Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
File: sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft (raw, json)
Hash identifier: qiXVvEQHIZXhwhi3DxvQOc1zjp0ybFsPk01wFzhxO2k=
Subject key identifier: 3B:C8:84:68:81:51:8A:03:F6:91:C2:77:B9:39:56:B6:70:97:2B:AE
Authority key identifier: B2:4D:58:8D:F2:0B:32:DB:97:87:D7:78:64:39:4C:D7:A6:6D:40:30
Certificate issuer: /CN=b24d588df20b32db9787d77864394cd7a66d4030
Certificate serial: 019A4E86AABD5FCD5BBB3B020C9F00591381
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
Manifest number: 15F1
Signing time: Tue 04 Nov 2025 11:00:39 +0000
Manifest this update: Tue 04 Nov 2025 11:00:39 +0000
Manifest next update: Wed 05 Nov 2025 11:00:39 +0000
Files and hashes: 1: YAynT2rFqTF7GPjWR_vJKmQMToY.roa (hash: Nj9HjgClC5YboiO8+CeqUE2/z4iqwPpiEtBTjxVCiAo=)
2: sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl (hash: ZJdCYban2Ku1U/8tspedJX+khZL7mqcrSRyWX09j1hA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:aa:bd:5f:cd:5b:bb:3b:02:0c:9f:00:59:13:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b24d588df20b32db9787d77864394cd7a66d4030
Validity
Not Before: Nov 4 11:00:39 2025 GMT
Not After : Nov 5 11:00:39 2025 GMT
Subject: CN=3bc8846881518a03f691c277b93956b670972bae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:ce:16:84:a5:16:7e:8d:b1:61:57:68:62:8c:
b4:58:62:30:44:2e:56:73:26:84:58:91:a8:ef:a6:
9f:34:01:7b:bc:60:8d:94:a6:5d:64:31:bf:84:c7:
ea:5e:35:53:4e:dd:d8:10:5d:22:09:b9:0d:6b:fa:
88:b9:49:98:39:1d:b8:17:43:b2:35:8d:f8:34:eb:
73:33:64:7f:3a:dd:ae:ca:80:ec:56:cb:81:98:49:
c3:f7:82:b3:35:de:29:58:13:8e:55:0e:65:65:a5:
7d:aa:ee:64:18:bf:ec:56:be:85:5c:b4:b8:d4:5d:
fa:c3:f5:b6:6a:c3:95:68:14:0e:16:d4:fa:b1:ea:
47:b4:c6:21:cd:00:db:c5:b8:40:54:2a:0d:ee:9b:
f1:20:55:84:49:3a:7d:d4:bf:5b:d6:46:fe:2c:3d:
08:16:93:ff:6b:1f:28:ec:a2:61:42:86:37:51:41:
72:89:6a:62:d4:29:5e:d5:a4:ec:d1:4b:c6:5d:f6:
13:13:26:15:99:08:9b:88:8a:11:ad:b3:74:d8:b0:
9f:78:0a:43:dc:cd:4d:12:46:f8:63:ca:ab:1d:02:
8e:05:63:e9:23:29:e4:f1:04:17:e6:2c:23:86:18:
0a:f2:c7:01:af:04:bc:c0:65:c4:8d:fb:28:7d:7a:
68:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C8:84:68:81:51:8A:03:F6:91:C2:77:B9:39:56:B6:70:97:2B:AE
X509v3 Authority Key Identifier:
keyid:B2:4D:58:8D:F2:0B:32:DB:97:87:D7:78:64:39:4C:D7:A6:6D:40:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:cb:60:36:a4:e0:77:81:4a:00:93:8d:44:a4:b3:bc:f8:e6:
f4:dc:42:88:81:2d:c3:51:eb:36:43:ee:f5:7f:2a:96:bf:f7:
dd:dc:8e:c2:29:20:71:06:c8:14:84:58:3d:20:e7:02:09:c3:
30:c1:31:e7:97:80:8b:04:6f:b3:cc:91:18:8a:a4:fe:2a:bb:
c2:62:33:2a:2f:40:f6:a7:68:09:ef:35:18:41:fc:c9:e0:da:
db:8b:bb:ec:04:7f:f8:26:51:44:b3:a6:e1:47:45:d4:d2:c5:
fb:01:27:44:20:cd:fe:b5:54:f5:dc:6a:40:21:52:bf:9f:ac:
5b:56:88:2c:b0:0f:44:1a:85:a3:d3:da:13:74:77:9b:e6:6d:
93:4a:c5:01:a7:54:f9:5c:ae:09:f1:48:ac:8a:6e:4f:91:82:
91:e4:0e:7f:1c:ef:8f:36:75:77:af:95:55:86:8b:64:43:f1:
fc:87:eb:7e:d8:94:f9:47:54:4e:23:15:a3:95:13:fd:9d:84:
01:df:ad:b4:f8:80:99:dd:9f:1b:51:83:39:80:60:48:0d:a7:
dd:ef:5d:f1:d1:7c:30:9a:1f:77:98:85:3f:db:fc:46:23:ba:
94:46:97:94:97:da:eb:cb:2f:64:37:d9:15:ea:9e:ee:b1:18:
ce:c8:94:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOhqq9X81buzsCDJ8AWROBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyNGQ1ODhkZjIwYjMyZGI5Nzg3ZDc3ODY0Mzk0Y2Q3YTY2
ZDQwMzAwHhcNMjUxMTA0MTEwMDM5WhcNMjUxMTA1MTEwMDM5WjAzMTEwLwYDVQQD
EygzYmM4ODQ2ODgxNTE4YTAzZjY5MWMyNzdiOTM5NTZiNjcwOTcyYmFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+c4WhKUWfo2xYVdoYoy0WGIwRC5W
cyaEWJGo76afNAF7vGCNlKZdZDG/hMfqXjVTTt3YEF0iCbkNa/qIuUmYOR24F0Oy
NY34NOtzM2R/Ot2uyoDsVsuBmEnD94KzNd4pWBOOVQ5lZaV9qu5kGL/sVr6FXLS4
1F36w/W2asOVaBQOFtT6sepHtMYhzQDbxbhAVCoN7pvxIFWESTp91L9b1kb+LD0I
FpP/ax8o7KJhQoY3UUFyiWpi1Cle1aTs0UvGXfYTEyYVmQibiIoRrbN02LCfeApD
3M1NEkb4Y8qrHQKOBWPpIynk8QQX5iwjhhgK8scBrwS8wGXEjfsofXpodwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDvIhGiBUYoD9pHCd7k5VrZwlyuuMB8GA1UdIwQY
MBaAFLJNWI3yCzLbl4fXeGQ5TNembUAwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2sxWWpmSUxNdHVYaDlkNFpEbE0xNlp0UURBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9iZDJkMzktMTVlNi00NjQwLWFkMDgt
ZDdiNjRiN2NjNTgzLzEvc2sxWWpmSUxNdHVYaDlkNFpEbE0xNlp0UURBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS9iZDJkMzktMTVlNi00NjQwLWFkMDgtZDdiNjRiN2NjNTgz
LzEvc2sxWWpmSUxNdHVYaDlkNFpEbE0xNlp0UURBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAectgNqTg
d4FKAJONRKSzvPjm9NxCiIEtw1HrNkPu9X8qlr/33dyOwikgcQbIFIRYPSDnAgnD
MMEx55eAiwRvs8yRGIqk/iq7wmIzKi9A9qdoCe81GEH8yeDa24u77AR/+CZRRLOm
4UdF1NLF+wEnRCDN/rVU9dxqQCFSv5+sW1aILLAPRBqFo9PaE3R3m+Ztk0rFAadU
+VyuCfFIrIpuT5GCkeQOfxzvjzZ1d6+VVYaLZEPx/IfrftiU+UdUTiMVo5UT/Z2E
Ad+ttPiAmd2fG1GDOYBgSA2n3e9d8dF8MJofd5iFP9v8RiO6lEaXlJfa68svZDfZ
Feqe7rEYzsiU1g==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:47:37 2025 by rpki-client