Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
File: 8WmQKta3v0YB7qpecj7yPXD6dxQ.mft (raw, json)
Hash identifier: LL3KHYcO7NFzzHgcX7tGCLgaYhFKp2rT87+BK727CYc=
Subject key identifier: 02:AE:0D:03:0A:2D:56:6E:FB:6D:AA:3D:B9:27:4F:08:3D:3F:6F:59
Authority key identifier: F1:69:90:2A:D6:B7:BF:46:01:EE:AA:5E:72:3E:F2:3D:70:FA:77:14
Certificate issuer: /CN=f169902ad6b7bf4601eeaa5e723ef23d70fa7714
Certificate serial: 019A52D23865E2AD36A9B2FA98527B81858B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
Manifest number: 170D
Signing time: Wed 05 Nov 2025 07:01:39 +0000
Manifest this update: Wed 05 Nov 2025 07:01:39 +0000
Manifest next update: Thu 06 Nov 2025 07:01:39 +0000
Files and hashes: 1: 8WmQKta3v0YB7qpecj7yPXD6dxQ.crl (hash: o/5ZhP1xqg8ByyjsOaKUYxA3dYOBN4KkB0kF3qVzrCA=)
2: f0RuL1swXlvp41CLCru-Mt1TNyc.roa (hash: rkjC9/AqAR3AXAOW7ubyDoWQhwKzvm+Iu5S5RZdguhM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 07:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d2:38:65:e2:ad:36:a9:b2:fa:98:52:7b:81:85:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f169902ad6b7bf4601eeaa5e723ef23d70fa7714
Validity
Not Before: Nov 5 07:01:39 2025 GMT
Not After : Nov 6 07:01:39 2025 GMT
Subject: CN=02ae0d030a2d566efb6daa3db9274f083d3f6f59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f2:0e:a8:62:bb:20:3e:77:91:8f:af:42:68:
0e:6f:67:9e:11:17:d7:48:29:03:fa:42:40:5d:0a:
8a:41:da:4e:aa:82:1c:4e:33:b2:a2:e4:a6:95:93:
78:a0:29:88:0d:8d:03:5e:01:e0:07:6b:0e:88:11:
dc:48:2c:ff:9e:82:02:0d:3f:7d:c9:8c:82:e8:40:
a3:50:93:6a:ac:44:0d:0a:23:ec:fe:15:b1:16:da:
38:4c:21:d5:22:ec:20:31:db:d8:bd:80:bd:2e:2d:
f2:46:89:97:dd:fb:18:80:f9:32:4c:09:87:f2:be:
09:a8:85:4c:2c:90:54:15:eb:b8:e5:a6:2c:4e:65:
c5:dd:4f:76:df:13:25:29:ca:01:49:68:13:be:8c:
39:13:6f:4f:8a:d9:58:12:96:42:33:b1:5e:dd:e3:
cc:cf:7b:cb:86:4e:e9:4d:df:b6:af:1e:99:cb:1a:
43:65:ea:8e:07:4b:55:e7:72:31:a5:43:d8:b2:66:
f2:d2:a9:33:2a:ab:39:2d:58:e6:82:ea:de:31:19:
4b:73:00:5a:0d:54:f4:30:9a:50:6e:b3:df:1d:3e:
c6:a6:1f:e0:21:ec:d7:7e:20:3b:b1:0f:db:99:97:
09:67:14:bc:ef:7b:1d:4b:64:9c:39:62:81:bc:04:
01:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:AE:0D:03:0A:2D:56:6E:FB:6D:AA:3D:B9:27:4F:08:3D:3F:6F:59
X509v3 Authority Key Identifier:
keyid:F1:69:90:2A:D6:B7:BF:46:01:EE:AA:5E:72:3E:F2:3D:70:FA:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:09:51:a9:18:d9:f7:84:b8:50:ce:84:7b:a5:52:81:7f:0a:
f1:09:69:6f:59:92:69:e0:fd:ed:b5:88:69:9f:2a:ef:2e:41:
06:ec:82:e7:6e:84:42:a8:7b:ec:4c:55:e6:b4:61:4e:0e:91:
d2:a4:df:14:1e:ba:14:97:a2:f3:80:a5:ab:97:27:48:88:b6:
e2:c4:db:a7:35:31:6d:6f:f9:22:e5:01:8d:30:61:98:56:a8:
7f:13:73:fb:39:2e:ce:39:8c:ad:72:ec:81:b9:09:24:3b:da:
91:16:fc:fb:d4:e8:e2:1d:10:1b:f3:6d:e6:03:ce:ab:ad:e8:
16:87:0a:5c:52:2e:cd:18:a6:76:51:75:bc:54:ff:ae:51:34:
97:f6:af:51:c6:3f:09:0c:c3:f4:72:b2:4b:ff:6d:e6:f9:dd:
8d:0a:07:a9:96:08:dc:ac:49:ad:fc:28:f7:b3:53:8b:fd:56:
68:34:89:23:cd:2f:c9:92:3b:68:42:48:58:bc:80:e1:78:49:
e2:ad:58:03:4a:e1:e9:6b:b6:c7:b9:13:39:5b:c0:34:84:60:
2e:8d:1b:16:be:d0:d4:c1:26:2d:92:3e:f2:7f:b7:06:ed:9d:
2b:41:3c:dd:7b:9e:85:a4:ff:e2:49:87:27:80:6b:d7:08:7a:
da:52:82:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpS0jhl4q02qbL6mFJ7gYWLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxNjk5MDJhZDZiN2JmNDYwMWVlYWE1ZTcyM2VmMjNkNzBm
YTc3MTQwHhcNMjUxMTA1MDcwMTM5WhcNMjUxMTA2MDcwMTM5WjAzMTEwLwYDVQQD
EygwMmFlMGQwMzBhMmQ1NjZlZmI2ZGFhM2RiOTI3NGYwODNkM2Y2ZjU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfIOqGK7ID53kY+vQmgOb2eeERfX
SCkD+kJAXQqKQdpOqoIcTjOyouSmlZN4oCmIDY0DXgHgB2sOiBHcSCz/noICDT99
yYyC6ECjUJNqrEQNCiPs/hWxFto4TCHVIuwgMdvYvYC9Li3yRomX3fsYgPkyTAmH
8r4JqIVMLJBUFeu45aYsTmXF3U923xMlKcoBSWgTvow5E29PitlYEpZCM7Fe3ePM
z3vLhk7pTd+2rx6ZyxpDZeqOB0tV53IxpUPYsmby0qkzKqs5LVjmgureMRlLcwBa
DVT0MJpQbrPfHT7Gph/gIezXfiA7sQ/bmZcJZxS873sdS2ScOWKBvAQB+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAKuDQMKLVZu+22qPbknTwg9P29ZMB8GA1UdIwQY
MBaAFPFpkCrWt79GAe6qXnI+8j1w+ncUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOFdtUUt0YTN2MFlCN3FwZWNqN3lQWEQ2ZHhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy80ZjI4MDAtYTU1NS00ZjgyLTg5MzYt
ZjIwODM2NTA1MWNiLzEvOFdtUUt0YTN2MFlCN3FwZWNqN3lQWEQ2ZHhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy80ZjI4MDAtYTU1NS00ZjgyLTg5MzYtZjIwODM2NTA1MWNi
LzEvOFdtUUt0YTN2MFlCN3FwZWNqN3lQWEQ2ZHhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFQlRqRjZ
94S4UM6Ee6VSgX8K8Qlpb1mSaeD97bWIaZ8q7y5BBuyC526EQqh77ExV5rRhTg6R
0qTfFB66FJei84Clq5cnSIi24sTbpzUxbW/5IuUBjTBhmFaofxNz+zkuzjmMrXLs
gbkJJDvakRb8+9To4h0QG/Nt5gPOq63oFocKXFIuzRimdlF1vFT/rlE0l/avUcY/
CQzD9HKyS/9t5vndjQoHqZYI3KxJrfwo97NTi/1WaDSJI80vyZI7aEJIWLyA4XhJ
4q1YA0rh6Wu2x7kTOVvANIRgLo0bFr7Q1MEmLZI+8n+3Bu2dK0E83XuehaT/4kmH
J4Br1wh62lKC6w==
-----END CERTIFICATE-----
Generated at Wed Nov 5 13:50:20 2025 by rpki-client