Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
File: obtQVKF8yU__wrwpWhW_74qQQwo.mft (raw, json)
Hash identifier: ydFupCMiw9g78E/D7/V1oznC+svAwKUoZItXa0oLBD4=
Subject key identifier: 19:8F:A8:DA:D3:4B:A8:B7:90:08:CF:AA:F0:C3:82:32:6E:BC:E2:AF
Authority key identifier: A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A
Certificate issuer: /CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
Certificate serial: 019A7293626978E4296FACC86E3AF76336B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
Manifest number: 0734
Signing time: Tue 11 Nov 2025 11:00:52 +0000
Manifest this update: Tue 11 Nov 2025 11:00:52 +0000
Manifest next update: Wed 12 Nov 2025 11:00:52 +0000
Files and hashes: 1: obtQVKF8yU__wrwpWhW_74qQQwo.crl (hash: YZDbuU8hl/nrDKPR3VESw3dPyb6M2Hq/eAcA8h1K9UM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:62:69:78:e4:29:6f:ac:c8:6e:3a:f7:63:36:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
Validity
Not Before: Nov 11 11:00:52 2025 GMT
Not After : Nov 12 11:00:52 2025 GMT
Subject: CN=198fa8dad34ba8b79008cfaaf0c382326ebce2af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:19:69:f2:08:51:8b:cf:16:c7:8b:94:15:3b:
34:84:76:2b:f8:1a:9d:a5:28:71:49:4c:50:50:38:
0c:d7:08:33:fb:50:54:d5:84:89:ea:c9:3b:cd:90:
0a:7d:55:89:85:d3:8b:65:62:52:96:ea:9e:34:34:
9a:1c:43:d4:69:bb:2f:77:73:95:d9:3f:cf:de:ef:
95:61:a1:65:12:db:c9:67:ff:a9:2c:82:05:22:8d:
08:67:d7:b2:81:3a:80:6b:b4:bb:9d:10:e6:10:97:
88:da:13:ac:8c:e3:42:2a:7d:11:24:61:be:d1:06:
b9:77:f2:21:d7:6f:28:1e:d2:eb:84:58:53:87:df:
0f:e0:28:4b:dd:7c:b2:98:41:da:a6:d6:de:6d:30:
2a:e3:4d:93:50:3f:3d:89:fc:a4:24:9f:0b:b0:89:
45:1d:b3:f6:20:d0:56:76:b9:cb:3f:db:f6:0c:7f:
6c:98:bf:f6:3c:ea:18:e8:de:35:4d:3d:0e:3f:b4:
db:6c:9e:61:ce:17:4e:7e:5b:3f:64:e8:72:47:ff:
3f:f8:f9:85:b4:ed:d9:f7:93:00:23:60:61:bb:2c:
6a:ab:c6:aa:df:c9:9b:29:5e:0d:79:df:2c:62:e0:
b3:c1:f8:e6:4b:4c:9f:37:94:2d:b7:b9:0b:b4:7b:
25:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:8F:A8:DA:D3:4B:A8:B7:90:08:CF:AA:F0:C3:82:32:6E:BC:E2:AF
X509v3 Authority Key Identifier:
keyid:A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:21:78:e2:e1:4a:28:7e:ae:ee:d2:c7:32:a1:5d:6e:e4:33:
78:21:25:d4:20:53:52:76:7d:8a:48:dc:9b:b4:c4:8d:27:e8:
7e:11:76:26:5c:73:84:c2:2a:6c:cb:6b:c7:28:87:ff:eb:5e:
aa:e2:8e:a9:f5:ad:b9:d7:25:76:77:7f:28:40:fd:73:53:6e:
39:05:d0:b5:a5:a5:07:33:e4:39:9b:14:e0:1a:60:bb:6c:d5:
fa:0c:96:e4:25:2d:ac:81:4d:98:9a:9c:13:ce:6b:68:8e:c5:
ed:6c:84:d1:ec:cd:1f:57:7a:8a:73:62:7d:43:ba:95:1c:4d:
02:c6:f1:6a:90:70:ce:eb:66:f8:8f:53:59:bb:76:6e:5e:b0:
e2:4f:18:79:ee:c9:80:66:4d:2d:6f:e8:cc:60:29:82:94:14:
63:16:98:13:19:49:71:f3:87:59:f5:99:b8:3f:7c:96:30:07:
c6:b4:2d:99:ea:35:45:3c:3d:5f:e3:08:7d:ec:85:ef:14:e9:
61:5d:87:c7:57:e5:9f:0d:bb:46:b6:d0:06:46:64:cd:74:c4:
7d:49:a1:b3:c1:eb:a9:9f:32:c7:17:ca:83:33:ee:a1:9d:8a:
78:e2:0b:5a:97:70:f7:fc:31:6f:33:91:3d:50:9b:bd:83:1d:
fb:a9:d1:3c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyk2JpeOQpb6zIbjr3YzaxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExYmI1MDU0YTE3Y2M5NGZmZmMyYmMyOTVhMTViZmVmOGE5
MDQzMGEwHhcNMjUxMTExMTEwMDUyWhcNMjUxMTEyMTEwMDUyWjAzMTEwLwYDVQQD
EygxOThmYThkYWQzNGJhOGI3OTAwOGNmYWFmMGMzODIzMjZlYmNlMmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3hlp8ghRi88Wx4uUFTs0hHYr+Bqd
pShxSUxQUDgM1wgz+1BU1YSJ6sk7zZAKfVWJhdOLZWJSluqeNDSaHEPUabsvd3OV
2T/P3u+VYaFlEtvJZ/+pLIIFIo0IZ9eygTqAa7S7nRDmEJeI2hOsjONCKn0RJGG+
0Qa5d/Ih128oHtLrhFhTh98P4ChL3XyymEHaptbebTAq402TUD89ifykJJ8LsIlF
HbP2INBWdrnLP9v2DH9smL/2POoY6N41TT0OP7TbbJ5hzhdOfls/ZOhyR/8/+PmF
tO3Z95MAI2Bhuyxqq8aq38mbKV4Ned8sYuCzwfjmS0yfN5Qtt7kLtHslgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBmPqNrTS6i3kAjPqvDDgjJuvOKvMB8GA1UdIwQY
MBaAFKG7UFShfMlP/8K8KVoVv++KkEMKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9hMzBjMTAtMWMyZC00NzhjLTljZjgt
NzIyNTVkMjQ5YzVkLzEvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS9hMzBjMTAtMWMyZC00NzhjLTljZjgtNzIyNTVkMjQ5YzVk
LzEvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVCF44uFK
KH6u7tLHMqFdbuQzeCEl1CBTUnZ9ikjcm7TEjSfofhF2JlxzhMIqbMtrxyiH/+te
quKOqfWtudcldnd/KED9c1NuOQXQtaWlBzPkOZsU4Bpgu2zV+gyW5CUtrIFNmJqc
E85raI7F7WyE0ezNH1d6inNifUO6lRxNAsbxapBwzutm+I9TWbt2bl6w4k8Yee7J
gGZNLW/ozGApgpQUYxaYExlJcfOHWfWZuD98ljAHxrQtmeo1RTw9X+MIfeyF7xTp
YV2Hx1flnw27RrbQBkZkzXTEfUmhs8HrqZ8yxxfKgzPuoZ2KeOILWpdw9/wxbzOR
PVCbvYMd+6nRPA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:56:30 2025 by rpki-client