Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
File: ds5jfUe3gATQzPrjceaBh2isP6U.mft (raw, json)
Hash identifier: E6vtJ8C3URXB2ql4JzFtRGuR4ULTIvM9DNwVYtp0fOU=
Subject key identifier: 9C:57:C3:C9:43:28:6E:20:05:E0:73:EE:B1:3C:E1:FA:FC:25:39:50
Authority key identifier: 76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
Certificate issuer: /CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Certificate serial: 019A0A815E0BB130DEF962114C5E06B8C7E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
Manifest number: 150B
Signing time: Wed 22 Oct 2025 06:00:41 +0000
Manifest this update: Wed 22 Oct 2025 06:00:41 +0000
Manifest next update: Thu 23 Oct 2025 06:00:41 +0000
Files and hashes: 1: 2v9WLSFviNLhCEs3PI8ghWfG43g.roa (hash: s4HF4L3IMaVI3bReAfOPFKeWOp26BrTGFcFThVgszh4=)
2: ds5jfUe3gATQzPrjceaBh2isP6U.crl (hash: I/Ar7y4VwzngexM2kQq6mDjlOw6h3jMFiVWrQ9tKAu0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 06:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0a:81:5e:0b:b1:30:de:f9:62:11:4c:5e:06:b8:c7:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Validity
Not Before: Oct 22 06:00:41 2025 GMT
Not After : Oct 23 06:00:41 2025 GMT
Subject: CN=9c57c3c943286e2005e073eeb13ce1fafc253950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4d:14:90:9b:46:e6:25:db:fd:9b:a7:7f:b1:
8b:54:3d:88:cd:9e:1b:48:40:9e:c0:25:b6:5b:15:
69:a6:ef:3e:8f:db:5a:ff:65:77:d8:91:f1:ac:3e:
d4:ba:65:05:a5:58:a9:66:c4:32:0e:7e:a2:76:52:
77:66:95:ed:eb:dc:ee:72:ad:e0:c0:76:5c:96:d3:
91:3a:4d:4f:c7:3f:ce:de:ed:88:ee:db:85:88:59:
0d:2e:03:b7:c1:48:b7:92:44:a3:ec:a1:ef:55:c3:
ee:1b:69:c5:a3:c9:a2:20:10:5d:ef:a5:2d:38:ac:
da:7a:73:7a:41:03:42:27:ea:25:d9:4f:4d:e3:f0:
44:06:da:35:61:fc:48:97:31:43:98:32:98:33:ce:
45:51:5b:26:26:bc:79:97:62:9d:5a:e6:19:13:e1:
f6:fc:53:47:20:32:ab:7a:99:d3:65:ad:3a:d3:29:
77:9c:3a:1f:86:72:1d:f6:ba:48:ba:a4:c8:6e:88:
a4:ac:43:61:82:96:6d:69:aa:92:31:e6:37:52:02:
fc:65:93:33:16:3d:e0:8a:1c:57:61:d9:66:b5:d8:
2e:de:e5:fe:9a:48:51:d3:7d:f9:22:8d:67:e8:a8:
0b:bd:ec:08:94:09:f1:e7:f9:89:b0:92:41:92:f5:
93:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:57:C3:C9:43:28:6E:20:05:E0:73:EE:B1:3C:E1:FA:FC:25:39:50
X509v3 Authority Key Identifier:
keyid:76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:8c:b3:78:31:87:65:a9:d6:98:8d:86:2a:77:ea:62:b8:be:
91:53:fd:a9:aa:7c:43:6c:75:45:06:b4:a5:fb:94:68:01:28:
be:cc:48:db:1b:33:0f:8d:f2:89:20:40:54:83:b4:65:c6:44:
e2:02:69:57:c3:4f:ae:85:5a:72:f4:40:e2:12:57:fd:84:8f:
c8:b8:a7:b6:fb:8c:64:1e:f7:c2:2b:34:df:10:d9:2b:20:c2:
47:47:fe:47:c7:a2:a0:8a:0b:dc:3c:8f:97:ff:fd:6a:5a:0b:
77:63:ab:b1:0f:92:f7:95:c9:e7:71:70:bc:f9:36:bf:a9:d7:
9c:11:c5:5e:ec:11:37:ae:36:e3:bb:9a:6e:91:bb:f3:54:4c:
b6:c2:21:93:31:00:b7:c6:51:81:67:b1:94:b2:0c:2d:3b:64:
de:0d:cf:26:85:04:84:00:5b:75:45:6d:5e:06:c8:e8:6a:78:
4b:f7:ba:9b:f0:51:e3:66:25:0d:62:d4:1e:b3:26:b3:2b:37:
bb:0a:29:46:89:4c:a5:7a:e6:89:ae:e9:20:cd:03:1c:e6:cd:
73:8a:5d:b6:ff:37:1a:e3:75:c1:e0:84:bf:b6:9f:c9:2d:3c:
3f:73:6a:70:07:55:db:d2:2a:45:82:c7:0d:df:aa:1a:3c:8c:
e8:57:11:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoKgV4LsTDe+WIRTF4GuMfkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2Y2U2MzdkNDdiNzgwMDRkMGNjZmFlMzcxZTY4MTg3Njhh
YzNmYTUwHhcNMjUxMDIyMDYwMDQxWhcNMjUxMDIzMDYwMDQxWjAzMTEwLwYDVQQD
Eyg5YzU3YzNjOTQzMjg2ZTIwMDVlMDczZWViMTNjZTFmYWZjMjUzOTUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArU0UkJtG5iXb/Zunf7GLVD2IzZ4b
SECewCW2WxVppu8+j9ta/2V32JHxrD7UumUFpVipZsQyDn6idlJ3ZpXt69zucq3g
wHZcltOROk1Pxz/O3u2I7tuFiFkNLgO3wUi3kkSj7KHvVcPuG2nFo8miIBBd76Ut
OKzaenN6QQNCJ+ol2U9N4/BEBto1YfxIlzFDmDKYM85FUVsmJrx5l2KdWuYZE+H2
/FNHIDKrepnTZa060yl3nDofhnId9rpIuqTIboikrENhgpZtaaqSMeY3UgL8ZZMz
Fj3gihxXYdlmtdgu3uX+mkhR0335Io1n6KgLvewIlAnx5/mJsJJBkvWTkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJxXw8lDKG4gBeBz7rE84fr8JTlQMB8GA1UdIwQY
MBaAFHbOY31Ht4AE0Mz643HmgYdorD+lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS83MzA5YTktNDZjOC00MjQwLWFmZWYt
ODQwODgxYTRkMzBkLzEvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS83MzA5YTktNDZjOC00MjQwLWFmZWYtODQwODgxYTRkMzBk
LzEvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0YyzeDGH
ZanWmI2GKnfqYri+kVP9qap8Q2x1RQa0pfuUaAEovsxI2xszD43yiSBAVIO0ZcZE
4gJpV8NProVacvRA4hJX/YSPyLintvuMZB73wis03xDZKyDCR0f+R8eioIoL3DyP
l//9aloLd2OrsQ+S95XJ53FwvPk2v6nXnBHFXuwRN64247uabpG781RMtsIhkzEA
t8ZRgWexlLIMLTtk3g3PJoUEhABbdUVtXgbI6Gp4S/e6m/BR42YlDWLUHrMmsys3
uwopRolMpXrmia7pIM0DHObNc4pdtv83GuN1weCEv7afyS08P3NqcAdV29IqRYLH
Dd+qGjyM6FcRSg==
-----END CERTIFICATE-----
Generated at Wed Oct 22 12:15:34 2025 by rpki-client