Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: mv/1fTYbGJ8nL0ozUrfgPc3WoVYAv8ROW5OnO6XeXyA=
Subject key identifier: EF:7F:FC:32:91:71:CC:36:B1:07:87:39:22:F7:8D:5C:22:DA:92:2D
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 019A71B78D714618149855966D25965C8963
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 0773
Signing time: Tue 11 Nov 2025 07:00:45 +0000
Manifest this update: Tue 11 Nov 2025 07:00:45 +0000
Manifest next update: Wed 12 Nov 2025 07:00:45 +0000
Files and hashes: 1: 4QzNEDyRlis-_JGlrISCfbsPszU.roa (hash: Y9K09YKp80O/JCR9exHbB8w/On++FMzgdee4rnQPOdU=)
2: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: ycoXp+m2m6Bt/x8Uz/31/Piv79z3PEQxt8dxwkw9QhY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:8d:71:46:18:14:98:55:96:6d:25:96:5c:89:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Nov 11 07:00:45 2025 GMT
Not After : Nov 12 07:00:45 2025 GMT
Subject: CN=ef7ffc329171cc36b107873922f78d5c22da922d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:62:86:55:9b:54:73:20:63:36:5f:45:40:ac:
f5:ee:ef:c0:4f:0c:d1:93:9d:00:07:cc:85:62:91:
b4:1e:d5:42:0b:e7:38:7f:ef:1b:8c:b6:dd:9c:e3:
a1:52:01:a9:57:8d:32:69:a4:cf:ec:d6:63:2e:d1:
4f:43:c1:f4:b9:ed:1f:6a:71:15:29:6c:ad:97:b6:
64:3a:bc:ad:cb:aa:e6:63:a1:95:48:dc:21:48:e6:
6f:4d:d0:af:c5:36:cf:c3:73:ea:d4:d7:0f:6b:48:
2b:fe:1c:3c:32:de:2e:12:4d:0e:bc:f0:42:91:0f:
14:20:37:01:43:46:3d:a9:a6:af:70:71:1c:6a:22:
46:6e:34:d6:cd:04:48:94:57:4e:4e:34:ad:3c:34:
44:58:67:84:c9:01:d9:52:d1:e7:fe:84:9d:97:09:
d1:d8:fd:38:9e:1b:26:84:fa:dd:e8:72:cd:58:23:
d0:72:d7:ae:36:37:93:f9:e9:76:cf:89:35:cf:36:
9d:44:b7:50:bd:0f:39:b8:6a:e0:8d:e6:ce:86:c8:
0f:99:95:1e:6e:b5:39:88:2f:f0:fd:df:02:8b:95:
17:a5:c4:a4:b1:b2:09:68:97:ad:1c:b5:01:68:d1:
12:88:ff:77:66:6b:0b:7c:9c:5c:bd:a2:5f:c2:1e:
da:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:7F:FC:32:91:71:CC:36:B1:07:87:39:22:F7:8D:5C:22:DA:92:2D
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:d2:8e:2f:66:b7:f0:b1:a3:2d:06:41:97:b6:8b:92:a8:6e:
23:d4:e5:95:d3:a4:36:0b:45:bc:a3:8f:09:81:5b:ea:52:50:
d4:d9:f1:d6:20:65:26:c2:bb:d0:03:e8:71:ff:db:e7:29:62:
b1:89:3c:c7:3e:4f:6e:33:12:f4:95:74:c5:5d:1c:4e:3d:be:
d1:89:ce:b0:f0:b1:33:3a:d7:13:72:85:82:8a:b2:b2:12:34:
06:63:a3:10:ec:6a:03:18:75:06:f0:07:02:55:57:a8:c9:2a:
51:af:c7:56:d3:9f:d1:10:4d:65:ad:e7:8f:ad:fc:9a:e9:3e:
39:24:8c:9d:d2:33:d3:3f:cd:63:ff:54:58:87:bf:19:26:46:
df:71:2e:3b:8f:cf:27:3a:b3:c3:d3:77:74:78:71:42:bc:16:
12:03:bc:bc:70:1d:6f:8f:b9:9a:ac:04:29:f7:76:dc:47:9d:
64:74:2b:49:ed:3e:1f:3e:8a:a8:c3:99:61:bf:dc:25:c9:b0:
71:64:f9:9e:fb:d1:e8:be:8b:90:f1:bc:81:ae:b8:52:da:3e:
bc:dc:63:d5:05:41:28:ba:18:8a:81:3f:7f:76:3e:0b:7c:f8:
82:4e:e0:3a:bd:b6:70:57:a5:ec:e9:45:f4:10:e2:bd:e5:1f:
91:aa:a6:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxt41xRhgUmFWWbSWWXIljMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4ZjI5ZTg3MzgyMTU5Y2E1ZTgxMzg3ZDdlZTc3ZTUxMmZh
ZDE2MzYwHhcNMjUxMTExMDcwMDQ1WhcNMjUxMTEyMDcwMDQ1WjAzMTEwLwYDVQQD
EyhlZjdmZmMzMjkxNzFjYzM2YjEwNzg3MzkyMmY3OGQ1YzIyZGE5MjJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkmKGVZtUcyBjNl9FQKz17u/ATwzR
k50AB8yFYpG0HtVCC+c4f+8bjLbdnOOhUgGpV40yaaTP7NZjLtFPQ8H0ue0fanEV
KWytl7ZkOryty6rmY6GVSNwhSOZvTdCvxTbPw3Pq1NcPa0gr/hw8Mt4uEk0OvPBC
kQ8UIDcBQ0Y9qaavcHEcaiJGbjTWzQRIlFdOTjStPDREWGeEyQHZUtHn/oSdlwnR
2P04nhsmhPrd6HLNWCPQcteuNjeT+el2z4k1zzadRLdQvQ85uGrgjebOhsgPmZUe
brU5iC/w/d8Ci5UXpcSksbIJaJetHLUBaNESiP93ZmsLfJxcvaJfwh7a7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO9//DKRccw2sQeHOSL3jVwi2pItMB8GA1UdIwQY
MBaAFHjynoc4IVnKXoE4fX7nflEvrRY2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVBLZWh6Z2hXY3BlZ1RoOWZ1ZC1VUy10RmpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9hNGI0OGItNDYyZS00NWE2LTg2MGQt
ODJmODljYmEyNmQ4LzEvZVBLZWh6Z2hXY3BlZ1RoOWZ1ZC1VUy10RmpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9hNGI0OGItNDYyZS00NWE2LTg2MGQtODJmODljYmEyNmQ4
LzEvZVBLZWh6Z2hXY3BlZ1RoOWZ1ZC1VUy10RmpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqdKOL2a3
8LGjLQZBl7aLkqhuI9TlldOkNgtFvKOPCYFb6lJQ1Nnx1iBlJsK70APocf/b5yli
sYk8xz5PbjMS9JV0xV0cTj2+0YnOsPCxMzrXE3KFgoqyshI0BmOjEOxqAxh1BvAH
AlVXqMkqUa/HVtOf0RBNZa3nj638muk+OSSMndIz0z/NY/9UWIe/GSZG33EuO4/P
Jzqzw9N3dHhxQrwWEgO8vHAdb4+5mqwEKfd23EedZHQrSe0+Hz6KqMOZYb/cJcmw
cWT5nvvR6L6LkPG8ga64Uto+vNxj1QVBKLoYioE/f3Y+C3z4gk7gOr22cFel7OlF
9BDiveUfkaqm9g==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:08:38 2025 by rpki-client