Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
File: ejUNAkrwH46vElcXyqA6r60YTh0.mft (raw, json)
Hash identifier: mR+cvhR05WgO7+MPA2BrPtmJA8tGRakGxjXEixsGWpQ=
Subject key identifier: 31:E9:C7:10:BB:2E:14:AD:B4:A7:F6:D5:0E:E9:A5:D2:67:73:96:34
Authority key identifier: 7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
Certificate issuer: /CN=7a350d024af01f8eaf125717caa03aafad184e1d
Certificate serial: 019A52D11C1BEC6E3F908FBDDA664821A2CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
Manifest number: 1710
Signing time: Wed 05 Nov 2025 07:00:27 +0000
Manifest this update: Wed 05 Nov 2025 07:00:27 +0000
Manifest next update: Thu 06 Nov 2025 07:00:27 +0000
Files and hashes: 1: 2JjyX_-1ihqsSblonAIGQ2WI8zE.roa (hash: zFek1n9vUOT2IuGKFpGhKS8yEEOPqAUeFGqimhy7H3I=)
2: 2zv-bqUF4ie6dLoJOvbHg-Khzrk.roa (hash: SuQwzPeSaf/HqGV5aFne0AqsUIDLEGL4BEqdCUksZzA=)
3: 90IBFTm1n0EdouWYts1bm2C2AV0.roa (hash: ERgPNr6bXt5OGFwKPUno3LLiwFJjlAJ5vniWmV4rL9o=)
4: IPDWq2JXklmZilVzAW_qJFHve_M.roa (hash: 8qLID3yci9mCWiyOl1eMby2l1Aaax7OKoB39T8J6xu0=)
5: Qhk5DeOzxRoTsaRY5UPu50xo2Q4.roa (hash: SAnzykFF7+yaqNzuYwleeCNNDy8d940iOSnUgG5s+iM=)
6: Zu3SmHOhZpwuSSti9wdImp6Ga-Q.roa (hash: 5ZnrCuNHa1wjQpFfQY/Zj6DgGr5ywhEPGA9N3saHG2U=)
7: ejUNAkrwH46vElcXyqA6r60YTh0.crl (hash: iJSPY+WtDGI/+x++DKP5zy86D0AaD+5eoDMf0ihE8+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 07:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:1c:1b:ec:6e:3f:90:8f:bd:da:66:48:21:a2:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a350d024af01f8eaf125717caa03aafad184e1d
Validity
Not Before: Nov 5 07:00:27 2025 GMT
Not After : Nov 6 07:00:27 2025 GMT
Subject: CN=31e9c710bb2e14adb4a7f6d50ee9a5d267739634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:80:78:05:18:46:aa:a6:27:c3:6c:f9:89:3c:
be:f0:93:23:3e:98:95:59:42:bd:57:28:fc:54:16:
11:d7:bb:d0:e2:39:07:46:36:4c:f8:2c:21:20:5d:
76:a9:44:43:f0:2b:13:c2:63:84:c0:02:27:54:51:
ca:32:af:30:92:d2:89:9e:c0:db:13:ec:f0:e2:80:
29:bc:39:51:69:97:a2:f4:5b:88:83:ae:2f:e9:3f:
1a:5f:8d:90:a2:7c:b8:b6:b9:9c:c0:7a:19:30:41:
cc:9b:1c:29:a6:34:d7:5c:24:03:8c:f9:ba:53:cb:
3c:69:b6:62:b2:9b:a6:1a:07:05:e6:fe:3f:59:7e:
81:53:1c:c5:9a:8e:66:d7:57:a3:bc:d5:10:36:3f:
13:76:be:0e:1e:23:66:0a:2d:71:2d:16:70:f8:13:
06:a1:c2:05:be:56:36:33:35:49:ec:76:8c:d3:f7:
31:fb:11:af:3b:93:f6:b0:15:92:15:9e:af:e5:71:
21:7e:9f:2c:3f:91:59:7d:21:e4:3c:e0:71:64:bd:
49:a4:d6:9a:bc:db:bf:af:9f:e2:d4:3e:83:b3:c9:
62:0f:2e:ff:34:aa:3f:33:65:be:67:3d:6e:48:d6:
a1:79:3e:4d:12:59:d9:37:fd:5b:af:eb:09:97:42:
73:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:E9:C7:10:BB:2E:14:AD:B4:A7:F6:D5:0E:E9:A5:D2:67:73:96:34
X509v3 Authority Key Identifier:
keyid:7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:9a:00:a9:36:a8:d6:9e:62:c3:09:fb:ea:e4:d0:85:57:c5:
3f:60:0a:84:73:78:df:7c:bd:66:53:5f:5f:7e:71:90:e5:15:
69:58:ab:89:fa:11:e0:04:0a:be:e6:fc:c2:26:04:e8:4e:6f:
50:e3:13:52:75:52:76:1f:a6:50:05:f0:2b:9e:04:5d:d3:23:
d5:25:f6:ab:7f:f7:bc:83:47:54:3b:0f:d9:21:b7:47:39:66:
0c:bc:95:c1:1f:a0:28:dd:05:be:66:a5:90:16:29:d8:59:38:
80:90:4b:62:5d:8d:52:63:37:32:c1:c6:0b:d6:ca:2b:a9:f8:
91:05:4e:f1:e7:ed:47:ed:08:ea:c5:bb:d7:8d:f3:a7:86:69:
2e:53:1d:0e:51:97:52:61:fc:cd:aa:c9:3a:72:af:86:ab:e8:
4d:91:45:f1:80:f9:e5:67:ae:90:79:e5:61:fa:68:a5:71:a5:
39:bd:26:98:d6:ab:8e:d1:71:b1:bd:35:75:be:e7:9a:4b:9c:
c1:29:93:0d:58:d0:83:ab:dd:de:2f:ec:b4:cc:c0:f4:3e:89:
ec:cf:5f:3a:e4:18:27:09:92:94:e1:25:7b:25:94:e3:08:e0:
05:07:a0:b5:83:10:2a:49:4e:53:76:50:b6:12:a6:36:66:4d:
09:4a:92:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpS0Rwb7G4/kI+92mZIIaLKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhMzUwZDAyNGFmMDFmOGVhZjEyNTcxN2NhYTAzYWFmYWQx
ODRlMWQwHhcNMjUxMTA1MDcwMDI3WhcNMjUxMTA2MDcwMDI3WjAzMTEwLwYDVQQD
EygzMWU5YzcxMGJiMmUxNGFkYjRhN2Y2ZDUwZWU5YTVkMjY3NzM5NjM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4YB4BRhGqqYnw2z5iTy+8JMjPpiV
WUK9Vyj8VBYR17vQ4jkHRjZM+CwhIF12qURD8CsTwmOEwAInVFHKMq8wktKJnsDb
E+zw4oApvDlRaZei9FuIg64v6T8aX42Qony4trmcwHoZMEHMmxwppjTXXCQDjPm6
U8s8abZispumGgcF5v4/WX6BUxzFmo5m11ejvNUQNj8Tdr4OHiNmCi1xLRZw+BMG
ocIFvlY2MzVJ7HaM0/cx+xGvO5P2sBWSFZ6v5XEhfp8sP5FZfSHkPOBxZL1JpNaa
vNu/r5/i1D6Ds8liDy7/NKo/M2W+Zz1uSNaheT5NElnZN/1br+sJl0JzcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDHpxxC7LhSttKf21Q7ppdJnc5Y0MB8GA1UdIwQY
MBaAFHo1DQJK8B+OrxJXF8qgOq+tGE4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWpVTkFrcndINDZ2RWxjWHlxQTZyNjBZVGgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi83OTY2YWUtOWM4OC00M2U5LWI4OTkt
ZDAwM2U1NmZlNzUzLzEvZWpVTkFrcndINDZ2RWxjWHlxQTZyNjBZVGgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi83OTY2YWUtOWM4OC00M2U5LWI4OTktZDAwM2U1NmZlNzUz
LzEvZWpVTkFrcndINDZ2RWxjWHlxQTZyNjBZVGgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo5oAqTao
1p5iwwn76uTQhVfFP2AKhHN433y9ZlNfX35xkOUVaVirifoR4AQKvub8wiYE6E5v
UOMTUnVSdh+mUAXwK54EXdMj1SX2q3/3vINHVDsP2SG3RzlmDLyVwR+gKN0Fvmal
kBYp2Fk4gJBLYl2NUmM3MsHGC9bKK6n4kQVO8eftR+0I6sW7143zp4ZpLlMdDlGX
UmH8zarJOnKvhqvoTZFF8YD55WeukHnlYfpopXGlOb0mmNarjtFxsb01db7nmkuc
wSmTDVjQg6vd3i/stMzA9D6J7M9fOuQYJwmSlOEleyWU4wjgBQegtYMQKklOU3ZQ
thKmNmZNCUqSSg==
-----END CERTIFICATE-----
Generated at Wed Nov 5 15:34:07 2025 by rpki-client