Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.mft
File: dWXhJLHEG5OxTX7eBda4B3eYmv0.mft (raw, json)
Hash identifier: vER3stsfWZTLdnRwL3R/GuxRhzQ5p7DpavlJNbZaiTk=
Subject key identifier: 11:67:6C:B2:21:3E:38:FC:25:94:F8:54:2E:31:C3:F9:26:F7:48:DB
Authority key identifier: 75:65:E1:24:B1:C4:1B:93:B1:4D:7E:DE:05:D6:B8:07:77:98:9A:FD
Certificate issuer: /CN=7565e124b1c41b93b14d7ede05d6b80777989afd
Certificate serial: 019A70DC1499F1F65855A0F2BC3D0F494642
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dWXhJLHEG5OxTX7eBda4B3eYmv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.mft
Manifest number: 14C3
Signing time: Tue 11 Nov 2025 03:01:02 +0000
Manifest this update: Tue 11 Nov 2025 03:01:02 +0000
Manifest next update: Wed 12 Nov 2025 03:01:02 +0000
Files and hashes: 1: dWXhJLHEG5OxTX7eBda4B3eYmv0.crl (hash: BkASYQ+4k5ji6KEMz96yzWgvDsZB1J2Jz+GJMVodmHI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dWXhJLHEG5OxTX7eBda4B3eYmv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:14:99:f1:f6:58:55:a0:f2:bc:3d:0f:49:46:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7565e124b1c41b93b14d7ede05d6b80777989afd
Validity
Not Before: Nov 11 03:01:02 2025 GMT
Not After : Nov 12 03:01:02 2025 GMT
Subject: CN=11676cb2213e38fc2594f8542e31c3f926f748db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:61:8a:37:5b:a4:3e:ee:bc:db:3a:bf:e2:a4:
d7:e8:7a:74:c4:43:24:ce:2f:82:da:ab:27:0d:18:
78:da:b6:82:25:2c:10:ff:ed:03:ef:c9:f5:35:ac:
8d:b6:11:65:1e:6d:f9:bc:33:aa:f6:2c:db:8d:7c:
56:a7:f4:ef:45:33:ed:2c:a7:b7:18:58:fb:72:31:
4d:86:79:a7:c5:49:09:33:d7:ec:c8:2b:f7:62:64:
b2:ba:a8:92:20:73:0b:d2:39:b2:5f:8c:da:b8:fb:
50:03:49:ad:92:16:74:90:83:97:e3:e1:a0:95:94:
e5:44:9f:da:fe:7e:b1:60:29:62:02:47:31:14:fd:
61:7d:9e:9d:f9:6e:1b:84:66:db:8f:d3:b9:25:01:
fd:c4:0b:2d:cf:50:50:8d:c9:58:d9:ed:61:3a:9f:
d8:0a:21:39:cf:4e:4e:0c:83:11:48:5f:29:99:00:
26:d9:9e:e6:76:6d:0f:aa:9d:f4:4f:14:8a:70:fe:
b6:6e:48:16:1d:95:c9:7a:81:53:ff:c5:2c:2d:6a:
df:19:d6:b8:80:71:f0:22:9b:7b:9a:e3:c0:5f:0d:
31:5f:bf:cf:32:b9:96:d0:e1:3c:4f:43:60:4f:13:
9c:8f:b6:07:0a:8b:b0:7c:e4:33:56:0f:de:d7:b0:
9a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:67:6C:B2:21:3E:38:FC:25:94:F8:54:2E:31:C3:F9:26:F7:48:DB
X509v3 Authority Key Identifier:
keyid:75:65:E1:24:B1:C4:1B:93:B1:4D:7E:DE:05:D6:B8:07:77:98:9A:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dWXhJLHEG5OxTX7eBda4B3eYmv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:18:0d:fc:62:0c:f5:ec:4d:64:e4:1f:b0:a2:5d:23:3d:d5:
e5:13:72:74:a8:50:a0:ad:78:00:27:cd:c1:14:4a:c9:50:d1:
49:48:73:65:b8:50:82:1c:30:2f:23:1d:30:33:f6:0a:68:dc:
b7:bc:ff:c8:0d:1c:43:0c:a0:f9:f7:9b:9b:66:c3:76:8c:0a:
8d:19:d9:d2:91:26:f8:f7:36:c3:4f:e9:d1:a4:44:4e:cc:57:
5c:0a:2a:14:0c:17:7f:df:4f:ad:7a:a7:25:0d:9d:4e:ec:0c:
e2:6d:cc:14:29:79:d1:b3:7e:8a:c9:6e:da:a2:7e:50:94:88:
26:19:15:ba:60:f5:45:25:36:3b:bf:4b:a7:a4:24:d8:53:f8:
6f:21:8c:a4:7c:dc:a9:e3:52:57:cd:82:6a:ed:5b:d7:69:35:
de:bb:90:ba:e8:cf:7d:ba:11:28:3f:52:7b:61:81:91:1e:41:
a2:34:df:84:68:c7:83:db:68:c1:46:19:1a:31:4c:87:f3:f2:
81:88:db:8d:4b:66:6d:6d:6b:1c:59:83:5e:0e:6a:55:85:81:
68:36:1c:af:34:37:af:7c:6b:c9:f5:49:1d:eb:70:dd:71:f2:
56:07:40:0f:66:ed:60:b3:5a:c0:64:47:8e:53:e3:39:c0:5e:
3c:83:10:b7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpw3BSZ8fZYVaDyvD0PSUZCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1NjVlMTI0YjFjNDFiOTNiMTRkN2VkZTA1ZDZiODA3Nzc5
ODlhZmQwHhcNMjUxMTExMDMwMTAyWhcNMjUxMTEyMDMwMTAyWjAzMTEwLwYDVQQD
EygxMTY3NmNiMjIxM2UzOGZjMjU5NGY4NTQyZTMxYzNmOTI2Zjc0OGRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGGKN1ukPu682zq/4qTX6Hp0xEMk
zi+C2qsnDRh42raCJSwQ/+0D78n1NayNthFlHm35vDOq9izbjXxWp/TvRTPtLKe3
GFj7cjFNhnmnxUkJM9fsyCv3YmSyuqiSIHML0jmyX4zauPtQA0mtkhZ0kIOX4+Gg
lZTlRJ/a/n6xYCliAkcxFP1hfZ6d+W4bhGbbj9O5JQH9xAstz1BQjclY2e1hOp/Y
CiE5z05ODIMRSF8pmQAm2Z7mdm0Pqp30TxSKcP62bkgWHZXJeoFT/8UsLWrfGda4
gHHwIpt7muPAXw0xX7/PMrmW0OE8T0NgTxOcj7YHCouwfOQzVg/e17CaTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBFnbLIhPjj8JZT4VC4xw/km90jbMB8GA1UdIwQY
MBaAFHVl4SSxxBuTsU1+3gXWuAd3mJr9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFdYaEpMSEVHNU94VFg3ZUJkYTRCM2VZbXYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi85Njk1MmItNzliOC00ZTA0LWJjNGEt
MjllNDQ1ZGUyNDU5LzEvZFdYaEpMSEVHNU94VFg3ZUJkYTRCM2VZbXYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNi85Njk1MmItNzliOC00ZTA0LWJjNGEtMjllNDQ1ZGUyNDU5
LzEvZFdYaEpMSEVHNU94VFg3ZUJkYTRCM2VZbXYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADxgN/GIM
9exNZOQfsKJdIz3V5RNydKhQoK14ACfNwRRKyVDRSUhzZbhQghwwLyMdMDP2Cmjc
t7z/yA0cQwyg+febm2bDdowKjRnZ0pEm+Pc2w0/p0aRETsxXXAoqFAwXf99PrXqn
JQ2dTuwM4m3MFCl50bN+islu2qJ+UJSIJhkVumD1RSU2O79Lp6Qk2FP4byGMpHzc
qeNSV82Cau1b12k13ruQuujPfboRKD9Se2GBkR5BojTfhGjHg9towUYZGjFMh/Py
gYjbjUtmbW1rHFmDXg5qVYWBaDYcrzQ3r3xryfVJHetw3XHyVgdAD2btYLNawGRH
jlPjOcBePIMQtw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:43:58 2025 by rpki-client