Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
File: TvMzZvDPXk-oBO730eKSlO6lFIw.mft (raw, json)
Hash identifier: YxEdBL6eiV23w5GWPWKqR8Zn9xE5NKvhZI7LxO0moxQ=
Subject key identifier: A9:37:EA:7E:8E:D7:D7:C6:65:50:B9:50:FA:64:84:6F:42:51:46:EF
Authority key identifier: 4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
Certificate issuer: /CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Certificate serial: 019A4E861BC923CAF058FA6D8154BFFA0AA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
Manifest number: 03A6
Signing time: Tue 04 Nov 2025 11:00:03 +0000
Manifest this update: Tue 04 Nov 2025 11:00:03 +0000
Manifest next update: Wed 05 Nov 2025 11:00:03 +0000
Files and hashes: 1: TvMzZvDPXk-oBO730eKSlO6lFIw.crl (hash: PdgJqIKLST6jiUOeur3U5cduB2YzMs/FS1hPYtS5spg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:1b:c9:23:ca:f0:58:fa:6d:81:54:bf:fa:0a:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Validity
Not Before: Nov 4 11:00:03 2025 GMT
Not After : Nov 5 11:00:03 2025 GMT
Subject: CN=a937ea7e8ed7d7c66550b950fa64846f425146ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e2:08:05:69:f5:07:6c:72:e9:49:bd:0a:06:
14:36:bc:3f:bc:41:3e:14:a2:04:a1:ca:3a:eb:3d:
48:92:e9:ed:b4:ad:66:ac:30:f8:e7:63:97:94:78:
53:a6:39:dd:ba:6d:28:01:28:d6:d0:68:e5:40:c3:
86:10:c5:3d:41:ec:22:82:28:1d:6a:3a:f6:f3:80:
0d:4e:26:14:15:65:69:aa:38:19:96:40:ad:8c:c5:
b7:7b:d3:d3:62:12:b5:1e:95:f3:a7:d9:ac:57:ba:
3e:2b:f5:f4:d6:b8:47:93:d3:0b:00:75:85:28:21:
60:47:4d:e6:5a:d2:2a:9f:f8:aa:f6:02:12:c4:99:
9a:2b:9f:39:ae:4c:c0:ef:3e:66:0d:ed:5c:ec:4e:
af:56:c9:af:2f:e3:7b:86:10:63:37:0b:6c:e8:44:
21:09:af:13:f5:79:67:89:d8:05:d5:de:0c:f6:1a:
2b:19:0a:e0:03:fb:be:b0:89:22:b0:f1:de:1e:ae:
ba:42:24:ef:c5:a2:e8:f4:5a:e5:44:57:e6:0e:fa:
70:66:e2:41:3a:00:4a:0a:60:23:e3:8b:f2:25:3d:
47:36:9e:da:14:b0:aa:20:90:61:ed:44:2a:d4:34:
64:04:c2:79:36:ad:fc:1b:3a:76:21:60:c2:df:74:
2b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:37:EA:7E:8E:D7:D7:C6:65:50:B9:50:FA:64:84:6F:42:51:46:EF
X509v3 Authority Key Identifier:
keyid:4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:02:fb:37:af:0c:5a:33:64:ea:39:4d:11:f4:b9:9b:62:4a:
ff:07:b2:59:8d:36:16:06:88:de:32:3d:47:54:f5:ba:38:df:
6c:2e:83:91:83:ba:6e:43:49:cd:f5:f1:03:0a:c8:7a:1b:3a:
8f:84:66:1b:8f:0a:0c:8b:81:7c:20:f3:a3:67:72:72:6f:3d:
72:4b:3b:a1:24:2c:fd:5c:b3:78:08:68:50:ed:83:df:d5:38:
a6:62:4b:a0:3b:9c:9d:85:8e:67:d1:7c:11:46:dd:46:87:f1:
e5:b4:6e:1b:4d:fe:0c:71:79:75:96:d4:85:19:64:3f:dc:d6:
1b:4a:75:df:5b:0d:d4:b5:75:dc:d1:41:29:9c:f4:ee:f1:96:
fd:08:a3:ec:11:4a:41:44:5b:8c:e9:c7:f7:d9:8e:d2:6a:84:
68:34:92:88:47:61:a0:7e:b5:78:2b:30:75:9e:b9:41:31:5c:
25:fc:d4:31:00:a3:a5:16:98:55:f5:61:ac:d5:22:e1:a0:f1:
05:bc:45:74:7f:b4:12:d5:09:f0:d2:5e:32:ba:bf:6a:9f:ea:
eb:41:4d:ee:b1:33:97:1f:99:b6:42:53:70:3c:18:1e:a4:59:
d7:d4:6d:b3:d0:e3:10:c1:c0:2d:98:82:8a:2e:18:18:64:88:
fd:3f:9e:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOhhvJI8rwWPptgVS/+gqiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlZjMzMzY2ZjBjZjVlNGZhODA0ZWVmN2QxZTI5Mjk0ZWVh
NTE0OGMwHhcNMjUxMTA0MTEwMDAzWhcNMjUxMTA1MTEwMDAzWjAzMTEwLwYDVQQD
EyhhOTM3ZWE3ZThlZDdkN2M2NjU1MGI5NTBmYTY0ODQ2ZjQyNTE0NmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOIIBWn1B2xy6Um9CgYUNrw/vEE+
FKIEoco66z1IkunttK1mrDD452OXlHhTpjndum0oASjW0GjlQMOGEMU9Qewigigd
ajr284ANTiYUFWVpqjgZlkCtjMW3e9PTYhK1HpXzp9msV7o+K/X01rhHk9MLAHWF
KCFgR03mWtIqn/iq9gISxJmaK585rkzA7z5mDe1c7E6vVsmvL+N7hhBjNwts6EQh
Ca8T9XlnidgF1d4M9horGQrgA/u+sIkisPHeHq66QiTvxaLo9FrlRFfmDvpwZuJB
OgBKCmAj44vyJT1HNp7aFLCqIJBh7UQq1DRkBMJ5Nq38Gzp2IWDC33QrJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKk36n6O19fGZVC5UPpkhG9CUUbvMB8GA1UdIwQY
MBaAFE7zM2bwz15PqATu99HikpTupRSMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8zODQ0OWMtYWFkOC00MDVhLWI3Zjct
NmQ5ZjM4NGQyYmMzLzEvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8zODQ0OWMtYWFkOC00MDVhLWI3ZjctNmQ5ZjM4NGQyYmMz
LzEvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbwL7N68M
WjNk6jlNEfS5m2JK/weyWY02FgaI3jI9R1T1ujjfbC6DkYO6bkNJzfXxAwrIehs6
j4RmG48KDIuBfCDzo2dycm89cks7oSQs/VyzeAhoUO2D39U4pmJLoDucnYWOZ9F8
EUbdRofx5bRuG03+DHF5dZbUhRlkP9zWG0p131sN1LV13NFBKZz07vGW/Qij7BFK
QURbjOnH99mO0mqEaDSSiEdhoH61eCswdZ65QTFcJfzUMQCjpRaYVfVhrNUi4aDx
BbxFdH+0EtUJ8NJeMrq/ap/q60FN7rEzlx+ZtkJTcDwYHqRZ19Rts9DjEMHALZiC
ii4YGGSI/T+eaw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:04:59 2025 by rpki-client