Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
File: jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft (raw, json)
Hash identifier: 9Q5wVU4gma/dEg+Aad8dv3FL+F9/Klsv4UDb565I/eI=
Subject key identifier: E4:30:06:E6:84:16:7F:D3:09:B5:94:02:DF:76:36:2C:1B:D0:7D:46
Authority key identifier: 8E:0F:68:38:67:EF:76:9A:0A:22:AD:E1:71:18:ED:06:FA:57:B8:1F
Certificate issuer: /CN=8e0f683867ef769a0a22ade17118ed06fa57b81f
Certificate serial: 019A714A28F85FC88EC72D6D13456305415D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
Manifest number: 066D
Signing time: Tue 11 Nov 2025 05:01:16 +0000
Manifest this update: Tue 11 Nov 2025 05:01:16 +0000
Manifest next update: Wed 12 Nov 2025 05:01:16 +0000
Files and hashes: 1: 960ydd6N5IVjJ8SKw0-cCFu0l5A.roa (hash: vdzIyqJL7Fj4rd7R5SOUV3BY5/WQ96AWM5L49KfXiUE=)
2: jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl (hash: pGw6yVovfCrdNYi9rUR3q2S3nIehHnPLeNGCgCVZ1KA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:28:f8:5f:c8:8e:c7:2d:6d:13:45:63:05:41:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e0f683867ef769a0a22ade17118ed06fa57b81f
Validity
Not Before: Nov 11 05:01:16 2025 GMT
Not After : Nov 12 05:01:16 2025 GMT
Subject: CN=e43006e684167fd309b59402df76362c1bd07d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2f:50:e8:a3:f0:1d:8d:84:9f:b1:db:52:44:
c5:71:e2:dd:42:7b:52:e9:cb:3a:53:6c:c1:cb:1e:
ec:72:fd:d5:d8:d9:76:8a:20:62:42:d9:f3:60:1f:
8a:bf:71:b1:41:3c:10:b1:2c:16:3d:a9:64:f2:ae:
32:16:3e:28:db:8c:f9:45:63:8a:0c:63:05:61:72:
f3:df:9e:ad:20:c5:c7:89:01:43:62:f5:e6:04:82:
02:22:68:30:ba:44:3f:5f:3a:86:70:2f:bf:ef:08:
e1:8e:32:44:66:8c:9d:e4:46:0c:40:de:9d:ae:46:
34:c2:02:37:a1:35:b7:d6:10:fa:40:ec:8a:5e:3c:
0d:1a:1b:0c:04:41:c9:0e:ef:71:2c:b2:7e:90:e3:
30:67:9a:1e:68:9f:16:1d:54:ad:6a:22:8c:2f:83:
4f:5a:bb:30:5b:e0:70:3d:f8:6a:43:07:9a:6b:42:
bf:49:1a:89:33:ee:00:0c:a4:25:b0:9a:8a:f4:8f:
30:f9:ff:2d:60:6a:20:df:a2:da:ef:af:66:28:dc:
45:41:e9:37:3f:b0:90:93:08:68:fd:69:92:b5:5c:
2b:fd:db:43:b9:bf:0a:fe:d3:35:3e:3a:9b:85:f3:
d7:3c:f7:b5:8a:ba:e6:51:78:57:c0:e2:dd:51:95:
be:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:30:06:E6:84:16:7F:D3:09:B5:94:02:DF:76:36:2C:1B:D0:7D:46
X509v3 Authority Key Identifier:
keyid:8E:0F:68:38:67:EF:76:9A:0A:22:AD:E1:71:18:ED:06:FA:57:B8:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:57:9a:15:e9:51:6a:36:ec:a3:64:9c:8c:ae:fe:40:7f:72:
67:97:0a:28:5c:16:a1:b5:e3:8d:9c:b6:bf:5d:f1:6e:5b:71:
e9:8d:53:3a:96:02:a3:ab:e6:c2:d2:46:1f:af:81:b4:cb:97:
14:aa:94:1d:34:06:cc:37:34:75:8a:a4:16:e5:36:5d:38:74:
47:7f:95:6c:f8:c7:ae:65:d5:f8:0b:be:fd:78:42:1b:21:d1:
4a:76:15:6c:79:14:41:ed:14:1f:1a:d9:5a:94:5f:b9:12:e9:
34:54:17:b1:15:d7:81:ba:45:d0:c6:39:b4:9e:69:ae:71:c6:
67:ca:92:f5:3d:09:9a:b2:2f:8c:ec:50:3e:6e:4e:b8:d1:16:
19:be:ad:fa:e7:b7:09:c2:ce:33:cf:8b:f8:3d:ab:e6:0e:9b:
9e:90:59:81:1e:c9:93:9e:31:8c:76:36:fd:0b:fd:42:d6:e4:
e0:65:3b:58:c0:5c:be:c3:a1:00:3e:4c:8d:ad:9a:5d:89:fa:
d1:ca:5f:c9:e0:8f:15:cf:7b:ed:de:fa:50:43:f3:73:1e:06:
16:e8:9d:85:ec:6a:9d:1a:43:27:b7:bf:d9:27:d8:a6:d5:96:
23:a7:ab:7c:43:bf:49:15:49:fe:e6:73:ab:4c:5b:9e:98:3f:
04:ce:f3:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxSij4X8iOxy1tE0VjBUFdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMGY2ODM4NjdlZjc2OWEwYTIyYWRlMTcxMThlZDA2ZmE1
N2I4MWYwHhcNMjUxMTExMDUwMTE2WhcNMjUxMTEyMDUwMTE2WjAzMTEwLwYDVQQD
EyhlNDMwMDZlNjg0MTY3ZmQzMDliNTk0MDJkZjc2MzYyYzFiZDA3ZDQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAti9Q6KPwHY2En7HbUkTFceLdQntS
6cs6U2zByx7scv3V2Nl2iiBiQtnzYB+Kv3GxQTwQsSwWPalk8q4yFj4o24z5RWOK
DGMFYXLz356tIMXHiQFDYvXmBIICImgwukQ/XzqGcC+/7wjhjjJEZoyd5EYMQN6d
rkY0wgI3oTW31hD6QOyKXjwNGhsMBEHJDu9xLLJ+kOMwZ5oeaJ8WHVStaiKML4NP
WrswW+BwPfhqQweaa0K/SRqJM+4ADKQlsJqK9I8w+f8tYGog36La769mKNxFQek3
P7CQkwho/WmStVwr/dtDub8K/tM1PjqbhfPXPPe1irrmUXhXwOLdUZW+0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOQwBuaEFn/TCbWUAt92Niwb0H1GMB8GA1UdIwQY
MBaAFI4PaDhn73aaCiKt4XEY7Qb6V7gfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamc5b09HZnZkcG9LSXEzaGNSanRCdnBYdUI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC84NmMwMDItNzU4Yi00OTVhLWI5Y2Qt
N2IwZGMwMGE4YzIwLzEvamc5b09HZnZkcG9LSXEzaGNSanRCdnBYdUI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC84NmMwMDItNzU4Yi00OTVhLWI5Y2QtN2IwZGMwMGE4YzIw
LzEvamc5b09HZnZkcG9LSXEzaGNSanRCdnBYdUI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMFeaFelR
ajbso2ScjK7+QH9yZ5cKKFwWobXjjZy2v13xbltx6Y1TOpYCo6vmwtJGH6+BtMuX
FKqUHTQGzDc0dYqkFuU2XTh0R3+VbPjHrmXV+Au+/XhCGyHRSnYVbHkUQe0UHxrZ
WpRfuRLpNFQXsRXXgbpF0MY5tJ5prnHGZ8qS9T0JmrIvjOxQPm5OuNEWGb6t+ue3
CcLOM8+L+D2r5g6bnpBZgR7Jk54xjHY2/Qv9Qtbk4GU7WMBcvsOhAD5Mja2aXYn6
0cpfyeCPFc977d76UEPzcx4GFuidhexqnRpDJ7e/2SfYptWWI6erfEO/SRVJ/uZz
q0xbnpg/BM7z1Q==
-----END CERTIFICATE-----
Generated at Tue Nov 11 13:17:33 2025 by rpki-client