Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/20b2c7-9009-45a0-899d-9c40ef69155b/1/SRodzN7JXOWDRq33ARJj1k6TtNE.mft
File: SRodzN7JXOWDRq33ARJj1k6TtNE.mft (raw, json)
Hash identifier: g2TWZw4yDWOhb6OvDJlmlrq6Nt09su2S6umZE607RXw=
Subject key identifier: 56:8A:F8:7C:2F:6C:8B:48:21:3E:A2:5F:43:42:B6:E3:BE:43:23:B8
Authority key identifier: 49:1A:1D:CC:DE:C9:5C:E5:83:46:AD:F7:01:12:63:D6:4E:93:B4:D1
Certificate issuer: /CN=491a1dccdec95ce58346adf7011263d64e93b4d1
Certificate serial: 019A7149D2149AFAF0C20A08A155E1F9921B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SRodzN7JXOWDRq33ARJj1k6TtNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/20b2c7-9009-45a0-899d-9c40ef69155b/1/SRodzN7JXOWDRq33ARJj1k6TtNE.mft
Manifest number: 92
Signing time: Tue 11 Nov 2025 05:00:54 +0000
Manifest this update: Tue 11 Nov 2025 05:00:54 +0000
Manifest next update: Wed 12 Nov 2025 05:00:54 +0000
Files and hashes: 1: SRodzN7JXOWDRq33ARJj1k6TtNE.crl (hash: CEnkFNKoMUQQZ5DDy5tIGrBEOW47NjZcgME5/W5CtkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/20b2c7-9009-45a0-899d-9c40ef69155b/1/SRodzN7JXOWDRq33ARJj1k6TtNE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/20b2c7-9009-45a0-899d-9c40ef69155b/1/SRodzN7JXOWDRq33ARJj1k6TtNE.mft
rsync://rpki.ripe.net/repository/DEFAULT/SRodzN7JXOWDRq33ARJj1k6TtNE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:d2:14:9a:fa:f0:c2:0a:08:a1:55:e1:f9:92:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=491a1dccdec95ce58346adf7011263d64e93b4d1
Validity
Not Before: Nov 11 05:00:54 2025 GMT
Not After : Nov 12 05:00:54 2025 GMT
Subject: CN=568af87c2f6c8b48213ea25f4342b6e3be4323b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b9:14:50:64:eb:dd:a6:12:08:bc:c0:2d:3e:
80:f0:50:8f:7f:52:86:e1:ee:9e:5c:da:0d:20:7c:
e2:03:d4:75:d6:e3:cc:56:a8:2b:76:98:ce:c3:55:
48:ed:96:b6:58:1f:d7:b3:d8:c1:3d:d2:c4:b5:47:
13:00:b5:77:26:a5:64:26:ce:9c:b0:20:94:83:a2:
d9:ea:4a:04:09:12:ed:4b:cb:81:ed:a0:2a:9e:9a:
26:3a:e4:8c:6a:97:81:ea:38:f2:2e:b5:13:32:8d:
b0:8c:77:be:63:c7:0e:7d:74:ea:cf:63:80:a3:20:
7a:79:ba:3f:05:8a:f6:81:20:d6:8f:1c:88:51:e0:
f2:fe:59:95:86:5f:85:3e:a3:38:01:7b:17:f5:7c:
a6:5a:74:97:8a:ed:34:5d:1f:60:6f:c6:88:37:60:
76:18:56:52:31:13:fe:ef:5f:3a:fa:2c:a5:44:0f:
71:dc:68:08:48:a9:04:20:c1:3e:ee:29:7b:f6:30:
79:9a:71:f1:15:dc:47:50:9f:e1:9e:98:6f:b3:fd:
a0:c6:a6:8e:11:00:d9:68:6d:ec:2d:ae:59:92:2e:
7c:78:a5:72:be:34:7d:1f:71:ac:e0:b1:77:ee:5a:
49:25:db:5b:fb:96:73:1e:d0:fc:42:96:4d:37:f6:
5e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:8A:F8:7C:2F:6C:8B:48:21:3E:A2:5F:43:42:B6:E3:BE:43:23:B8
X509v3 Authority Key Identifier:
keyid:49:1A:1D:CC:DE:C9:5C:E5:83:46:AD:F7:01:12:63:D6:4E:93:B4:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SRodzN7JXOWDRq33ARJj1k6TtNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/20b2c7-9009-45a0-899d-9c40ef69155b/1/SRodzN7JXOWDRq33ARJj1k6TtNE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/20b2c7-9009-45a0-899d-9c40ef69155b/1/SRodzN7JXOWDRq33ARJj1k6TtNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:90:10:20:c8:32:26:d9:2d:02:f0:cf:a1:29:e8:be:d7:c2:
4b:d5:0f:bd:46:70:8c:a2:e1:ad:29:c1:73:c1:02:d4:59:bd:
c1:f4:2b:75:e9:fb:f2:21:36:a7:11:ac:69:bf:a9:6b:a9:2c:
99:a9:3e:88:35:75:1c:26:3e:f0:d4:c6:22:5e:4c:d7:f4:09:
a5:5d:78:04:de:09:4d:ca:45:a3:02:91:17:ed:60:ec:4b:6a:
fd:a1:0f:1b:d0:50:ab:ab:8f:6c:fc:a3:be:0e:97:93:be:26:
e8:32:de:9b:34:3e:9e:61:d2:c6:42:0f:06:b5:90:e0:4f:49:
a9:17:e7:09:fd:9a:34:5b:90:c6:79:38:8d:43:56:f9:e6:6f:
70:b2:dd:d7:43:7a:82:70:bd:45:9b:e8:35:00:c6:1f:47:69:
12:aa:49:34:38:ba:11:01:62:73:80:90:c4:80:65:a9:b1:5f:
e4:3b:54:76:a1:66:57:7f:c2:ac:32:fb:7c:af:59:35:1d:24:
50:67:d0:fc:c6:c3:55:f7:09:08:7a:cc:69:4f:e3:99:db:26:
bb:c5:9f:f8:18:fd:80:4e:de:92:68:2d:9e:b3:ad:08:b5:93:
80:b0:cf:09:58:db:f6:a0:73:42:89:67:e4:09:42:2c:2e:a2:
38:c5:0e:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxSdIUmvrwwgoIoVXh+ZIbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5MWExZGNjZGVjOTVjZTU4MzQ2YWRmNzAxMTI2M2Q2NGU5
M2I0ZDEwHhcNMjUxMTExMDUwMDU0WhcNMjUxMTEyMDUwMDU0WjAzMTEwLwYDVQQD
Eyg1NjhhZjg3YzJmNmM4YjQ4MjEzZWEyNWY0MzQyYjZlM2JlNDMyM2I4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3rkUUGTr3aYSCLzALT6A8FCPf1KG
4e6eXNoNIHziA9R11uPMVqgrdpjOw1VI7Za2WB/Xs9jBPdLEtUcTALV3JqVkJs6c
sCCUg6LZ6koECRLtS8uB7aAqnpomOuSMapeB6jjyLrUTMo2wjHe+Y8cOfXTqz2OA
oyB6ebo/BYr2gSDWjxyIUeDy/lmVhl+FPqM4AXsX9XymWnSXiu00XR9gb8aIN2B2
GFZSMRP+7186+iylRA9x3GgISKkEIME+7il79jB5mnHxFdxHUJ/hnphvs/2gxqaO
EQDZaG3sLa5Zki58eKVyvjR9H3Gs4LF37lpJJdtb+5ZzHtD8QpZNN/ZeyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFaK+HwvbItIIT6iX0NCtuO+QyO4MB8GA1UdIwQY
MBaAFEkaHczeyVzlg0at9wESY9ZOk7TRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU1JvZHpON0pYT1dEUnEzM0FSSmoxazZUdE5FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8yMGIyYzctOTAwOS00NWEwLTg5OWQt
OWM0MGVmNjkxNTViLzEvU1JvZHpON0pYT1dEUnEzM0FSSmoxazZUdE5FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy8yMGIyYzctOTAwOS00NWEwLTg5OWQtOWM0MGVmNjkxNTVi
LzEvU1JvZHpON0pYT1dEUnEzM0FSSmoxazZUdE5FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEZAQIMgy
JtktAvDPoSnovtfCS9UPvUZwjKLhrSnBc8EC1Fm9wfQrden78iE2pxGsab+pa6ks
mak+iDV1HCY+8NTGIl5M1/QJpV14BN4JTcpFowKRF+1g7Etq/aEPG9BQq6uPbPyj
vg6Xk74m6DLemzQ+nmHSxkIPBrWQ4E9JqRfnCf2aNFuQxnk4jUNW+eZvcLLd10N6
gnC9RZvoNQDGH0dpEqpJNDi6EQFic4CQxIBlqbFf5DtUdqFmV3/CrDL7fK9ZNR0k
UGfQ/MbDVfcJCHrMaU/jmdsmu8Wf+Bj9gE7ekmgtnrOtCLWTgLDPCVjb9qBzQoln
5AlCLC6iOMUOSw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 13:55:09 2025 by rpki-client