Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
File: jHFLbLK61OdjmoqicQKPWqG8asI.mft (raw, json)
Hash identifier: xP3RTnrsMJ86c25NWwR0yx8mc3YmCWtViym5PAke9u8=
Subject key identifier: 9E:BA:78:62:3E:57:2E:24:33:C3:48:C8:C1:27:B7:AF:7F:91:03:AB
Authority key identifier: 8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2
Certificate issuer: /CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
Certificate serial: 0199FC8FB93C1F5F06C5DE30FD0436F39CE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
Manifest number: 0694
Signing time: Sun 19 Oct 2025 13:01:41 +0000
Manifest this update: Sun 19 Oct 2025 13:01:41 +0000
Manifest next update: Mon 20 Oct 2025 13:01:41 +0000
Files and hashes: 1: 4SJUH7W4ejICjEKktk38NQNcB4Q.roa (hash: 2qwbbCMLxypAlAiGN2fpQYPHWTBbWd8fpkq/6FE+imI=)
2: jHFLbLK61OdjmoqicQKPWqG8asI.crl (hash: SDEYd6+asJ/gHHrcpHWR3tBn/oNladZDw3c8G23o6qg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:b9:3c:1f:5f:06:c5:de:30:fd:04:36:f3:9c:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
Validity
Not Before: Oct 19 13:01:41 2025 GMT
Not After : Oct 20 13:01:41 2025 GMT
Subject: CN=9eba78623e572e2433c348c8c127b7af7f9103ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f5:b5:5e:46:03:ea:22:a2:1b:db:20:4b:24:
80:f5:f3:21:2c:fe:11:09:68:2f:ee:fd:0f:cb:2e:
9a:d1:d8:08:15:7b:4a:0e:c0:8a:68:8d:29:07:01:
75:62:bc:0b:82:af:af:c5:47:a6:c9:fa:f8:85:f9:
17:41:71:7b:a0:25:2d:00:16:49:c1:48:da:2e:29:
53:b0:ff:c3:cd:ae:52:5a:98:52:99:f3:98:10:1a:
5f:ff:85:d5:35:35:51:c1:52:e3:d9:d9:20:3a:6d:
ad:a8:5a:2a:91:60:30:16:74:ee:5e:b6:a1:20:ad:
c2:4f:d4:ff:d6:48:b7:57:51:3c:c2:c1:5b:44:b0:
8f:ca:09:71:6d:c5:b7:7c:1c:ee:8e:ed:bd:a1:33:
0a:93:ca:24:7c:78:08:c6:05:4c:ed:b4:87:cf:fb:
55:54:7e:f9:12:3b:84:56:4c:c9:82:53:d2:b3:7b:
9e:b0:71:3b:77:04:47:36:4a:72:bc:7e:cd:f6:6e:
4c:c9:18:94:5e:85:23:25:27:85:0e:ef:ba:9b:c9:
6b:06:7b:4b:53:bf:ea:6f:60:0b:56:ba:32:2d:29:
b3:f1:5b:1a:ea:ab:c1:f3:96:14:7f:0a:0a:d7:a7:
f6:35:97:9f:fb:aa:55:59:51:c6:b9:b5:67:03:81:
09:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:BA:78:62:3E:57:2E:24:33:C3:48:C8:C1:27:B7:AF:7F:91:03:AB
X509v3 Authority Key Identifier:
keyid:8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:74:6c:17:21:0f:3e:aa:98:15:d7:4c:2e:4e:63:11:84:c3:
fc:2c:52:b3:42:ed:66:4e:79:23:24:30:f4:86:1d:c0:23:63:
66:0a:ec:0a:1a:61:04:9a:fc:dc:4e:5d:85:d3:5b:cb:0d:c5:
dc:ea:cc:7d:c2:f7:fa:51:8c:f9:0f:cb:9c:e5:da:57:e8:92:
67:11:63:17:87:00:f0:c9:4e:95:b3:12:57:ae:0d:12:a7:56:
b8:53:47:78:3b:2f:30:da:1d:66:ac:ee:b0:50:a4:55:0b:7c:
b8:ce:ca:3a:ae:ff:29:ec:ea:4f:95:1d:06:57:77:92:cf:96:
a7:5c:cb:b7:6b:9a:23:f2:f6:6d:6c:70:cd:60:b1:3e:42:b0:
72:0a:33:cd:f4:53:c8:38:fd:35:7f:d8:81:49:2e:70:a0:6d:
18:2d:d4:ff:2b:b0:8a:e0:9f:09:6c:d8:c5:9b:3a:b3:68:20:
13:17:b9:9e:e9:a5:70:1e:85:db:56:3d:95:76:14:4f:bf:65:
eb:2f:07:d3:62:1b:c3:e0:f3:55:08:60:95:a9:c1:13:dd:22:
c5:0c:99:1d:9e:8c:5c:26:58:b1:b8:13:ba:d2:33:96:e6:35:
c2:78:31:cb:f8:03:97:7e:0c:24:dd:7c:b1:09:17:b6:72:f3:
2c:53:2e:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8j7k8H18Gxd4w/QQ285zkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjNzE0YjZjYjJiYWQ0ZTc2MzlhOGFhMjcxMDI4ZjVhYTFi
YzZhYzIwHhcNMjUxMDE5MTMwMTQxWhcNMjUxMDIwMTMwMTQxWjAzMTEwLwYDVQQD
Eyg5ZWJhNzg2MjNlNTcyZTI0MzNjMzQ4YzhjMTI3YjdhZjdmOTEwM2FiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2PW1XkYD6iKiG9sgSySA9fMhLP4R
CWgv7v0Pyy6a0dgIFXtKDsCKaI0pBwF1YrwLgq+vxUemyfr4hfkXQXF7oCUtABZJ
wUjaLilTsP/Dza5SWphSmfOYEBpf/4XVNTVRwVLj2dkgOm2tqFoqkWAwFnTuXrah
IK3CT9T/1ki3V1E8wsFbRLCPyglxbcW3fBzuju29oTMKk8okfHgIxgVM7bSHz/tV
VH75EjuEVkzJglPSs3uesHE7dwRHNkpyvH7N9m5MyRiUXoUjJSeFDu+6m8lrBntL
U7/qb2ALVroyLSmz8Vsa6qvB85YUfwoK16f2NZef+6pVWVHGubVnA4EJ8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ66eGI+Vy4kM8NIyMEnt69/kQOrMB8GA1UdIwQY
MBaAFIxxS2yyutTnY5qKonECj1qhvGrCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8wMmE4ZDYtOTE1OC00YWViLWE3NTAt
Nzg3NTNhMTA0MjI2LzEvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS8wMmE4ZDYtOTE1OC00YWViLWE3NTAtNzg3NTNhMTA0MjI2
LzEvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXXRsFyEP
PqqYFddMLk5jEYTD/CxSs0LtZk55IyQw9IYdwCNjZgrsChphBJr83E5dhdNbyw3F
3OrMfcL3+lGM+Q/LnOXaV+iSZxFjF4cA8MlOlbMSV64NEqdWuFNHeDsvMNodZqzu
sFCkVQt8uM7KOq7/KezqT5UdBld3ks+Wp1zLt2uaI/L2bWxwzWCxPkKwcgozzfRT
yDj9NX/YgUkucKBtGC3U/yuwiuCfCWzYxZs6s2ggExe5numlcB6F21Y9lXYUT79l
6y8H02Ibw+DzVQhglanBE90ixQyZHZ6MXCZYsbgTutIzluY1wngxy/gDl34MJN18
sQkXtnLzLFMupw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:39:58 2025 by rpki-client