Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
File: d5pKQpXGOP3nYPPNpHbYv8JxErI.mft (raw, json)
Hash identifier: 5MYoqCAvccJPoc3zl5/FZkTN+G+/YLbDzn45oXhOFp8=
Subject key identifier: EB:8F:1F:C1:60:C9:6F:6F:BC:F5:93:1B:71:A3:C2:12:4B:F6:8E:6B
Authority key identifier: 77:9A:4A:42:95:C6:38:FD:E7:60:F3:CD:A4:76:D8:BF:C2:71:12:B2
Certificate issuer: /CN=779a4a4295c638fde760f3cda476d8bfc27112b2
Certificate serial: 019A221B8AAA5547F773B5AB6D0316C0B5D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
Manifest number: 01AB
Signing time: Sun 26 Oct 2025 20:00:21 +0000
Manifest this update: Sun 26 Oct 2025 20:00:21 +0000
Manifest next update: Mon 27 Oct 2025 20:00:21 +0000
Files and hashes: 1: 9YQA36vAku85UbE81d8YCXXLJnY.roa (hash: Aeb9cL8NYmy9yNSDJcp65b2WQtEKFZt794slbkjrbPk=)
2: d5pKQpXGOP3nYPPNpHbYv8JxErI.crl (hash: qIPgseZm0Qodqu+GTIM65UeJQ1iErWFQafjhW9sGcB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:1b:8a:aa:55:47:f7:73:b5:ab:6d:03:16:c0:b5:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779a4a4295c638fde760f3cda476d8bfc27112b2
Validity
Not Before: Oct 26 20:00:21 2025 GMT
Not After : Oct 27 20:00:21 2025 GMT
Subject: CN=eb8f1fc160c96f6fbcf5931b71a3c2124bf68e6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9a:54:cf:2c:c7:09:dc:10:c4:4c:0c:70:6c:
b3:cf:7e:98:d4:c9:79:dd:23:8c:99:f9:9b:58:e5:
44:4a:ba:1b:32:70:19:68:48:ec:96:a1:65:a9:49:
1b:f9:b0:1f:cb:20:38:87:45:32:f7:e9:6c:54:85:
4f:2d:1c:32:5f:17:69:7e:51:9b:3a:e7:ea:92:3f:
74:30:91:4a:b8:c0:5e:70:b4:b0:bb:99:64:e9:81:
b6:09:ad:59:97:8e:b4:69:72:03:33:e0:87:89:c4:
1f:c9:d2:27:fa:90:75:f7:ad:9d:85:eb:95:b4:a3:
50:95:30:32:2b:65:fc:29:5c:d2:58:bb:78:8c:ac:
b4:1e:ff:b9:8b:2a:ce:89:30:22:cd:f8:d2:ec:52:
48:ef:5f:e8:75:78:ea:c6:56:dd:fc:03:18:94:8f:
84:d3:18:69:2e:4f:c1:89:ed:ad:26:91:6d:48:f6:
2b:99:46:36:28:8c:12:e1:3a:66:e9:20:b3:b5:40:
7d:5f:39:66:61:9c:bc:4e:59:b3:56:dc:ce:eb:45:
7c:00:84:e7:11:e2:16:42:da:34:65:91:e1:fb:97:
4c:94:cc:98:71:a8:15:43:61:e0:8f:80:59:78:37:
85:c1:83:41:c2:e9:ee:55:ae:fc:bc:8a:8d:74:d7:
70:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:8F:1F:C1:60:C9:6F:6F:BC:F5:93:1B:71:A3:C2:12:4B:F6:8E:6B
X509v3 Authority Key Identifier:
keyid:77:9A:4A:42:95:C6:38:FD:E7:60:F3:CD:A4:76:D8:BF:C2:71:12:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:96:45:1a:52:3e:b9:08:ca:f3:38:c7:eb:75:ac:11:eb:04:
db:a1:6d:d8:10:54:88:0d:76:02:55:e1:c9:3e:80:e7:13:b1:
c2:c3:98:ea:1f:43:e2:6b:8e:2f:26:0d:de:8c:e2:a3:a7:df:
aa:55:df:ad:ca:e9:b3:59:b5:0d:11:ec:04:76:cb:ae:73:ca:
c4:62:46:b0:1d:f3:25:86:a2:7f:2b:4d:fd:9e:37:f3:93:3a:
14:b7:c0:a7:54:d8:cb:60:b4:6a:a6:f4:c3:70:03:25:89:44:
64:8d:82:37:7b:db:be:df:df:24:99:90:05:e6:1d:70:07:86:
2a:53:1b:f2:58:76:5c:7e:f8:75:44:5c:6e:18:6f:2b:61:72:
53:02:de:cd:71:48:a5:c6:bc:93:b3:ae:f0:ff:7b:22:bf:7b:
60:4d:7d:1d:5e:9e:78:4f:04:46:5d:ad:60:f2:5e:5c:6f:6e:
e6:4f:91:80:75:3d:56:3e:a7:5f:5d:7e:3f:04:56:38:f8:02:
6d:2d:0f:96:cd:69:f9:80:0b:d9:c3:a2:32:0b:be:cb:d9:56:
2b:c3:c5:fe:c3:9a:a6:96:7d:9f:33:b7:e6:ef:a2:10:9e:6b:
a6:2c:db:fc:56:11:42:4d:3f:35:4a:dd:77:81:90:6e:69:20:
f7:a2:86:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoiG4qqVUf3c7WrbQMWwLXXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3OWE0YTQyOTVjNjM4ZmRlNzYwZjNjZGE0NzZkOGJmYzI3
MTEyYjIwHhcNMjUxMDI2MjAwMDIxWhcNMjUxMDI3MjAwMDIxWjAzMTEwLwYDVQQD
EyhlYjhmMWZjMTYwYzk2ZjZmYmNmNTkzMWI3MWEzYzIxMjRiZjY4ZTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZpUzyzHCdwQxEwMcGyzz36Y1Ml5
3SOMmfmbWOVESrobMnAZaEjslqFlqUkb+bAfyyA4h0Uy9+lsVIVPLRwyXxdpflGb
Oufqkj90MJFKuMBecLSwu5lk6YG2Ca1Zl460aXIDM+CHicQfydIn+pB1962dheuV
tKNQlTAyK2X8KVzSWLt4jKy0Hv+5iyrOiTAizfjS7FJI71/odXjqxlbd/AMYlI+E
0xhpLk/Bie2tJpFtSPYrmUY2KIwS4Tpm6SCztUB9XzlmYZy8TlmzVtzO60V8AITn
EeIWQto0ZZHh+5dMlMyYcagVQ2Hgj4BZeDeFwYNBwunuVa78vIqNdNdwowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOuPH8FgyW9vvPWTG3GjwhJL9o5rMB8GA1UdIwQY
MBaAFHeaSkKVxjj952DzzaR22L/CcRKyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDVwS1FwWEdPUDNuWVBQTnBIYll2OEp4RXJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9mZDg5ZjktOThiNi00MjE3LWJjY2Qt
NjJjNjdkNGJjNTQ2LzEvZDVwS1FwWEdPUDNuWVBQTnBIYll2OEp4RXJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9mZDg5ZjktOThiNi00MjE3LWJjY2QtNjJjNjdkNGJjNTQ2
LzEvZDVwS1FwWEdPUDNuWVBQTnBIYll2OEp4RXJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUJZFGlI+
uQjK8zjH63WsEesE26Ft2BBUiA12AlXhyT6A5xOxwsOY6h9D4muOLyYN3ozio6ff
qlXfrcrps1m1DRHsBHbLrnPKxGJGsB3zJYaifytN/Z4385M6FLfAp1TYy2C0aqb0
w3ADJYlEZI2CN3vbvt/fJJmQBeYdcAeGKlMb8lh2XH74dURcbhhvK2FyUwLezXFI
pca8k7Ou8P97Ir97YE19HV6eeE8ERl2tYPJeXG9u5k+RgHU9Vj6nX11+PwRWOPgC
bS0Pls1p+YAL2cOiMgu+y9lWK8PF/sOappZ9nzO35u+iEJ5rpizb/FYRQk0/NUrd
d4GQbmkg96KGfA==
-----END CERTIFICATE-----
Generated at Mon Oct 27 04:34:40 2025 by rpki-client