Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft
File: jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft (raw, json)
Hash identifier: 6+rjw8LKilv/4gx7q28cWNmGdE43SWdMwh0QpLPvBac=
Subject key identifier: E6:36:DB:A7:5B:FD:DE:0D:EB:48:CD:BC:FD:B0:55:83:A8:8F:AE:44
Authority key identifier: 8D:82:79:DA:ED:AB:BF:91:83:AF:B6:8E:43:FB:1E:5B:B6:D4:33:A3
Certificate issuer: /CN=8d8279daedabbf9183afb68e43fb1e5bb6d433a3
Certificate serial: 019A71130761CCD6E416BFA1C65334556240
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYJ52u2rv5GDr7aOQ_seW7bUM6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft
Manifest number: 0646
Signing time: Tue 11 Nov 2025 04:01:03 +0000
Manifest this update: Tue 11 Nov 2025 04:01:03 +0000
Manifest next update: Wed 12 Nov 2025 04:01:03 +0000
Files and hashes: 1: jYJ52u2rv5GDr7aOQ_seW7bUM6M.crl (hash: GWuneAxctTvRuFJ276cnibYcMDkqX59Tr9oPTy+OMA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/jYJ52u2rv5GDr7aOQ_seW7bUM6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:07:61:cc:d6:e4:16:bf:a1:c6:53:34:55:62:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d8279daedabbf9183afb68e43fb1e5bb6d433a3
Validity
Not Before: Nov 11 04:01:03 2025 GMT
Not After : Nov 12 04:01:03 2025 GMT
Subject: CN=e636dba75bfdde0deb48cdbcfdb05583a88fae44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7c:9d:28:fe:ec:a0:29:48:22:85:e9:7a:80:
d1:a9:4a:d2:80:83:9c:9f:15:ec:dc:16:c0:63:a0:
1c:76:1f:9e:4d:90:ef:be:2a:7f:4f:83:02:bd:46:
f0:58:8e:e8:b9:00:96:07:49:7d:b0:75:a4:01:e0:
af:59:2a:8d:cd:59:9a:d0:3c:aa:5f:52:ce:98:79:
93:9a:24:ec:64:25:2a:f9:48:fa:97:b2:31:f7:d9:
e6:0b:88:2b:94:94:40:4a:e8:55:c4:59:5c:96:5b:
5f:8d:6c:47:44:1c:f1:cc:c2:b6:6b:59:1b:65:be:
50:c0:c8:a9:d6:c1:46:7b:bc:59:c1:57:2c:04:84:
00:ad:f8:07:9a:0c:26:2f:00:77:f9:fa:d0:ba:e8:
79:1e:d2:d1:78:de:df:77:40:80:1c:6c:f3:89:07:
34:57:d5:07:87:01:88:32:cc:81:5f:2a:23:31:6b:
29:96:43:86:c2:77:0e:67:91:52:78:bf:83:b3:ed:
42:ef:ef:f6:85:dd:80:b0:d9:e5:a9:5f:e6:f3:71:
aa:71:c0:13:ad:c7:6a:11:90:b9:06:e3:c7:82:bd:
cc:5b:a4:ec:ae:95:0c:d5:1b:79:d2:44:cc:b8:c8:
c5:24:01:28:87:8c:f8:dc:53:c0:a4:0f:59:f8:48:
b7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:36:DB:A7:5B:FD:DE:0D:EB:48:CD:BC:FD:B0:55:83:A8:8F:AE:44
X509v3 Authority Key Identifier:
keyid:8D:82:79:DA:ED:AB:BF:91:83:AF:B6:8E:43:FB:1E:5B:B6:D4:33:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYJ52u2rv5GDr7aOQ_seW7bUM6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:60:7c:0a:f1:60:aa:0a:a6:f0:ed:c0:74:84:c4:80:c1:7d:
40:9a:35:63:65:57:6e:7d:f9:99:bf:45:3c:22:14:db:4e:0c:
4a:e8:de:28:cc:38:4b:85:15:05:3c:67:56:d5:07:65:fa:bc:
3c:89:d0:fa:ea:3e:e5:87:d4:0d:e3:16:30:1f:2b:fb:ef:92:
d5:a2:9d:1a:ec:43:87:0d:00:33:9d:fb:03:0a:f2:6f:b6:fa:
83:4b:e1:6b:38:f2:23:ea:0b:3f:82:99:7c:ff:a3:3e:5f:93:
fc:59:7f:b0:d8:e4:a6:86:37:98:2a:51:ba:e6:64:dc:01:e8:
b0:49:5b:37:99:0e:eb:5e:ee:57:a8:63:93:3c:d1:1c:34:91:
fd:dc:44:41:43:6b:36:21:2b:55:34:1a:4c:ef:3e:07:a2:00:
ae:c8:0e:89:1c:60:19:44:90:46:30:2c:62:e9:e5:c1:1d:65:
ce:fa:9f:f9:c6:ef:3c:19:2c:5c:8f:66:1c:7e:be:e0:87:35:
6a:91:51:19:18:c9:73:39:28:22:63:84:10:ea:ec:c5:cf:a0:
d7:41:be:78:e5:6d:8b:df:0b:6a:a1:95:13:f2:6c:05:62:3a:
57:cf:a0:2a:61:da:42:13:72:1f:49:72:d2:77:19:fc:14:11:
18:90:1c:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxEwdhzNbkFr+hxlM0VWJAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkODI3OWRhZWRhYmJmOTE4M2FmYjY4ZTQzZmIxZTViYjZk
NDMzYTMwHhcNMjUxMTExMDQwMTAzWhcNMjUxMTEyMDQwMTAzWjAzMTEwLwYDVQQD
EyhlNjM2ZGJhNzViZmRkZTBkZWI0OGNkYmNmZGIwNTU4M2E4OGZhZTQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXydKP7soClIIoXpeoDRqUrSgIOc
nxXs3BbAY6Acdh+eTZDvvip/T4MCvUbwWI7ouQCWB0l9sHWkAeCvWSqNzVma0Dyq
X1LOmHmTmiTsZCUq+Uj6l7Ix99nmC4grlJRASuhVxFlclltfjWxHRBzxzMK2a1kb
Zb5QwMip1sFGe7xZwVcsBIQArfgHmgwmLwB3+frQuuh5HtLReN7fd0CAHGzziQc0
V9UHhwGIMsyBXyojMWsplkOGwncOZ5FSeL+Ds+1C7+/2hd2AsNnlqV/m83GqccAT
rcdqEZC5BuPHgr3MW6TsrpUM1Rt50kTMuMjFJAEoh4z43FPApA9Z+Ei3+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOY226db/d4N60jNvP2wVYOoj65EMB8GA1UdIwQY
MBaAFI2Cedrtq7+Rg6+2jkP7Hlu21DOjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvallKNTJ1MnJ2NUdEcjdhT1Ffc2VXN2JVTTZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9jZmI5NTMtYmZlZi00NGZlLTgyNWEt
YWY3M2RjMGY2ZjJhLzEvallKNTJ1MnJ2NUdEcjdhT1Ffc2VXN2JVTTZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC9jZmI5NTMtYmZlZi00NGZlLTgyNWEtYWY3M2RjMGY2ZjJh
LzEvallKNTJ1MnJ2NUdEcjdhT1Ffc2VXN2JVTTZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW2B8CvFg
qgqm8O3AdITEgMF9QJo1Y2VXbn35mb9FPCIU204MSujeKMw4S4UVBTxnVtUHZfq8
PInQ+uo+5YfUDeMWMB8r+++S1aKdGuxDhw0AM537Awryb7b6g0vhazjyI+oLP4KZ
fP+jPl+T/Fl/sNjkpoY3mCpRuuZk3AHosElbN5kO617uV6hjkzzRHDSR/dxEQUNr
NiErVTQaTO8+B6IArsgOiRxgGUSQRjAsYunlwR1lzvqf+cbvPBksXI9mHH6+4Ic1
apFRGRjJczkoImOEEOrsxc+g10G+eOVti98LaqGVE/JsBWI6V8+gKmHaQhNyH0ly
0ncZ/BQRGJAcMw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:05:45 2025 by rpki-client