Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
File: EdGf2unFPY0oseQcqROcM1VrpiU.mft (raw, json)
Hash identifier: n12ZwcK4dNodMkSykSYXblrnG4DPGUQvrPaCfmN/E0s=
Subject key identifier: C8:E8:54:E3:F4:C8:9F:BD:03:23:F7:45:81:24:9E:4D:98:9D:F0:6C
Authority key identifier: 11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25
Certificate issuer: /CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625
Certificate serial: 019A01B573BBB530C16D3E00F34EB2EDBFC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
Manifest number: 0B44
Signing time: Mon 20 Oct 2025 13:01:00 +0000
Manifest this update: Mon 20 Oct 2025 13:01:00 +0000
Manifest next update: Tue 21 Oct 2025 13:01:00 +0000
Files and hashes: 1: EdGf2unFPY0oseQcqROcM1VrpiU.crl (hash: RhDLwXR7QzDD/IDYtux+kuG3tM5VtWFXCgUmbFnxddA=)
2: hjbzdQG0z4fmkgxJ5yW_AFN2Z3I.roa (hash: FIaXEpRqjmfrs5VrZ6nFL+BtqxgLq2lRPch8+CMAMWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:b5:73:bb:b5:30:c1:6d:3e:00:f3:4e:b2:ed:bf:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625
Validity
Not Before: Oct 20 13:01:00 2025 GMT
Not After : Oct 21 13:01:00 2025 GMT
Subject: CN=c8e854e3f4c89fbd0323f74581249e4d989df06c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9d:de:92:13:d1:87:4b:62:ba:f2:fd:d7:fc:
28:82:37:19:0b:9c:a1:99:17:3e:af:72:92:3a:be:
02:4c:86:74:27:3b:87:e3:2c:7e:0d:4b:2b:e8:73:
30:52:16:ea:07:b5:16:be:4a:05:b8:f4:7b:e2:10:
23:74:ff:72:e6:72:92:ca:14:f6:8c:96:14:87:7c:
cc:cf:e1:42:ef:a0:96:a7:b3:4b:7d:4b:b6:36:15:
24:7d:61:13:67:5c:13:2c:c8:62:37:48:43:1f:39:
33:b0:ab:95:5e:fa:1c:88:8c:7a:37:72:a5:77:41:
bb:27:13:ce:f1:64:2d:90:0d:df:c3:7c:d2:64:f1:
9c:7c:41:4c:36:13:de:e4:f0:a4:bb:49:a3:f6:dd:
76:53:f1:96:e2:13:80:c5:5f:d1:ad:27:74:aa:00:
eb:be:26:55:15:91:ff:38:0f:49:5c:96:93:c1:ff:
02:c4:16:4c:47:a3:00:d4:2c:4f:74:f6:41:59:47:
b9:69:09:e8:82:46:1d:b4:f3:c5:f4:eb:92:17:8d:
85:9f:32:5b:ce:62:28:9d:63:0e:34:3c:9d:7d:f4:
70:b5:43:3c:65:14:96:0d:2e:f4:a1:d1:0f:6d:cb:
ca:9c:93:fc:81:cd:b0:f3:5b:15:6e:f8:92:9b:cf:
8b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E8:54:E3:F4:C8:9F:BD:03:23:F7:45:81:24:9E:4D:98:9D:F0:6C
X509v3 Authority Key Identifier:
keyid:11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:83:d7:89:a9:b4:1b:c1:db:78:85:7e:85:fb:42:41:42:5f:
74:b1:b6:15:30:56:b2:8b:1c:ee:73:4a:b3:18:99:51:4f:bd:
13:d2:8d:c3:44:32:67:aa:9c:1a:c7:16:dc:30:dc:8e:ce:e6:
50:58:f2:d2:fd:70:e6:92:45:c3:1c:15:83:b2:7f:c5:54:59:
00:30:5e:91:a2:10:e8:a9:f4:8f:98:89:08:9d:89:e4:96:af:
6f:d4:d4:7c:73:f8:8f:aa:07:37:11:aa:f7:d6:3f:02:ad:f4:
0c:53:4e:25:7e:79:17:1f:32:0d:56:67:e1:e8:31:fc:6f:84:
ce:b8:34:b2:54:99:ce:1f:b0:44:e4:0a:32:3b:9c:a6:a4:10:
1b:67:5e:fa:e8:e3:7c:10:16:37:ad:ba:9e:4f:a8:53:75:fe:
24:d9:c3:96:39:dd:82:70:05:bc:b2:fd:d6:df:0d:60:2f:e5:
33:d2:7d:f5:05:f4:5c:01:f9:53:28:f7:7f:d8:2a:17:06:80:
99:22:71:01:5c:7c:2f:33:e7:68:b8:f2:a2:2b:b0:db:a4:dc:
47:12:7b:a7:b6:63:95:34:ea:9d:4c:4d:24:b2:63:ed:ad:e2:
ae:67:0e:54:68:40:41:70:cc:98:35:de:61:6f:3b:8f:8f:2f:
59:64:af:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoBtXO7tTDBbT4A806y7b/GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExZDE5ZmRhZTljNTNkOGQyOGIxZTQxY2E5MTM5YzMzNTU2
YmE2MjUwHhcNMjUxMDIwMTMwMTAwWhcNMjUxMDIxMTMwMTAwWjAzMTEwLwYDVQQD
EyhjOGU4NTRlM2Y0Yzg5ZmJkMDMyM2Y3NDU4MTI0OWU0ZDk4OWRmMDZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZ3ekhPRh0tiuvL91/wogjcZC5yh
mRc+r3KSOr4CTIZ0JzuH4yx+DUsr6HMwUhbqB7UWvkoFuPR74hAjdP9y5nKSyhT2
jJYUh3zMz+FC76CWp7NLfUu2NhUkfWETZ1wTLMhiN0hDHzkzsKuVXvociIx6N3Kl
d0G7JxPO8WQtkA3fw3zSZPGcfEFMNhPe5PCku0mj9t12U/GW4hOAxV/RrSd0qgDr
viZVFZH/OA9JXJaTwf8CxBZMR6MA1CxPdPZBWUe5aQnogkYdtPPF9OuSF42FnzJb
zmIonWMONDydffRwtUM8ZRSWDS70odEPbcvKnJP8gc2w81sVbviSm8+LiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMjoVOP0yJ+9AyP3RYEknk2YnfBsMB8GA1UdIwQY
MBaAFBHRn9rpxT2NKLHkHKkTnDNVa6YlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWRHZjJ1bkZQWTBvc2VRY3FST2NNMVZycGlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS81YzQ2ZDItOTgxOC00YWZjLTg4MGUt
MWNjNWZkMjU0NGU5LzEvRWRHZjJ1bkZQWTBvc2VRY3FST2NNMVZycGlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS81YzQ2ZDItOTgxOC00YWZjLTg4MGUtMWNjNWZkMjU0NGU5
LzEvRWRHZjJ1bkZQWTBvc2VRY3FST2NNMVZycGlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkYPXiam0
G8HbeIV+hftCQUJfdLG2FTBWsosc7nNKsxiZUU+9E9KNw0QyZ6qcGscW3DDcjs7m
UFjy0v1w5pJFwxwVg7J/xVRZADBekaIQ6Kn0j5iJCJ2J5Javb9TUfHP4j6oHNxGq
99Y/Aq30DFNOJX55Fx8yDVZn4egx/G+Ezrg0slSZzh+wROQKMjucpqQQG2de+ujj
fBAWN626nk+oU3X+JNnDljndgnAFvLL91t8NYC/lM9J99QX0XAH5Uyj3f9gqFwaA
mSJxAVx8LzPnaLjyoiuw26TcRxJ7p7ZjlTTqnUxNJLJj7a3irmcOVGhAQXDMmDXe
YW87j48vWWSveA==
-----END CERTIFICATE-----
Generated at Mon Oct 20 17:53:23 2025 by rpki-client