Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
File: ejhiE08UE2XviHkC5gV8KLKCnJ0.mft (raw, json)
Hash identifier: FsR8NVj3JIpLMOP2z0PG/2++XvemVmDG/fYFLlZjI58=
Subject key identifier: E2:14:A6:28:A8:ED:2B:26:65:8D:91:75:17:53:6A:E9:E5:B1:BD:D9
Authority key identifier: 7A:38:62:13:4F:14:13:65:EF:88:79:02:E6:05:7C:28:B2:82:9C:9D
Certificate issuer: /CN=7a3862134f141365ef887902e6057c28b2829c9d
Certificate serial: 019A22C0808228033AC2C88AC37B69ADFA5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
Manifest number: 0DD7
Signing time: Sun 26 Oct 2025 23:00:32 +0000
Manifest this update: Sun 26 Oct 2025 23:00:32 +0000
Manifest next update: Mon 27 Oct 2025 23:00:32 +0000
Files and hashes: 1: DUeztC_9OSU5_baS7RpA8PIrChA.roa (hash: nC0NIfkO+km6NTJ5hH8jMs/CXJYU2lhmZlogyR2BxZI=)
2: ejhiE08UE2XviHkC5gV8KLKCnJ0.crl (hash: +wODjMrj0qdAwQf3n5LncbkMV2BWLPt9vFYzvSTjNRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:c0:80:82:28:03:3a:c2:c8:8a:c3:7b:69:ad:fa:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a3862134f141365ef887902e6057c28b2829c9d
Validity
Not Before: Oct 26 23:00:32 2025 GMT
Not After : Oct 27 23:00:32 2025 GMT
Subject: CN=e214a628a8ed2b26658d917517536ae9e5b1bdd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6a:d7:08:a5:ed:5a:00:2a:8d:6d:07:78:8a:
63:e4:55:f1:85:91:05:99:1d:27:4d:eb:4b:ea:d4:
18:dd:9e:c9:30:4c:12:5a:77:3f:05:02:81:b6:34:
2b:ea:92:82:5d:2a:97:93:7b:43:49:28:e8:8f:44:
2b:33:06:49:21:c8:3d:31:5a:a1:45:71:ae:5e:c2:
14:be:86:36:65:af:ba:28:cd:78:93:dd:49:7d:62:
d0:a3:7d:63:e8:25:4a:67:a1:b8:ad:2d:62:3a:c0:
1f:12:84:b8:39:86:ed:63:32:86:e5:fa:af:83:49:
ea:f6:31:83:cf:f4:08:1f:cf:59:c4:6c:00:f7:a1:
a2:5d:4a:d7:02:17:31:bd:58:e9:0c:59:1d:71:6d:
b3:51:6b:d7:ed:07:f8:6a:7d:57:91:09:c8:5c:1b:
96:8a:d4:0a:33:c4:1e:91:96:7a:92:2c:17:bb:07:
a6:3a:f5:a2:56:0a:fa:f2:18:e6:7f:da:f7:c2:bb:
67:46:62:e9:d8:a8:e4:bf:ea:69:bb:6c:4d:76:1f:
32:e1:69:ac:73:a3:21:d9:f6:46:d7:19:d3:5e:12:
8e:ee:6b:c9:56:af:0b:9f:86:42:e0:00:14:50:6e:
1c:71:9a:e0:76:f7:14:fc:b2:33:8f:43:7b:b7:62:
d4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:14:A6:28:A8:ED:2B:26:65:8D:91:75:17:53:6A:E9:E5:B1:BD:D9
X509v3 Authority Key Identifier:
keyid:7A:38:62:13:4F:14:13:65:EF:88:79:02:E6:05:7C:28:B2:82:9C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:ae:fe:e2:7f:4f:4b:bb:ef:53:f0:46:77:35:70:df:77:d2:
77:ee:be:99:9a:f2:3f:bf:71:ef:a7:77:94:0e:e3:5f:bb:21:
69:c7:0b:4b:47:48:31:57:1e:1c:b1:df:d0:fc:e0:83:2a:a1:
0f:9e:06:f4:5d:cf:2b:37:63:d2:75:4f:ba:51:d5:1d:60:b4:
f8:d7:60:c3:03:c0:76:59:f7:0b:b5:ac:47:b8:68:6d:aa:6f:
5f:04:29:b3:ae:7e:37:c4:36:0f:e1:f3:40:60:85:92:d7:0e:
02:0e:11:5f:71:a2:56:cb:33:55:63:b3:4f:40:45:13:e5:d0:
36:2a:d1:3e:fe:b2:a5:25:d3:6f:09:fe:69:4f:1b:fd:7d:f2:
5f:69:e4:67:22:20:9c:d5:07:25:3e:32:2c:bd:95:12:a4:25:
59:56:5e:c8:44:ef:5f:8f:ea:65:64:24:cd:72:57:17:1c:d9:
f8:45:64:ff:96:3a:6e:d3:42:d7:16:e4:c0:fa:6f:74:4a:23:
d0:02:c4:37:ca:c9:08:47:a9:bf:b6:a5:11:7e:9e:72:8f:7a:
6c:0b:e4:22:f5:63:49:ac:f0:6e:5f:67:b6:82:1c:62:4a:5d:
79:a1:8a:de:21:48:a1:13:30:18:84:cb:8e:9d:ee:19:1c:a9:
d9:4a:33:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoiwICCKAM6wsiKw3tprfpeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhMzg2MjEzNGYxNDEzNjVlZjg4NzkwMmU2MDU3YzI4YjI4
MjljOWQwHhcNMjUxMDI2MjMwMDMyWhcNMjUxMDI3MjMwMDMyWjAzMTEwLwYDVQQD
EyhlMjE0YTYyOGE4ZWQyYjI2NjU4ZDkxNzUxNzUzNmFlOWU1YjFiZGQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomrXCKXtWgAqjW0HeIpj5FXxhZEF
mR0nTetL6tQY3Z7JMEwSWnc/BQKBtjQr6pKCXSqXk3tDSSjoj0QrMwZJIcg9MVqh
RXGuXsIUvoY2Za+6KM14k91JfWLQo31j6CVKZ6G4rS1iOsAfEoS4OYbtYzKG5fqv
g0nq9jGDz/QIH89ZxGwA96GiXUrXAhcxvVjpDFkdcW2zUWvX7Qf4an1XkQnIXBuW
itQKM8QekZZ6kiwXuwemOvWiVgr68hjmf9r3wrtnRmLp2Kjkv+ppu2xNdh8y4Wms
c6Mh2fZG1xnTXhKO7mvJVq8Ln4ZC4AAUUG4ccZrgdvcU/LIzj0N7t2LUkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOIUpiio7SsmZY2RdRdTaunlsb3ZMB8GA1UdIwQY
MBaAFHo4YhNPFBNl74h5AuYFfCiygpydMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWpoaUUwOFVFMlh2aUhrQzVnVjhLTEtDbkowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS80MzQxOTktZDI2ZS00MTJlLWEyYmIt
ZGEwYTQwNjVlODI0LzEvZWpoaUUwOFVFMlh2aUhrQzVnVjhLTEtDbkowLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS80MzQxOTktZDI2ZS00MTJlLWEyYmItZGEwYTQwNjVlODI0
LzEvZWpoaUUwOFVFMlh2aUhrQzVnVjhLTEtDbkowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdq7+4n9P
S7vvU/BGdzVw33fSd+6+mZryP79x76d3lA7jX7shaccLS0dIMVceHLHf0Pzggyqh
D54G9F3PKzdj0nVPulHVHWC0+NdgwwPAdln3C7WsR7hobapvXwQps65+N8Q2D+Hz
QGCFktcOAg4RX3GiVsszVWOzT0BFE+XQNirRPv6ypSXTbwn+aU8b/X3yX2nkZyIg
nNUHJT4yLL2VEqQlWVZeyETvX4/qZWQkzXJXFxzZ+EVk/5Y6btNC1xbkwPpvdEoj
0ALEN8rJCEepv7alEX6eco96bAvkIvVjSazwbl9ntoIcYkpdeaGK3iFIoRMwGITL
jp3uGRyp2UozXw==
-----END CERTIFICATE-----
Generated at Mon Oct 27 04:18:25 2025 by rpki-client