Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft
File: vDImMeLrfqv7XttPywq4yZaCPEg.mft (raw, json)
Hash identifier: CvtS5wJ1Qn7ubrdQjeUIdIbIcJCbZ9eXX9bEA94Gk1k=
Subject key identifier: DC:19:09:43:8F:6E:35:FF:19:FF:62:BB:F7:0F:F6:E2:5D:35:C8:03
Authority key identifier: BC:32:26:31:E2:EB:7E:AB:FB:5E:DB:4F:CB:0A:B8:C9:96:82:3C:48
Certificate issuer: /CN=bc322631e2eb7eabfb5edb4fcb0ab8c996823c48
Certificate serial: 0199FBEBF3FB001D321724287CD8AF3B5864
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vDImMeLrfqv7XttPywq4yZaCPEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft
Manifest number: 0745
Signing time: Sun 19 Oct 2025 10:02:48 +0000
Manifest this update: Sun 19 Oct 2025 10:02:48 +0000
Manifest next update: Mon 20 Oct 2025 10:02:48 +0000
Files and hashes: 1: vDImMeLrfqv7XttPywq4yZaCPEg.crl (hash: vVsR6cri8fAJpgTdg19VStKB5s7Dxe65U7sSL16wX4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vDImMeLrfqv7XttPywq4yZaCPEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:f3:fb:00:1d:32:17:24:28:7c:d8:af:3b:58:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc322631e2eb7eabfb5edb4fcb0ab8c996823c48
Validity
Not Before: Oct 19 10:02:48 2025 GMT
Not After : Oct 20 10:02:48 2025 GMT
Subject: CN=dc1909438f6e35ff19ff62bbf70ff6e25d35c803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4d:43:67:cb:07:67:c5:8c:a7:19:e0:8c:03:
8f:73:64:6e:76:4f:eb:7c:fe:dd:b4:27:d5:c7:a9:
35:41:9a:10:af:6d:3b:b4:13:fd:f1:61:06:2d:96:
d1:2a:03:c9:a7:59:7e:45:62:e2:53:7e:e5:aa:1c:
ef:7b:d1:e6:77:1c:f3:64:6a:68:10:de:5d:a7:70:
0d:80:d9:fe:d8:55:05:b3:d3:ab:c6:a1:41:be:8d:
00:1c:9e:1f:26:61:17:f0:69:48:35:b8:41:9b:4e:
8c:c1:28:e7:77:ca:69:41:73:23:3d:bd:be:0c:95:
84:dd:60:b7:ea:14:f2:dd:ee:9f:ba:9d:dc:3e:04:
c5:09:91:97:e2:4a:55:f8:b6:ee:86:34:6d:a0:ed:
64:58:61:b3:18:06:61:5e:f9:9c:f5:3f:e0:d2:03:
ae:22:94:36:76:fd:9f:0a:cc:b0:9d:89:3c:56:44:
ad:a1:f5:7e:a6:0a:a7:87:3f:3a:5e:a5:6d:33:95:
b3:f6:ba:94:38:53:9e:c7:08:26:8f:8d:b1:15:6d:
32:46:e2:32:e8:b8:02:8f:4e:e2:8d:3b:73:88:14:
34:df:4a:c6:55:e9:0b:74:46:11:14:f1:18:92:a3:
d5:0d:fd:23:dc:59:b6:1a:02:f7:8d:14:fa:ed:fb:
f8:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:19:09:43:8F:6E:35:FF:19:FF:62:BB:F7:0F:F6:E2:5D:35:C8:03
X509v3 Authority Key Identifier:
keyid:BC:32:26:31:E2:EB:7E:AB:FB:5E:DB:4F:CB:0A:B8:C9:96:82:3C:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vDImMeLrfqv7XttPywq4yZaCPEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:81:e9:f8:b6:c9:d8:5c:5c:8b:d7:5d:14:0c:2c:5e:9a:17:
67:43:96:34:60:d0:c0:20:a6:13:2b:9c:fd:be:3f:ae:09:2c:
23:75:c9:ba:37:29:35:d9:42:d9:8a:37:0a:1f:19:1c:96:4f:
49:06:01:c0:35:18:0e:98:79:40:c9:3f:cf:f5:98:ff:13:52:
78:c4:ca:b6:57:06:9a:af:0e:af:07:5e:9c:10:ad:26:b9:b2:
d6:40:9b:0a:08:53:1f:8a:f5:cc:3f:6d:29:e7:3f:25:2b:42:
1a:d7:4f:eb:55:4b:4a:20:2d:4d:f6:d9:88:9e:ef:e4:ba:ee:
9a:ba:4d:0b:b9:d3:4e:bf:d7:02:0c:5f:c9:2c:23:4a:67:4b:
b8:28:98:b8:be:8c:32:56:61:21:2a:c4:61:f6:e8:a7:93:10:
2a:0c:e5:21:6d:cb:8b:93:ac:12:bc:6f:21:70:21:b4:31:00:
2c:50:53:f8:f3:5a:56:c0:9c:c2:6d:91:6c:13:1d:42:64:76:
1f:39:25:e9:49:4d:68:ac:13:3a:df:80:0a:71:dc:d9:ef:b9:
d7:69:7c:8c:e9:93:e7:af:2f:0c:cd:be:f5:fe:cb:ef:9b:28:
6d:bf:ad:5f:c1:24:02:1f:0a:71:0f:44:2d:5a:88:78:11:11:
01:cf:f0:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76/P7AB0yFyQofNivO1hkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjMzIyNjMxZTJlYjdlYWJmYjVlZGI0ZmNiMGFiOGM5OTY4
MjNjNDgwHhcNMjUxMDE5MTAwMjQ4WhcNMjUxMDIwMTAwMjQ4WjAzMTEwLwYDVQQD
EyhkYzE5MDk0MzhmNmUzNWZmMTlmZjYyYmJmNzBmZjZlMjVkMzVjODAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo01DZ8sHZ8WMpxngjAOPc2Rudk/r
fP7dtCfVx6k1QZoQr207tBP98WEGLZbRKgPJp1l+RWLiU37lqhzve9HmdxzzZGpo
EN5dp3ANgNn+2FUFs9OrxqFBvo0AHJ4fJmEX8GlINbhBm06MwSjnd8ppQXMjPb2+
DJWE3WC36hTy3e6fup3cPgTFCZGX4kpV+LbuhjRtoO1kWGGzGAZhXvmc9T/g0gOu
IpQ2dv2fCsywnYk8VkStofV+pgqnhz86XqVtM5Wz9rqUOFOexwgmj42xFW0yRuIy
6LgCj07ijTtziBQ030rGVekLdEYRFPEYkqPVDf0j3Fm2GgL3jRT67fv4RQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNwZCUOPbjX/Gf9iu/cP9uJdNcgDMB8GA1UdIwQY
MBaAFLwyJjHi636r+17bT8sKuMmWgjxIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdkRJbU1lTHJmcXY3WHR0UHl3cTR5WmFDUEVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS8zMDg2YjgtNzFmMy00YThkLTk0NTEt
MjllZGZhYjM5ZjQ5LzEvdkRJbU1lTHJmcXY3WHR0UHl3cTR5WmFDUEVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS8zMDg2YjgtNzFmMy00YThkLTk0NTEtMjllZGZhYjM5ZjQ5
LzEvdkRJbU1lTHJmcXY3WHR0UHl3cTR5WmFDUEVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArYHp+LbJ
2Fxci9ddFAwsXpoXZ0OWNGDQwCCmEyuc/b4/rgksI3XJujcpNdlC2Yo3Ch8ZHJZP
SQYBwDUYDph5QMk/z/WY/xNSeMTKtlcGmq8OrwdenBCtJrmy1kCbCghTH4r1zD9t
Kec/JStCGtdP61VLSiAtTfbZiJ7v5LrumrpNC7nTTr/XAgxfySwjSmdLuCiYuL6M
MlZhISrEYfbop5MQKgzlIW3Li5OsErxvIXAhtDEALFBT+PNaVsCcwm2RbBMdQmR2
Hzkl6UlNaKwTOt+ACnHc2e+512l8jOmT568vDM2+9f7L75sobb+tX8EkAh8KcQ9E
LVqIeBERAc/wSg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:49:39 2025 by rpki-client