Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
File: erqgtAKPBzwFZKZYtPuIhsvI0-s.mft (raw, json)
Hash identifier: sRxzwz/LiODQmURN/0/6k76MKWA+EEYjPzPWY2UepMY=
Subject key identifier: DD:A1:23:49:6E:00:19:27:3D:4A:B5:28:7F:65:0D:71:49:7F:F0:6B
Authority key identifier: 7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB
Certificate issuer: /CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb
Certificate serial: 0199228CED165B4072AD0DD0A8B261EBEA68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
Manifest number: 024F
Signing time: Sun 07 Sep 2025 05:01:24 +0000
Manifest this update: Sun 07 Sep 2025 05:01:24 +0000
Manifest next update: Mon 08 Sep 2025 05:01:24 +0000
Files and hashes: 1: Du7k0B88jmKs_S-_OxfkmUBoQvk.roa (hash: 5Kd2ifwi5TK+F7WlkGpdmlpnXuH9BzmWZvxJszORzQQ=)
2: erqgtAKPBzwFZKZYtPuIhsvI0-s.crl (hash: ywzjwTW9On0Lvcgqfk0hZMygHNl2B+/YP20PGfh42yw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:ed:16:5b:40:72:ad:0d:d0:a8:b2:61:eb:ea:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb
Validity
Not Before: Sep 7 05:01:24 2025 GMT
Not After : Sep 8 05:01:24 2025 GMT
Subject: CN=dda123496e0019273d4ab5287f650d71497ff06b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ab:53:53:93:6c:da:3d:98:1a:42:60:c6:58:
a4:4c:a2:88:7a:b8:97:47:8f:36:ba:f8:03:3b:31:
9a:18:57:5f:e4:6e:18:5f:ed:5e:a6:03:68:25:bc:
72:1c:5a:07:ac:8e:ad:74:8b:94:eb:06:30:8b:00:
97:fc:fa:59:fd:d2:7b:b2:22:4e:27:3d:1e:38:c1:
70:b4:63:a0:c5:93:82:d9:b6:24:e3:aa:60:25:0d:
8e:54:94:fe:bc:47:17:99:30:86:ec:42:a3:f6:b5:
ea:b8:72:bc:36:02:16:a0:f7:d2:8d:22:6c:9c:3b:
dd:d8:d1:51:54:bf:f5:c7:b7:b7:62:c2:e2:bb:7f:
20:f5:98:d7:e5:b7:84:72:72:ff:99:2e:9f:19:7a:
52:85:40:01:a7:98:ec:b4:55:55:7e:3b:9f:6e:97:
e8:10:ca:a7:20:92:de:e3:7c:5f:57:d1:b9:99:53:
18:ea:a3:e2:bc:3e:1f:75:09:cc:0b:0c:3d:41:5d:
55:5d:28:40:fe:a3:31:6f:38:36:9c:1e:ab:21:d8:
d0:7e:e0:19:af:cd:04:14:48:01:ee:31:e0:87:5a:
fa:58:35:77:ca:11:43:10:17:ed:58:0a:fb:47:4e:
6f:e0:36:fb:87:1b:c7:d2:f0:cb:0b:8e:ff:26:09:
7f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A1:23:49:6E:00:19:27:3D:4A:B5:28:7F:65:0D:71:49:7F:F0:6B
X509v3 Authority Key Identifier:
keyid:7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:fd:ea:7c:5e:9e:f8:f7:89:77:cd:8d:77:f0:5b:91:ab:6b:
97:f7:58:b0:91:2a:59:6a:73:18:3b:d3:65:02:d7:9b:9b:28:
eb:51:01:75:90:59:f2:f6:14:49:40:7c:76:61:df:b7:a8:ab:
03:a8:42:fd:4b:2a:f3:39:a9:66:ce:76:53:65:aa:25:65:7b:
fb:30:25:f1:58:21:33:c4:d8:24:d3:5d:4a:22:06:58:0c:37:
bd:f4:18:02:8e:ec:5e:e0:a4:f0:ff:a1:24:2d:e6:46:67:f8:
a0:67:81:a1:36:6d:0e:69:e3:a7:02:66:53:26:97:03:67:3d:
41:fa:9d:c1:f8:93:13:f8:e3:63:dd:66:a9:2d:a6:39:ad:4a:
54:a8:3e:c6:b1:41:ba:9f:9f:bb:cf:a0:1f:34:ba:37:d9:4f:
da:46:13:bd:51:ce:ee:ec:35:ce:24:d2:b2:43:78:97:19:d8:
cd:51:48:c0:40:8b:35:5b:cf:45:89:d4:97:4c:36:f3:cf:bf:
a3:63:3c:28:bc:2d:75:c5:a3:62:66:ee:e2:c6:b2:94:4a:e0:
cc:0c:32:85:67:a3:02:d3:7c:5d:1e:68:2f:37:62:b7:0e:22:
7e:91:be:02:93:c6:8c:0f:8d:f2:e7:69:4c:c1:6a:8c:f9:68:
13:79:d6:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkijO0WW0ByrQ3QqLJh6+poMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhYmFhMGI0MDI4ZjA3M2MwNTY0YTY1OGI0ZmI4ODg2Y2Jj
OGQzZWIwHhcNMjUwOTA3MDUwMTI0WhcNMjUwOTA4MDUwMTI0WjAzMTEwLwYDVQQD
EyhkZGExMjM0OTZlMDAxOTI3M2Q0YWI1Mjg3ZjY1MGQ3MTQ5N2ZmMDZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA46tTU5Ns2j2YGkJgxlikTKKIeriX
R482uvgDOzGaGFdf5G4YX+1epgNoJbxyHFoHrI6tdIuU6wYwiwCX/PpZ/dJ7siJO
Jz0eOMFwtGOgxZOC2bYk46pgJQ2OVJT+vEcXmTCG7EKj9rXquHK8NgIWoPfSjSJs
nDvd2NFRVL/1x7e3YsLiu38g9ZjX5beEcnL/mS6fGXpShUABp5jstFVVfjufbpfo
EMqnIJLe43xfV9G5mVMY6qPivD4fdQnMCww9QV1VXShA/qMxbzg2nB6rIdjQfuAZ
r80EFEgB7jHgh1r6WDV3yhFDEBftWAr7R05v4Db7hxvH0vDLC47/Jgl/vQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN2hI0luABknPUq1KH9lDXFJf/BrMB8GA1UdIwQY
MBaAFHq6oLQCjwc8BWSmWLT7iIbLyNPrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXJxZ3RBS1BCendGWktaWXRQdUloc3ZJMC1zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS82ZGY3ZWMtMmFmZS00NTMyLWI0MGEt
YmFlZGM3OWFlN2UxLzEvZXJxZ3RBS1BCendGWktaWXRQdUloc3ZJMC1zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS82ZGY3ZWMtMmFmZS00NTMyLWI0MGEtYmFlZGM3OWFlN2Ux
LzEvZXJxZ3RBS1BCendGWktaWXRQdUloc3ZJMC1zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAef3qfF6e
+PeJd82Nd/Bbkatrl/dYsJEqWWpzGDvTZQLXm5so61EBdZBZ8vYUSUB8dmHft6ir
A6hC/Usq8zmpZs52U2WqJWV7+zAl8VghM8TYJNNdSiIGWAw3vfQYAo7sXuCk8P+h
JC3mRmf4oGeBoTZtDmnjpwJmUyaXA2c9QfqdwfiTE/jjY91mqS2mOa1KVKg+xrFB
up+fu8+gHzS6N9lP2kYTvVHO7uw1ziTSskN4lxnYzVFIwECLNVvPRYnUl0w288+/
o2M8KLwtdcWjYmbu4saylErgzAwyhWejAtN8XR5oLzditw4ifpG+ApPGjA+N8udp
TMFqjPloE3nW0A==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:49:44 2025 by rpki-client