Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
File: t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft (raw, json)
Hash identifier: g5wXWSY/TORw2+fvhZPBue7V+ua+YZase1bUopFHN9w=
Subject key identifier: 12:B2:4B:40:59:12:DF:AE:81:FC:CD:06:64:02:83:B5:27:EE:DE:3B
Authority key identifier: B7:9D:E9:45:8D:19:0E:63:43:29:F9:DF:15:03:B5:22:2C:16:24:EE
Certificate issuer: /CN=b79de9458d190e634329f9df1503b5222c1624ee
Certificate serial: 019A4EF58CA289F6105BB970F69020DD2FEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
Manifest number: 091D
Signing time: Tue 04 Nov 2025 13:01:46 +0000
Manifest this update: Tue 04 Nov 2025 13:01:46 +0000
Manifest next update: Wed 05 Nov 2025 13:01:46 +0000
Files and hashes: 1: 33E6U-90LI21C0lkTnzQ6VfaiXI.roa (hash: t0pnwqLcy2OtfvtukL13J3l3uzKc9VJEEKWY4aTDjS8=)
2: KTNKEz9B68iNvMGQpqql8Umd6Rg.roa (hash: 4c3WZli6HrqpP5XT4I7aYzD+h8A8/oNoRJSDq9oByhk=)
3: t53pRY0ZDmNDKfnfFQO1IiwWJO4.crl (hash: qV8RiiUUYFbL6mZTVfn4PLKsW+30DdJ/mMwn0kLEu8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:8c:a2:89:f6:10:5b:b9:70:f6:90:20:dd:2f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b79de9458d190e634329f9df1503b5222c1624ee
Validity
Not Before: Nov 4 13:01:46 2025 GMT
Not After : Nov 5 13:01:46 2025 GMT
Subject: CN=12b24b405912dfae81fccd06640283b527eede3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:94:2d:c8:0c:8e:ed:93:76:66:0b:27:f3:5a:
7d:2c:e5:b2:78:1f:a3:dc:84:12:c9:50:88:c8:05:
96:9c:08:45:e2:ea:b9:5d:c6:28:bf:d3:2a:ac:13:
96:6f:4d:96:cc:26:de:74:39:e9:21:53:4e:20:be:
85:a4:99:f2:b0:c9:9b:c6:67:d0:9a:62:14:46:b1:
ab:48:94:1c:53:a4:79:6d:ef:29:f6:b6:36:13:21:
62:a0:39:f4:f9:a3:68:ed:0d:48:33:8a:08:a2:da:
fb:da:1d:d8:17:be:12:2e:17:4e:ab:ca:cf:50:4f:
d8:e3:2e:0b:c4:c1:c5:2b:d0:45:e2:28:64:58:c4:
37:fe:5b:05:22:83:df:0a:26:f8:63:1f:42:2b:ed:
cd:28:12:02:01:9c:85:1f:28:5f:c1:ea:dc:9c:0c:
64:a7:39:df:3e:33:4a:0d:a5:d7:c1:f9:41:bd:21:
03:34:95:74:d0:9f:6e:a9:64:0c:17:0b:0d:5f:e7:
6d:42:f8:1e:55:68:4b:82:37:95:4a:59:24:58:9b:
8f:63:40:ea:ac:97:ad:c8:eb:ca:a3:9d:da:9f:4a:
0f:df:d6:e2:ed:3c:ef:a0:b1:fa:b5:7a:00:c7:e4:
26:ce:93:41:06:f9:07:7e:54:13:f3:5f:f4:1a:8e:
bb:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:B2:4B:40:59:12:DF:AE:81:FC:CD:06:64:02:83:B5:27:EE:DE:3B
X509v3 Authority Key Identifier:
keyid:B7:9D:E9:45:8D:19:0E:63:43:29:F9:DF:15:03:B5:22:2C:16:24:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:b7:4e:1e:62:cc:08:44:a3:9c:75:09:f7:37:0d:0c:4b:c8:
11:23:96:52:24:9a:43:b9:5f:d9:7a:39:39:f7:f2:4d:dc:bc:
87:b7:bd:61:f4:35:bc:67:e7:c7:45:91:6a:a6:34:0f:7e:61:
cb:0c:d0:66:2c:46:05:19:1c:61:99:b4:e6:c1:0e:82:59:36:
0e:9f:37:5d:3a:a3:65:8f:b5:a1:e3:39:4e:7c:e2:bb:fe:73:
c5:e9:81:35:71:37:70:70:65:aa:a2:59:48:74:ae:cb:19:f0:
42:91:dd:8a:85:13:9d:30:53:e2:a0:ae:f0:ef:ae:f4:09:fd:
b6:eb:61:47:80:3c:67:30:be:3d:7f:3f:ee:f7:83:d6:07:20:
47:74:d9:02:2b:3c:bc:2a:4e:f3:de:8d:15:9e:dc:dd:7a:18:
2d:dd:62:48:05:cb:c7:cd:2c:b9:79:a9:a6:a3:19:25:ca:6c:
86:09:f8:19:3c:4b:f0:68:a0:9d:dc:69:d5:62:9c:f4:52:aa:
a0:69:ee:61:74:cb:5e:bb:fe:e4:7f:c2:47:76:1e:5e:94:39:
5e:81:a6:b6:0c:5b:f0:f6:0a:ab:4e:44:7d:dd:03:d1:8e:af:
8c:b2:d1:18:69:8f:7f:cd:ce:41:96:77:93:7a:cb:0c:76:08:
40:11:f1:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9YyiifYQW7lw9pAg3S/sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3OWRlOTQ1OGQxOTBlNjM0MzI5ZjlkZjE1MDNiNTIyMmMx
NjI0ZWUwHhcNMjUxMTA0MTMwMTQ2WhcNMjUxMTA1MTMwMTQ2WjAzMTEwLwYDVQQD
EygxMmIyNGI0MDU5MTJkZmFlODFmY2NkMDY2NDAyODNiNTI3ZWVkZTNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZQtyAyO7ZN2Zgsn81p9LOWyeB+j
3IQSyVCIyAWWnAhF4uq5XcYov9MqrBOWb02WzCbedDnpIVNOIL6FpJnysMmbxmfQ
mmIURrGrSJQcU6R5be8p9rY2EyFioDn0+aNo7Q1IM4oIotr72h3YF74SLhdOq8rP
UE/Y4y4LxMHFK9BF4ihkWMQ3/lsFIoPfCib4Yx9CK+3NKBICAZyFHyhfwercnAxk
pznfPjNKDaXXwflBvSEDNJV00J9uqWQMFwsNX+dtQvgeVWhLgjeVSlkkWJuPY0Dq
rJetyOvKo53an0oP39bi7TzvoLH6tXoAx+QmzpNBBvkHflQT81/0Go67owIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBKyS0BZEt+ugfzNBmQCg7Un7t47MB8GA1UdIwQY
MBaAFLed6UWNGQ5jQyn53xUDtSIsFiTuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDUzcFJZMFpEbU5ES2ZuZkZRTzFJaXdXSk80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8zYmU4OTktYTUyZi00M2FkLThlODkt
ZjFjZDlmYTI4Y2M1LzEvdDUzcFJZMFpEbU5ES2ZuZkZRTzFJaXdXSk80Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS8zYmU4OTktYTUyZi00M2FkLThlODktZjFjZDlmYTI4Y2M1
LzEvdDUzcFJZMFpEbU5ES2ZuZkZRTzFJaXdXSk80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh7dOHmLM
CESjnHUJ9zcNDEvIESOWUiSaQ7lf2Xo5OffyTdy8h7e9YfQ1vGfnx0WRaqY0D35h
ywzQZixGBRkcYZm05sEOglk2Dp83XTqjZY+1oeM5Tnziu/5zxemBNXE3cHBlqqJZ
SHSuyxnwQpHdioUTnTBT4qCu8O+u9An9tuthR4A8ZzC+PX8/7veD1gcgR3TZAis8
vCpO896NFZ7c3XoYLd1iSAXLx80suXmppqMZJcpshgn4GTxL8Gigndxp1WKc9FKq
oGnuYXTLXrv+5H/CR3YeXpQ5XoGmtgxb8PYKq05Efd0D0Y6vjLLRGGmPf83OQZZ3
k3rLDHYIQBHx2Q==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:17:20 2025 by rpki-client