Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
File: r7oQsKZ20-H6tWUoQw-siRoINlI.mft (raw, json)
Hash identifier: aUCGknnYGjoWrsKgE8aOIDnnbR7wt7j0Fqa6RvHUhSk=
Subject key identifier: 47:2C:5C:68:3E:35:E2:EE:89:8B:7F:21:06:BF:66:90:74:F1:0C:D6
Authority key identifier: AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
Certificate issuer: /CN=afba10b0a676d3e1fab56528430fac891a083652
Certificate serial: 019A4EF47D59FAAD558C2E5ECE403FFDEE5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 13:00:36 +0000
Manifest this update: Tue 04 Nov 2025 13:00:36 +0000
Manifest next update: Wed 05 Nov 2025 13:00:36 +0000
Files and hashes: 1: KrPbG6M_7Mm1PtcHhZI4wknQI1M.roa (hash: tjtqRRJLnNhIS/xM5FVWwtZTtirmBRvu7piQDYGy3mE=)
2: r7oQsKZ20-H6tWUoQw-siRoINlI.crl (hash: l0nbAW6V0hayd3allL9OyAHIA0lAnuS9fIwNMZPQ5y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:7d:59:fa:ad:55:8c:2e:5e:ce:40:3f:fd:ee:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afba10b0a676d3e1fab56528430fac891a083652
Validity
Not Before: Nov 4 13:00:36 2025 GMT
Not After : Nov 5 13:00:36 2025 GMT
Subject: CN=472c5c683e35e2ee898b7f2106bf669074f10cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3d:14:c6:3b:3d:67:b0:1d:69:66:73:fe:66:
26:2c:c9:df:99:71:cd:b9:57:0b:06:3b:5b:85:f7:
f2:38:a7:d5:43:88:bc:34:be:ca:26:f3:f4:6e:ed:
24:f7:48:16:ba:34:ef:27:64:eb:13:38:1d:49:74:
81:6d:ff:46:37:72:ae:23:3a:7f:c8:8e:39:e5:6b:
fa:31:37:1d:6f:7e:9e:e6:bd:6b:bd:0b:d7:db:07:
a0:9d:a2:e6:d2:e6:16:55:ad:a8:06:87:88:ef:c6:
ee:ca:60:f0:06:b3:2d:ff:51:4b:66:49:89:20:97:
6d:cf:2c:da:8d:02:d2:1f:ee:5b:58:0f:17:9c:f1:
0e:fd:f5:0a:ce:3a:31:ed:72:c9:91:17:06:cf:27:
af:f4:e6:ce:f2:f5:d2:b8:90:fb:fc:52:8d:8b:22:
db:71:6a:ff:f0:2f:6e:f6:78:7e:5d:97:91:30:63:
65:f9:c0:35:13:fe:03:b2:c4:cf:36:0c:d5:10:a8:
69:ef:02:db:78:6c:71:4b:05:d2:bd:8e:95:c0:8f:
02:6f:23:3b:89:56:02:72:18:6f:9e:49:84:84:f5:
c5:7c:7a:e6:58:e5:36:e6:10:27:fe:ee:66:40:e0:
59:3e:0a:43:2d:2b:ab:68:ac:d2:3b:4e:0f:dc:ed:
cf:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:2C:5C:68:3E:35:E2:EE:89:8B:7F:21:06:BF:66:90:74:F1:0C:D6
X509v3 Authority Key Identifier:
keyid:AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:90:9d:e6:8f:24:83:95:83:fb:23:88:ed:9a:6d:2e:43:b0:
39:e2:9f:f1:d4:48:2c:de:e2:48:48:73:9c:4b:d5:da:c3:ac:
94:b9:b4:7e:51:1b:28:15:c7:a8:f2:4f:43:d0:09:0c:11:4b:
8e:2d:bc:3a:38:32:93:32:2e:88:15:47:3d:9a:05:46:1c:3d:
a9:7a:1b:96:b2:99:ee:f5:a2:a0:64:36:9d:a5:0c:71:04:d7:
37:cc:66:59:6a:f3:e7:73:4c:d1:b5:c7:47:6b:a1:34:5a:49:
62:a5:66:79:13:b5:d5:78:f7:2c:86:69:7a:54:43:45:a8:97:
a9:10:4b:9a:96:75:e1:b1:d3:b3:37:d1:55:72:4b:16:0c:bd:
24:87:bb:3d:85:bc:21:2c:2c:d6:b4:3a:9d:8a:5a:ea:82:79:
bb:7a:fc:ff:80:85:00:e0:d6:b4:7a:2b:30:72:74:a5:17:be:
65:34:b8:50:24:bf:a2:27:af:dd:4e:d3:c1:88:fb:97:18:24:
66:03:96:e2:db:61:b4:18:ac:c1:ff:bb:c7:83:7f:ca:2f:98:
ec:4e:8b:15:5d:1e:16:17:ba:d0:a9:41:f5:e3:5f:ee:35:8a:
2b:94:8b:f6:4a:3b:3d:f9:4f:4f:2e:cf:a9:1c:ab:c2:ef:58:
ff:7a:6c:7a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9H1Z+q1VjC5ezkA//e5aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmYmExMGIwYTY3NmQzZTFmYWI1NjUyODQzMGZhYzg5MWEw
ODM2NTIwHhcNMjUxMTA0MTMwMDM2WhcNMjUxMTA1MTMwMDM2WjAzMTEwLwYDVQQD
Eyg0NzJjNWM2ODNlMzVlMmVlODk4YjdmMjEwNmJmNjY5MDc0ZjEwY2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoz0Uxjs9Z7AdaWZz/mYmLMnfmXHN
uVcLBjtbhffyOKfVQ4i8NL7KJvP0bu0k90gWujTvJ2TrEzgdSXSBbf9GN3KuIzp/
yI455Wv6MTcdb36e5r1rvQvX2wegnaLm0uYWVa2oBoeI78buymDwBrMt/1FLZkmJ
IJdtzyzajQLSH+5bWA8XnPEO/fUKzjox7XLJkRcGzyev9ObO8vXSuJD7/FKNiyLb
cWr/8C9u9nh+XZeRMGNl+cA1E/4DssTPNgzVEKhp7wLbeGxxSwXSvY6VwI8CbyM7
iVYCchhvnkmEhPXFfHrmWOU25hAn/u5mQOBZPgpDLSuraKzSO04P3O3PQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEcsXGg+NeLuiYt/IQa/ZpB08QzWMB8GA1UdIwQY
MBaAFK+6ELCmdtPh+rVlKEMPrIkaCDZSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8xYTljOWYtMGMwNy00Nzc2LWFlNjUt
ZTAyN2RjYjFkMTg2LzEvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8xYTljOWYtMGMwNy00Nzc2LWFlNjUtZTAyN2RjYjFkMTg2
LzEvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhJCd5o8k
g5WD+yOI7ZptLkOwOeKf8dRILN7iSEhznEvV2sOslLm0flEbKBXHqPJPQ9AJDBFL
ji28OjgykzIuiBVHPZoFRhw9qXoblrKZ7vWioGQ2naUMcQTXN8xmWWrz53NM0bXH
R2uhNFpJYqVmeRO11Xj3LIZpelRDRaiXqRBLmpZ14bHTszfRVXJLFgy9JIe7PYW8
ISws1rQ6nYpa6oJ5u3r8/4CFAODWtHorMHJ0pRe+ZTS4UCS/oiev3U7TwYj7lxgk
ZgOW4tthtBiswf+7x4N/yi+Y7E6LFV0eFhe60KlB9eNf7jWKK5SL9ko7PflPTy7P
qRyrwu9Y/3pseg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:00:26 2025 by rpki-client