Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
File: bQ1uHM2JDfL16cFF7LpGiZzOs70.mft (raw, json)
Hash identifier: /Z0h9AuWbs06+0OJ1obxqf6ayPNq4uSmFK/G905xQX8=
Subject key identifier: 48:E7:B0:08:30:DE:1F:F3:52:DB:6F:80:AB:EB:AF:8E:41:12:89:73
Authority key identifier: 6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD
Certificate issuer: /CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd
Certificate serial: 019A4F6230611D92567F6AF1B17F2337F643
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
Manifest number: 139D
Signing time: Tue 04 Nov 2025 15:00:26 +0000
Manifest this update: Tue 04 Nov 2025 15:00:26 +0000
Manifest next update: Wed 05 Nov 2025 15:00:26 +0000
Files and hashes: 1: bQ1uHM2JDfL16cFF7LpGiZzOs70.crl (hash: WnQDT1N1VDV7qrqO3OWpxxm0O6VSo0wl0bY95iC86B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:30:61:1d:92:56:7f:6a:f1:b1:7f:23:37:f6:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd
Validity
Not Before: Nov 4 15:00:26 2025 GMT
Not After : Nov 5 15:00:26 2025 GMT
Subject: CN=48e7b00830de1ff352db6f80abebaf8e41128973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ce:4c:b6:3e:cd:3c:ef:5f:1d:ca:28:9f:b1:
be:4f:11:68:9e:36:84:0b:14:40:20:a4:f2:0d:ae:
19:f0:cd:60:b9:63:99:ea:68:50:44:ec:58:78:90:
02:bd:15:a8:b0:28:2c:3f:21:8a:0a:6c:10:2a:84:
67:3a:bc:53:01:a6:bf:52:ac:1b:38:46:60:51:76:
9f:9d:9d:10:5b:fd:ee:24:08:f2:a1:ce:3e:a5:19:
e8:df:65:4b:69:51:11:b1:bf:5a:45:53:02:db:23:
db:37:c3:3a:a6:0b:e4:31:80:6b:26:b5:4a:bf:cf:
74:3d:34:fe:b3:e7:71:6a:9b:0e:b1:85:d7:c5:35:
f9:fb:3f:e4:98:e7:f0:6a:d4:75:f1:24:43:28:11:
84:3f:34:1d:cd:39:f6:bf:6c:fd:1a:cf:2d:a1:db:
50:d8:78:41:2f:54:2c:df:b1:a6:ed:02:c9:5c:53:
59:d8:2b:7a:10:33:c5:b9:96:dd:a7:28:f1:fd:86:
cb:2c:71:9a:60:18:ae:2c:fa:5f:b4:50:63:f7:30:
d2:d7:59:8c:ff:e4:8e:5e:d8:20:25:14:31:1b:7d:
81:db:d4:72:c7:b4:48:ed:75:34:cf:f9:69:9b:02:
79:ed:d4:2b:f3:d9:8b:60:f8:60:b0:7d:9f:0d:f4:
2f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E7:B0:08:30:DE:1F:F3:52:DB:6F:80:AB:EB:AF:8E:41:12:89:73
X509v3 Authority Key Identifier:
keyid:6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:15:8e:a0:86:4e:c2:9a:68:6f:95:c5:ce:c4:b4:e7:a0:c4:
1f:88:56:cb:cb:e3:4e:0c:ec:7b:ae:da:8e:46:93:30:f4:5e:
50:02:56:eb:22:31:d9:e9:98:ce:c7:a9:d8:40:a8:70:4d:bb:
ba:1e:c9:99:a0:22:a7:a5:73:e6:c5:a7:9a:cd:ba:8a:e7:bf:
a9:7a:7e:e5:14:00:7a:0d:b6:ad:5b:12:bd:fe:5a:7e:59:d0:
e8:ad:e9:53:07:91:65:be:6e:2f:23:b2:57:e3:4b:11:82:b3:
31:c0:27:fd:02:85:d0:99:90:05:49:11:45:a7:e9:35:b0:40:
3b:ee:7a:3c:62:aa:a6:e7:54:49:3b:c7:40:d9:d1:96:f0:18:
84:e5:cb:77:3b:58:02:ef:d8:01:11:15:bb:d3:d8:d0:1e:14:
21:a2:6e:4c:30:c1:24:13:7d:e6:ae:dc:36:82:da:a2:15:59:
fd:e5:be:e2:3b:00:f0:c3:f0:b7:0b:38:32:13:53:e1:98:95:
91:c7:54:f6:81:04:ff:7c:65:34:c9:79:25:0c:08:90:b5:fa:
74:3d:29:40:93:61:9e:1e:d8:dc:cb:09:23:32:84:80:f6:a2:
8a:4d:93:5e:ed:49:25:d7:94:36:9a:24:52:2e:13:08:6a:ee:
35:ae:b3:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPYjBhHZJWf2rxsX8jN/ZDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMGQ2ZTFjY2Q4OTBkZjJmNWU5YzE0NWVjYmE0Njg5OWNj
ZWIzYmQwHhcNMjUxMTA0MTUwMDI2WhcNMjUxMTA1MTUwMDI2WjAzMTEwLwYDVQQD
Eyg0OGU3YjAwODMwZGUxZmYzNTJkYjZmODBhYmViYWY4ZTQxMTI4OTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3s5Mtj7NPO9fHcoon7G+TxFonjaE
CxRAIKTyDa4Z8M1guWOZ6mhQROxYeJACvRWosCgsPyGKCmwQKoRnOrxTAaa/Uqwb
OEZgUXafnZ0QW/3uJAjyoc4+pRno32VLaVERsb9aRVMC2yPbN8M6pgvkMYBrJrVK
v890PTT+s+dxapsOsYXXxTX5+z/kmOfwatR18SRDKBGEPzQdzTn2v2z9Gs8todtQ
2HhBL1Qs37Gm7QLJXFNZ2Ct6EDPFuZbdpyjx/YbLLHGaYBiuLPpftFBj9zDS11mM
/+SOXtggJRQxG32B29Ryx7RI7XU0z/lpmwJ57dQr89mLYPhgsH2fDfQvywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEjnsAgw3h/zUttvgKvrr45BEolzMB8GA1UdIwQY
MBaAFG0NbhzNiQ3y9enBRey6RomczrO9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlExdUhNMkpEZkwxNmNGRjdMcEdpWnpPczcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8yNzcxNTQtZWZiYS00OGVkLWJiMGMt
NjUwYjcwYmFkN2E5LzEvYlExdUhNMkpEZkwxNmNGRjdMcEdpWnpPczcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC8yNzcxNTQtZWZiYS00OGVkLWJiMGMtNjUwYjcwYmFkN2E5
LzEvYlExdUhNMkpEZkwxNmNGRjdMcEdpWnpPczcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAShWOoIZO
wppob5XFzsS056DEH4hWy8vjTgzse67ajkaTMPReUAJW6yIx2emYzsep2ECocE27
uh7JmaAip6Vz5sWnms26iue/qXp+5RQAeg22rVsSvf5aflnQ6K3pUweRZb5uLyOy
V+NLEYKzMcAn/QKF0JmQBUkRRafpNbBAO+56PGKqpudUSTvHQNnRlvAYhOXLdztY
Au/YAREVu9PY0B4UIaJuTDDBJBN95q7cNoLaohVZ/eW+4jsA8MPwtws4MhNT4ZiV
kcdU9oEE/3xlNMl5JQwIkLX6dD0pQJNhnh7Y3MsJIzKEgPaiik2TXu1JJdeUNpok
Ui4TCGruNa6zOw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 17:54:44 2025 by rpki-client