Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
File: REIuqj2u32uQIVnu2-lMqbfSKE8.mft (raw, json)
Hash identifier: Vg1p4DhRssVaGNGBa5lOaK340zrKOIADUd31QRDBC2o=
Subject key identifier: 71:AD:F7:1C:80:80:C8:01:4C:DD:8E:26:08:AA:28:A9:66:FC:D3:52
Authority key identifier: 44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
Certificate issuer: /CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Certificate serial: 019A730182231C8A4B9BC0918785212A64D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
Manifest number: 0D53
Signing time: Tue 11 Nov 2025 13:01:09 +0000
Manifest this update: Tue 11 Nov 2025 13:01:09 +0000
Manifest next update: Wed 12 Nov 2025 13:01:09 +0000
Files and hashes: 1: REIuqj2u32uQIVnu2-lMqbfSKE8.crl (hash: OPGkzgVJFn7jNShH//u1ZOrNr/lUvoGXeX+exvIZquU=)
2: pkwPVsxSdYAUrwekUiCsSfEtBsc.roa (hash: VAoyCYorOSAEGcSFlO8mKuQLxbXXAWAO6ekhAMd8Fps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:82:23:1c:8a:4b:9b:c0:91:87:85:21:2a:64:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Validity
Not Before: Nov 11 13:01:09 2025 GMT
Not After : Nov 12 13:01:09 2025 GMT
Subject: CN=71adf71c8080c8014cdd8e2608aa28a966fcd352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bc:f9:a4:4c:8f:b3:a4:18:5e:b7:50:33:0b:
d5:0c:84:0b:55:b5:f9:2a:77:81:1c:14:45:ec:b8:
97:84:99:e8:ab:f7:2b:7f:f5:e7:a7:11:12:fa:98:
53:6a:9a:55:81:a6:33:cc:2a:35:cb:8a:9f:00:68:
8c:0b:25:8f:5c:37:3b:34:1d:d2:16:45:6f:6c:18:
7a:3c:03:eb:69:61:4d:63:2a:b9:f2:45:c7:ca:4d:
db:51:34:fe:ce:7c:3c:d6:d2:90:bf:33:5c:50:de:
87:e1:66:7f:8d:0a:f2:30:ba:44:74:71:5e:05:48:
2d:26:84:c2:ce:0f:4e:43:1a:c4:ab:db:40:4f:e1:
0d:40:05:d1:e1:d8:51:48:26:84:95:9a:6c:a1:c0:
10:9a:1f:17:c1:56:45:66:de:09:5f:25:e4:ce:0a:
52:d5:5d:da:04:22:93:b5:d2:ca:35:63:79:ce:8b:
06:11:3e:cb:47:36:91:f2:d5:12:c4:6f:b1:66:91:
ae:e1:d5:ad:95:e0:66:2d:27:a0:b5:98:50:fa:6c:
4d:f7:dd:73:d5:69:96:b0:19:60:25:01:e2:61:4d:
cf:27:5f:ed:5c:59:c4:a0:16:18:86:d4:0e:c7:34:
02:22:65:a6:04:b9:2c:dd:34:8b:97:b3:e6:c9:82:
48:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:AD:F7:1C:80:80:C8:01:4C:DD:8E:26:08:AA:28:A9:66:FC:D3:52
X509v3 Authority Key Identifier:
keyid:44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:20:30:65:88:3f:4a:e2:2c:cf:75:68:6e:7b:52:05:4d:bf:
96:98:7a:67:34:b2:52:b4:65:da:c0:ef:c6:e8:4b:7c:a3:97:
c5:ef:e6:e0:88:1c:40:5b:c9:18:7b:b3:db:23:df:15:38:1e:
e9:19:7e:07:9b:77:4a:9f:af:ff:f0:7c:cb:4d:aa:46:d8:86:
d7:48:3a:85:53:e1:83:4d:98:f4:cb:52:6d:b9:8f:13:72:34:
b4:e9:00:15:61:16:db:d0:86:87:c5:8c:13:71:ce:19:05:7c:
23:45:6c:fe:c2:b8:b7:d6:97:ce:50:df:f4:4f:05:7b:ca:3b:
46:c5:d5:5e:c5:a9:d9:73:70:2d:ab:28:9f:e2:86:87:7f:7b:
f9:21:c4:25:e7:cc:55:c7:2a:3f:32:f6:59:ac:09:54:d1:b7:
1b:c5:39:d9:0b:e0:7c:00:60:98:8d:ab:eb:52:d4:95:00:f8:
10:5b:f6:f9:54:b1:e8:2b:12:fa:a2:d9:a9:81:72:c1:8f:9c:
14:6e:0c:69:71:4a:03:ad:e8:ab:36:41:c1:da:53:bc:17:ee:
85:6a:db:a6:33:c6:03:48:19:ea:33:51:fd:0c:2a:e6:dc:db:
a9:10:ba:e1:1a:f3:c4:13:75:86:6e:21:cf:42:3c:3e:51:4e:
66:58:bd:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpzAYIjHIpLm8CRh4UhKmTWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NDIyZWFhM2RhZWRmNmI5MDIxNTllZWRiZTk0Y2E5Yjdk
MjI4NGYwHhcNMjUxMTExMTMwMTA5WhcNMjUxMTEyMTMwMTA5WjAzMTEwLwYDVQQD
Eyg3MWFkZjcxYzgwODBjODAxNGNkZDhlMjYwOGFhMjhhOTY2ZmNkMzUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrz5pEyPs6QYXrdQMwvVDIQLVbX5
KneBHBRF7LiXhJnoq/crf/XnpxES+phTappVgaYzzCo1y4qfAGiMCyWPXDc7NB3S
FkVvbBh6PAPraWFNYyq58kXHyk3bUTT+znw81tKQvzNcUN6H4WZ/jQryMLpEdHFe
BUgtJoTCzg9OQxrEq9tAT+ENQAXR4dhRSCaElZpsocAQmh8XwVZFZt4JXyXkzgpS
1V3aBCKTtdLKNWN5zosGET7LRzaR8tUSxG+xZpGu4dWtleBmLSegtZhQ+mxN991z
1WmWsBlgJQHiYU3PJ1/tXFnEoBYYhtQOxzQCImWmBLks3TSLl7PmyYJInwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHGt9xyAgMgBTN2OJgiqKKlm/NNSMB8GA1UdIwQY
MBaAFERCLqo9rt9rkCFZ7tvpTKm30ihPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkVJdXFqMnUzMnVRSVZudTItbE1xYmZTS0U4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9kZDk0NGQtOGZhYS00Y2NlLWFhZmUt
YzA1MGY0YzA1ZjI5LzEvUkVJdXFqMnUzMnVRSVZudTItbE1xYmZTS0U4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9kZDk0NGQtOGZhYS00Y2NlLWFhZmUtYzA1MGY0YzA1ZjI5
LzEvUkVJdXFqMnUzMnVRSVZudTItbE1xYmZTS0U4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsiAwZYg/
SuIsz3VobntSBU2/lph6ZzSyUrRl2sDvxuhLfKOXxe/m4IgcQFvJGHuz2yPfFTge
6Rl+B5t3Sp+v//B8y02qRtiG10g6hVPhg02Y9MtSbbmPE3I0tOkAFWEW29CGh8WM
E3HOGQV8I0Vs/sK4t9aXzlDf9E8Fe8o7RsXVXsWp2XNwLason+KGh397+SHEJefM
VccqPzL2WawJVNG3G8U52QvgfABgmI2r61LUlQD4EFv2+VSx6CsS+qLZqYFywY+c
FG4MaXFKA63oqzZBwdpTvBfuhWrbpjPGA0gZ6jNR/Qwq5tzbqRC64RrzxBN1hm4h
z0I8PlFOZli9Xw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:47:49 2025 by rpki-client