Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
File: ejUNAkrwH46vElcXyqA6r60YTh0.mft (raw, json)
Hash identifier: +CATjDg3kRbRFKbn3WUYMzAYTWzAjoi8JbaxJmsJXzA=
Subject key identifier: D5:CF:FE:ED:89:F3:02:44:A5:09:38:26:92:27:4E:2A:44:88:FE:29
Authority key identifier: 7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
Certificate issuer: /CN=7a350d024af01f8eaf125717caa03aafad184e1d
Certificate serial: 019A54BFA5DB519C79DF8051AB60D0BA228C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
Manifest number: 1711
Signing time: Wed 05 Nov 2025 16:00:37 +0000
Manifest this update: Wed 05 Nov 2025 16:00:37 +0000
Manifest next update: Thu 06 Nov 2025 16:00:37 +0000
Files and hashes: 1: 2JjyX_-1ihqsSblonAIGQ2WI8zE.roa (hash: zFek1n9vUOT2IuGKFpGhKS8yEEOPqAUeFGqimhy7H3I=)
2: 2zv-bqUF4ie6dLoJOvbHg-Khzrk.roa (hash: SuQwzPeSaf/HqGV5aFne0AqsUIDLEGL4BEqdCUksZzA=)
3: 90IBFTm1n0EdouWYts1bm2C2AV0.roa (hash: ERgPNr6bXt5OGFwKPUno3LLiwFJjlAJ5vniWmV4rL9o=)
4: IPDWq2JXklmZilVzAW_qJFHve_M.roa (hash: 8qLID3yci9mCWiyOl1eMby2l1Aaax7OKoB39T8J6xu0=)
5: Qhk5DeOzxRoTsaRY5UPu50xo2Q4.roa (hash: SAnzykFF7+yaqNzuYwleeCNNDy8d940iOSnUgG5s+iM=)
6: Zu3SmHOhZpwuSSti9wdImp6Ga-Q.roa (hash: 5ZnrCuNHa1wjQpFfQY/Zj6DgGr5ywhEPGA9N3saHG2U=)
7: ejUNAkrwH46vElcXyqA6r60YTh0.crl (hash: f072Ksjwx8a756fsdwc7huG4K0mFstRq9Mf0huablGg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:bf:a5:db:51:9c:79:df:80:51:ab:60:d0:ba:22:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a350d024af01f8eaf125717caa03aafad184e1d
Validity
Not Before: Nov 5 16:00:37 2025 GMT
Not After : Nov 6 16:00:37 2025 GMT
Subject: CN=d5cffeed89f30244a509382692274e2a4488fe29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e5:5e:fb:1b:ad:d2:6f:f6:6f:ac:81:ab:f8:
3d:f9:3d:13:e0:f7:80:e7:b1:29:d9:94:46:8b:86:
f1:dd:91:57:83:59:cb:69:69:7e:3c:7c:38:b4:92:
1d:b2:0f:42:8f:26:6c:ee:da:c6:9e:4d:85:7c:a6:
03:6f:94:17:6b:99:cb:0d:2d:18:b8:04:86:a9:97:
11:29:a7:7c:c3:c9:e6:91:9f:4c:0a:49:66:83:cc:
a3:b9:5e:ad:f2:0c:a5:6b:46:57:cb:2f:b5:22:9a:
a8:4a:fb:d1:87:83:5d:54:2a:e0:f7:15:ad:22:3c:
4e:a1:e1:3f:28:40:7c:63:e5:20:80:d0:93:2b:a9:
8e:6d:df:ec:27:ef:91:0c:9e:fa:e9:a0:6e:42:49:
f2:03:ac:2a:bc:69:c6:cb:4c:16:9a:5e:e4:e8:01:
92:8b:a0:e6:cc:4e:0c:3e:3e:2a:92:78:d4:06:44:
29:3e:dd:ed:6c:b3:28:5f:a7:12:59:7d:66:d1:4a:
5a:dc:6f:d6:84:53:19:a2:42:b1:41:2e:25:ec:a9:
4e:c3:ac:49:51:c8:40:d2:c0:a8:f2:d0:aa:22:13:
e8:8c:c3:82:8c:dc:8b:bc:8a:a7:b2:a7:73:20:77:
c1:ac:7c:cd:92:e3:10:be:89:d4:cf:7e:e2:af:12:
66:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:CF:FE:ED:89:F3:02:44:A5:09:38:26:92:27:4E:2A:44:88:FE:29
X509v3 Authority Key Identifier:
keyid:7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:c0:74:e2:93:d7:6f:fc:72:59:c2:13:30:65:f4:3c:e2:b1:
63:ed:ab:98:ec:81:d5:eb:9c:ca:c9:de:32:72:6c:d4:cd:01:
d5:ce:66:57:2e:6e:3a:12:b4:fc:30:01:75:81:df:08:10:ab:
42:06:4c:41:c4:aa:bd:55:6b:7a:41:e6:39:ef:f5:7b:a5:84:
67:a4:37:b1:54:aa:2a:28:16:d4:3e:1c:bc:44:e1:a8:fd:41:
1b:b2:57:e4:54:b7:08:3a:50:4b:85:9a:48:e2:8b:0d:ce:8b:
56:2d:14:3f:5a:26:23:07:a3:a9:df:99:e3:58:00:c5:26:e9:
4c:83:83:a7:a3:c1:88:de:4e:66:f1:d6:b0:95:4a:62:54:5c:
ad:3b:33:2b:1a:69:da:c7:c9:8b:d2:7f:e2:06:de:46:56:ca:
82:d5:85:43:67:6f:bc:2e:97:0f:99:52:af:98:d4:db:e5:98:
90:93:04:d6:60:ec:ca:ca:c6:36:b8:91:a3:60:86:b8:6e:ee:
d8:c8:5d:5d:b2:2e:a3:1c:63:b2:6c:a5:fa:c2:c6:49:2d:29:
47:0e:96:71:25:6e:29:31:6e:3d:32:b1:27:8c:ad:1d:55:5f:
73:f0:0b:f2:5b:51:5c:1f:fc:04:6d:78:3d:5b:ed:b8:0c:31:
bd:47:6e:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpUv6XbUZx534BRq2DQuiKMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhMzUwZDAyNGFmMDFmOGVhZjEyNTcxN2NhYTAzYWFmYWQx
ODRlMWQwHhcNMjUxMTA1MTYwMDM3WhcNMjUxMTA2MTYwMDM3WjAzMTEwLwYDVQQD
EyhkNWNmZmVlZDg5ZjMwMjQ0YTUwOTM4MjY5MjI3NGUyYTQ0ODhmZTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2eVe+xut0m/2b6yBq/g9+T0T4PeA
57Ep2ZRGi4bx3ZFXg1nLaWl+PHw4tJIdsg9CjyZs7trGnk2FfKYDb5QXa5nLDS0Y
uASGqZcRKad8w8nmkZ9MCklmg8yjuV6t8gyla0ZXyy+1IpqoSvvRh4NdVCrg9xWt
IjxOoeE/KEB8Y+UggNCTK6mObd/sJ++RDJ766aBuQknyA6wqvGnGy0wWml7k6AGS
i6DmzE4MPj4qknjUBkQpPt3tbLMoX6cSWX1m0Upa3G/WhFMZokKxQS4l7KlOw6xJ
UchA0sCo8tCqIhPojMOCjNyLvIqnsqdzIHfBrHzNkuMQvonUz37irxJmiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNXP/u2J8wJEpQk4JpInTipEiP4pMB8GA1UdIwQY
MBaAFHo1DQJK8B+OrxJXF8qgOq+tGE4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWpVTkFrcndINDZ2RWxjWHlxQTZyNjBZVGgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi83OTY2YWUtOWM4OC00M2U5LWI4OTkt
ZDAwM2U1NmZlNzUzLzEvZWpVTkFrcndINDZ2RWxjWHlxQTZyNjBZVGgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi83OTY2YWUtOWM4OC00M2U5LWI4OTktZDAwM2U1NmZlNzUz
LzEvZWpVTkFrcndINDZ2RWxjWHlxQTZyNjBZVGgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApcB04pPX
b/xyWcITMGX0POKxY+2rmOyB1eucysneMnJs1M0B1c5mVy5uOhK0/DABdYHfCBCr
QgZMQcSqvVVrekHmOe/1e6WEZ6Q3sVSqKigW1D4cvEThqP1BG7JX5FS3CDpQS4Wa
SOKLDc6LVi0UP1omIwejqd+Z41gAxSbpTIODp6PBiN5OZvHWsJVKYlRcrTszKxpp
2sfJi9J/4gbeRlbKgtWFQ2dvvC6XD5lSr5jU2+WYkJME1mDsysrGNriRo2CGuG7u
2MhdXbIuoxxjsmyl+sLGSS0pRw6WcSVuKTFuPTKxJ4ytHVVfc/AL8ltRXB/8BG14
PVvtuAwxvUduSw==
-----END CERTIFICATE-----
Generated at Wed Nov 5 20:56:39 2025 by rpki-client