Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
File: VFhKIZ9vUGbYSO0quWTaiWbUCio.mft (raw, json)
Hash identifier: L+U6QvXlcuIWOytIixtXhx9QRjYraSsFUvHuS23mtos=
Subject key identifier: 04:92:B8:0F:E5:46:12:F6:43:39:DA:B1:36:E7:03:7A:AC:3A:DD:E9
Authority key identifier: 54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
Certificate issuer: /CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Certificate serial: 019A72CA50F31AC02685B23657CF8C1C4BDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
Manifest number: 1723
Signing time: Tue 11 Nov 2025 12:00:52 +0000
Manifest this update: Tue 11 Nov 2025 12:00:52 +0000
Manifest next update: Wed 12 Nov 2025 12:00:52 +0000
Files and hashes: 1: VFhKIZ9vUGbYSO0quWTaiWbUCio.crl (hash: 9iAawHVg7lIN5B6uq/tCSZzldhTAeZKKIWg2so64dNU=)
2: yO-xzrVzP9w-99d-1MgI3akuEEw.roa (hash: /wfJmKbrJk5HLRMl66b8UyeroQ01b/DROieeTJUHsw8=)
3: ykuZpqMlHSUIWtYa1mPsmyPe9Ho.roa (hash: yZcmu9TrDVEdaIS3LL1L046LUfG1VEvG/7HySIUseIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:50:f3:1a:c0:26:85:b2:36:57:cf:8c:1c:4b:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Validity
Not Before: Nov 11 12:00:52 2025 GMT
Not After : Nov 12 12:00:52 2025 GMT
Subject: CN=0492b80fe54612f64339dab136e7037aac3adde9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ee:29:3c:56:ba:4f:db:5f:ee:de:db:e3:86:
1a:0a:a2:16:96:cd:b7:38:4f:2a:5b:3e:94:cb:51:
3d:be:92:ee:be:a2:7a:68:57:b3:1e:b7:0e:c3:b7:
32:3f:c9:f1:b6:8d:67:34:8a:1a:cd:8f:a5:25:ef:
2a:d4:2b:c5:1c:2f:c7:00:f2:81:0d:7f:bf:c0:09:
9f:5d:73:83:51:91:44:70:9a:5f:88:e5:53:83:fb:
83:5b:d2:eb:57:6b:e7:15:05:ea:02:ec:4f:c0:18:
3d:97:1d:06:c2:5b:d0:3a:83:b7:75:cb:b8:d3:38:
f9:5b:34:fc:f5:d3:7d:b7:a3:8f:cc:cf:90:35:75:
fc:ef:4b:ee:c3:06:bb:f3:ab:ec:6f:af:2e:a8:8b:
64:1e:bd:ef:23:31:16:2b:24:cd:02:9e:d5:f1:3b:
d9:ff:61:09:ca:c9:c6:c0:45:94:46:b3:03:f3:8a:
9e:55:21:40:e0:04:99:5a:03:c2:95:9f:26:84:1e:
fd:47:4e:31:e8:e2:33:40:ba:bc:98:dd:b9:13:1e:
6a:9c:6a:f5:72:01:cc:1a:74:f7:d0:13:11:02:f5:
56:cc:ff:74:74:98:b5:28:4d:05:eb:4e:fa:54:28:
64:4c:a9:59:5c:27:63:7b:42:7c:a4:b1:db:2b:3c:
aa:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:92:B8:0F:E5:46:12:F6:43:39:DA:B1:36:E7:03:7A:AC:3A:DD:E9
X509v3 Authority Key Identifier:
keyid:54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:b4:40:1f:35:c6:48:24:99:36:fd:81:82:d6:c3:15:24:e0:
3a:12:1e:e3:fd:d6:6b:d8:ea:36:fa:d6:1e:c3:b5:eb:eb:d3:
18:af:e5:70:09:13:1f:26:34:de:f0:b1:89:4b:19:3f:31:2e:
d9:06:9f:c7:9a:a6:bb:6d:da:c6:e7:2c:14:02:41:05:fb:0f:
74:9c:65:9b:e8:e0:9c:e0:60:b8:15:3d:33:dc:08:bc:9e:ba:
62:34:1d:4c:cb:78:d8:2b:1b:ea:c2:af:91:92:ae:d1:ca:dd:
a2:7a:3a:41:70:5f:60:64:19:17:81:f7:8b:7d:7f:18:17:7c:
c6:3d:d9:7d:c8:06:c0:28:7a:65:b0:10:8d:62:95:f4:2d:f2:
a5:1e:89:a8:ba:34:ff:6c:f3:3b:c9:2c:3f:d9:68:7f:79:f0:
6f:c1:8c:44:66:59:e2:1b:c2:4a:c2:c8:8a:a4:c7:ee:61:ca:
26:6b:f0:f5:d0:70:27:fd:5c:b3:fb:48:64:bd:3a:5f:80:8d:
9f:84:2d:b0:49:2c:54:40:d9:0c:7f:8b:a3:15:b8:9f:d4:38:
2d:21:6c:da:77:98:c1:a2:89:e7:f2:38:9b:75:65:71:fa:a4:
41:bd:88:eb:6d:69:3e:ba:84:c3:a2:33:80:af:3b:fd:94:19:
4c:5d:04:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyylDzGsAmhbI2V8+MHEvcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0NTg0YTIxOWY2ZjUwNjZkODQ4ZWQyYWI5NjRkYTg5NjZk
NDBhMmEwHhcNMjUxMTExMTIwMDUyWhcNMjUxMTEyMTIwMDUyWjAzMTEwLwYDVQQD
EygwNDkyYjgwZmU1NDYxMmY2NDMzOWRhYjEzNmU3MDM3YWFjM2FkZGU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1e4pPFa6T9tf7t7b44YaCqIWls23
OE8qWz6Uy1E9vpLuvqJ6aFezHrcOw7cyP8nxto1nNIoazY+lJe8q1CvFHC/HAPKB
DX+/wAmfXXODUZFEcJpfiOVTg/uDW9LrV2vnFQXqAuxPwBg9lx0GwlvQOoO3dcu4
0zj5WzT89dN9t6OPzM+QNXX870vuwwa786vsb68uqItkHr3vIzEWKyTNAp7V8TvZ
/2EJysnGwEWURrMD84qeVSFA4ASZWgPClZ8mhB79R04x6OIzQLq8mN25Ex5qnGr1
cgHMGnT30BMRAvVWzP90dJi1KE0F6076VChkTKlZXCdje0J8pLHbKzyq/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFASSuA/lRhL2QznasTbnA3qsOt3pMB8GA1UdIwQY
MBaAFFRYSiGfb1Bm2EjtKrlk2olm1AoqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkZoS0laOXZVR2JZU08wcXVXVGFpV2JVQ2lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9kZDNkZDEtMDliNS00YWEyLWFlYzAt
OWZiMWNlNGQ3MjBiLzEvVkZoS0laOXZVR2JZU08wcXVXVGFpV2JVQ2lvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC9kZDNkZDEtMDliNS00YWEyLWFlYzAtOWZiMWNlNGQ3MjBi
LzEvVkZoS0laOXZVR2JZU08wcXVXVGFpV2JVQ2lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWbRAHzXG
SCSZNv2BgtbDFSTgOhIe4/3Wa9jqNvrWHsO16+vTGK/lcAkTHyY03vCxiUsZPzEu
2Qafx5qmu23axucsFAJBBfsPdJxlm+jgnOBguBU9M9wIvJ66YjQdTMt42Csb6sKv
kZKu0crdono6QXBfYGQZF4H3i31/GBd8xj3ZfcgGwCh6ZbAQjWKV9C3ypR6JqLo0
/2zzO8ksP9lof3nwb8GMRGZZ4hvCSsLIiqTH7mHKJmvw9dBwJ/1cs/tIZL06X4CN
n4QtsEksVEDZDH+LoxW4n9Q4LSFs2neYwaKJ5/I4m3VlcfqkQb2I621pPrqEw6Iz
gK87/ZQZTF0Eow==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:16:46 2025 by rpki-client