Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
File: xDzur3eV-33zSLBLIn5QpJoaG3w.mft (raw, json)
Hash identifier: 1CC1tQwnhhYoDZJ5DNKOscKxga9g8m7s0Y++c2Ef3AY=
Subject key identifier: 00:DC:53:7B:49:9A:C4:92:F6:AD:62:AD:35:9B:93:92:F4:6B:FD:3E
Authority key identifier: C4:3C:EE:AF:77:95:FB:7D:F3:48:B0:4B:22:7E:50:A4:9A:1A:1B:7C
Certificate issuer: /CN=c43ceeaf7795fb7df348b04b227e50a49a1a1b7c
Certificate serial: 019A7294FB843B0502C2520DF8DA4ED8FF90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDzur3eV-33zSLBLIn5QpJoaG3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
Manifest number: 1459
Signing time: Tue 11 Nov 2025 11:02:37 +0000
Manifest this update: Tue 11 Nov 2025 11:02:37 +0000
Manifest next update: Wed 12 Nov 2025 11:02:37 +0000
Files and hashes: 1: xDzur3eV-33zSLBLIn5QpJoaG3w.crl (hash: bd2ygAyaOjZVnHCojOVEg59U54/ppsfsOHUcZQVjlOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDzur3eV-33zSLBLIn5QpJoaG3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:94:fb:84:3b:05:02:c2:52:0d:f8:da:4e:d8:ff:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43ceeaf7795fb7df348b04b227e50a49a1a1b7c
Validity
Not Before: Nov 11 11:02:37 2025 GMT
Not After : Nov 12 11:02:37 2025 GMT
Subject: CN=00dc537b499ac492f6ad62ad359b9392f46bfd3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:91:36:23:21:87:5c:86:51:7e:26:75:37:ac:
1c:eb:30:40:fd:b0:13:24:e6:10:60:a5:22:87:ab:
67:fc:23:f0:75:8c:12:c2:26:3c:ec:6e:bf:02:e0:
f3:65:82:dc:4e:d5:a5:7a:33:e2:67:1e:c4:e6:93:
fa:fa:7e:db:0f:2c:9e:e6:ab:26:69:ae:42:50:a1:
64:73:4a:d6:f4:00:3d:0e:29:23:02:2f:d2:f7:33:
33:62:7e:47:e7:87:99:a1:67:f6:4c:ee:c1:1e:e5:
48:1b:85:42:5f:81:db:06:a4:a6:9a:a2:5c:a1:d4:
1b:85:27:77:12:93:25:25:4b:46:68:83:73:92:81:
e5:9f:9c:28:0b:e7:e4:79:2b:4d:1d:d4:3c:4e:b4:
ff:23:33:a5:ec:58:e7:59:64:17:9f:8d:a3:26:46:
a2:a7:2e:6d:91:c4:0a:ae:26:73:c7:66:76:09:ba:
86:f2:f3:d3:63:90:c6:71:5d:9e:88:49:d9:08:ff:
04:03:f7:39:60:0f:ec:69:e7:59:0b:1f:49:47:54:
e3:3d:be:7d:bc:5f:30:44:15:17:93:fa:55:cb:87:
5a:82:c8:4c:55:df:d2:87:61:c9:a8:36:e7:6a:6b:
36:2c:c3:b2:a6:5a:c9:be:d0:4b:3b:00:a2:0f:44:
61:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:DC:53:7B:49:9A:C4:92:F6:AD:62:AD:35:9B:93:92:F4:6B:FD:3E
X509v3 Authority Key Identifier:
keyid:C4:3C:EE:AF:77:95:FB:7D:F3:48:B0:4B:22:7E:50:A4:9A:1A:1B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDzur3eV-33zSLBLIn5QpJoaG3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:13:8c:7a:9d:2e:76:e9:d1:d0:d7:35:d3:c8:dc:a3:02:9e:
ef:5f:d2:ae:5e:69:50:3c:4a:1c:d3:88:6d:0c:f5:6a:a1:57:
2e:8a:f0:c8:96:f7:d0:7a:76:64:3b:95:3a:16:a8:d5:1b:34:
24:a2:10:94:ed:c2:45:da:96:a8:85:66:1a:f6:2a:ea:b9:e5:
99:1f:27:9b:b8:8f:62:93:b7:e4:a2:4f:b8:27:1c:61:db:5e:
ca:88:9c:16:2a:aa:11:03:58:1e:47:55:31:3c:3a:c6:ab:87:
b8:1f:4d:01:f0:58:62:f4:76:19:6d:56:8d:e0:72:fd:02:c9:
f0:c5:46:82:0b:44:db:02:da:7f:d4:af:ad:d0:b4:4b:9f:c0:
bf:f3:9b:ae:ee:89:d3:50:e6:d0:17:87:6d:9d:09:0c:f3:a1:
ae:f2:a9:ad:0c:43:06:7d:18:77:9d:2c:b2:d7:b9:18:7d:22:
9b:05:be:e8:87:98:e9:16:31:96:08:b4:f1:f1:73:94:b3:ab:
36:19:f4:95:93:82:de:d1:6d:f4:41:08:88:99:fe:e2:24:cb:
2d:13:5d:f7:ae:78:5a:94:c7:28:a6:c9:48:3d:3d:54:5e:7e:
c1:2b:e8:40:0e:d2:c6:b4:de:a4:88:32:4a:e7:bf:eb:87:ea:
80:3e:d5:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpylPuEOwUCwlIN+NpO2P+QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0M2NlZWFmNzc5NWZiN2RmMzQ4YjA0YjIyN2U1MGE0OWEx
YTFiN2MwHhcNMjUxMTExMTEwMjM3WhcNMjUxMTEyMTEwMjM3WjAzMTEwLwYDVQQD
EygwMGRjNTM3YjQ5OWFjNDkyZjZhZDYyYWQzNTliOTM5MmY0NmJmZDNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5E2IyGHXIZRfiZ1N6wc6zBA/bAT
JOYQYKUih6tn/CPwdYwSwiY87G6/AuDzZYLcTtWlejPiZx7E5pP6+n7bDyye5qsm
aa5CUKFkc0rW9AA9DikjAi/S9zMzYn5H54eZoWf2TO7BHuVIG4VCX4HbBqSmmqJc
odQbhSd3EpMlJUtGaINzkoHln5woC+fkeStNHdQ8TrT/IzOl7FjnWWQXn42jJkai
py5tkcQKriZzx2Z2CbqG8vPTY5DGcV2eiEnZCP8EA/c5YA/saedZCx9JR1TjPb59
vF8wRBUXk/pVy4dagshMVd/Sh2HJqDbnams2LMOyplrJvtBLOwCiD0RhJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFADcU3tJmsSS9q1irTWbk5L0a/0+MB8GA1UdIwQY
MBaAFMQ87q93lft980iwSyJ+UKSaGht8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveER6dXIzZVYtMzN6U0xCTEluNVFwSm9hRzN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS84YThkM2EtMDgwNC00NGQ3LTg2NTUt
MDhiYWUzYTU0ZmY2LzEveER6dXIzZVYtMzN6U0xCTEluNVFwSm9hRzN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS84YThkM2EtMDgwNC00NGQ3LTg2NTUtMDhiYWUzYTU0ZmY2
LzEveER6dXIzZVYtMzN6U0xCTEluNVFwSm9hRzN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACBOMep0u
dunR0Nc108jcowKe71/Srl5pUDxKHNOIbQz1aqFXLorwyJb30Hp2ZDuVOhao1Rs0
JKIQlO3CRdqWqIVmGvYq6rnlmR8nm7iPYpO35KJPuCccYdteyoicFiqqEQNYHkdV
MTw6xquHuB9NAfBYYvR2GW1WjeBy/QLJ8MVGggtE2wLaf9SvrdC0S5/Av/Obru6J
01Dm0BeHbZ0JDPOhrvKprQxDBn0Yd50sste5GH0imwW+6IeY6RYxlgi08fFzlLOr
Nhn0lZOC3tFt9EEIiJn+4iTLLRNd9654WpTHKKbJSD09VF5+wSvoQA7SxrTepIgy
Sue/64fqgD7VkQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:19:18 2025 by rpki-client