51:07 2025 by rpki-client