Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json)
Hash identifier: 7489TW0Z4k7f5Slde9IOdQFNCLIuckkl/MUxgMq9NV8=
Subject key identifier: DA:69:84:A5:AC:BB:3B:1A:D4:9D:5F:83:3C:C6:46:F5:85:74:CC:71
Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Certificate serial: 019A4DE205C3966ACC0BAF90C1CE235793D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
Manifest number: 0994
Signing time: Tue 04 Nov 2025 08:00:49 +0000
Manifest this update: Tue 04 Nov 2025 08:00:49 +0000
Manifest next update: Wed 05 Nov 2025 08:00:49 +0000
Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: Z2UcoVwXDToFWPDklIgrUAYG8xJnZh2Jh2VaH5aalzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e2:05:c3:96:6a:cc:0b:af:90:c1:ce:23:57:93:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Validity
Not Before: Nov 4 08:00:49 2025 GMT
Not After : Nov 5 08:00:49 2025 GMT
Subject: CN=da6984a5acbb3b1ad49d5f833cc646f58574cc71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bf:a1:08:64:bd:24:30:a2:34:01:be:41:b8:
2d:37:b0:92:b1:c5:f7:cc:87:c8:81:87:fb:e7:6a:
61:da:11:95:46:2a:fd:5a:7b:cc:82:87:32:a3:59:
27:ea:89:6c:da:e5:2b:f8:d6:b1:fb:df:d3:1b:c1:
f6:00:de:78:14:a6:90:15:68:65:c2:a1:59:8f:57:
09:5b:30:b1:6e:80:c2:8b:4f:fa:ba:e0:0e:6e:ee:
fe:3b:85:56:30:dd:d4:d7:0f:3c:ff:24:22:cd:5f:
a0:e5:d4:74:f0:53:20:2f:c2:51:6c:e3:21:37:8d:
10:5d:b8:5f:24:7b:21:3e:24:c1:63:3a:9e:04:90:
56:69:92:05:e2:85:8f:55:ed:17:8b:01:4c:4d:70:
7d:7e:73:36:8e:15:df:49:38:e1:1e:df:85:12:a8:
87:43:90:eb:9b:df:8b:28:3a:8d:19:4c:28:79:00:
eb:09:cb:de:ef:36:1a:b6:dc:01:03:91:7f:7f:c6:
96:9d:8e:ee:53:b2:63:d2:ec:0d:2f:cc:5a:dc:8d:
d6:33:a2:9a:19:12:bd:fd:bf:cd:ce:14:1b:0b:fe:
ed:1b:61:66:a7:5b:6e:53:a3:1d:5c:a9:b7:76:4d:
18:39:da:c9:29:60:81:07:43:49:91:28:f4:1e:39:
92:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:69:84:A5:AC:BB:3B:1A:D4:9D:5F:83:3C:C6:46:F5:85:74:CC:71
X509v3 Authority Key Identifier:
keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:e0:30:6f:36:56:2a:75:24:da:0b:ee:2f:d2:f0:ab:3b:72:
ab:7e:20:35:1c:5a:6e:64:e8:0b:8e:ae:86:e1:47:8b:bf:e7:
1e:e0:f8:c2:23:90:38:5c:b2:3d:94:90:53:93:83:4a:b4:21:
d6:a5:8c:70:0a:94:12:cd:8c:4d:9f:b8:1a:65:aa:f4:9c:3e:
fc:6f:ae:bd:3e:c4:69:c5:30:6c:68:61:9e:dc:c0:5a:ac:98:
0f:f9:99:4b:08:a7:5f:e6:4e:1a:cb:53:54:c9:32:f5:4e:29:
59:12:ae:50:fb:a1:06:6f:f5:20:89:a7:54:fa:cc:5f:aa:66:
e4:87:cc:44:53:87:99:54:2a:ec:40:ba:34:ad:41:31:89:ce:
a3:b1:ff:23:fa:cd:35:6e:50:c9:dd:c6:f6:b1:15:c9:e3:a2:
f5:51:b5:9c:dd:65:6a:d5:d7:a5:8c:6f:96:43:36:44:ce:a4:
d0:f1:2f:99:86:c2:d7:c5:31:9e:52:8f:ff:23:e4:b2:94:84:
0a:0f:f8:8e:9f:cd:98:5c:3e:b2:3f:61:06:60:a5:29:34:3a:
f0:fb:a0:00:dd:5e:4e:05:a1:48:6e:73:27:48:fa:7e:78:7c:
02:ac:fe:4a:57:b9:d3:4d:d9:81:27:50:e3:97:f6:de:e8:b6:
5b:b5:71:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpN4gXDlmrMC6+Qwc4jV5PYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0Zjg2YTlhM2M0MjljMWJjMjZlYzA2YTNhZTRlNDE3Y2E3
NGRmZGUwHhcNMjUxMTA0MDgwMDQ5WhcNMjUxMTA1MDgwMDQ5WjAzMTEwLwYDVQQD
EyhkYTY5ODRhNWFjYmIzYjFhZDQ5ZDVmODMzY2M2NDZmNTg1NzRjYzcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7+hCGS9JDCiNAG+QbgtN7CSscX3
zIfIgYf752ph2hGVRir9WnvMgocyo1kn6ols2uUr+Nax+9/TG8H2AN54FKaQFWhl
wqFZj1cJWzCxboDCi0/6uuAObu7+O4VWMN3U1w88/yQizV+g5dR08FMgL8JRbOMh
N40QXbhfJHshPiTBYzqeBJBWaZIF4oWPVe0XiwFMTXB9fnM2jhXfSTjhHt+FEqiH
Q5Drm9+LKDqNGUwoeQDrCcve7zYattwBA5F/f8aWnY7uU7Jj0uwNL8xa3I3WM6Ka
GRK9/b/NzhQbC/7tG2Fmp1tuU6MdXKm3dk0YOdrJKWCBB0NJkSj0HjmSMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNpphKWsuzsa1J1fgzzGRvWFdMxxMB8GA1UdIwQY
MBaAFNT4apo8Qpwbwm7Aajrk5BfKdN/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVBocW1qeENuQnZDYnNCcU91VGtGOHAwMzk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9hNWU1MzEtMWEwOC00MzM2LWIwZDgt
NDgzMjY1OTk5NGNiLzEvMVBocW1qeENuQnZDYnNCcU91VGtGOHAwMzk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9hNWU1MzEtMWEwOC00MzM2LWIwZDgtNDgzMjY1OTk5NGNi
LzEvMVBocW1qeENuQnZDYnNCcU91VGtGOHAwMzk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApeAwbzZW
KnUk2gvuL9Lwqztyq34gNRxabmToC46uhuFHi7/nHuD4wiOQOFyyPZSQU5ODSrQh
1qWMcAqUEs2MTZ+4GmWq9Jw+/G+uvT7EacUwbGhhntzAWqyYD/mZSwinX+ZOGstT
VMky9U4pWRKuUPuhBm/1IImnVPrMX6pm5IfMRFOHmVQq7EC6NK1BMYnOo7H/I/rN
NW5Qyd3G9rEVyeOi9VG1nN1latXXpYxvlkM2RM6k0PEvmYbC18UxnlKP/yPkspSE
Cg/4jp/NmFw+sj9hBmClKTQ68PugAN1eTgWhSG5zJ0j6fnh8Aqz+Sle5003ZgSdQ
45f23ui2W7Vxvg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:55:43 2025 by rpki-client