Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
File: diI4ozxVDMXfAkTz_G49vZHkw54.mft (raw, json)
Hash identifier: kyPqpX1HRhxP/WHIriwSZrDMf1jJIxN9KzE7m2sMthw=
Subject key identifier: 1D:25:08:A1:51:C6:83:3D:78:DF:3F:54:87:3A:A4:0B:5B:8C:53:64
Authority key identifier: 76:22:38:A3:3C:55:0C:C5:DF:02:44:F3:FC:6E:3D:BD:91:E4:C3:9E
Certificate issuer: /CN=762238a33c550cc5df0244f3fc6e3dbd91e4c39e
Certificate serial: 019A4DE1F6A80500C24524948908D3972FCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
Manifest number: 0B77
Signing time: Tue 04 Nov 2025 08:00:45 +0000
Manifest this update: Tue 04 Nov 2025 08:00:45 +0000
Manifest next update: Wed 05 Nov 2025 08:00:45 +0000
Files and hashes: 1: diI4ozxVDMXfAkTz_G49vZHkw54.crl (hash: IlJX1Q2mxp7ffmpr6puHWIyaUYTwzdf3P6wG+J0pdqE=)
2: wJoEv1cTcMs89DVqbv88rXmkjBs.roa (hash: dwNiZrwk++xFBCbnEtCywNysmHqCMLzFmgUxU3OD8L4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:f6:a8:05:00:c2:45:24:94:89:08:d3:97:2f:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=762238a33c550cc5df0244f3fc6e3dbd91e4c39e
Validity
Not Before: Nov 4 08:00:45 2025 GMT
Not After : Nov 5 08:00:45 2025 GMT
Subject: CN=1d2508a151c6833d78df3f54873aa40b5b8c5364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3f:ab:62:f5:6d:b4:fc:a8:c5:ac:00:76:ea:
7a:86:06:da:bd:99:4f:00:22:6d:be:0f:66:bd:14:
45:89:b2:e5:e5:e5:37:9f:36:9c:a3:a4:90:c9:83:
9f:ad:6d:2a:88:8c:6d:d8:86:fb:a1:eb:33:d1:94:
0f:52:89:2b:f7:41:96:0d:15:16:7d:a1:05:3c:de:
1c:6e:a0:19:19:19:53:0a:81:a0:b4:92:10:0e:54:
df:3f:7d:27:97:af:ea:69:e4:35:e6:fa:52:aa:f1:
a8:12:0a:85:ee:d4:a0:28:80:58:25:d1:c7:7d:68:
ab:df:84:9f:fb:5d:94:a0:8c:4f:61:c7:57:5a:a1:
2f:69:b6:68:70:29:5e:f7:22:eb:36:98:58:7c:20:
a8:7b:b2:a7:c3:2e:67:73:3a:96:f2:e9:4c:49:c3:
b5:a4:cc:fe:81:6e:28:4a:05:8a:b4:0c:de:b7:e3:
56:c8:50:91:7b:84:7d:14:e9:96:1a:e8:5d:59:cc:
f2:fc:69:e3:53:cd:44:b0:d0:ce:2c:e6:19:d9:bb:
f9:b3:a0:58:0a:c3:ec:03:7c:e6:6c:42:b4:5c:fb:
c0:6d:e6:46:e5:b0:1c:55:d6:98:94:06:bc:12:94:
02:6d:f7:3d:6a:35:0d:b9:e1:19:c7:6f:15:38:2d:
23:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:25:08:A1:51:C6:83:3D:78:DF:3F:54:87:3A:A4:0B:5B:8C:53:64
X509v3 Authority Key Identifier:
keyid:76:22:38:A3:3C:55:0C:C5:DF:02:44:F3:FC:6E:3D:BD:91:E4:C3:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:f8:c6:36:7c:60:df:d8:69:c9:8a:a1:37:10:01:61:39:56:
91:0e:80:68:dc:e1:6c:66:db:67:de:2e:55:13:aa:8e:37:b6:
03:bb:13:bf:93:24:2c:c2:25:2b:ec:94:d6:7a:f3:a9:45:95:
8a:69:b9:d3:2e:23:03:e4:f5:eb:84:23:86:be:f9:df:b8:72:
55:81:d3:7f:c1:22:d3:38:8a:70:60:03:4b:03:34:97:08:ca:
3c:af:9b:29:12:e2:95:39:f2:87:75:b5:d4:65:93:20:66:ed:
33:21:a7:d5:ad:5e:91:4a:e4:29:f9:a1:41:ec:49:fd:82:bf:
12:e4:00:58:01:75:2c:3a:de:67:2f:d4:06:62:52:26:e9:62:
ef:e9:4c:cf:36:10:42:88:1b:df:82:cc:c1:76:01:a6:c8:9d:
1b:a0:39:6a:0e:35:13:d7:4b:69:ad:0a:05:91:e8:93:e1:4e:
05:47:17:61:b1:fc:53:c4:86:ce:8b:c1:63:92:3f:b6:3b:95:
3c:7f:63:43:98:c8:ba:91:56:7a:95:02:99:da:9e:62:b8:d9:
b8:13:73:7c:c4:7c:e7:f2:98:b0:a2:e0:6d:0d:ed:6e:14:8d:
6f:f0:1e:0e:8a:22:db:89:05:64:89:62:c8:86:9b:65:f5:be:
2e:4d:53:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpN4faoBQDCRSSUiQjTly/MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2MjIzOGEzM2M1NTBjYzVkZjAyNDRmM2ZjNmUzZGJkOTFl
NGMzOWUwHhcNMjUxMTA0MDgwMDQ1WhcNMjUxMTA1MDgwMDQ1WjAzMTEwLwYDVQQD
EygxZDI1MDhhMTUxYzY4MzNkNzhkZjNmNTQ4NzNhYTQwYjViOGM1MzY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoj+rYvVttPyoxawAdup6hgbavZlP
ACJtvg9mvRRFibLl5eU3nzaco6SQyYOfrW0qiIxt2Ib7oesz0ZQPUokr90GWDRUW
faEFPN4cbqAZGRlTCoGgtJIQDlTfP30nl6/qaeQ15vpSqvGoEgqF7tSgKIBYJdHH
fWir34Sf+12UoIxPYcdXWqEvabZocCle9yLrNphYfCCoe7Knwy5nczqW8ulMScO1
pMz+gW4oSgWKtAzet+NWyFCRe4R9FOmWGuhdWczy/GnjU81EsNDOLOYZ2bv5s6BY
CsPsA3zmbEK0XPvAbeZG5bAcVdaYlAa8EpQCbfc9ajUNueEZx28VOC0jDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB0lCKFRxoM9eN8/VIc6pAtbjFNkMB8GA1UdIwQY
MBaAFHYiOKM8VQzF3wJE8/xuPb2R5MOeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGlJNG96eFZETVhmQWtUel9HNDl2WkhrdzU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS81ZTMyNDktYmViZi00MDcwLTlmY2Qt
MWIxZmM3OWQwNTUxLzEvZGlJNG96eFZETVhmQWtUel9HNDl2WkhrdzU0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS81ZTMyNDktYmViZi00MDcwLTlmY2QtMWIxZmM3OWQwNTUx
LzEvZGlJNG96eFZETVhmQWtUel9HNDl2WkhrdzU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPPjGNnxg
39hpyYqhNxABYTlWkQ6AaNzhbGbbZ94uVROqjje2A7sTv5MkLMIlK+yU1nrzqUWV
imm50y4jA+T164Qjhr7537hyVYHTf8Ei0ziKcGADSwM0lwjKPK+bKRLilTnyh3W1
1GWTIGbtMyGn1a1ekUrkKfmhQexJ/YK/EuQAWAF1LDreZy/UBmJSJuli7+lMzzYQ
Qogb34LMwXYBpsidG6A5ag41E9dLaa0KBZHok+FOBUcXYbH8U8SGzovBY5I/tjuV
PH9jQ5jIupFWepUCmdqeYrjZuBNzfMR85/KYsKLgbQ3tbhSNb/AeDooi24kFZIli
yIabZfW+Lk1T/w==
-----END CERTIFICATE-----
Generated at Tue Nov 4 15:01:46 2025 by rpki-client