Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.mft
File: WrJabDkrjmejrSH2D9MxHWt_Hlw.mft (raw, json)
Hash identifier: FHS78BFJr4vuzia34qLXzHLn4fWG6GL5hV2RkrRzjug=
Subject key identifier: 30:8E:C2:AC:41:8F:E1:42:1D:50:38:22:9F:8E:BB:0A:64:B9:1D:B6
Authority key identifier: 5A:B2:5A:6C:39:2B:8E:67:A3:AD:21:F6:0F:D3:31:1D:6B:7F:1E:5C
Certificate issuer: /CN=5ab25a6c392b8e67a3ad21f60fd3311d6b7f1e5c
Certificate serial: 019A71B8201B32EFFA2CC1695F93A2F8D107
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WrJabDkrjmejrSH2D9MxHWt_Hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.mft
Manifest number: 0FBA
Signing time: Tue 11 Nov 2025 07:01:23 +0000
Manifest this update: Tue 11 Nov 2025 07:01:23 +0000
Manifest next update: Wed 12 Nov 2025 07:01:23 +0000
Files and hashes: 1: WrJabDkrjmejrSH2D9MxHWt_Hlw.crl (hash: XdU/10P8MZ6XNykL1Eh+FrAa6f6M8VbZQBWgWT8QkmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/WrJabDkrjmejrSH2D9MxHWt_Hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:20:1b:32:ef:fa:2c:c1:69:5f:93:a2:f8:d1:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ab25a6c392b8e67a3ad21f60fd3311d6b7f1e5c
Validity
Not Before: Nov 11 07:01:23 2025 GMT
Not After : Nov 12 07:01:23 2025 GMT
Subject: CN=308ec2ac418fe1421d5038229f8ebb0a64b91db6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7a:36:65:30:ec:e0:c7:98:1d:34:1a:a9:82:
3a:bd:d6:0a:50:d0:29:ea:c4:38:2d:65:1d:cf:cd:
51:b6:ba:1b:2f:d8:9c:99:8b:21:07:d2:bd:38:a9:
fc:82:ef:cf:67:72:e8:cd:9c:c1:dc:9d:be:92:6c:
1f:0b:b0:d8:87:1c:ed:9b:43:54:79:04:ab:5c:e5:
25:89:8d:15:7a:72:3e:83:43:f8:aa:c6:08:e0:4a:
c3:9e:97:b3:5c:e7:8f:70:fc:15:bf:f2:26:21:e0:
4f:7d:63:b8:0e:4c:61:34:1e:57:94:59:b9:a3:4f:
60:34:d1:98:c5:b1:d0:fb:bf:4a:07:8d:35:07:35:
a5:18:f3:b2:7a:79:de:14:df:58:06:45:c9:1e:e0:
19:33:78:65:70:fa:ba:e4:07:09:1b:84:52:b9:15:
32:19:74:0f:b2:86:0d:d2:b0:35:47:5c:fd:0a:49:
40:0b:fe:d8:c4:b5:d5:6e:97:5c:20:5e:14:eb:8b:
64:48:7c:cf:c4:75:79:7a:0f:42:7a:71:36:07:d2:
08:56:cb:fc:27:07:fe:d0:33:26:1f:ea:ce:f6:d1:
6b:d4:73:45:5f:81:e4:0f:8e:d5:08:88:17:6a:ca:
07:e8:a7:65:06:67:71:b9:37:d2:fe:3c:82:e5:12:
8c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:8E:C2:AC:41:8F:E1:42:1D:50:38:22:9F:8E:BB:0A:64:B9:1D:B6
X509v3 Authority Key Identifier:
keyid:5A:B2:5A:6C:39:2B:8E:67:A3:AD:21:F6:0F:D3:31:1D:6B:7F:1E:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WrJabDkrjmejrSH2D9MxHWt_Hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:b0:4e:2c:47:a0:85:9b:6d:e0:6a:43:3d:4d:70:a9:6b:01:
d7:51:2f:2a:92:b4:8a:ea:b0:f3:c3:8e:fd:ff:37:e8:5f:7e:
78:d9:97:98:cd:a8:f8:e1:73:a6:c6:7c:7d:a2:38:d7:b6:cd:
a3:f5:25:2e:59:35:9c:55:40:c4:5e:09:3e:2a:72:89:67:7e:
c1:ac:dc:30:5e:8d:d2:58:36:54:ba:0e:21:3b:67:ec:39:33:
5e:dd:fe:58:ab:b4:05:a5:5b:75:b7:28:11:12:c9:5b:e5:2c:
d7:2f:e5:f5:bc:bb:2f:1b:a7:b2:90:df:ad:7b:84:07:51:e6:
51:9a:72:1b:a1:b9:84:d1:d7:19:7f:7f:df:a8:6d:71:cb:18:
31:f1:0f:79:e0:cb:b2:6e:0e:42:c6:fb:4a:8b:51:62:c2:dc:
c6:e2:f2:bb:2f:46:6d:82:de:3c:39:3b:11:12:07:14:0d:ab:
34:f9:a0:2c:a6:6c:cd:25:ce:3b:a8:52:5b:b8:1e:e2:81:03:
d1:02:ab:22:f4:2c:e9:08:44:d2:7e:93:a2:89:64:ff:e1:91:
77:60:3f:a2:ea:b7:c4:78:2c:25:f5:9d:20:88:f9:72:f7:37:
cd:75:1d:20:3c:f5:16:78:9f:f9:25:bf:72:79:df:6c:0f:f2:
8a:35:9a:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuCAbMu/6LMFpX5Oi+NEHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhYjI1YTZjMzkyYjhlNjdhM2FkMjFmNjBmZDMzMTFkNmI3
ZjFlNWMwHhcNMjUxMTExMDcwMTIzWhcNMjUxMTEyMDcwMTIzWjAzMTEwLwYDVQQD
EygzMDhlYzJhYzQxOGZlMTQyMWQ1MDM4MjI5ZjhlYmIwYTY0YjkxZGI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXo2ZTDs4MeYHTQaqYI6vdYKUNAp
6sQ4LWUdz81RtrobL9icmYshB9K9OKn8gu/PZ3LozZzB3J2+kmwfC7DYhxztm0NU
eQSrXOUliY0VenI+g0P4qsYI4ErDnpezXOePcPwVv/ImIeBPfWO4DkxhNB5XlFm5
o09gNNGYxbHQ+79KB401BzWlGPOyenneFN9YBkXJHuAZM3hlcPq65AcJG4RSuRUy
GXQPsoYN0rA1R1z9CklAC/7YxLXVbpdcIF4U64tkSHzPxHV5eg9CenE2B9IIVsv8
Jwf+0DMmH+rO9tFr1HNFX4HkD47VCIgXasoH6KdlBmdxuTfS/jyC5RKMjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDCOwqxBj+FCHVA4Ip+OuwpkuR22MB8GA1UdIwQY
MBaAFFqyWmw5K45no60h9g/TMR1rfx5cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3JKYWJEa3JqbWVqclNIMkQ5TXhIV3RfSGx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS84MWY3NmYtZDg3OC00NGExLTgyYzct
MmNjYjVmMGM1ZjZiLzEvV3JKYWJEa3JqbWVqclNIMkQ5TXhIV3RfSGx3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS84MWY3NmYtZDg3OC00NGExLTgyYzctMmNjYjVmMGM1ZjZi
LzEvV3JKYWJEa3JqbWVqclNIMkQ5TXhIV3RfSGx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqLBOLEeg
hZtt4GpDPU1wqWsB11EvKpK0iuqw88OO/f836F9+eNmXmM2o+OFzpsZ8faI417bN
o/UlLlk1nFVAxF4JPipyiWd+wazcMF6N0lg2VLoOITtn7DkzXt3+WKu0BaVbdbco
ERLJW+Us1y/l9by7LxunspDfrXuEB1HmUZpyG6G5hNHXGX9/36htccsYMfEPeeDL
sm4OQsb7SotRYsLcxuLyuy9GbYLePDk7ERIHFA2rNPmgLKZszSXOO6hSW7ge4oED
0QKrIvQs6QhE0n6Toolk/+GRd2A/ouq3xHgsJfWdIIj5cvc3zXUdIDz1Fnif+SW/
cnnfbA/yijWaqg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:18:57 2025 by rpki-client