Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
File: pol1o9gy4UUny7or4QujwebGOFY.mft (raw, json)
Hash identifier: Ym8JGq85Z1MWKQObIPWWTbAAyUFgbVFxGJe1MQBI64M=
Subject key identifier: 46:97:E4:62:1F:54:F9:C1:14:71:9B:0C:EE:75:69:24:63:11:85:B4
Authority key identifier: A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
Certificate issuer: /CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Certificate serial: 019A71B86D286C82BE83C934A3C437A5EA82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
Manifest number: 06F3
Signing time: Tue 11 Nov 2025 07:01:43 +0000
Manifest this update: Tue 11 Nov 2025 07:01:43 +0000
Manifest next update: Wed 12 Nov 2025 07:01:43 +0000
Files and hashes: 1: pol1o9gy4UUny7or4QujwebGOFY.crl (hash: EBaOl5Q1DAYC6z49uGEsKVI3QbBLIQnQZGVbMhFr4Lo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:6d:28:6c:82:be:83:c9:34:a3:c4:37:a5:ea:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Validity
Not Before: Nov 11 07:01:43 2025 GMT
Not After : Nov 12 07:01:43 2025 GMT
Subject: CN=4697e4621f54f9c114719b0cee756924631185b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:7e:f1:99:f3:9f:f1:81:6b:31:5c:24:d0:d1:
4b:76:02:ca:ab:87:38:de:aa:4d:ad:d3:36:0e:a5:
fb:95:d1:2f:b8:14:16:a4:15:fd:d0:87:1b:28:0a:
ea:e3:97:88:23:c0:ad:16:ee:28:aa:46:11:e5:8c:
f6:f4:d3:6d:10:0c:49:68:14:84:8e:44:8d:b8:9e:
9a:62:ba:b5:44:bb:5c:3a:61:30:b2:7d:a5:d3:92:
37:63:55:75:1c:96:a0:0e:f9:cf:f5:e3:2d:ea:33:
7f:e7:29:8c:75:d2:2c:96:c1:f6:f1:9b:05:cb:6b:
99:7a:c8:fe:57:8f:2f:7e:89:0d:eb:5b:49:60:f3:
d3:2c:25:fd:46:2b:55:f9:ef:74:d6:da:19:3f:4f:
0d:86:0d:19:45:ca:08:d3:4b:12:e6:09:38:a5:55:
fc:50:fd:0a:94:a8:c5:a6:c7:b8:81:35:e4:f6:a0:
d4:92:88:80:bb:90:f2:bb:50:30:b4:a9:7c:fb:68:
26:8e:5f:ac:b7:26:5e:10:94:94:56:48:3e:31:16:
2e:66:33:3a:4c:df:73:13:07:70:9b:42:f5:f4:74:
ee:2d:ae:ee:bb:89:02:b5:57:81:4b:f8:21:d6:85:
03:37:82:f3:6f:63:59:dd:76:23:5d:74:07:a6:8d:
75:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:97:E4:62:1F:54:F9:C1:14:71:9B:0C:EE:75:69:24:63:11:85:B4
X509v3 Authority Key Identifier:
keyid:A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:e7:b8:94:38:66:8f:6e:e6:b1:20:e3:8a:2a:58:6f:1c:f2:
b4:98:84:62:dc:cb:9c:8c:13:fa:69:89:52:d9:94:6c:d1:02:
78:4d:96:ee:ae:3e:32:82:fb:59:86:eb:6b:be:e3:19:d5:c3:
17:e9:e8:b7:56:18:d7:d2:a8:8e:cb:fb:0f:31:da:4b:8f:1e:
6a:dc:f2:5b:bd:c1:4d:42:ed:59:ed:11:72:40:7b:06:60:c6:
e7:61:11:d7:35:1c:c7:aa:eb:66:26:e2:be:44:f5:16:65:bc:
0d:f7:a7:2f:df:98:bf:d7:48:34:9e:11:d6:67:ea:ac:c9:c0:
bc:cb:88:a1:af:7e:91:be:9f:4d:74:f8:85:54:77:9d:0d:d8:
ac:28:fd:ba:55:ac:f2:89:f9:32:cf:70:99:13:51:fb:70:fe:
d5:0d:93:5f:0b:7e:a8:48:bd:f4:62:fe:ef:3a:88:20:7a:71:
f6:68:4a:e3:15:e2:aa:22:44:1c:fb:24:8e:e7:70:1e:8d:5e:
1d:ec:38:5c:ed:84:c6:7a:c3:cb:2d:fb:01:26:0f:48:80:bf:
2b:a3:30:70:ec:b0:78:56:27:5e:4b:86:73:ad:25:af:19:c3:
4a:70:dd:2a:f4:6b:55:9f:eb:d3:23:fa:c6:26:d4:6e:26:b4:
81:83:79:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuG0obIK+g8k0o8Q3peqCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2ODk3NWEzZDgzMmUxNDUyN2NiYmEyYmUxMGJhM2MxZTZj
NjM4NTYwHhcNMjUxMTExMDcwMTQzWhcNMjUxMTEyMDcwMTQzWjAzMTEwLwYDVQQD
Eyg0Njk3ZTQ2MjFmNTRmOWMxMTQ3MTliMGNlZTc1NjkyNDYzMTE4NWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA337xmfOf8YFrMVwk0NFLdgLKq4c4
3qpNrdM2DqX7ldEvuBQWpBX90IcbKArq45eII8CtFu4oqkYR5Yz29NNtEAxJaBSE
jkSNuJ6aYrq1RLtcOmEwsn2l05I3Y1V1HJagDvnP9eMt6jN/5ymMddIslsH28ZsF
y2uZesj+V48vfokN61tJYPPTLCX9RitV+e901toZP08Nhg0ZRcoI00sS5gk4pVX8
UP0KlKjFpse4gTXk9qDUkoiAu5Dyu1AwtKl8+2gmjl+styZeEJSUVkg+MRYuZjM6
TN9zEwdwm0L19HTuLa7uu4kCtVeBS/gh1oUDN4Lzb2NZ3XYjXXQHpo11PQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEaX5GIfVPnBFHGbDO51aSRjEYW0MB8GA1UdIwQY
MBaAFKaJdaPYMuFFJ8u6K+ELo8HmxjhWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wYjNjYzEtMzE4ZS00OTdmLWEyYjUt
MTMxNmFkODA1ZTY0LzEvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi8wYjNjYzEtMzE4ZS00OTdmLWEyYjUtMTMxNmFkODA1ZTY0
LzEvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFue4lDhm
j27msSDjiipYbxzytJiEYtzLnIwT+mmJUtmUbNECeE2W7q4+MoL7WYbra77jGdXD
F+not1YY19Kojsv7DzHaS48eatzyW73BTULtWe0RckB7BmDG52ER1zUcx6rrZibi
vkT1FmW8DfenL9+Yv9dINJ4R1mfqrMnAvMuIoa9+kb6fTXT4hVR3nQ3YrCj9ulWs
8on5Ms9wmRNR+3D+1Q2TXwt+qEi99GL+7zqIIHpx9mhK4xXiqiJEHPskjudwHo1e
Hew4XO2ExnrDyy37ASYPSIC/K6MwcOyweFYnXkuGc60lrxnDSnDdKvRrVZ/r0yP6
xibUbia0gYN5Hg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:42 2025 by rpki-client