Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
File: VkmqAU6M8795JOd1h9CnyMqhxJc.mft (raw, json)
Hash identifier: 45MRElZKHKuv+rULJT5rTv9rWLvO8cS4l0Zzhg58sQ8=
Subject key identifier: FE:AA:26:AE:0C:34:D2:05:84:98:61:15:C7:01:40:58:5A:3A:A1:D6
Authority key identifier: 56:49:AA:01:4E:8C:F3:BF:79:24:E7:75:87:D0:A7:C8:CA:A1:C4:97
Certificate issuer: /CN=5649aa014e8cf3bf7924e77587d0a7c8caa1c497
Certificate serial: 019A722607588FAB90056D0A99B44F522AAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
Manifest number: 0B89
Signing time: Tue 11 Nov 2025 09:01:26 +0000
Manifest this update: Tue 11 Nov 2025 09:01:26 +0000
Manifest next update: Wed 12 Nov 2025 09:01:26 +0000
Files and hashes: 1: VkmqAU6M8795JOd1h9CnyMqhxJc.crl (hash: 0c/FqFqrIMTMZ/h/m2ddJcyWCMavb8QhFR3IYr22y7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:07:58:8f:ab:90:05:6d:0a:99:b4:4f:52:2a:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5649aa014e8cf3bf7924e77587d0a7c8caa1c497
Validity
Not Before: Nov 11 09:01:26 2025 GMT
Not After : Nov 12 09:01:26 2025 GMT
Subject: CN=feaa26ae0c34d20584986115c70140585a3aa1d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:8c:8a:33:e0:73:29:e6:0e:39:a3:2f:66:f8:
c6:f7:1d:30:fb:12:f8:4d:07:6a:f5:1b:9a:9b:de:
c1:b8:ae:12:69:65:d1:8a:a1:67:bb:4f:01:1d:28:
2d:6b:f9:68:6f:72:75:e6:59:a8:6e:5e:b0:0f:e1:
42:67:4b:06:16:db:2b:1e:a5:d5:e7:a6:72:0f:e7:
28:4f:0e:9d:6c:fa:e7:74:0e:83:3e:1f:20:df:00:
47:9a:77:c8:f6:ed:f8:28:0f:06:61:2a:8a:54:56:
2e:8c:83:37:c4:60:36:3b:40:f4:7b:58:ee:ce:dc:
83:a5:d6:26:9f:70:41:b8:d2:66:8e:a0:69:38:ca:
d5:c0:5f:98:f5:69:bf:eb:60:de:5d:1a:37:bf:28:
f8:cf:c3:41:87:fa:cc:fe:c5:41:70:c5:13:56:44:
2a:0f:55:8b:76:04:2b:36:2e:7f:31:69:10:bb:35:
d2:27:bc:01:5f:a4:5f:88:bd:d0:be:f3:c0:88:5d:
c0:20:6a:c2:c2:61:3b:d4:a6:af:77:be:f9:15:91:
2f:25:45:51:fc:b9:a1:0f:5b:b2:03:de:4f:e1:14:
76:22:d6:81:74:d7:76:37:db:01:70:34:34:d8:56:
5b:58:18:6b:cb:50:4d:99:6c:fb:40:f9:6d:92:93:
d8:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:AA:26:AE:0C:34:D2:05:84:98:61:15:C7:01:40:58:5A:3A:A1:D6
X509v3 Authority Key Identifier:
keyid:56:49:AA:01:4E:8C:F3:BF:79:24:E7:75:87:D0:A7:C8:CA:A1:C4:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:06:cf:e6:a9:ff:44:1f:46:13:d5:0b:c2:67:39:f9:99:79:
8b:99:ca:e8:c7:bc:2e:47:0d:c5:39:e7:b8:56:0e:b3:00:ed:
4f:5c:0f:c2:1c:8b:24:4d:9a:98:96:59:30:c4:15:74:fa:b3:
e3:4a:d1:9e:59:20:5f:59:d5:b1:1f:73:0b:5e:c5:02:9b:84:
45:f7:cf:d6:80:7b:ab:17:66:ad:cf:46:d4:4c:b6:72:12:2d:
87:05:be:7c:1c:ca:a8:7a:c6:0b:d7:ee:a5:be:2c:8e:e1:67:
9e:30:5d:7e:aa:2b:12:ef:6c:a7:ee:30:cc:b5:50:5d:8d:4e:
c5:c1:a8:d5:7c:b2:ad:4a:e0:f3:08:d9:ec:fd:8e:55:f3:da:
e5:22:03:11:d7:db:a0:15:19:05:b8:c0:c4:72:f8:c0:13:a9:
02:7e:0c:8b:c1:17:a5:c4:00:db:f7:02:af:63:5f:5a:55:bc:
23:e4:39:81:f7:ea:04:c9:47:55:95:9c:65:07:e0:c6:ef:58:
1b:c7:7c:36:f4:5d:35:57:93:d6:f6:12:a7:3c:df:f1:d6:06:
da:e5:05:15:31:3a:76:f8:81:a5:17:5d:46:ff:a8:3f:db:8c:
d0:06:f8:e5:1b:4d:40:63:06:0b:e6:34:6b:e7:78:67:f8:f1:
6f:1d:cd:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJgdYj6uQBW0KmbRPUiqrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2NDlhYTAxNGU4Y2YzYmY3OTI0ZTc3NTg3ZDBhN2M4Y2Fh
MWM0OTcwHhcNMjUxMTExMDkwMTI2WhcNMjUxMTEyMDkwMTI2WjAzMTEwLwYDVQQD
EyhmZWFhMjZhZTBjMzRkMjA1ODQ5ODYxMTVjNzAxNDA1ODVhM2FhMWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA34yKM+BzKeYOOaMvZvjG9x0w+xL4
TQdq9Ruam97BuK4SaWXRiqFnu08BHSgta/lob3J15lmobl6wD+FCZ0sGFtsrHqXV
56ZyD+coTw6dbPrndA6DPh8g3wBHmnfI9u34KA8GYSqKVFYujIM3xGA2O0D0e1ju
ztyDpdYmn3BBuNJmjqBpOMrVwF+Y9Wm/62DeXRo3vyj4z8NBh/rM/sVBcMUTVkQq
D1WLdgQrNi5/MWkQuzXSJ7wBX6RfiL3QvvPAiF3AIGrCwmE71Kavd775FZEvJUVR
/LmhD1uyA95P4RR2ItaBdNd2N9sBcDQ02FZbWBhry1BNmWz7QPltkpPYrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP6qJq4MNNIFhJhhFccBQFhaOqHWMB8GA1UdIwQY
MBaAFFZJqgFOjPO/eSTndYfQp8jKocSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVmttcUFVNk04Nzk1Sk9kMWg5Q255TXFoeEpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC85ZDI5MDctMGE5Yy00ZTIzLWE4Zjgt
ZTg4NjBkYTEwMDM4LzEvVmttcUFVNk04Nzk1Sk9kMWg5Q255TXFoeEpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC85ZDI5MDctMGE5Yy00ZTIzLWE4ZjgtZTg4NjBkYTEwMDM4
LzEvVmttcUFVNk04Nzk1Sk9kMWg5Q255TXFoeEpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZwbP5qn/
RB9GE9ULwmc5+Zl5i5nK6Me8LkcNxTnnuFYOswDtT1wPwhyLJE2amJZZMMQVdPqz
40rRnlkgX1nVsR9zC17FApuERffP1oB7qxdmrc9G1Ey2chIthwW+fBzKqHrGC9fu
pb4sjuFnnjBdfqorEu9sp+4wzLVQXY1OxcGo1XyyrUrg8wjZ7P2OVfPa5SIDEdfb
oBUZBbjAxHL4wBOpAn4Mi8EXpcQA2/cCr2NfWlW8I+Q5gffqBMlHVZWcZQfgxu9Y
G8d8NvRdNVeT1vYSpzzf8dYG2uUFFTE6dviBpRddRv+oP9uM0Ab45RtNQGMGC+Y0
a+d4Z/jxbx3NHw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:45:58 2025 by rpki-client