Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
File: aDjl4BZgX27c1MlhwZys9YFMeKM.mft (raw, json)
Hash identifier: nPAqes/AjsOQb0fzJDG728iSw5qSnqfkotgdMCkvzCI=
Subject key identifier: 56:E5:62:B0:5C:B6:48:C0:E8:C4:C9:F1:61:8E:72:F8:CD:98:61:C0
Authority key identifier: 68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3
Certificate issuer: /CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
Certificate serial: 019A725C5A35E8346920557DB8EFDEAC84D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
Manifest number: 115B
Signing time: Tue 11 Nov 2025 10:00:46 +0000
Manifest this update: Tue 11 Nov 2025 10:00:46 +0000
Manifest next update: Wed 12 Nov 2025 10:00:46 +0000
Files and hashes: 1: aDjl4BZgX27c1MlhwZys9YFMeKM.crl (hash: rBizpwZYfihxNKGstNo7+mkwj/+tcZJYapvbEbL8mWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:5a:35:e8:34:69:20:55:7d:b8:ef:de:ac:84:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
Validity
Not Before: Nov 11 10:00:46 2025 GMT
Not After : Nov 12 10:00:46 2025 GMT
Subject: CN=56e562b05cb648c0e8c4c9f1618e72f8cd9861c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5b:4b:b0:50:cb:52:00:23:b7:b2:1d:fc:77:
d3:4a:8b:a3:3e:42:70:4c:db:bb:ef:2c:76:cc:97:
af:7d:4e:2a:00:72:9d:65:51:d3:9d:a8:fc:e9:a6:
7e:69:f8:6d:51:7c:0f:ee:f3:f5:19:0e:55:5e:fe:
13:da:aa:75:a3:4b:b4:9b:27:06:29:23:93:5a:12:
05:6c:e0:d3:be:5d:4f:5f:32:81:fb:5c:70:71:45:
fc:40:29:47:3d:c0:74:86:44:27:fd:c3:bc:af:29:
fd:ec:da:7c:30:fd:23:c1:66:a6:6d:80:e3:a4:dd:
87:9e:89:31:3b:b6:50:51:be:9a:94:e1:f2:37:99:
6c:64:7d:4d:d3:48:63:d3:cb:af:2e:7f:d3:46:13:
c3:ca:75:e3:f8:66:5b:fc:ad:5c:07:4b:ea:0f:e4:
89:86:83:89:6f:08:a2:64:ee:fb:a9:b0:03:91:98:
a6:99:cb:8d:54:64:3d:fa:e5:d9:da:33:eb:78:ff:
01:2f:63:0c:cd:cb:5b:3a:8e:fe:ec:12:65:fd:40:
37:6b:3e:15:96:44:ca:6c:61:d4:49:77:cd:03:05:
1d:06:2d:e1:8e:06:5f:2a:34:03:ea:70:81:50:a4:
45:b0:54:e1:ac:74:10:b6:b5:85:f2:bf:93:cd:73:
4d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:E5:62:B0:5C:B6:48:C0:E8:C4:C9:F1:61:8E:72:F8:CD:98:61:C0
X509v3 Authority Key Identifier:
keyid:68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:ac:f9:1e:37:a2:18:9f:77:0d:1d:cf:93:fc:e2:ce:99:c1:
87:38:db:31:d4:be:f1:dc:c4:36:ac:82:d9:2c:a9:c5:06:40:
35:59:46:a5:35:cb:87:0c:3c:cd:8a:7f:5d:e5:04:bb:34:26:
92:f2:1f:a6:63:d3:40:f0:c5:30:d2:06:69:6e:5c:65:dd:02:
b2:87:b8:19:59:d0:51:65:8e:e1:f5:86:2f:91:18:4d:86:26:
41:a1:59:67:e8:90:9f:8a:c2:78:a8:c5:c8:cf:4b:fc:7e:24:
13:2f:f7:fb:2d:b2:87:a6:5d:e2:f0:40:92:c8:53:41:20:ff:
0d:bc:a6:71:15:39:6c:13:57:12:65:4d:17:5f:c4:a3:53:af:
f3:f6:3f:2e:f2:02:dd:6d:fe:20:c5:78:21:bc:23:88:19:df:
3e:5f:e9:4a:f6:49:13:22:4a:df:78:0b:a4:28:5f:a6:a4:8e:
c6:14:ad:a2:ed:96:f9:cd:55:b6:5c:60:fb:c2:2e:5f:7f:4d:
45:ce:ad:3c:59:44:41:90:49:ef:81:6f:09:8c:23:35:24:b2:
51:c6:b8:47:87:42:43:9f:58:50:48:34:18:91:03:c1:bd:fe:
fa:e4:f1:bb:4b:b6:71:3c:9b:4f:03:37:80:16:e6:61:77:06:
93:04:60:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyXFo16DRpIFV9uO/erITUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MzhlNWUwMTY2MDVmNmVkY2Q0Yzk2MWMxOWNhY2Y1ODE0
Yzc4YTMwHhcNMjUxMTExMTAwMDQ2WhcNMjUxMTEyMTAwMDQ2WjAzMTEwLwYDVQQD
Eyg1NmU1NjJiMDVjYjY0OGMwZThjNGM5ZjE2MThlNzJmOGNkOTg2MWMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFtLsFDLUgAjt7Id/HfTSoujPkJw
TNu77yx2zJevfU4qAHKdZVHTnaj86aZ+afhtUXwP7vP1GQ5VXv4T2qp1o0u0mycG
KSOTWhIFbODTvl1PXzKB+1xwcUX8QClHPcB0hkQn/cO8ryn97Np8MP0jwWambYDj
pN2HnokxO7ZQUb6alOHyN5lsZH1N00hj08uvLn/TRhPDynXj+GZb/K1cB0vqD+SJ
hoOJbwiiZO77qbADkZimmcuNVGQ9+uXZ2jPreP8BL2MMzctbOo7+7BJl/UA3az4V
lkTKbGHUSXfNAwUdBi3hjgZfKjQD6nCBUKRFsFThrHQQtrWF8r+TzXNNxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFblYrBctkjA6MTJ8WGOcvjNmGHAMB8GA1UdIwQY
MBaAFGg45eAWYF9u3NTJYcGcrPWBTHijMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURqbDRCWmdYMjdjMU1saHdaeXM5WUZNZUtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC83N2YxOTQtZmY1Zi00YTIzLWI4ODIt
ZjRjYzI1YTU0NTNmLzEvYURqbDRCWmdYMjdjMU1saHdaeXM5WUZNZUtNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC83N2YxOTQtZmY1Zi00YTIzLWI4ODItZjRjYzI1YTU0NTNm
LzEvYURqbDRCWmdYMjdjMU1saHdaeXM5WUZNZUtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASaz5Hjei
GJ93DR3Pk/zizpnBhzjbMdS+8dzENqyC2SypxQZANVlGpTXLhww8zYp/XeUEuzQm
kvIfpmPTQPDFMNIGaW5cZd0Csoe4GVnQUWWO4fWGL5EYTYYmQaFZZ+iQn4rCeKjF
yM9L/H4kEy/3+y2yh6Zd4vBAkshTQSD/DbymcRU5bBNXEmVNF1/Eo1Ov8/Y/LvIC
3W3+IMV4IbwjiBnfPl/pSvZJEyJK33gLpChfpqSOxhStou2W+c1Vtlxg+8IuX39N
Rc6tPFlEQZBJ74FvCYwjNSSyUca4R4dCQ59YUEg0GJEDwb3++uTxu0u2cTybTwM3
gBbmYXcGkwRgdw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:51:41 2025 by rpki-client