Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.mft
File: sejPc4YgDf2psGfbnHfTBmDXTNo.mft (raw, json)
Hash identifier: rIeJhrlskGv2gtf3CoyOTsALjF9usR90kW4k2GmYFlk=
Subject key identifier: 92:54:7A:A9:98:CC:62:BC:4B:C3:E2:B0:6B:BC:0A:84:D7:D3:11:9F
Authority key identifier: B1:E8:CF:73:86:20:0D:FD:A9:B0:67:DB:9C:77:D3:06:60:D7:4C:DA
Certificate issuer: /CN=b1e8cf7386200dfda9b067db9c77d30660d74cda
Certificate serial: 019A7301BF292341982857116E586FC37F2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sejPc4YgDf2psGfbnHfTBmDXTNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.mft
Manifest number: 0C39
Signing time: Tue 11 Nov 2025 13:01:25 +0000
Manifest this update: Tue 11 Nov 2025 13:01:25 +0000
Manifest next update: Wed 12 Nov 2025 13:01:25 +0000
Files and hashes: 1: AXjvsvQT0QHgjGJCOykWGFNYr-c.roa (hash: 7RT23qfYCEUyYP4ewoJmIzu1W/Zc3geSmO8k80S5/ts=)
2: sejPc4YgDf2psGfbnHfTBmDXTNo.crl (hash: BYxfnFB7dTYQVfMua3sEYx+SerAigI5I2/d71Txf184=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.mft
rsync://rpki.ripe.net/repository/DEFAULT/sejPc4YgDf2psGfbnHfTBmDXTNo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:bf:29:23:41:98:28:57:11:6e:58:6f:c3:7f:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1e8cf7386200dfda9b067db9c77d30660d74cda
Validity
Not Before: Nov 11 13:01:25 2025 GMT
Not After : Nov 12 13:01:25 2025 GMT
Subject: CN=92547aa998cc62bc4bc3e2b06bbc0a84d7d3119f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4c:67:f0:b0:50:19:3a:ad:23:5d:c1:bc:1e:
ac:56:58:11:7e:7b:0e:10:2f:93:87:af:be:60:7d:
7b:17:b0:d3:70:b8:53:3b:87:69:e6:b6:bc:e5:55:
c1:2c:e9:6e:84:ac:0c:57:ec:f0:81:71:10:4a:04:
7b:09:b7:cf:94:72:27:b9:8e:22:c6:7c:60:39:5d:
46:56:0d:5f:af:45:e6:94:8a:1b:30:52:ad:3c:8f:
f3:0d:04:61:6b:f6:61:5d:41:96:21:0e:8d:04:2a:
87:40:92:66:7b:9b:29:5b:6e:b0:86:f2:07:e6:3d:
f8:63:12:9f:b8:ab:0d:52:fa:08:38:1a:f4:f6:95:
19:f3:ea:02:f2:76:4f:96:e1:5d:0b:45:86:38:cc:
74:6f:d5:98:bd:bf:2e:17:ed:56:fe:01:a2:c6:d1:
62:af:dd:9b:65:0d:8a:46:76:28:b9:5e:11:9e:d5:
f0:19:ed:93:a7:03:3d:5b:59:0e:6a:8d:81:3a:56:
88:50:7c:4b:76:71:b0:4b:34:ad:ce:8f:5c:c3:91:
b8:66:ae:10:cd:08:ea:e6:05:d4:32:59:6b:c4:9d:
c4:9e:2d:55:28:ee:25:1c:84:c0:49:66:e6:11:e2:
0d:65:e7:f7:25:82:cc:83:60:21:fb:d8:00:49:ee:
a3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:54:7A:A9:98:CC:62:BC:4B:C3:E2:B0:6B:BC:0A:84:D7:D3:11:9F
X509v3 Authority Key Identifier:
keyid:B1:E8:CF:73:86:20:0D:FD:A9:B0:67:DB:9C:77:D3:06:60:D7:4C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sejPc4YgDf2psGfbnHfTBmDXTNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:2f:bf:48:1a:ec:3a:73:04:95:d2:bf:46:a4:b6:e8:9e:ac:
74:8e:db:2a:d3:02:99:4b:df:61:08:d0:c8:c7:04:16:8b:10:
df:81:65:8f:4e:b4:ff:c1:d8:6f:e8:fa:d6:51:f0:f6:e9:ef:
31:5d:a6:89:4b:b2:d7:ca:cc:ee:95:c4:b4:cb:44:ac:d0:d7:
7f:36:b1:43:de:2c:e8:3d:bd:a7:db:38:d9:0f:fa:24:c4:41:
b7:c3:86:3c:47:19:2d:7b:36:60:cc:18:ff:ac:bc:2f:7f:d7:
f3:eb:5e:b5:8a:61:54:16:b3:bf:3c:3d:f8:4a:32:1d:a4:ee:
0c:0e:df:a4:ff:09:db:8d:29:2c:51:9a:ca:77:69:90:98:9c:
cd:10:e8:7d:9e:11:46:a6:7f:ac:47:08:da:d7:dd:4f:8a:a1:
8b:4a:13:50:1b:53:a7:18:63:85:66:59:d8:70:0b:ad:2f:22:
35:ee:a9:68:7c:98:e4:a0:9f:71:b9:65:84:fb:9a:32:09:7b:
11:f5:d2:82:54:c6:c1:f2:8c:75:61:5a:92:3c:3b:4a:ce:cf:
7f:d8:2f:6f:b4:c4:ad:8a:70:0b:89:ee:11:41:eb:dd:9b:a6:
36:c0:b2:00:c2:0e:16:68:26:f1:46:4f:43:d4:fc:17:3b:6e:
87:6d:68:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpzAb8pI0GYKFcRblhvw38rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxZThjZjczODYyMDBkZmRhOWIwNjdkYjljNzdkMzA2NjBk
NzRjZGEwHhcNMjUxMTExMTMwMTI1WhcNMjUxMTEyMTMwMTI1WjAzMTEwLwYDVQQD
Eyg5MjU0N2FhOTk4Y2M2MmJjNGJjM2UyYjA2YmJjMGE4NGQ3ZDMxMTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUxn8LBQGTqtI13BvB6sVlgRfnsO
EC+Th6++YH17F7DTcLhTO4dp5ra85VXBLOluhKwMV+zwgXEQSgR7CbfPlHInuY4i
xnxgOV1GVg1fr0XmlIobMFKtPI/zDQRha/ZhXUGWIQ6NBCqHQJJme5spW26whvIH
5j34YxKfuKsNUvoIOBr09pUZ8+oC8nZPluFdC0WGOMx0b9WYvb8uF+1W/gGixtFi
r92bZQ2KRnYouV4RntXwGe2TpwM9W1kOao2BOlaIUHxLdnGwSzStzo9cw5G4Zq4Q
zQjq5gXUMllrxJ3Eni1VKO4lHITASWbmEeINZef3JYLMg2Ah+9gASe6j7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJJUeqmYzGK8S8PisGu8CoTX0xGfMB8GA1UdIwQY
MBaAFLHoz3OGIA39qbBn25x30wZg10zaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2VqUGM0WWdEZjJwc0dmYm5IZlRCbURYVE5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9mNDk5Y2QtZmFkNi00ZmIwLTliZTct
NGE3OTA0ZmZjOGUxLzEvc2VqUGM0WWdEZjJwc0dmYm5IZlRCbURYVE5vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9mNDk5Y2QtZmFkNi00ZmIwLTliZTctNGE3OTA0ZmZjOGUx
LzEvc2VqUGM0WWdEZjJwc0dmYm5IZlRCbURYVE5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALS+/SBrs
OnMEldK/RqS26J6sdI7bKtMCmUvfYQjQyMcEFosQ34Flj060/8HYb+j61lHw9unv
MV2miUuy18rM7pXEtMtErNDXfzaxQ94s6D29p9s42Q/6JMRBt8OGPEcZLXs2YMwY
/6y8L3/X8+tetYphVBazvzw9+EoyHaTuDA7fpP8J240pLFGayndpkJiczRDofZ4R
RqZ/rEcI2tfdT4qhi0oTUBtTpxhjhWZZ2HALrS8iNe6paHyY5KCfcbllhPuaMgl7
EfXSglTGwfKMdWFakjw7Ss7Pf9gvb7TErYpwC4nuEUHr3ZumNsCyAMIOFmgm8UZP
Q9T8Fztuh21o2Q==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:48:07 2025 by rpki-client