Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
File: EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft (raw, json)
Hash identifier: tIBJism/dXNO+DPogvespWvQzfkvH8Bvhal/CebdMCM=
Subject key identifier: 34:A5:DA:5A:26:4D:2A:57:C9:7C:C1:96:69:D0:5E:CE:1A:E6:4C:F6
Authority key identifier: 10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
Certificate issuer: /CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Certificate serial: 019A21ADF451942F1B785697803020FF50BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
Manifest number: 16F6
Signing time: Sun 26 Oct 2025 18:00:39 +0000
Manifest this update: Sun 26 Oct 2025 18:00:39 +0000
Manifest next update: Mon 27 Oct 2025 18:00:39 +0000
Files and hashes: 1: EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl (hash: giguSdWHBXYdZ/N8U9fDYcSgcAHz73YlHviN4wPrkQE=)
2: NmHfVOAq428sUSSIRO7nZKCwlXg.roa (hash: 7cV2xNe1q0M48rtVit0uJemlcGCJGSiYbHDZVWgEp6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 14:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:ad:f4:51:94:2f:1b:78:56:97:80:30:20:ff:50:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Validity
Not Before: Oct 26 18:00:39 2025 GMT
Not After : Oct 27 18:00:39 2025 GMT
Subject: CN=34a5da5a264d2a57c97cc19669d05ece1ae64cf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:30:2f:b1:b9:d7:1d:cc:3e:28:fb:57:40:8b:
41:96:e7:55:d5:8a:a1:8a:4f:53:a3:4a:ee:64:d6:
73:b1:8a:37:95:ab:e8:ff:01:41:26:a2:75:12:f5:
7c:b0:7f:7c:ca:99:c6:5d:be:1a:ba:20:a8:2f:ac:
0b:dd:5e:ab:bb:c9:ba:d2:c4:95:ba:ec:e4:90:f0:
20:20:e5:0e:51:29:ff:db:0c:d0:d5:7b:4e:df:c2:
56:7e:09:b6:9e:86:99:91:97:8e:12:bb:34:c7:57:
99:5b:5d:e0:c9:0a:0d:a0:98:a2:29:ec:50:9a:74:
65:31:b9:7c:c0:ef:bf:2a:8b:4a:52:b1:cb:d0:68:
c4:db:a8:92:c6:51:6a:d8:86:c2:c6:6b:4d:78:74:
19:20:fc:02:9f:a0:d2:4a:57:5e:a0:10:cd:90:ac:
06:8b:6d:ba:36:9d:97:d6:cf:a9:a0:57:11:b2:21:
1c:25:65:0d:5e:34:2f:dd:25:fa:aa:83:d1:78:60:
fb:1d:21:ae:57:3c:6f:27:ab:ae:3f:ed:a1:75:ed:
6a:3c:11:f2:4b:a1:df:1c:6b:66:46:24:93:08:41:
47:7a:8f:ce:75:5c:c7:2f:34:ea:f1:ad:32:3a:f1:
6a:0e:1b:28:26:5e:67:9c:1d:a1:3e:43:91:dd:20:
66:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A5:DA:5A:26:4D:2A:57:C9:7C:C1:96:69:D0:5E:CE:1A:E6:4C:F6
X509v3 Authority Key Identifier:
keyid:10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:32:63:f6:a5:e1:93:5a:fe:11:eb:17:42:e2:63:82:70:aa:
20:83:8e:0b:f6:ce:0f:7a:ac:14:bc:da:1e:a2:30:26:c8:4a:
bc:d7:c3:be:4a:bd:69:f0:d4:76:38:92:f5:d5:a3:7f:02:3a:
21:c8:27:3f:11:c0:11:a9:87:55:2c:d5:9a:24:e5:92:9f:a2:
55:19:ba:bb:06:09:ba:06:c1:91:32:f3:d3:23:8b:bb:a7:6c:
81:ff:7e:8a:9a:7d:9e:27:17:66:7d:0d:27:c0:5a:90:37:92:
e2:f7:45:b0:10:36:00:af:04:85:0f:fb:b7:e9:ab:3c:69:2d:
7b:9a:7f:04:30:0e:e3:94:46:b4:58:74:6b:7e:33:6c:f0:4a:
ba:c3:6f:bb:57:f7:03:7d:1b:bf:ca:23:28:ac:a7:a4:7b:6b:
2c:be:d6:d2:58:23:e5:c1:0a:c5:e9:77:3c:02:65:22:0f:96:
81:f4:e4:37:23:51:ce:14:5a:e0:56:1f:d5:d2:0a:de:25:e1:
33:5c:33:a6:f5:f3:3a:ac:59:8f:be:8b:b7:07:d1:7a:1b:5f:
0f:70:6d:f9:3d:ab:01:db:7a:65:c4:46:c3:7f:2d:06:e8:13:
15:ac:f0:ef:81:1b:1e:34:ab:37:3f:7c:2b:71:35:e9:87:61:
ce:0a:1a:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZohrfRRlC8beFaXgDAg/1C8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwN2E1YWYxOTZiOGEwZWE5NjBjMjhmNmIzZTc1MjkxYzdl
ODYxY2QwHhcNMjUxMDI2MTgwMDM5WhcNMjUxMDI3MTgwMDM5WjAzMTEwLwYDVQQD
EygzNGE1ZGE1YTI2NGQyYTU3Yzk3Y2MxOTY2OWQwNWVjZTFhZTY0Y2Y2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTAvsbnXHcw+KPtXQItBludV1Yqh
ik9To0ruZNZzsYo3lavo/wFBJqJ1EvV8sH98ypnGXb4auiCoL6wL3V6ru8m60sSV
uuzkkPAgIOUOUSn/2wzQ1XtO38JWfgm2noaZkZeOErs0x1eZW13gyQoNoJiiKexQ
mnRlMbl8wO+/KotKUrHL0GjE26iSxlFq2IbCxmtNeHQZIPwCn6DSSldeoBDNkKwG
i226Np2X1s+poFcRsiEcJWUNXjQv3SX6qoPReGD7HSGuVzxvJ6uuP+2hde1qPBHy
S6HfHGtmRiSTCEFHeo/OdVzHLzTq8a0yOvFqDhsoJl5nnB2hPkOR3SBmaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDSl2lomTSpXyXzBlmnQXs4a5kz2MB8GA1UdIwQY
MBaAFBB6WvGWuKDqlgwo9rPnUpHH6GHNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9iYjIzZTEtNDZjYS00NjRhLWIzZjIt
ZjkyOWUyNTUxNjI3LzEvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9iYjIzZTEtNDZjYS00NjRhLWIzZjItZjkyOWUyNTUxNjI3
LzEvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcjJj9qXh
k1r+EesXQuJjgnCqIIOOC/bOD3qsFLzaHqIwJshKvNfDvkq9afDUdjiS9dWjfwI6
IcgnPxHAEamHVSzVmiTlkp+iVRm6uwYJugbBkTLz0yOLu6dsgf9+ipp9nicXZn0N
J8BakDeS4vdFsBA2AK8EhQ/7t+mrPGkte5p/BDAO45RGtFh0a34zbPBKusNvu1f3
A30bv8ojKKynpHtrLL7W0lgj5cEKxel3PAJlIg+WgfTkNyNRzhRa4FYf1dIK3iXh
M1wzpvXzOqxZj76LtwfRehtfD3Bt+T2rAdt6ZcRGw38tBugTFazw74EbHjSrNz98
K3E16YdhzgoaUA==
-----END CERTIFICATE-----
Generated at Sun Oct 26 22:24:17 2025 by rpki-client