Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
File: EHTblkAv9c8YdWRWDqjxPu61_-s.mft (raw, json)
Hash identifier: newB30P5PMTPOQFCCUnF38QuBMf3VuQX2HqimjLsm+M=
Subject key identifier: C3:B2:3A:A3:FB:1C:15:76:C6:7C:37:B1:71:81:FA:1D:54:B8:27:CD
Authority key identifier: 10:74:DB:96:40:2F:F5:CF:18:75:64:56:0E:A8:F1:3E:EE:B5:FF:EB
Certificate issuer: /CN=1074db96402ff5cf187564560ea8f13eeeb5ffeb
Certificate serial: 019A10834A6DFEB2BB509EB7DF7FAFDB49D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
Manifest number: 1728
Signing time: Thu 23 Oct 2025 10:00:30 +0000
Manifest this update: Thu 23 Oct 2025 10:00:30 +0000
Manifest next update: Fri 24 Oct 2025 10:00:30 +0000
Files and hashes: 1: EHTblkAv9c8YdWRWDqjxPu61_-s.crl (hash: v9Mp3dj7Etu7heX/l6cSi9QJcOMmA0JlQqjZA5J3jFE=)
2: UG72Y5tjPOVdDYZoF2OJHRvox8w.roa (hash: XSbgvIj2Ch+LSBHjiAOVtaCvcu1spJNttU+pKEof9y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 07:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:10:83:4a:6d:fe:b2:bb:50:9e:b7:df:7f:af:db:49:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1074db96402ff5cf187564560ea8f13eeeb5ffeb
Validity
Not Before: Oct 23 10:00:30 2025 GMT
Not After : Oct 24 10:00:30 2025 GMT
Subject: CN=c3b23aa3fb1c1576c67c37b17181fa1d54b827cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:59:94:37:2b:c6:8b:6e:7b:1d:2b:52:c1:94:
17:63:de:e4:ba:d8:3a:b9:d3:ec:2b:50:d1:ea:a5:
da:82:50:a0:a3:66:c1:c8:41:40:b3:a8:ae:77:ac:
5e:f1:b3:ee:ca:e8:6c:9b:3d:d1:51:9d:b3:5a:c7:
7e:3b:2f:8b:8b:ea:20:98:3b:03:2b:47:4b:8e:81:
30:43:73:28:7e:e2:34:df:d7:6e:ca:e0:a0:73:1e:
cd:7b:6b:7d:d0:b2:77:35:75:24:37:ec:78:fd:0b:
a5:11:e9:27:f5:3e:57:bc:bc:07:11:9b:c9:0d:8a:
c3:02:59:79:df:fd:cd:ad:23:ad:2e:4b:ad:de:60:
7b:f2:97:45:c0:91:83:9e:0a:2c:83:20:60:1b:cb:
fe:54:60:ab:a6:6e:b0:65:4e:ed:24:73:5e:51:75:
94:f2:7e:48:20:92:ad:be:a2:0e:72:fe:20:96:ce:
43:46:53:c2:62:da:19:5e:b0:09:1f:bd:03:aa:47:
94:26:ad:5f:ed:ff:7c:c1:1c:2f:00:71:a8:fc:0c:
ef:6e:2f:ab:fe:82:d6:5e:75:69:ad:19:15:82:c1:
7f:25:d0:bf:64:b1:68:02:1d:5d:eb:da:28:38:52:
dd:83:ef:32:cc:64:d8:3d:4a:92:d6:1b:87:5b:2d:
5c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B2:3A:A3:FB:1C:15:76:C6:7C:37:B1:71:81:FA:1D:54:B8:27:CD
X509v3 Authority Key Identifier:
keyid:10:74:DB:96:40:2F:F5:CF:18:75:64:56:0E:A8:F1:3E:EE:B5:FF:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:ba:99:f2:ef:43:92:f5:08:e5:37:f9:3a:0c:43:d6:d6:1f:
73:9f:d2:a6:79:da:0a:c8:7c:7c:d4:ed:84:d1:a6:fd:ae:ab:
ff:23:cd:db:60:50:84:e9:0b:2b:d6:cf:85:a2:73:e9:73:c0:
5b:be:42:7f:35:37:fd:48:5a:07:2c:2c:c4:f4:1d:50:7b:2e:
3f:8e:fe:25:2a:4f:5d:54:10:ac:9a:b4:4c:3f:37:f4:3c:20:
00:e4:89:a5:7b:3f:7b:f8:d0:02:6d:51:42:44:39:d1:c3:cc:
44:53:9e:95:79:77:b2:b3:c2:6e:a1:63:1e:b3:b5:17:d1:38:
b8:c0:d0:89:32:9a:49:17:b7:6e:69:89:19:2c:a4:3e:63:55:
0c:3d:8c:5b:23:34:ec:f4:42:dc:d0:a0:d3:23:8b:77:5d:6f:
d7:2d:ba:6e:ee:f8:bf:4a:35:26:64:a3:9e:ad:96:1d:2c:0d:
93:87:88:fd:d8:61:e1:54:5d:d1:ac:cf:af:ab:4e:e0:4b:f9:
73:02:33:8d:33:39:b5:d8:e3:93:fe:72:ea:9d:10:bb:54:80:
fd:b0:dd:24:c0:e9:29:85:76:f4:3c:56:2d:26:48:5d:dd:26:
2d:ba:49:40:39:30:3f:0e:7b:a0:7a:77:e9:d4:97:c1:6d:4b:
34:e1:25:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoQg0pt/rK7UJ6333+v20nQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwNzRkYjk2NDAyZmY1Y2YxODc1NjQ1NjBlYThmMTNlZWVi
NWZmZWIwHhcNMjUxMDIzMTAwMDMwWhcNMjUxMDI0MTAwMDMwWjAzMTEwLwYDVQQD
EyhjM2IyM2FhM2ZiMWMxNTc2YzY3YzM3YjE3MTgxZmExZDU0YjgyN2NkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxlmUNyvGi257HStSwZQXY97kutg6
udPsK1DR6qXaglCgo2bByEFAs6iud6xe8bPuyuhsmz3RUZ2zWsd+Oy+Li+ogmDsD
K0dLjoEwQ3MofuI039duyuCgcx7Ne2t90LJ3NXUkN+x4/QulEekn9T5XvLwHEZvJ
DYrDAll53/3NrSOtLkut3mB78pdFwJGDngosgyBgG8v+VGCrpm6wZU7tJHNeUXWU
8n5IIJKtvqIOcv4gls5DRlPCYtoZXrAJH70DqkeUJq1f7f98wRwvAHGo/Azvbi+r
/oLWXnVprRkVgsF/JdC/ZLFoAh1d69ooOFLdg+8yzGTYPUqS1huHWy1c0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMOyOqP7HBV2xnw3sXGB+h1UuCfNMB8GA1UdIwQY
MBaAFBB025ZAL/XPGHVkVg6o8T7utf/rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUhUYmxrQXY5YzhZZFdSV0RxanhQdTYxXy1zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My8xZTFkNjktMGJmZC00MGFmLTg4YjEt
YWI0MGI1OGEyODkyLzEvRUhUYmxrQXY5YzhZZFdSV0RxanhQdTYxXy1zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My8xZTFkNjktMGJmZC00MGFmLTg4YjEtYWI0MGI1OGEyODky
LzEvRUhUYmxrQXY5YzhZZFdSV0RxanhQdTYxXy1zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA7qZ8u9D
kvUI5Tf5OgxD1tYfc5/SpnnaCsh8fNTthNGm/a6r/yPN22BQhOkLK9bPhaJz6XPA
W75CfzU3/UhaBywsxPQdUHsuP47+JSpPXVQQrJq0TD839DwgAOSJpXs/e/jQAm1R
QkQ50cPMRFOelXl3srPCbqFjHrO1F9E4uMDQiTKaSRe3bmmJGSykPmNVDD2MWyM0
7PRC3NCg0yOLd11v1y26bu74v0o1JmSjnq2WHSwNk4eI/dhh4VRd0azPr6tO4Ev5
cwIzjTM5tdjjk/5y6p0Qu1SA/bDdJMDpKYV29DxWLSZIXd0mLbpJQDkwPw57oHp3
6dSXwW1LNOEljg==
-----END CERTIFICATE-----
Generated at Thu Oct 23 12:24:14 2025 by rpki-client