Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.mft
File: U-r4Oizdyf0L4onM-vMrMjMEz04.mft (raw, json)
Hash identifier: axwwN4K2bOs+Qm0fhS2CM8xn+X0o1xD/Riw/qP9AawE=
Subject key identifier: 3F:68:E7:15:76:6B:BA:D6:78:56:D3:B9:1C:BE:6C:B6:6E:10:8B:24
Authority key identifier: 53:EA:F8:3A:2C:DD:C9:FD:0B:E2:89:CC:FA:F3:2B:32:33:04:CF:4E
Certificate issuer: /CN=53eaf83a2cddc9fd0be289ccfaf32b323304cf4e
Certificate serial: 019A55648EBD099EEA7F81FF22CF5CB3B26C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-r4Oizdyf0L4onM-vMrMjMEz04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.mft
Manifest number: 0DDE
Signing time: Wed 05 Nov 2025 19:00:44 +0000
Manifest this update: Wed 05 Nov 2025 19:00:44 +0000
Manifest next update: Thu 06 Nov 2025 19:00:44 +0000
Files and hashes: 1: U-r4Oizdyf0L4onM-vMrMjMEz04.crl (hash: y62Jeon19z+tL53/mgODQJMLqpf5lJCoNuppsFFy12o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-r4Oizdyf0L4onM-vMrMjMEz04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:55:64:8e:bd:09:9e:ea:7f:81:ff:22:cf:5c:b3:b2:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53eaf83a2cddc9fd0be289ccfaf32b323304cf4e
Validity
Not Before: Nov 5 19:00:44 2025 GMT
Not After : Nov 6 19:00:44 2025 GMT
Subject: CN=3f68e715766bbad67856d3b91cbe6cb66e108b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:17:c0:4a:0c:c1:c0:ae:4e:17:d3:11:26:16:
3a:a9:19:72:c8:9a:ab:7e:33:bd:af:82:9d:28:9a:
ce:1f:33:f7:ac:86:4e:84:de:36:a4:2e:94:7f:37:
b4:69:aa:bd:28:a5:3c:8a:02:18:9a:68:9b:73:e9:
ab:d9:e7:be:99:d8:2a:28:de:96:2f:3d:5e:61:87:
2d:ab:5b:5c:ed:51:00:12:c0:75:0d:f8:12:db:07:
ab:0e:3a:49:ab:29:ab:a1:e5:74:0a:d9:fd:44:7f:
7c:d9:7e:c2:d2:5f:8e:f2:ea:80:5b:8f:c8:8b:2f:
32:26:1a:0b:e9:d6:e7:e5:40:f3:e3:dd:da:22:49:
0e:3c:e0:1e:1e:b1:ba:71:27:45:7b:74:85:ef:12:
19:a6:55:b4:0c:4f:e8:d8:1e:de:c3:92:7b:5a:d7:
37:16:50:7b:4a:bd:a3:b9:11:df:23:b8:10:b6:1c:
a9:dd:95:19:e3:85:75:2c:c0:46:54:cf:17:3f:7e:
25:a5:f5:ee:e1:98:b9:82:a2:9f:92:2c:f0:92:d9:
41:fc:99:4a:20:bb:f2:19:0d:9e:1a:3f:a9:b0:b0:
db:2d:4c:bd:4c:07:10:33:28:3a:e1:d6:f3:64:f2:
69:e7:67:5e:6c:6f:a2:cf:13:fd:60:71:57:c6:58:
08:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:68:E7:15:76:6B:BA:D6:78:56:D3:B9:1C:BE:6C:B6:6E:10:8B:24
X509v3 Authority Key Identifier:
keyid:53:EA:F8:3A:2C:DD:C9:FD:0B:E2:89:CC:FA:F3:2B:32:33:04:CF:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-r4Oizdyf0L4onM-vMrMjMEz04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:46:e3:27:9a:3e:f6:7b:e6:b4:3b:04:96:40:ef:dd:90:95:
da:35:3b:b0:09:34:6b:29:cb:15:c9:4c:32:12:86:15:e5:8e:
48:c5:e5:36:07:b5:de:51:66:f6:2c:c4:aa:a6:78:78:d8:39:
81:0e:73:88:7d:b9:aa:14:33:54:27:93:f3:03:bf:b9:10:7f:
e3:e4:3b:1b:7c:45:4f:e6:76:57:e5:01:77:8d:91:b7:c9:09:
3e:e1:04:d2:ad:88:79:a8:a0:fe:d4:b4:4e:2f:0a:13:6d:44:
17:da:9e:ae:f6:84:34:8b:7d:3d:bd:d8:c5:4c:34:42:c5:56:
3d:39:1f:d5:9b:95:fb:c6:12:5c:29:41:c4:33:2a:13:9a:30:
4f:70:36:97:0e:14:25:ad:86:cc:8c:a9:40:cc:e0:c2:32:57:
05:a3:ed:4c:90:1d:d9:c4:26:da:f9:6e:f9:c4:d3:d9:b3:56:
e5:3e:ce:52:b8:98:b8:1e:ad:1b:a9:ec:05:20:46:01:d9:5a:
c5:0d:c4:51:b2:a8:d2:74:27:82:63:c5:80:68:eb:8a:5f:56:
63:40:59:3d:28:63:a1:36:29:41:36:0e:c9:9c:e4:af:68:b3:
44:e7:47:73:b7:79:73:ec:66:d5:ea:c1:94:bc:9d:2c:10:d6:
d2:71:b5:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpVZI69CZ7qf4H/Is9cs7JsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzZWFmODNhMmNkZGM5ZmQwYmUyODljY2ZhZjMyYjMyMzMw
NGNmNGUwHhcNMjUxMTA1MTkwMDQ0WhcNMjUxMTA2MTkwMDQ0WjAzMTEwLwYDVQQD
EygzZjY4ZTcxNTc2NmJiYWQ2Nzg1NmQzYjkxY2JlNmNiNjZlMTA4YjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAohfASgzBwK5OF9MRJhY6qRlyyJqr
fjO9r4KdKJrOHzP3rIZOhN42pC6Ufze0aaq9KKU8igIYmmibc+mr2ee+mdgqKN6W
Lz1eYYctq1tc7VEAEsB1DfgS2werDjpJqymroeV0Ctn9RH982X7C0l+O8uqAW4/I
iy8yJhoL6dbn5UDz493aIkkOPOAeHrG6cSdFe3SF7xIZplW0DE/o2B7ew5J7Wtc3
FlB7Sr2juRHfI7gQthyp3ZUZ44V1LMBGVM8XP34lpfXu4Zi5gqKfkizwktlB/JlK
ILvyGQ2eGj+psLDbLUy9TAcQMyg64dbzZPJp52debG+izxP9YHFXxlgI8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD9o5xV2a7rWeFbTuRy+bLZuEIskMB8GA1UdIwQY
MBaAFFPq+Dos3cn9C+KJzPrzKzIzBM9OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVS1yNE9pemR5ZjBMNG9uTS12TXJNak1FejA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy8yYzMwMzgtOWM0NS00M2U4LWI2OWYt
Yjg0Y2ZmMTg4ZjU1LzEvVS1yNE9pemR5ZjBMNG9uTS12TXJNak1FejA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy8yYzMwMzgtOWM0NS00M2U4LWI2OWYtYjg0Y2ZmMTg4ZjU1
LzEvVS1yNE9pemR5ZjBMNG9uTS12TXJNak1FejA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAkbjJ5o+
9nvmtDsElkDv3ZCV2jU7sAk0aynLFclMMhKGFeWOSMXlNge13lFm9izEqqZ4eNg5
gQ5ziH25qhQzVCeT8wO/uRB/4+Q7G3xFT+Z2V+UBd42Rt8kJPuEE0q2Ieaig/tS0
Ti8KE21EF9qervaENIt9Pb3YxUw0QsVWPTkf1ZuV+8YSXClBxDMqE5owT3A2lw4U
Ja2GzIypQMzgwjJXBaPtTJAd2cQm2vlu+cTT2bNW5T7OUriYuB6tG6nsBSBGAdla
xQ3EUbKo0nQngmPFgGjril9WY0BZPShjoTYpQTYOyZzkr2izROdHc7d5c+xm1erB
lLydLBDW0nG1cw==
-----END CERTIFICATE-----
Generated at Wed Nov 5 20:45:37 2025 by rpki-client