Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft
File: IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft (raw, json)
Hash identifier: rDn0gS4sNynsFVhkCGYGgNMWesPhURBFBowP1SbCgSE=
Subject key identifier: 59:A0:A4:78:1A:88:95:C2:4A:CE:01:3D:7F:88:FA:63:80:44:11:99
Authority key identifier: 21:D8:5D:23:1A:D5:4B:84:39:C2:AA:ED:91:A5:77:58:6A:C4:60:00
Certificate issuer: /CN=21d85d231ad54b8439c2aaed91a577586ac46000
Certificate serial: 019A73018047DA9470F02344862CFC2D640B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft
Manifest number: 1221
Signing time: Tue 11 Nov 2025 13:01:09 +0000
Manifest this update: Tue 11 Nov 2025 13:01:09 +0000
Manifest next update: Wed 12 Nov 2025 13:01:09 +0000
Files and hashes: 1: IdhdIxrVS4Q5wqrtkaV3WGrEYAA.crl (hash: ccdGyST1qP4DEaBtPJMURJDj4WxyhC8kBqhgrUrU1jg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:80:47:da:94:70:f0:23:44:86:2c:fc:2d:64:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21d85d231ad54b8439c2aaed91a577586ac46000
Validity
Not Before: Nov 11 13:01:09 2025 GMT
Not After : Nov 12 13:01:09 2025 GMT
Subject: CN=59a0a4781a8895c24ace013d7f88fa6380441199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:44:dc:3a:d4:5f:78:a8:de:c1:92:b1:7a:4d:
d5:5a:81:57:22:76:2a:79:8a:f3:85:1a:c5:42:18:
eb:d7:53:66:fb:a6:78:d7:25:53:e4:ed:40:6a:04:
d2:89:e2:eb:b5:b0:54:b2:f7:8c:06:2f:4e:6d:8f:
42:cb:18:95:de:8e:f5:c3:d4:3a:61:d7:6e:08:93:
a6:92:32:e1:b5:d1:44:5c:8f:86:ac:86:0e:33:47:
ab:13:43:d2:c4:f8:09:b7:d7:3d:06:73:23:a3:1e:
4e:5a:8c:11:0e:3c:72:e0:e5:a8:b1:9d:a7:b0:7e:
58:f4:f7:60:61:f4:2b:7b:c1:e9:bf:3f:5c:b1:67:
07:dd:26:27:01:30:f2:1c:da:c1:b7:9c:8c:fc:39:
b1:33:02:9a:6a:71:91:11:6d:ca:82:34:c2:b4:f1:
fc:51:ca:fb:0f:44:d4:27:06:3c:13:22:93:93:cc:
2a:e4:5b:f0:e1:9a:ee:c0:a9:4c:28:d8:17:a5:fd:
78:d9:60:74:1e:52:a0:8a:30:a5:58:a4:b0:e1:86:
0b:5b:e2:fd:ee:d7:63:cd:cd:f0:f0:92:20:c9:21:
44:56:02:1a:89:4b:44:88:96:3e:80:1e:1d:79:7f:
d4:00:9f:9c:af:1a:47:9c:9e:7b:e7:93:88:e3:1d:
74:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A0:A4:78:1A:88:95:C2:4A:CE:01:3D:7F:88:FA:63:80:44:11:99
X509v3 Authority Key Identifier:
keyid:21:D8:5D:23:1A:D5:4B:84:39:C2:AA:ED:91:A5:77:58:6A:C4:60:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:48:f7:1e:74:7c:8c:69:d1:92:47:86:42:68:23:b6:e2:fb:
9a:ca:1d:1e:a8:08:9a:e7:62:d6:9f:86:cc:aa:2a:b5:1b:37:
d5:e2:6d:e9:b4:c7:e1:23:b3:e8:0d:75:84:27:96:bb:71:8d:
55:ee:c7:ae:82:15:0b:fa:9c:9d:cb:ad:94:56:d0:02:65:11:
b3:21:c0:98:90:df:8e:3d:f3:bf:33:c4:d9:97:0f:fb:18:08:
47:c8:8d:26:8f:cd:45:88:b0:01:b7:4e:97:cf:ab:12:9c:ce:
a0:d6:fb:1b:f1:e5:d2:fa:aa:14:bc:03:00:a4:5e:e0:f7:8a:
8f:48:36:f2:ff:67:db:3d:37:5d:54:e1:4c:b3:da:ee:e8:de:
6e:7a:af:1f:fb:a7:a5:4c:c2:46:52:18:f5:75:4f:94:58:e2:
94:bf:7d:fc:c8:88:a2:a6:9c:8a:0f:cd:ed:38:23:50:43:44:
fc:68:b1:ba:8f:02:ca:e3:ca:b2:1c:c5:e8:f1:07:92:69:b6:
a4:91:81:63:df:df:e9:f5:73:3b:12:55:e3:43:b4:9e:23:4d:
89:be:cc:3b:85:61:a1:d0:cb:40:ee:2f:cd:79:93:fd:bf:14:
c5:28:ef:0c:9d:ae:fd:94:5c:02:44:2c:d5:0b:be:65:58:57:
01:cb:f1:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpzAYBH2pRw8CNEhiz8LWQLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxZDg1ZDIzMWFkNTRiODQzOWMyYWFlZDkxYTU3NzU4NmFj
NDYwMDAwHhcNMjUxMTExMTMwMTA5WhcNMjUxMTEyMTMwMTA5WjAzMTEwLwYDVQQD
Eyg1OWEwYTQ3ODFhODg5NWMyNGFjZTAxM2Q3Zjg4ZmE2MzgwNDQxMTk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkUTcOtRfeKjewZKxek3VWoFXInYq
eYrzhRrFQhjr11Nm+6Z41yVT5O1AagTSieLrtbBUsveMBi9ObY9CyxiV3o71w9Q6
YdduCJOmkjLhtdFEXI+GrIYOM0erE0PSxPgJt9c9BnMjox5OWowRDjxy4OWosZ2n
sH5Y9PdgYfQre8Hpvz9csWcH3SYnATDyHNrBt5yM/DmxMwKaanGREW3KgjTCtPH8
Ucr7D0TUJwY8EyKTk8wq5Fvw4ZruwKlMKNgXpf142WB0HlKgijClWKSw4YYLW+L9
7tdjzc3w8JIgySFEVgIaiUtEiJY+gB4deX/UAJ+crxpHnJ5755OI4x10tQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFmgpHgaiJXCSs4BPX+I+mOARBGZMB8GA1UdIwQY
MBaAFCHYXSMa1UuEOcKq7ZGld1hqxGAAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWRoZEl4clZTNFE1d3FydGthVjNXR3JFWUFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS82YTZiNTUtY2EwMi00NThkLThiNWQt
NzRkNzczMDJiMTg0LzEvSWRoZEl4clZTNFE1d3FydGthVjNXR3JFWUFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS82YTZiNTUtY2EwMi00NThkLThiNWQtNzRkNzczMDJiMTg0
LzEvSWRoZEl4clZTNFE1d3FydGthVjNXR3JFWUFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0kj3HnR8
jGnRkkeGQmgjtuL7msodHqgImudi1p+GzKoqtRs31eJt6bTH4SOz6A11hCeWu3GN
Ve7HroIVC/qcncutlFbQAmURsyHAmJDfjj3zvzPE2ZcP+xgIR8iNJo/NRYiwAbdO
l8+rEpzOoNb7G/Hl0vqqFLwDAKRe4PeKj0g28v9n2z03XVThTLPa7ujebnqvH/un
pUzCRlIY9XVPlFjilL99/MiIoqacig/N7TgjUENE/Gixuo8CyuPKshzF6PEHkmm2
pJGBY9/f6fVzOxJV40O0niNNib7MO4VhodDLQO4vzXmT/b8UxSjvDJ2u/ZRcAkQs
1Qu+ZVhXAcvxvQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:11:17 2025 by rpki-client