Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
File: to-PMlFKGD6Xejx982Rz1WJgxKQ.mft (raw, json)
Hash identifier: tn382mw4JctTEFnvNyzMGQ5maziSB7zTl/QS4P7KgLY=
Subject key identifier: 2B:25:63:A5:CC:13:0D:62:C0:70:01:5E:AF:B6:08:71:9F:FE:BE:0D
Authority key identifier: B6:8F:8F:32:51:4A:18:3E:97:7A:3C:7D:F3:64:73:D5:62:60:C4:A4
Certificate issuer: /CN=b68f8f32514a183e977a3c7df36473d56260c4a4
Certificate serial: 019A541AC7FEDF5699589BEFB4357C474241
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
Manifest number: 0B71
Signing time: Wed 05 Nov 2025 13:00:32 +0000
Manifest this update: Wed 05 Nov 2025 13:00:32 +0000
Manifest next update: Thu 06 Nov 2025 13:00:32 +0000
Files and hashes: 1: tQOCxRT0aCE_1_qk1kC7RdCFOSc.roa (hash: n1WxYWjnXTsr8gKXroY5cgEaMb8X/+3xuLpCg/Qcbnk=)
2: to-PMlFKGD6Xejx982Rz1WJgxKQ.crl (hash: mOyu3XO3O/5j5qmEZDGbaBCYtpXXrqrMX1FvwVQDfd8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:1a:c7:fe:df:56:99:58:9b:ef:b4:35:7c:47:42:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b68f8f32514a183e977a3c7df36473d56260c4a4
Validity
Not Before: Nov 5 13:00:32 2025 GMT
Not After : Nov 6 13:00:32 2025 GMT
Subject: CN=2b2563a5cc130d62c070015eafb608719ffebe0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:31:a5:e8:28:ec:b2:49:4e:ca:72:8c:77:17:
e9:05:b3:c6:22:3d:06:b9:7b:56:2d:25:d6:d4:80:
04:d1:0a:58:89:a0:12:5a:68:b4:17:31:10:ef:d5:
fd:70:c5:1c:aa:c8:36:20:73:d9:a4:07:ce:fd:b5:
57:9d:31:00:04:53:2c:14:03:47:74:ee:64:54:fd:
e4:47:9f:55:94:85:4d:15:8e:db:24:7c:33:73:3a:
64:67:8a:d1:ce:89:9a:1a:0f:92:99:cc:38:37:7f:
50:a9:19:ec:b1:eb:d8:79:8c:25:e4:fe:f2:f3:5b:
fa:23:6b:b6:db:6d:57:90:e5:37:15:03:41:0d:ee:
36:8e:a8:cf:13:62:f5:81:2f:ea:2b:3f:41:2b:39:
7c:19:45:13:c9:33:80:12:0f:ee:be:c4:8b:9b:7f:
4e:fd:fc:9c:8b:e3:0a:43:96:30:38:08:d7:de:e4:
21:a6:d2:02:37:f4:fc:cc:58:c2:46:69:97:17:99:
77:33:f0:80:a7:f2:6c:bb:2c:3a:0c:1d:e7:6e:23:
37:06:ce:9a:c3:a6:eb:fd:31:ac:85:d5:f0:2d:7f:
d8:8e:52:73:86:63:17:03:05:1b:8e:6d:c8:42:22:
d0:c6:59:6a:fd:8e:12:c0:26:97:01:41:7d:17:3e:
21:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:25:63:A5:CC:13:0D:62:C0:70:01:5E:AF:B6:08:71:9F:FE:BE:0D
X509v3 Authority Key Identifier:
keyid:B6:8F:8F:32:51:4A:18:3E:97:7A:3C:7D:F3:64:73:D5:62:60:C4:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:62:b7:0b:15:63:b3:2b:5a:73:d3:88:b9:7f:15:d3:52:5b:
e4:b8:9b:ac:15:04:e7:6a:42:99:93:a4:eb:a7:46:d4:b0:31:
af:b0:37:61:8c:c4:19:c0:1b:1c:b1:49:29:8e:7b:42:eb:5c:
05:1b:d2:e6:79:35:c7:69:b2:9c:8c:c0:72:a3:46:f0:8c:b2:
02:e1:7c:c5:45:fa:22:36:f9:a4:1d:4b:14:9e:52:ee:72:b2:
7d:ce:b9:e9:35:73:21:bd:0b:49:2a:b3:cd:c1:03:c7:95:1a:
dc:93:2a:72:61:7c:b9:87:78:bd:f3:bd:d5:06:37:45:15:ba:
b1:73:e8:0c:16:04:45:3c:73:cb:be:ab:50:2c:00:fa:11:23:
67:a8:f8:24:8c:c2:b4:c8:2f:9f:f9:e6:da:80:1b:fd:14:43:
90:5e:34:cd:a4:0e:29:e3:f9:41:7c:b1:35:ba:4b:8a:c8:1d:
85:5f:0c:62:4c:16:35:3e:0f:7a:f3:34:cc:93:fb:19:c8:2d:
ee:8e:d5:54:e5:d2:8a:ed:db:87:0f:cb:e1:1f:93:98:e8:f7:
97:7b:f6:d1:97:4f:b7:13:e2:9e:74:0a:21:50:11:ff:66:bd:
fa:3b:fe:8e:18:b1:d7:a1:c1:55:35:e0:7b:8c:fd:47:b0:8b:
64:99:14:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpUGsf+31aZWJvvtDV8R0JBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2OGY4ZjMyNTE0YTE4M2U5NzdhM2M3ZGYzNjQ3M2Q1NjI2
MGM0YTQwHhcNMjUxMTA1MTMwMDMyWhcNMjUxMTA2MTMwMDMyWjAzMTEwLwYDVQQD
EygyYjI1NjNhNWNjMTMwZDYyYzA3MDAxNWVhZmI2MDg3MTlmZmViZTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTGl6CjssklOynKMdxfpBbPGIj0G
uXtWLSXW1IAE0QpYiaASWmi0FzEQ79X9cMUcqsg2IHPZpAfO/bVXnTEABFMsFANH
dO5kVP3kR59VlIVNFY7bJHwzczpkZ4rRzomaGg+Smcw4N39QqRnssevYeYwl5P7y
81v6I2u2221XkOU3FQNBDe42jqjPE2L1gS/qKz9BKzl8GUUTyTOAEg/uvsSLm39O
/fyci+MKQ5YwOAjX3uQhptICN/T8zFjCRmmXF5l3M/CAp/Jsuyw6DB3nbiM3Bs6a
w6br/TGshdXwLX/YjlJzhmMXAwUbjm3IQiLQxllq/Y4SwCaXAUF9Fz4hJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCslY6XMEw1iwHABXq+2CHGf/r4NMB8GA1UdIwQY
MBaAFLaPjzJRShg+l3o8ffNkc9ViYMSkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdG8tUE1sRktHRDZYZWp4OTgyUnoxV0pneEtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8zODg3ZTQtYjU5OC00NWUzLThkODUt
MjIxMGVkOWQwODYxLzEvdG8tUE1sRktHRDZYZWp4OTgyUnoxV0pneEtRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8zODg3ZTQtYjU5OC00NWUzLThkODUtMjIxMGVkOWQwODYx
LzEvdG8tUE1sRktHRDZYZWp4OTgyUnoxV0pneEtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr2K3CxVj
sytac9OIuX8V01Jb5LibrBUE52pCmZOk66dG1LAxr7A3YYzEGcAbHLFJKY57Qutc
BRvS5nk1x2mynIzAcqNG8IyyAuF8xUX6Ijb5pB1LFJ5S7nKyfc656TVzIb0LSSqz
zcEDx5Ua3JMqcmF8uYd4vfO91QY3RRW6sXPoDBYERTxzy76rUCwA+hEjZ6j4JIzC
tMgvn/nm2oAb/RRDkF40zaQOKeP5QXyxNbpLisgdhV8MYkwWNT4PevM0zJP7Gcgt
7o7VVOXSiu3bhw/L4R+TmOj3l3v20ZdPtxPinnQKIVAR/2a9+jv+jhix16HBVTXg
e4z9R7CLZJkUsg==
-----END CERTIFICATE-----
Generated at Wed Nov 5 19:17:30 2025 by rpki-client