Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
File: 4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft (raw, json)
Hash identifier: 13FbiumRCAxK5L9Qw5VcOc5LJbAWGKgwkx1QUmQDS4M=
Subject key identifier: 26:5B:8C:FB:21:74:C7:47:64:B8:E4:8E:E1:D8:44:C0:09:5A:58:5F
Authority key identifier: E1:20:2E:2E:4B:65:DB:3B:1F:E5:81:CD:B1:99:01:0B:2E:90:CF:78
Certificate issuer: /CN=e1202e2e4b65db3b1fe581cdb199010b2e90cf78
Certificate serial: 019A722669F950809114E9F5C065F710940C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
Manifest number: 0EA0
Signing time: Tue 11 Nov 2025 09:01:51 +0000
Manifest this update: Tue 11 Nov 2025 09:01:51 +0000
Manifest next update: Wed 12 Nov 2025 09:01:51 +0000
Files and hashes: 1: 4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl (hash: YIiikCg8VfrLOhMUo7hew18Kbs2ufxb+oeN1Q6NQS+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:69:f9:50:80:91:14:e9:f5:c0:65:f7:10:94:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1202e2e4b65db3b1fe581cdb199010b2e90cf78
Validity
Not Before: Nov 11 09:01:51 2025 GMT
Not After : Nov 12 09:01:51 2025 GMT
Subject: CN=265b8cfb2174c74764b8e48ee1d844c0095a585f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3f:a2:f4:c2:96:eb:ad:cc:03:d6:e0:05:cf:
77:4d:28:8c:ab:e8:b1:8b:01:60:43:49:30:78:13:
c6:96:52:99:ab:1b:8a:2b:5e:e0:ca:07:c9:f3:cf:
e9:2c:77:59:d5:98:e9:90:f1:2b:db:91:25:44:44:
b3:81:63:61:52:b3:96:17:eb:ec:6f:8d:d6:a6:3a:
2f:ad:d0:4b:f0:6c:90:13:e3:93:65:c2:b6:f2:d1:
57:34:8c:ad:88:5a:9f:07:4a:61:b2:aa:14:6c:ac:
af:f3:a6:c3:de:a2:eb:9d:5f:84:82:c8:a7:6d:76:
dd:30:c2:5f:7f:d7:5f:44:e2:25:13:ba:0c:06:78:
9e:77:ec:3d:05:ff:98:92:1d:f3:27:fe:14:5b:aa:
d1:1e:10:63:5f:0a:27:48:c4:aa:25:db:fc:13:2f:
23:b3:d5:cc:f3:29:fe:da:8f:3d:b5:c7:a2:65:c0:
8b:9a:4d:30:71:6c:25:98:1c:0e:46:c6:49:ac:0b:
76:fe:47:9c:d6:ed:a0:66:b0:d0:a9:c8:5f:c3:f5:
0a:cc:0f:e6:83:b7:b0:7c:c6:ba:51:d8:29:21:f3:
00:a8:95:b0:56:70:e1:f6:d6:a1:4f:48:29:97:2e:
1a:85:45:4a:f2:fd:d6:f3:17:49:47:b3:98:b3:45:
f3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:5B:8C:FB:21:74:C7:47:64:B8:E4:8E:E1:D8:44:C0:09:5A:58:5F
X509v3 Authority Key Identifier:
keyid:E1:20:2E:2E:4B:65:DB:3B:1F:E5:81:CD:B1:99:01:0B:2E:90:CF:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:b1:a1:05:2c:0a:57:05:b3:d8:dd:09:e1:0b:e9:bf:a6:28:
d3:2b:b5:a6:2c:1e:77:76:8e:ee:f9:05:77:f6:ac:0c:d8:14:
a0:42:f9:92:73:9f:4e:9a:c1:2c:c8:28:e9:35:a8:3b:d0:6a:
87:7b:0e:0b:da:40:f4:32:56:cc:4b:df:1e:d2:38:3c:ff:57:
dd:c1:e9:e8:a6:36:73:7e:ed:06:80:7e:19:fd:d5:53:3f:3a:
2b:a6:9e:c0:28:f4:b9:cd:b7:a9:ef:89:e5:2b:44:46:a2:b9:
c3:3d:19:5a:ce:19:ae:76:b9:7a:b2:38:d8:cc:a4:94:52:ea:
ef:cd:09:b9:3b:ae:88:f6:0e:f8:bf:97:a2:1c:f3:30:2f:40:
96:c4:10:9b:a5:68:29:54:8c:79:f7:cb:d4:f3:e6:c4:c6:eb:
6d:75:53:a1:4f:7f:a0:11:49:ea:0b:d0:c2:78:73:e0:78:17:
78:07:7d:56:39:b7:72:55:ee:05:63:31:bc:ca:be:9f:91:49:
bd:5d:fb:14:82:68:b1:eb:d5:72:4e:43:36:a3:6f:04:a2:be:
d8:56:93:c9:4e:72:7d:67:a9:ae:3e:25:eb:2f:f5:10:af:ea:
59:a4:ed:4a:1b:68:47:09:02:93:5e:58:45:3b:d4:46:c2:36:
1d:4f:0a:93
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJmn5UICRFOn1wGX3EJQMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxMjAyZTJlNGI2NWRiM2IxZmU1ODFjZGIxOTkwMTBiMmU5
MGNmNzgwHhcNMjUxMTExMDkwMTUxWhcNMjUxMTEyMDkwMTUxWjAzMTEwLwYDVQQD
EygyNjViOGNmYjIxNzRjNzQ3NjRiOGU0OGVlMWQ4NDRjMDA5NWE1ODVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2z+i9MKW663MA9bgBc93TSiMq+ix
iwFgQ0kweBPGllKZqxuKK17gygfJ88/pLHdZ1ZjpkPEr25ElRESzgWNhUrOWF+vs
b43WpjovrdBL8GyQE+OTZcK28tFXNIytiFqfB0phsqoUbKyv86bD3qLrnV+Egsin
bXbdMMJff9dfROIlE7oMBnied+w9Bf+Ykh3zJ/4UW6rRHhBjXwonSMSqJdv8Ey8j
s9XM8yn+2o89tceiZcCLmk0wcWwlmBwORsZJrAt2/kec1u2gZrDQqchfw/UKzA/m
g7ewfMa6UdgpIfMAqJWwVnDh9tahT0gply4ahUVK8v3W8xdJR7OYs0XzAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCZbjPshdMdHZLjkjuHYRMAJWlhfMB8GA1UdIwQY
MBaAFOEgLi5LZds7H+WBzbGZAQsukM94MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFNBdUxrdGwyenNmNVlITnNaa0JDeTZRejNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9hNzczZDctNTU0Zi00NjlmLWI0Zjgt
N2RjNjkyNWNkNDJmLzEvNFNBdUxrdGwyenNmNVlITnNaa0JDeTZRejNnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy9hNzczZDctNTU0Zi00NjlmLWI0ZjgtN2RjNjkyNWNkNDJm
LzEvNFNBdUxrdGwyenNmNVlITnNaa0JDeTZRejNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkLGhBSwK
VwWz2N0J4Qvpv6Yo0yu1piwed3aO7vkFd/asDNgUoEL5knOfTprBLMgo6TWoO9Bq
h3sOC9pA9DJWzEvfHtI4PP9X3cHp6KY2c37tBoB+Gf3VUz86K6aewCj0uc23qe+J
5StERqK5wz0ZWs4Zrna5erI42MyklFLq780JuTuuiPYO+L+XohzzMC9AlsQQm6Vo
KVSMeffL1PPmxMbrbXVToU9/oBFJ6gvQwnhz4HgXeAd9Vjm3clXuBWMxvMq+n5FJ
vV37FIJosevVck5DNqNvBKK+2FaTyU5yfWeprj4l6y/1EK/qWaTtShtoRwkCk15Y
RTvURsI2HU8Kkw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:44:19 2025 by rpki-client