Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
File: PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft (raw, json)
Hash identifier: pZX23FlXNu5YWn4fZiB1CeppSSueB1krvdQji++smSw=
Subject key identifier: 24:6A:4B:1F:88:5B:FE:F8:31:42:DE:8E:75:61:B8:25:21:FD:D0:83
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 019A730153B3CB8243018A561825F15AD046
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
Manifest number: 11F3
Signing time: Tue 11 Nov 2025 13:00:57 +0000
Manifest this update: Tue 11 Nov 2025 13:00:57 +0000
Manifest next update: Wed 12 Nov 2025 13:00:57 +0000
Files and hashes: 1: PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl (hash: 4qQ68xrKoNeIpkchWHtkJRZ0DUOuWAMfOyqPOnIMigo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:53:b3:cb:82:43:01:8a:56:18:25:f1:5a:d0:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Nov 11 13:00:57 2025 GMT
Not After : Nov 12 13:00:57 2025 GMT
Subject: CN=246a4b1f885bfef83142de8e7561b82521fdd083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fd:80:7b:9b:df:53:3e:e9:a6:3e:36:8d:9d:
5a:18:0c:2c:cf:93:fc:c6:15:2e:c8:61:74:93:bf:
4b:13:0c:2a:5a:46:dc:ba:23:22:d5:2a:62:3d:f7:
0b:9c:5c:89:5c:99:52:c3:83:08:69:44:cb:b1:0e:
4e:2a:c0:8a:dc:ab:8b:7d:2e:8f:43:90:ef:b3:8d:
21:96:06:27:db:75:db:68:03:2d:16:37:f4:65:d4:
58:18:d5:a9:67:ad:31:ce:cf:0c:8a:ee:fd:dd:fe:
b6:e4:4e:5b:4c:27:0f:f1:d4:f9:1f:f2:1c:1f:48:
81:03:5a:7e:db:a9:1b:ef:42:4d:02:13:8b:df:11:
e8:8a:5c:e8:09:6a:7a:f2:6a:33:99:d3:aa:35:7b:
be:a1:40:34:02:e5:d4:ff:8d:bc:91:4b:12:77:8f:
97:6a:81:53:d6:60:f9:5d:a8:8f:91:d4:50:32:43:
9e:46:7b:6a:7e:20:52:eb:ae:f4:7c:80:dc:ee:dd:
6b:64:92:8d:62:5d:56:57:f6:5b:20:92:b0:2c:d4:
ee:71:69:fc:f4:a5:c7:2a:13:e8:5e:b5:94:a2:d0:
0e:69:c9:03:f6:d2:20:d5:20:dc:fd:e6:37:24:c7:
f8:8e:de:1b:1f:6d:26:9e:60:ce:79:20:b6:06:fa:
ad:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:6A:4B:1F:88:5B:FE:F8:31:42:DE:8E:75:61:B8:25:21:FD:D0:83
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:78:43:88:4f:91:0d:1e:f5:16:91:e7:ce:d7:db:b8:e6:1f:
a4:43:bd:78:aa:b9:80:81:06:16:4d:55:f6:85:32:aa:ec:30:
d2:35:26:37:7e:1d:10:6c:de:31:a4:78:7b:01:7b:91:3e:07:
2c:7c:b3:fe:1c:fe:8f:9f:1e:ca:96:f8:9c:04:eb:2a:60:7a:
75:71:51:6c:d8:39:6a:b8:17:5d:89:50:64:44:1e:7f:b1:65:
4d:2f:ea:a3:2d:bc:aa:f8:86:a5:07:7c:a7:02:fd:a1:cf:01:
2b:b5:c7:07:b3:2c:9f:6d:8e:61:52:ea:9b:f7:30:0a:b0:56:
56:48:41:8e:37:ba:dc:1d:5a:1f:e1:15:3f:c9:2e:0c:5b:71:
ac:28:ff:c9:9d:5f:11:5b:82:20:84:e0:89:db:75:ab:b8:e7:
95:90:51:ef:1f:0d:3a:d2:93:9d:a7:32:dc:50:02:2f:6d:ca:
0f:77:f5:1d:8c:05:aa:f2:7a:d1:50:41:f9:9f:95:87:0e:6c:
44:6e:06:78:ab:75:f2:5c:fa:0d:90:c2:87:c3:a6:20:9d:f1:
03:41:cd:05:eb:94:ed:b9:97:dc:4d:dd:7c:51:6f:cc:e0:79:
ee:b7:ac:0e:13:b4:d6:34:84:d2:17:22:bb:a5:ca:3f:66:ea:
93:66:4f:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpzAVOzy4JDAYpWGCXxWtBGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjNGVkOTQyZTVjNzQyZTc3YmZiOWJlYjk1NGY4NzI1MzRm
NTI4NDgwHhcNMjUxMTExMTMwMDU3WhcNMjUxMTEyMTMwMDU3WjAzMTEwLwYDVQQD
EygyNDZhNGIxZjg4NWJmZWY4MzE0MmRlOGU3NTYxYjgyNTIxZmRkMDgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAov2Ae5vfUz7ppj42jZ1aGAwsz5P8
xhUuyGF0k79LEwwqWkbcuiMi1SpiPfcLnFyJXJlSw4MIaUTLsQ5OKsCK3KuLfS6P
Q5Dvs40hlgYn23XbaAMtFjf0ZdRYGNWpZ60xzs8Miu793f625E5bTCcP8dT5H/Ic
H0iBA1p+26kb70JNAhOL3xHoilzoCWp68mozmdOqNXu+oUA0AuXU/428kUsSd4+X
aoFT1mD5XaiPkdRQMkOeRntqfiBS6670fIDc7t1rZJKNYl1WV/ZbIJKwLNTucWn8
9KXHKhPoXrWUotAOackD9tIg1SDc/eY3JMf4jt4bH20mnmDOeSC2BvqtIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCRqSx+IW/74MULejnVhuCUh/dCDMB8GA1UdIwQY
MBaAFDxO2ULlx0Lne/ub65VPhyU09ShIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8xYmI0NWEtNTUxYy00OTY3LTk1Y2Et
NzczNDRiY2M5MTkxLzEvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8xYmI0NWEtNTUxYy00OTY3LTk1Y2EtNzczNDRiY2M5MTkx
LzEvUEU3WlF1WEhRdWQ3LTV2cmxVLUhKVFQxS0VnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdnhDiE+R
DR71FpHnztfbuOYfpEO9eKq5gIEGFk1V9oUyquww0jUmN34dEGzeMaR4ewF7kT4H
LHyz/hz+j58eypb4nATrKmB6dXFRbNg5argXXYlQZEQef7FlTS/qoy28qviGpQd8
pwL9oc8BK7XHB7Msn22OYVLqm/cwCrBWVkhBjje63B1aH+EVP8kuDFtxrCj/yZ1f
EVuCIITgidt1q7jnlZBR7x8NOtKTnacy3FACL23KD3f1HYwFqvJ60VBB+Z+Vhw5s
RG4GeKt18lz6DZDCh8OmIJ3xA0HNBeuU7bmX3E3dfFFvzOB57resDhO01jSE0hci
u6XKP2bqk2ZPag==
-----END CERTIFICATE-----
Generated at Tue Nov 11 16:46:51 2025 by rpki-client