Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
File: nEswhmFPR4OKPoCj5uBR09imkvk.mft (raw, json)
Hash identifier: P68CfYa0RKDc6wLGMDK6TGlYALthDolDJkrQX7RZa1o=
Subject key identifier: 7B:5B:BC:CD:A9:B3:AE:9D:F4:44:9F:E1:DE:86:F5:46:09:96:6B:43
Authority key identifier: 9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
Certificate issuer: /CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Certificate serial: 0199FDD9F9E09B732DE36AA6A161CAA180A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
Manifest number: 072F
Signing time: Sun 19 Oct 2025 19:02:24 +0000
Manifest this update: Sun 19 Oct 2025 19:02:24 +0000
Manifest next update: Mon 20 Oct 2025 19:02:24 +0000
Files and hashes: 1: a_Q0Oj2hhJ8gyCrgqERD5VjhULo.roa (hash: ix5ZmIac7PSSZ8cbH+U6PyHdhcxmOIX450xPjZ8S6o0=)
2: nEswhmFPR4OKPoCj5uBR09imkvk.crl (hash: 7oftIF1YdyAvGRbJa2BLMtm+T/8OzQXT4iz2fI8Xaic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:f9:e0:9b:73:2d:e3:6a:a6:a1:61:ca:a1:80:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Validity
Not Before: Oct 19 19:02:24 2025 GMT
Not After : Oct 20 19:02:24 2025 GMT
Subject: CN=7b5bbccda9b3ae9df4449fe1de86f54609966b43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d9:10:96:38:de:db:78:45:7c:d8:a9:d8:24:
e0:1b:08:bf:a5:30:b4:f2:2b:94:4f:26:dc:4e:8e:
25:83:5e:c6:d4:07:e9:01:c7:dd:f3:33:ed:05:2d:
24:3d:2a:e8:49:b5:5d:92:eb:c3:42:4c:70:86:b3:
6b:08:0c:ef:5a:1e:13:ea:92:30:95:af:6f:d9:4b:
14:74:78:b6:1f:01:8f:a4:7b:65:24:69:8e:54:37:
d4:3a:27:01:31:55:e4:64:c1:33:d8:a8:4f:53:b0:
9c:24:4b:3a:12:f6:ea:81:6b:7c:cc:36:41:88:04:
d0:e3:79:63:8c:74:49:b8:19:d8:7a:2b:da:02:cf:
8c:b8:fc:85:37:9f:1a:e8:e9:b8:6c:c7:6d:c3:0e:
7d:36:70:85:99:5d:50:17:b7:8a:fa:9e:4e:6f:28:
0b:c6:50:4b:c4:53:27:cb:e9:d9:ca:73:2c:6d:cb:
ee:6a:e4:38:83:7b:8f:69:55:51:b3:2f:63:08:aa:
87:5a:47:f0:76:cf:92:f9:aa:be:7e:26:2c:bc:e7:
db:09:e3:0a:69:1e:e4:30:c4:3d:48:4a:56:53:a5:
43:3a:81:e4:8f:90:22:03:52:6c:d9:49:a4:c9:a4:
57:7f:2f:43:32:e7:75:8a:65:68:26:2e:e9:18:27:
8f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:5B:BC:CD:A9:B3:AE:9D:F4:44:9F:E1:DE:86:F5:46:09:96:6B:43
X509v3 Authority Key Identifier:
keyid:9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:8d:87:17:1a:26:65:de:7f:85:ad:75:cb:77:b3:c4:39:b9:
9b:00:84:84:c9:98:ac:ce:71:53:b5:6f:9d:34:44:ef:b7:6c:
60:f7:cc:75:62:a5:71:36:ab:b5:60:88:5b:9c:2e:f7:41:60:
35:1f:30:ce:74:e0:25:51:5e:fa:fb:76:3c:bf:1b:6a:cb:8e:
ab:8a:ad:9b:9c:21:3f:0f:ce:cf:b1:83:a1:7b:89:50:65:19:
1b:96:5d:b5:2f:9d:c4:24:bd:d6:9c:03:53:8a:df:f8:d6:dd:
dd:07:28:49:c6:50:d8:d7:77:3b:74:80:9a:5e:b5:0f:d7:ba:
c2:41:0c:33:9e:d1:ad:61:20:17:ca:b9:4a:f1:14:0a:77:26:
1d:b1:4e:b3:ec:1b:c8:91:e7:38:57:1f:67:43:cf:bf:d3:68:
b8:ee:34:e5:a4:be:e7:9e:57:ff:78:8f:ae:65:bf:e8:7a:6c:
74:b9:50:1d:9b:0a:3a:da:9c:97:1a:d1:15:08:23:b1:c7:b2:
8e:48:20:6d:fb:30:ba:76:82:06:37:95:5b:69:3f:6d:ab:df:
7f:36:a5:2a:3d:d8:82:44:7a:e8:f2:11:62:81:57:fb:63:d9:
85:00:f4:14:e2:4b:81:59:bc:ae:03:57:de:65:42:fd:b5:ce:
22:61:38:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92fngm3Mt42qmoWHKoYCnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNGIzMDg2NjE0ZjQ3ODM4YTNlODBhM2U2ZTA1MWQzZDhh
NjkyZjkwHhcNMjUxMDE5MTkwMjI0WhcNMjUxMDIwMTkwMjI0WjAzMTEwLwYDVQQD
Eyg3YjViYmNjZGE5YjNhZTlkZjQ0NDlmZTFkZTg2ZjU0NjA5OTY2YjQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAktkQljje23hFfNip2CTgGwi/pTC0
8iuUTybcTo4lg17G1AfpAcfd8zPtBS0kPSroSbVdkuvDQkxwhrNrCAzvWh4T6pIw
la9v2UsUdHi2HwGPpHtlJGmOVDfUOicBMVXkZMEz2KhPU7CcJEs6EvbqgWt8zDZB
iATQ43ljjHRJuBnYeivaAs+MuPyFN58a6Om4bMdtww59NnCFmV1QF7eK+p5ObygL
xlBLxFMny+nZynMsbcvuauQ4g3uPaVVRsy9jCKqHWkfwds+S+aq+fiYsvOfbCeMK
aR7kMMQ9SEpWU6VDOoHkj5AiA1Js2UmkyaRXfy9DMud1imVoJi7pGCePaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHtbvM2ps66d9ESf4d6G9UYJlmtDMB8GA1UdIwQY
MBaAFJxLMIZhT0eDij6Ao+bgUdPYppL5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkVzd2htRlBSNE9LUG9DajV1QlIwOWlta3ZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82Mjk2ZDctYzAwOC00YzMxLWFlN2Et
ODRlZjljYWJiOWI2LzEvbkVzd2htRlBSNE9LUG9DajV1QlIwOWlta3ZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82Mjk2ZDctYzAwOC00YzMxLWFlN2EtODRlZjljYWJiOWI2
LzEvbkVzd2htRlBSNE9LUG9DajV1QlIwOWlta3ZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYo2HFxom
Zd5/ha11y3ezxDm5mwCEhMmYrM5xU7VvnTRE77dsYPfMdWKlcTartWCIW5wu90Fg
NR8wznTgJVFe+vt2PL8basuOq4qtm5whPw/Oz7GDoXuJUGUZG5ZdtS+dxCS91pwD
U4rf+Nbd3QcoScZQ2Nd3O3SAml61D9e6wkEMM57RrWEgF8q5SvEUCncmHbFOs+wb
yJHnOFcfZ0PPv9NouO405aS+555X/3iPrmW/6HpsdLlQHZsKOtqclxrRFQgjscey
jkggbfswunaCBjeVW2k/bavffzalKj3YgkR66PIRYoFX+2PZhQD0FOJLgVm8rgNX
3mVC/bXOImE4Hg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 02:16:08 2025 by rpki-client