Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
File: 0jtkd-HIT1KQfNYMY-qD715Kx4I.mft (raw, json)
Hash identifier: e2jeD/UsjRSiHhqm3YSZbHMjggSoUxBvqneKPXw10Ao=
Subject key identifier: E0:47:F3:34:17:D7:CC:5A:A7:67:0C:41:B9:65:84:C9:E1:A4:AE:61
Authority key identifier: D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
Certificate issuer: /CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Certificate serial: 019A714A332D758D192E0E2B30DF77734056
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
Manifest number: 0A6B
Signing time: Tue 11 Nov 2025 05:01:19 +0000
Manifest this update: Tue 11 Nov 2025 05:01:19 +0000
Manifest next update: Wed 12 Nov 2025 05:01:19 +0000
Files and hashes: 1: 0jtkd-HIT1KQfNYMY-qD715Kx4I.crl (hash: YpgeindfTduG+MY6NRRDpSoFPHIc2RQpaFNOfXEete8=)
2: 99RaY9xH4qOYuC0KdiJQrFMbC5E.roa (hash: TZUHN/mcHmz7AzTn504QkH94CMbEPlnfBvzJqjhXWtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:33:2d:75:8d:19:2e:0e:2b:30:df:77:73:40:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Validity
Not Before: Nov 11 05:01:19 2025 GMT
Not After : Nov 12 05:01:19 2025 GMT
Subject: CN=e047f33417d7cc5aa7670c41b96584c9e1a4ae61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:86:75:ef:eb:4c:30:90:c4:62:df:f2:7a:a6:
8c:1e:76:78:e6:61:27:48:86:fd:02:51:9d:8d:4b:
9f:59:1d:89:77:a9:a4:89:ab:ea:5f:72:fe:24:3e:
86:4e:7f:94:22:43:20:42:ba:b8:95:3b:21:1d:e2:
7d:ac:80:16:60:49:06:47:d2:0b:58:5a:d2:60:c7:
06:a0:5a:f8:c2:fe:bd:22:12:dd:aa:98:f7:bd:29:
2a:7d:05:39:59:6a:30:fe:c1:d9:1a:fb:e5:6b:e5:
5a:1b:63:98:51:25:d6:9c:d4:32:db:4a:06:c1:69:
a2:6b:ac:ea:6c:cb:94:04:c4:6b:d8:3b:31:df:99:
13:df:e1:45:e1:74:cc:a3:53:b6:e3:4d:bc:af:e6:
86:df:58:40:b7:ef:25:96:88:1e:6b:da:17:8e:bb:
7e:a9:fe:7c:90:7c:44:cf:01:ea:63:46:35:0d:0f:
1e:4a:7b:7b:18:ef:e7:f7:61:49:e8:1c:12:9f:82:
f0:46:61:23:36:85:6b:a1:7f:66:13:60:60:3f:ba:
3b:be:e7:b7:21:de:1e:82:cc:63:61:fc:ec:42:4b:
b2:d3:e7:99:b8:6f:f5:81:db:47:9e:53:fc:a3:f5:
bb:fc:74:06:ff:4d:30:60:68:a0:c0:91:d6:52:0e:
55:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:47:F3:34:17:D7:CC:5A:A7:67:0C:41:B9:65:84:C9:E1:A4:AE:61
X509v3 Authority Key Identifier:
keyid:D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:a7:bd:5a:12:3f:b9:07:f7:38:df:3b:17:4f:36:3d:da:dc:
6f:10:6f:3c:e0:70:10:6a:fe:68:8e:fe:fe:69:6f:81:f8:f6:
15:75:4a:14:fa:77:d7:1c:8a:12:cb:5f:7d:79:7b:18:25:72:
ab:22:c6:ef:61:55:f6:6f:58:a5:e8:49:54:42:8e:b2:1d:43:
65:d0:9b:ff:b8:e7:87:7a:a1:44:0c:d6:44:32:b4:e9:44:f7:
34:fb:48:2e:3c:27:ce:19:15:01:f5:a7:f2:83:e4:e0:a8:3a:
cf:d4:36:e6:86:58:e0:87:d8:6c:35:36:92:90:9f:81:ef:c6:
b9:87:74:6a:6b:a8:81:9d:9c:ce:23:44:c6:1c:d3:42:c5:1c:
ce:b2:dd:fe:58:80:7d:f5:f8:07:06:49:26:7f:35:c9:49:10:
39:37:20:bd:4d:32:d5:9f:87:a4:1c:cd:3b:f2:9b:8d:b5:57:
c3:da:6d:f5:f5:fc:7a:20:57:84:6c:91:d7:d9:ea:1c:13:38:
64:36:e8:f9:fd:b8:0b:72:cb:5f:76:e6:49:6d:d9:65:ac:99:
53:a9:af:12:11:15:0f:59:64:19:6a:b6:76:e6:7d:fc:df:4e:
af:35:f1:26:40:89:0d:2b:37:8e:1c:62:0a:b1:1b:be:d6:8b:
d7:54:54:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxSjMtdY0ZLg4rMN93c0BWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyM2I2NDc3ZTFjODRmNTI5MDdjZDYwYzYzZWE4M2VmNWU0
YWM3ODIwHhcNMjUxMTExMDUwMTE5WhcNMjUxMTEyMDUwMTE5WjAzMTEwLwYDVQQD
EyhlMDQ3ZjMzNDE3ZDdjYzVhYTc2NzBjNDFiOTY1ODRjOWUxYTRhZTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiYZ17+tMMJDEYt/yeqaMHnZ45mEn
SIb9AlGdjUufWR2Jd6mkiavqX3L+JD6GTn+UIkMgQrq4lTshHeJ9rIAWYEkGR9IL
WFrSYMcGoFr4wv69IhLdqpj3vSkqfQU5WWow/sHZGvvla+VaG2OYUSXWnNQy20oG
wWmia6zqbMuUBMRr2Dsx35kT3+FF4XTMo1O24028r+aG31hAt+8llogea9oXjrt+
qf58kHxEzwHqY0Y1DQ8eSnt7GO/n92FJ6BwSn4LwRmEjNoVroX9mE2BgP7o7vue3
Id4egsxjYfzsQkuy0+eZuG/1gdtHnlP8o/W7/HQG/00wYGigwJHWUg5VhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOBH8zQX18xap2cMQbllhMnhpK5hMB8GA1UdIwQY
MBaAFNI7ZHfhyE9SkHzWDGPqg+9eSseCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGp0a2QtSElUMUtRZk5ZTVktcUQ3MTVLeDRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS80NTU5ZmQtYjQwOS00NzljLWE0MGYt
MjI1NTU4NWRkZWNiLzEvMGp0a2QtSElUMUtRZk5ZTVktcUQ3MTVLeDRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS80NTU5ZmQtYjQwOS00NzljLWE0MGYtMjI1NTU4NWRkZWNi
LzEvMGp0a2QtSElUMUtRZk5ZTVktcUQ3MTVLeDRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe6e9WhI/
uQf3ON87F082PdrcbxBvPOBwEGr+aI7+/mlvgfj2FXVKFPp31xyKEstffXl7GCVy
qyLG72FV9m9YpehJVEKOsh1DZdCb/7jnh3qhRAzWRDK06UT3NPtILjwnzhkVAfWn
8oPk4Kg6z9Q25oZY4IfYbDU2kpCfge/GuYd0amuogZ2cziNExhzTQsUczrLd/liA
ffX4BwZJJn81yUkQOTcgvU0y1Z+HpBzNO/KbjbVXw9pt9fX8eiBXhGyR19nqHBM4
ZDbo+f24C3LLX3bmSW3ZZayZU6mvEhEVD1lkGWq2duZ9/N9OrzXxJkCJDSs3jhxi
CrEbvtaL11RURQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 13:15:21 2025 by rpki-client