Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft
File: RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft (raw, json)
Hash identifier: AGMksKzJ79EZ7N5J3uJX9LflOZBiHWHuaEJ11qqEpSs=
Subject key identifier: E1:50:5A:5D:F2:B0:CD:72:AE:B2:58:80:6E:ED:04:F0:20:E4:53:94
Authority key identifier: 44:3D:4F:95:73:29:DF:31:49:8F:A8:54:3C:23:F1:2C:87:4C:C6:0D
Certificate issuer: /CN=443d4f957329df31498fa8543c23f12c874cc60d
Certificate serial: 019921B1DE4909807AA02CBF02C7979150C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RD1PlXMp3zFJj6hUPCPxLIdMxg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft
Manifest number: DD
Signing time: Sun 07 Sep 2025 01:02:08 +0000
Manifest this update: Sun 07 Sep 2025 01:02:08 +0000
Manifest next update: Mon 08 Sep 2025 01:02:08 +0000
Files and hashes: 1: RD1PlXMp3zFJj6hUPCPxLIdMxg0.crl (hash: rjkuToIg4CTrH6nuMHgDl9cuvhOx9IcKuxDNuHX80+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/RD1PlXMp3zFJj6hUPCPxLIdMxg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:de:49:09:80:7a:a0:2c:bf:02:c7:97:91:50:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=443d4f957329df31498fa8543c23f12c874cc60d
Validity
Not Before: Sep 7 01:02:08 2025 GMT
Not After : Sep 8 01:02:08 2025 GMT
Subject: CN=e1505a5df2b0cd72aeb258806eed04f020e45394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:65:fa:b0:f0:a1:4f:25:90:23:df:3e:8c:ea:
c4:da:13:f8:68:5d:51:83:c7:e5:19:00:34:3a:bc:
75:aa:78:67:df:22:8b:eb:88:a4:f6:54:e9:0c:fe:
82:a2:a7:27:9f:4f:9d:8a:b7:55:38:aa:19:78:3c:
e0:05:aa:f8:17:b6:dd:a6:ab:e8:e3:e6:34:bd:41:
ac:b3:34:8a:9d:e5:f8:13:02:77:e6:2d:24:ca:db:
8f:83:f3:8a:06:82:48:34:8f:74:0b:09:7e:74:b2:
9e:d8:bf:17:82:06:3f:8c:84:36:58:f0:b3:3a:91:
c4:8b:ba:5f:36:f9:c8:f5:27:1d:91:71:ba:36:07:
f1:df:d2:f9:9f:08:46:1c:d2:44:a1:7f:6f:4d:77:
ee:64:a3:3d:72:d8:f0:31:15:61:48:89:d2:ff:9b:
fe:30:3e:2e:5e:a0:a6:42:54:8b:a5:45:8e:c9:d4:
1d:54:3f:ea:7f:02:80:86:e0:68:24:16:4e:27:c4:
37:73:1c:9f:29:73:72:d9:58:ea:50:dd:fb:ae:a0:
45:a2:44:0d:02:d2:89:4b:31:f5:7e:82:15:54:14:
35:74:3e:c1:73:f4:e7:86:2b:0c:c4:9f:ea:a7:69:
dc:53:97:bf:42:fc:94:4b:3b:24:82:81:f5:f6:fb:
d0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:50:5A:5D:F2:B0:CD:72:AE:B2:58:80:6E:ED:04:F0:20:E4:53:94
X509v3 Authority Key Identifier:
keyid:44:3D:4F:95:73:29:DF:31:49:8F:A8:54:3C:23:F1:2C:87:4C:C6:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RD1PlXMp3zFJj6hUPCPxLIdMxg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:8b:7d:a6:2a:77:f5:68:fe:a7:43:a1:0f:be:0c:04:d7:1c:
af:8b:ff:bb:59:9d:47:5e:9d:a1:99:44:70:b1:d6:e8:15:3e:
10:e8:93:59:ff:a9:54:1f:80:b8:7d:6f:fc:e8:29:77:46:e1:
39:66:c8:af:cd:18:e0:73:83:d0:e9:fd:c8:dd:61:94:2d:2c:
e7:55:d0:38:27:94:be:60:0c:86:5e:68:48:c3:a4:29:61:bc:
12:4a:ca:d6:0d:1c:9e:f2:3f:58:f1:7b:46:36:ff:32:3b:5f:
6e:4c:e4:c4:86:5f:18:b3:f8:59:82:fa:6d:d9:60:17:98:2a:
e7:5e:42:06:47:43:3b:17:73:a7:e7:de:b9:c0:16:04:25:0d:
31:f5:00:3a:e4:54:cc:8a:ac:2c:91:62:60:b4:3b:ef:51:0d:
96:ea:0c:ec:92:3c:b9:5b:00:5f:30:3c:46:26:94:31:06:52:
b4:a7:49:03:8c:1f:70:13:f3:76:4f:20:3a:49:32:d9:07:0b:
97:f8:79:1b:4a:11:7b:4a:1b:7a:76:d3:e6:d5:b6:d0:91:93:
60:d6:ff:e8:74:27:6c:f1:fc:cc:6a:53:c6:4f:46:db:19:dc:
10:82:58:1a:b9:72:4f:0f:28:54:8f:37:91:a3:8f:53:b0:d6:
7f:a1:96:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsd5JCYB6oCy/AseXkVDJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0M2Q0Zjk1NzMyOWRmMzE0OThmYTg1NDNjMjNmMTJjODc0
Y2M2MGQwHhcNMjUwOTA3MDEwMjA4WhcNMjUwOTA4MDEwMjA4WjAzMTEwLwYDVQQD
EyhlMTUwNWE1ZGYyYjBjZDcyYWViMjU4ODA2ZWVkMDRmMDIwZTQ1Mzk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2X6sPChTyWQI98+jOrE2hP4aF1R
g8flGQA0Orx1qnhn3yKL64ik9lTpDP6Coqcnn0+dirdVOKoZeDzgBar4F7bdpqvo
4+Y0vUGsszSKneX4EwJ35i0kytuPg/OKBoJINI90Cwl+dLKe2L8XggY/jIQ2WPCz
OpHEi7pfNvnI9ScdkXG6Ngfx39L5nwhGHNJEoX9vTXfuZKM9ctjwMRVhSInS/5v+
MD4uXqCmQlSLpUWOydQdVD/qfwKAhuBoJBZOJ8Q3cxyfKXNy2VjqUN37rqBFokQN
AtKJSzH1foIVVBQ1dD7Bc/TnhisMxJ/qp2ncU5e/QvyUSzskgoH19vvQ/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOFQWl3ysM1yrrJYgG7tBPAg5FOUMB8GA1UdIwQY
MBaAFEQ9T5VzKd8xSY+oVDwj8SyHTMYNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkQxUGxYTXAzekZKajZoVVBDUHhMSWRNeGcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC83OWRjM2MtMzYzMy00YjQ3LTliZDEt
NmU5Yjg0YjI3MWUxLzEvUkQxUGxYTXAzekZKajZoVVBDUHhMSWRNeGcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC83OWRjM2MtMzYzMy00YjQ3LTliZDEtNmU5Yjg0YjI3MWUx
LzEvUkQxUGxYTXAzekZKajZoVVBDUHhMSWRNeGcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHIt9pip3
9Wj+p0OhD74MBNccr4v/u1mdR16doZlEcLHW6BU+EOiTWf+pVB+AuH1v/Ogpd0bh
OWbIr80Y4HOD0On9yN1hlC0s51XQOCeUvmAMhl5oSMOkKWG8EkrK1g0cnvI/WPF7
Rjb/MjtfbkzkxIZfGLP4WYL6bdlgF5gq515CBkdDOxdzp+feucAWBCUNMfUAOuRU
zIqsLJFiYLQ771ENluoM7JI8uVsAXzA8RiaUMQZStKdJA4wfcBPzdk8gOkky2QcL
l/h5G0oRe0obenbT5tW20JGTYNb/6HQnbPH8zGpTxk9G2xncEIJYGrlyTw8oVI83
kaOPU7DWf6GWxg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:15:15 2025 by rpki-client