Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
File: mEL3HQwjZ4gu9HCLIGtLbimjezM.mft (raw, json)
Hash identifier: LiCu8flWADysrpdFg4yig99ztzJ+qly6/HkTICxYyw8=
Subject key identifier: F8:A8:A5:1A:C2:0A:32:53:CC:01:95:BA:42:B0:23:72:92:6E:70:A8
Authority key identifier: 98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33
Certificate issuer: /CN=9842f71d0c2367882ef4708b206b4b6e29a37b33
Certificate serial: 019A71B90A97BAD6919CAC565DFB57B3A1F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
Manifest number: 13B4
Signing time: Tue 11 Nov 2025 07:02:23 +0000
Manifest this update: Tue 11 Nov 2025 07:02:23 +0000
Manifest next update: Wed 12 Nov 2025 07:02:23 +0000
Files and hashes: 1: mEL3HQwjZ4gu9HCLIGtLbimjezM.crl (hash: 72q6kgJ5B+JffihK0gwSHLma7348fvfBblxMRW70vRs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:0a:97:ba:d6:91:9c:ac:56:5d:fb:57:b3:a1:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9842f71d0c2367882ef4708b206b4b6e29a37b33
Validity
Not Before: Nov 11 07:02:23 2025 GMT
Not After : Nov 12 07:02:23 2025 GMT
Subject: CN=f8a8a51ac20a3253cc0195ba42b02372926e70a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:41:08:0c:76:02:4a:b0:af:e5:e8:3b:bd:c2:
63:86:19:38:d8:fa:73:91:88:87:3f:dd:a7:bf:a4:
a9:09:f9:35:f7:84:30:e4:38:54:0b:ca:0a:30:ed:
1f:f9:e4:05:c4:80:70:2d:d2:47:ad:43:1b:47:a0:
1d:d7:04:ae:75:4a:02:b0:d6:e1:ed:49:fa:af:29:
eb:ab:8b:cc:d8:e4:f7:13:21:4b:f6:bb:f1:85:97:
a1:d8:1c:81:2e:6f:23:9f:b5:11:a8:5c:30:1b:57:
c8:ff:0b:c1:60:0b:75:fd:01:bb:52:a8:21:8f:09:
06:11:19:94:dd:6b:29:ec:ff:a1:a9:15:d8:6a:ec:
2f:d6:c2:b4:f1:f4:7b:2b:ad:ed:ea:ba:30:1e:32:
eb:72:2c:58:41:d5:a9:5f:cc:f1:c5:84:06:d7:8d:
5b:b9:8a:4b:90:0b:d4:0e:6f:d4:5d:c3:21:8e:38:
9a:fe:2e:a6:8f:ce:98:47:0b:0a:b2:54:dc:9a:f0:
67:84:c3:0a:f5:34:7c:cf:02:41:f4:e0:c9:d8:74:
14:6e:96:6a:c8:99:94:23:30:ae:9c:71:61:fd:48:
4d:2e:f5:e4:3d:b0:3c:89:1d:17:35:d9:d5:07:8c:
6a:07:3e:67:9c:7d:33:4d:68:f2:55:20:41:b8:cf:
68:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A8:A5:1A:C2:0A:32:53:CC:01:95:BA:42:B0:23:72:92:6E:70:A8
X509v3 Authority Key Identifier:
keyid:98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:59:da:27:da:a0:d5:58:d6:6d:f4:c2:b7:65:71:25:ea:f8:
d1:fc:a7:15:b1:c4:d1:ac:ab:ea:68:46:18:76:2f:f7:9a:b5:
65:df:cf:be:7e:78:1c:bd:57:21:77:e0:17:8d:a3:c9:11:15:
7a:d4:62:bc:00:ad:5b:9f:26:fc:46:e6:d4:e3:a2:03:5f:26:
4b:17:47:2c:34:95:06:74:2d:1c:f6:53:b6:68:9b:f9:c7:3e:
08:e9:c1:7f:29:23:82:e9:a2:00:e2:fa:72:a6:30:45:46:c1:
99:02:b4:30:ee:81:86:dc:fc:3a:17:8a:44:9b:49:17:96:ee:
e7:6b:67:e1:75:70:43:10:38:ad:64:2a:20:d0:9d:4b:24:cc:
8e:c3:c3:7e:ae:0a:2e:52:6e:89:7c:39:ea:04:3b:23:ab:1d:
09:18:14:ee:43:25:5f:14:fa:75:d9:bc:f1:89:cf:7f:a5:d8:
e1:67:b7:06:c9:29:2d:5a:89:10:0d:7e:19:3a:41:e1:44:ea:
41:45:b6:16:1a:0a:87:69:47:60:fa:e2:13:7c:70:c4:f3:6c:
ed:97:52:ff:dc:90:5f:c8:f2:98:b9:9e:b8:2e:6e:1d:58:b7:
75:e1:bf:5a:a2:01:7b:12:5e:0c:ca:0a:0d:40:90:55:57:ec:
f9:2b:50:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuQqXutaRnKxWXftXs6HzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4NDJmNzFkMGMyMzY3ODgyZWY0NzA4YjIwNmI0YjZlMjlh
MzdiMzMwHhcNMjUxMTExMDcwMjIzWhcNMjUxMTEyMDcwMjIzWjAzMTEwLwYDVQQD
EyhmOGE4YTUxYWMyMGEzMjUzY2MwMTk1YmE0MmIwMjM3MjkyNmU3MGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUEIDHYCSrCv5eg7vcJjhhk42Ppz
kYiHP92nv6SpCfk194Qw5DhUC8oKMO0f+eQFxIBwLdJHrUMbR6Ad1wSudUoCsNbh
7Un6rynrq4vM2OT3EyFL9rvxhZeh2ByBLm8jn7URqFwwG1fI/wvBYAt1/QG7Uqgh
jwkGERmU3Wsp7P+hqRXYauwv1sK08fR7K63t6rowHjLrcixYQdWpX8zxxYQG141b
uYpLkAvUDm/UXcMhjjia/i6mj86YRwsKslTcmvBnhMMK9TR8zwJB9ODJ2HQUbpZq
yJmUIzCunHFh/UhNLvXkPbA8iR0XNdnVB4xqBz5nnH0zTWjyVSBBuM9oRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPiopRrCCjJTzAGVukKwI3KSbnCoMB8GA1UdIwQY
MBaAFJhC9x0MI2eILvRwiyBrS24po3szMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUVMM0hRd2paNGd1OUhDTElHdExiaW1qZXpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8yNWM5NDctODUzNC00MzQxLWFkNmUt
N2RhOGRiYWVhOTRhLzEvbUVMM0hRd2paNGd1OUhDTElHdExiaW1qZXpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS8yNWM5NDctODUzNC00MzQxLWFkNmUtN2RhOGRiYWVhOTRh
LzEvbUVMM0hRd2paNGd1OUhDTElHdExiaW1qZXpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUlnaJ9qg
1VjWbfTCt2VxJer40fynFbHE0ayr6mhGGHYv95q1Zd/Pvn54HL1XIXfgF42jyREV
etRivACtW58m/Ebm1OOiA18mSxdHLDSVBnQtHPZTtmib+cc+COnBfykjgumiAOL6
cqYwRUbBmQK0MO6Bhtz8OheKRJtJF5bu52tn4XVwQxA4rWQqINCdSyTMjsPDfq4K
LlJuiXw56gQ7I6sdCRgU7kMlXxT6ddm88YnPf6XY4We3BskpLVqJEA1+GTpB4UTq
QUW2FhoKh2lHYPriE3xwxPNs7ZdS/9yQX8jymLmeuC5uHVi3deG/WqIBexJeDMoK
DUCQVVfs+StQIw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:35:07 2025 by rpki-client