Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
File: esYj77_BJHEhYiQMugKk2h1NzqM.mft (raw, json)
Hash identifier: CUeMeNl8wUZrncD6Eb51dHoep3z+t33rx/TbG3M6Zmc=
Subject key identifier: 7C:C8:AD:68:B4:D6:E3:B8:42:9A:18:CF:24:ED:74:C0:25:F3:9D:5A
Authority key identifier: 7A:C6:23:EF:BF:C1:24:71:21:62:24:0C:BA:02:A4:DA:1D:4D:CE:A3
Certificate issuer: /CN=7ac623efbfc124712162240cba02a4da1d4dcea3
Certificate serial: 0199FC5852CD5FE122A3D3FB9CF2D5E624A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
Manifest number: 0EDF
Signing time: Sun 19 Oct 2025 12:01:10 +0000
Manifest this update: Sun 19 Oct 2025 12:01:10 +0000
Manifest next update: Mon 20 Oct 2025 12:01:10 +0000
Files and hashes: 1: LCQo2NCbeYZ3q2w5uO1x82UrAS0.roa (hash: /H5HChGZH77x2xCBhcZV4r2K/3suV56lFnfxUuSNtn0=)
2: esYj77_BJHEhYiQMugKk2h1NzqM.crl (hash: 9WoKOmL8GkGQJ+IgXX1VzNPn8tob939Sfhb4lQQ2n+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:52:cd:5f:e1:22:a3:d3:fb:9c:f2:d5:e6:24:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ac623efbfc124712162240cba02a4da1d4dcea3
Validity
Not Before: Oct 19 12:01:10 2025 GMT
Not After : Oct 20 12:01:10 2025 GMT
Subject: CN=7cc8ad68b4d6e3b8429a18cf24ed74c025f39d5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8b:fe:dc:d6:b5:c2:52:2a:c8:c6:82:7f:77:
f9:ee:74:67:4a:b3:a6:82:27:46:2c:9b:35:48:db:
cb:19:27:b7:81:a7:cb:e1:92:83:5b:36:1e:65:99:
87:d9:75:e1:5a:20:88:ea:74:af:c0:80:a0:20:2a:
7a:f1:0d:34:f5:6f:40:21:b1:ed:1a:27:17:72:a5:
2e:35:62:73:14:f9:bb:a3:39:a1:e7:ee:3f:8c:f8:
44:2e:74:6c:cb:cc:98:76:cd:96:e1:ca:37:7f:0e:
15:6f:21:a7:80:43:91:dd:1b:b7:44:29:f3:6d:9e:
69:f7:44:0b:f9:ad:ab:13:c3:01:1c:e0:e9:81:ee:
3b:5f:41:38:4c:ea:f5:7b:ca:cb:98:34:a3:a8:f1:
6b:53:7e:e6:2f:59:4b:75:2b:e7:77:3b:03:2b:1e:
fb:28:ad:5f:77:d3:e1:36:b1:0d:75:14:dd:2f:20:
59:c6:87:0d:f6:bc:92:d7:74:56:af:e8:13:e4:8c:
88:49:4a:4a:77:73:a8:9b:79:c9:a1:6f:25:3e:a0:
e5:65:45:8d:22:d7:c6:d5:d2:b8:3c:33:04:f3:12:
7a:d3:f4:c5:36:5f:73:eb:24:3d:ca:c1:46:fd:e6:
4c:c3:82:0f:2e:81:aa:9f:2e:8e:0c:03:be:02:38:
60:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C8:AD:68:B4:D6:E3:B8:42:9A:18:CF:24:ED:74:C0:25:F3:9D:5A
X509v3 Authority Key Identifier:
keyid:7A:C6:23:EF:BF:C1:24:71:21:62:24:0C:BA:02:A4:DA:1D:4D:CE:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:6b:a1:8e:a6:ab:59:44:6c:ef:90:ba:32:18:b0:eb:a1:32:
23:f3:6b:d5:c0:85:67:9b:3e:a5:da:43:50:f8:e4:b5:8d:56:
29:4d:06:8a:db:ac:2f:b3:9d:10:ad:8b:61:69:fa:98:59:b4:
98:8d:60:c6:46:f0:3b:5d:c4:48:8b:d8:b0:68:9a:ec:60:82:
95:f6:16:5f:44:8b:2c:c4:94:4c:63:f7:90:06:70:7a:a7:03:
bc:95:f2:86:18:46:60:a5:93:31:2d:ef:2c:39:bd:1c:22:02:
51:ad:e3:91:d9:b9:9f:fb:4d:f7:9a:b8:24:d9:61:21:e1:31:
79:1c:3f:5b:4a:c7:96:4c:d5:2b:81:3b:62:5a:79:5b:37:42:
ca:72:12:fd:28:c8:ce:57:fa:3a:0b:9c:7a:8d:15:a1:12:d8:
6b:e9:6e:63:03:26:d2:04:c9:6e:06:fa:98:8e:f8:e1:e8:72:
b1:89:e0:4a:b2:99:fd:a9:28:1a:ac:1d:eb:10:19:3d:f1:25:
2d:f2:da:c3:b0:d6:f6:6c:a1:08:83:93:52:9f:39:3a:73:e3:
dd:8e:63:7b:b3:db:5b:53:75:93:82:1d:48:40:a8:27:85:c7:
ac:d4:72:72:51:6c:c7:80:3b:28:5f:66:5a:76:e1:90:be:bc:
f0:99:63:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WFLNX+Eio9P7nPLV5iSpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhYzYyM2VmYmZjMTI0NzEyMTYyMjQwY2JhMDJhNGRhMWQ0
ZGNlYTMwHhcNMjUxMDE5MTIwMTEwWhcNMjUxMDIwMTIwMTEwWjAzMTEwLwYDVQQD
Eyg3Y2M4YWQ2OGI0ZDZlM2I4NDI5YTE4Y2YyNGVkNzRjMDI1ZjM5ZDVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4v+3Na1wlIqyMaCf3f57nRnSrOm
gidGLJs1SNvLGSe3gafL4ZKDWzYeZZmH2XXhWiCI6nSvwICgICp68Q009W9AIbHt
GicXcqUuNWJzFPm7ozmh5+4/jPhELnRsy8yYds2W4co3fw4VbyGngEOR3Ru3RCnz
bZ5p90QL+a2rE8MBHODpge47X0E4TOr1e8rLmDSjqPFrU37mL1lLdSvndzsDKx77
KK1fd9PhNrENdRTdLyBZxocN9ryS13RWr+gT5IyISUpKd3Oom3nJoW8lPqDlZUWN
ItfG1dK4PDME8xJ60/TFNl9z6yQ9ysFG/eZMw4IPLoGqny6ODAO+AjhgqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHzIrWi01uO4QpoYzyTtdMAl851aMB8GA1UdIwQY
MBaAFHrGI++/wSRxIWIkDLoCpNodTc6jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXNZajc3X0JKSEVoWWlRTXVnS2syaDFOenFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9jNzRhNGYtNDA1Mi00YzliLWE3Zjgt
NDNhYTRjY2UzZjQ4LzEvZXNZajc3X0JKSEVoWWlRTXVnS2syaDFOenFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9jNzRhNGYtNDA1Mi00YzliLWE3ZjgtNDNhYTRjY2UzZjQ4
LzEvZXNZajc3X0JKSEVoWWlRTXVnS2syaDFOenFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAemuhjqar
WURs75C6Mhiw66EyI/Nr1cCFZ5s+pdpDUPjktY1WKU0GitusL7OdEK2LYWn6mFm0
mI1gxkbwO13ESIvYsGia7GCClfYWX0SLLMSUTGP3kAZweqcDvJXyhhhGYKWTMS3v
LDm9HCICUa3jkdm5n/tN95q4JNlhIeExeRw/W0rHlkzVK4E7Ylp5WzdCynIS/SjI
zlf6Oguceo0VoRLYa+luYwMm0gTJbgb6mI744ehysYngSrKZ/akoGqwd6xAZPfEl
LfLaw7DW9myhCIOTUp85OnPj3Y5je7PbW1N1k4IdSECoJ4XHrNRyclFsx4A7KF9m
WnbhkL688JljEQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:07:25 2025 by rpki-client