Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
File: tJvYTaF5l8uyhq-QIqsuBboItEI.mft (raw, json)
Hash identifier: hknuoRvWyWEMBWSto0emG/1OM3zOrNWBA4bhQWyy7CM=
Subject key identifier: E7:BC:C2:DC:67:28:9E:84:FB:78:88:7F:F1:12:55:00:63:06:7A:61
Authority key identifier: B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42
Certificate issuer: /CN=b49bd84da17997cbb286af9022ab2e05ba08b442
Certificate serial: 019A4C980F74AEF3C4839ABAC320DF6D25F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
Manifest number: 126C
Signing time: Tue 04 Nov 2025 02:00:25 +0000
Manifest this update: Tue 04 Nov 2025 02:00:25 +0000
Manifest next update: Wed 05 Nov 2025 02:00:25 +0000
Files and hashes: 1: 1-PqW8UmiSaov5LQilBVWMK5ZalY.roa (hash: TOVF5pxyQFktaD7ChGQ0pQzpTOW/D5b1AiH6KqbdxuQ=)
2: DaHb-AgbaohKBsaZFPAVDGbt_RI.roa (hash: T2KsBuhVxG35+5zMSgS7xBXEVKNyKlB23AKVgPghBi4=)
3: ZKaLH1RF9q1E6524_CLGwNAeKPU.roa (hash: NYm5o8T+AXl6BoN5iWRobD4OTRMc9uAM7u/9BRILK/4=)
4: tJvYTaF5l8uyhq-QIqsuBboItEI.crl (hash: DTuINPebTyHdYq2JFhy6U99XljgeQCkbIb7ktVcb7+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Nov 2025 20:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:98:0f:74:ae:f3:c4:83:9a:ba:c3:20:df:6d:25:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b49bd84da17997cbb286af9022ab2e05ba08b442
Validity
Not Before: Nov 4 02:00:25 2025 GMT
Not After : Nov 5 02:00:25 2025 GMT
Subject: CN=e7bcc2dc67289e84fb78887ff112550063067a61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7a:c3:ae:ae:63:40:b7:04:ff:9d:ea:bd:78:
fa:4a:54:ec:f9:17:1c:d6:32:23:7c:8d:40:85:d5:
ed:24:57:c2:a8:82:12:1d:98:da:70:dd:e3:fa:b2:
d5:3d:84:20:ca:0a:1d:06:50:af:4f:6b:24:fd:c9:
69:82:80:01:e6:58:e7:0c:21:f4:85:e2:c4:fa:d8:
4a:85:6c:e5:37:51:23:03:74:bc:7b:24:6c:32:73:
8f:8d:40:f3:86:f2:e8:83:d9:d2:35:e1:82:4b:4a:
6b:3a:4e:01:9e:14:ac:d7:6b:a4:ef:9b:66:e9:76:
94:7c:30:43:06:8b:be:65:32:07:0c:2d:3d:5f:1a:
b4:81:51:4a:cc:c1:bf:75:1b:0d:a5:23:0c:7d:a7:
ea:8e:70:b2:73:f6:ac:ac:93:61:99:52:42:f1:b5:
05:c7:0f:1e:f0:84:27:a4:df:ac:7f:10:c2:a1:74:
62:f8:95:0d:56:33:8f:f7:ec:f3:f5:c6:a4:47:37:
7f:be:86:c2:de:ad:04:34:13:89:39:18:47:73:b5:
dc:d2:1d:fa:14:b4:ab:66:11:8f:40:67:a3:85:13:
74:e9:af:06:70:a5:51:9b:b7:11:e7:22:ee:94:bd:
94:37:48:a5:ba:83:e1:12:b7:5a:a2:77:19:72:7c:
d2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:BC:C2:DC:67:28:9E:84:FB:78:88:7F:F1:12:55:00:63:06:7A:61
X509v3 Authority Key Identifier:
keyid:B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:84:e6:a8:92:13:10:be:8d:93:63:9d:d3:29:d0:25:c6:ab:
a8:d0:ba:4f:53:63:8a:ef:3f:0a:d0:dd:4c:ef:b8:5c:2d:56:
89:8b:ef:ca:49:fd:78:e8:8c:74:4c:a6:b1:39:e4:c2:2a:10:
78:da:a7:2a:e7:8b:8c:21:8e:14:12:43:47:4b:7f:d4:cc:24:
ab:ea:1f:fb:45:ed:9e:09:ea:cb:aa:3a:14:3c:b5:d9:e5:6f:
38:f5:8c:b6:c5:2c:42:5f:3f:d2:ae:4e:33:db:de:79:84:46:
67:84:2d:d2:b3:d3:71:ad:5d:d5:77:e6:18:e4:e6:6f:37:76:
93:66:4a:d3:81:f9:99:61:db:9e:a4:3d:69:0f:8f:c4:fa:c3:
e1:df:a3:f9:12:b5:36:14:a6:0f:a8:7f:1d:11:fc:42:7a:b6:
77:bd:83:45:a5:ff:f9:98:e1:b6:99:88:45:1c:7c:af:4d:dd:
b5:33:3f:6f:27:3a:46:8f:a4:ec:ed:8d:c2:b8:55:1d:ab:b1:
91:d2:0a:84:cf:00:85:af:81:84:b7:86:40:cf:20:7e:4f:9a:
e1:ed:ff:a8:81:ef:4d:3d:db:50:86:a5:df:92:35:ab:2e:b3:
bb:6d:39:3b:cb:62:ff:23:0b:b7:37:2b:a6:d4:fc:a7:4d:76:
09:f0:6f:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpMmA90rvPEg5q6wyDfbSXxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0OWJkODRkYTE3OTk3Y2JiMjg2YWY5MDIyYWIyZTA1YmEw
OGI0NDIwHhcNMjUxMTA0MDIwMDI1WhcNMjUxMTA1MDIwMDI1WjAzMTEwLwYDVQQD
EyhlN2JjYzJkYzY3Mjg5ZTg0ZmI3ODg4N2ZmMTEyNTUwMDYzMDY3YTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1nrDrq5jQLcE/53qvXj6SlTs+Rcc
1jIjfI1AhdXtJFfCqIISHZjacN3j+rLVPYQgygodBlCvT2sk/clpgoAB5ljnDCH0
heLE+thKhWzlN1EjA3S8eyRsMnOPjUDzhvLog9nSNeGCS0prOk4BnhSs12uk75tm
6XaUfDBDBou+ZTIHDC09Xxq0gVFKzMG/dRsNpSMMfafqjnCyc/asrJNhmVJC8bUF
xw8e8IQnpN+sfxDCoXRi+JUNVjOP9+zz9cakRzd/vobC3q0ENBOJORhHc7Xc0h36
FLSrZhGPQGejhRN06a8GcKVRm7cR5yLulL2UN0iluoPhErdaoncZcnzS4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOe8wtxnKJ6E+3iIf/ESVQBjBnphMB8GA1UdIwQY
MBaAFLSb2E2heZfLsoavkCKrLgW6CLRCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEp2WVRhRjVsOHV5aHEtUUlxc3VCYm9JdEVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lZTU0ZDEtNWIxNS00ZjkzLTg5N2It
MGM5MDliZjViZTRkLzEvdEp2WVRhRjVsOHV5aHEtUUlxc3VCYm9JdEVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lZTU0ZDEtNWIxNS00ZjkzLTg5N2ItMGM5MDliZjViZTRk
LzEvdEp2WVRhRjVsOHV5aHEtUUlxc3VCYm9JdEVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB4TmqJIT
EL6Nk2Od0ynQJcarqNC6T1Njiu8/CtDdTO+4XC1WiYvvykn9eOiMdEymsTnkwioQ
eNqnKueLjCGOFBJDR0t/1Mwkq+of+0Xtngnqy6o6FDy12eVvOPWMtsUsQl8/0q5O
M9veeYRGZ4Qt0rPTca1d1XfmGOTmbzd2k2ZK04H5mWHbnqQ9aQ+PxPrD4d+j+RK1
NhSmD6h/HRH8Qnq2d72DRaX/+ZjhtpmIRRx8r03dtTM/byc6Ro+k7O2NwrhVHaux
kdIKhM8Aha+BhLeGQM8gfk+a4e3/qIHvTT3bUIal35I1qy6zu205O8ti/yMLtzcr
ptT8p012CfBv1Q==
-----END CERTIFICATE-----
Generated at Tue Nov 4 04:19:28 2025 by rpki-client