Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
File: g-k154ofll0QiRUhXQ8Et2tzPlg.mft (raw, json)
Hash identifier: Dwb6jwLFL6iFokrhG9NdVDJ3Ek1MFCXsMZ3Ytg8HFKg=
Subject key identifier: 22:8A:75:7C:96:CA:EB:97:1B:3D:D9:87:23:69:63:31:CB:10:8D:6B
Authority key identifier: 83:E9:35:E7:8A:1F:96:5D:10:89:15:21:5D:0F:04:B7:6B:73:3E:58
Certificate issuer: /CN=83e935e78a1f965d108915215d0f04b76b733e58
Certificate serial: 019A71B8D5C4400B97696B31A4B89598C288
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 07:02:10 +0000
Manifest this update: Tue 11 Nov 2025 07:02:10 +0000
Manifest next update: Wed 12 Nov 2025 07:02:10 +0000
Files and hashes: 1: g-k154ofll0QiRUhXQ8Et2tzPlg.crl (hash: vB4FxpYBjodR5TlRvZP2R7ogxHi5nuMouj1XWBMKNkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:d5:c4:40:0b:97:69:6b:31:a4:b8:95:98:c2:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83e935e78a1f965d108915215d0f04b76b733e58
Validity
Not Before: Nov 11 07:02:10 2025 GMT
Not After : Nov 12 07:02:10 2025 GMT
Subject: CN=228a757c96caeb971b3dd98723696331cb108d6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b2:42:9a:33:f6:d7:44:ae:18:40:03:a0:bf:
37:fe:2a:a8:88:91:e2:73:9b:28:01:e9:f9:cb:80:
70:a0:e2:e7:55:e7:ec:23:7c:d1:d2:6c:37:11:04:
d9:4a:ac:ba:2b:90:21:eb:52:6c:63:0b:47:5f:1e:
6e:15:1f:d3:58:c3:f0:95:10:f1:07:d5:b9:b5:39:
a2:1e:ad:0f:66:3f:65:a6:37:f3:b8:31:2f:4a:7b:
d5:ed:c9:57:be:cb:2a:27:4b:9b:53:04:89:98:b2:
39:36:c3:27:c8:ce:1f:f6:17:d5:8d:ca:d6:d3:f5:
d9:a2:d9:32:c4:cb:3d:10:02:43:12:20:7e:c4:76:
ef:c9:d1:66:a8:30:9e:6f:a1:c8:20:9e:bd:6d:fe:
5d:6c:4c:b3:b8:de:5f:69:0c:1d:59:f2:6f:0c:30:
30:a8:7c:92:40:6b:15:c8:1d:d8:3f:4e:39:31:41:
51:de:d2:1d:15:78:93:84:1d:e5:1b:8c:e9:f5:82:
42:33:d2:b2:41:0e:38:b1:5e:d1:12:78:f5:e8:2c:
e1:9f:68:76:37:20:c0:3f:e7:ea:0c:9d:f3:c2:a2:
6f:86:5d:38:30:4a:6d:bf:a7:12:fd:d8:28:a7:80:
84:81:b3:6e:03:18:a3:21:bb:e9:90:33:df:62:b7:
8f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8A:75:7C:96:CA:EB:97:1B:3D:D9:87:23:69:63:31:CB:10:8D:6B
X509v3 Authority Key Identifier:
keyid:83:E9:35:E7:8A:1F:96:5D:10:89:15:21:5D:0F:04:B7:6B:73:3E:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:1a:6a:8d:b5:25:84:7a:c8:c1:e2:68:fa:00:16:e6:6d:84:
61:7c:48:be:b5:ef:6f:49:16:e2:85:c7:66:6d:a1:ea:f3:79:
b9:84:37:1d:09:03:3e:8b:d7:f6:ae:8e:75:bf:90:73:a3:25:
1f:5e:a3:20:42:2c:e9:e7:2b:b2:2b:e0:52:ea:1e:89:c4:d6:
88:3b:bb:55:cf:03:37:a6:7b:97:0b:d1:bf:95:d7:65:02:11:
d5:1e:59:da:41:27:1c:4f:eb:82:ad:84:f9:7f:ea:1a:c3:16:
ae:45:e4:4f:7b:10:15:57:e4:bb:48:31:9c:8c:85:01:c8:ec:
7a:65:d4:dd:79:b9:6c:b9:fe:2b:66:29:49:b5:a3:32:c9:9a:
49:10:3e:c2:13:a1:44:bc:7a:8f:b4:83:bf:49:83:83:eb:02:
fa:96:09:ea:55:6f:68:d6:6c:4b:2f:c5:06:3f:1d:0a:19:96:
05:f1:02:2d:42:d5:ff:16:cf:62:64:f6:3d:6d:bd:ac:25:4e:
ad:27:d7:e8:dc:2e:f0:7e:29:4c:52:fd:ae:a8:6c:a3:56:72:
11:54:c5:4a:7b:d6:83:ac:6b:7f:81:87:62:19:df:6c:08:c0:
85:a6:bb:1d:25:4a:9e:2b:c2:8d:cb:9d:25:92:5a:2b:af:b3:
2d:e1:e1:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuNXEQAuXaWsxpLiVmMKIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzZTkzNWU3OGExZjk2NWQxMDg5MTUyMTVkMGYwNGI3NmI3
MzNlNTgwHhcNMjUxMTExMDcwMjEwWhcNMjUxMTEyMDcwMjEwWjAzMTEwLwYDVQQD
EygyMjhhNzU3Yzk2Y2FlYjk3MWIzZGQ5ODcyMzY5NjMzMWNiMTA4ZDZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlLJCmjP210SuGEADoL83/iqoiJHi
c5soAen5y4BwoOLnVefsI3zR0mw3EQTZSqy6K5Ah61JsYwtHXx5uFR/TWMPwlRDx
B9W5tTmiHq0PZj9lpjfzuDEvSnvV7clXvssqJ0ubUwSJmLI5NsMnyM4f9hfVjcrW
0/XZotkyxMs9EAJDEiB+xHbvydFmqDCeb6HIIJ69bf5dbEyzuN5faQwdWfJvDDAw
qHySQGsVyB3YP045MUFR3tIdFXiThB3lG4zp9YJCM9KyQQ44sV7REnj16Czhn2h2
NyDAP+fqDJ3zwqJvhl04MEptv6cS/dgop4CEgbNuAxijIbvpkDPfYrePgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCKKdXyWyuuXGz3ZhyNpYzHLEI1rMB8GA1UdIwQY
MBaAFIPpNeeKH5ZdEIkVIV0PBLdrcz5YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZy1rMTU0b2ZsbDBRaVJVaFhROEV0MnR6UGxnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9hNDIzYzctZmE3ZC00OWY4LWE2ZjMt
MGE2N2YwMGZkZWRlLzEvZy1rMTU0b2ZsbDBRaVJVaFhROEV0MnR6UGxnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS9hNDIzYzctZmE3ZC00OWY4LWE2ZjMtMGE2N2YwMGZkZWRl
LzEvZy1rMTU0b2ZsbDBRaVJVaFhROEV0MnR6UGxnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAghpqjbUl
hHrIweJo+gAW5m2EYXxIvrXvb0kW4oXHZm2h6vN5uYQ3HQkDPovX9q6Odb+Qc6Ml
H16jIEIs6ecrsivgUuoeicTWiDu7Vc8DN6Z7lwvRv5XXZQIR1R5Z2kEnHE/rgq2E
+X/qGsMWrkXkT3sQFVfku0gxnIyFAcjsemXU3Xm5bLn+K2YpSbWjMsmaSRA+whOh
RLx6j7SDv0mDg+sC+pYJ6lVvaNZsSy/FBj8dChmWBfECLULV/xbPYmT2PW29rCVO
rSfX6Nwu8H4pTFL9rqhso1ZyEVTFSnvWg6xrf4GHYhnfbAjAhaa7HSVKnivCjcud
JZJaK6+zLeHhTw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:46:53 2025 by rpki-client