Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
File: jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft (raw, json)
Hash identifier: ahzDxmZgj9MiqMxh6A7nSVHbqY3TUPJPTTzJli31dDM=
Subject key identifier: FA:A2:89:BB:B6:8C:81:2D:CA:35:BB:0F:13:CD:78:57:C1:80:37:44
Authority key identifier: 8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76
Certificate issuer: /CN=8c54a846632e83340e114d0d35591b3d42188b76
Certificate serial: 0199FEB47EAACEA1B97AD5613C5D34EEF6D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
Manifest number: 0F00
Signing time: Sun 19 Oct 2025 23:01:05 +0000
Manifest this update: Sun 19 Oct 2025 23:01:05 +0000
Manifest next update: Mon 20 Oct 2025 23:01:05 +0000
Files and hashes: 1: 0NQ-WA07ivHNbBCHB8RlQLxAoLU.roa (hash: yrHnQMXQ6Qe+mkwHNhl6sEUBZtgafrbZ/F8WnR+E6Bs=)
2: jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl (hash: bGOmbkHkVSNwbcScmFxcinRBU3GEMq5IeAFcuiJ271Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b4:7e:aa:ce:a1:b9:7a:d5:61:3c:5d:34:ee:f6:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c54a846632e83340e114d0d35591b3d42188b76
Validity
Not Before: Oct 19 23:01:05 2025 GMT
Not After : Oct 20 23:01:05 2025 GMT
Subject: CN=faa289bbb68c812dca35bb0f13cd7857c1803744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b6:54:8d:6e:13:ea:83:7c:0c:fa:d1:e9:08:
16:65:fa:4e:1f:c5:09:a1:ec:ec:03:53:92:d2:25:
b7:ed:fd:2b:c7:ea:f7:84:77:be:86:d2:60:1d:39:
8f:b4:18:a5:af:75:2e:b3:59:47:e5:c6:99:52:35:
01:84:ff:36:33:a4:26:8e:bf:51:c9:19:fa:e9:66:
61:d9:68:f2:b2:6f:c4:25:5a:20:b5:9c:a6:ce:34:
55:16:6d:34:a5:64:73:7b:d1:c0:ec:8b:d5:c7:7e:
58:1d:59:7c:93:0f:e4:65:ea:f4:94:b8:b1:a2:e7:
16:06:77:84:5f:4e:89:86:01:90:ff:dd:f9:4c:12:
84:3e:8f:88:e7:57:de:5e:c1:78:3c:1a:e1:79:50:
0e:0f:4b:fb:a0:e2:ec:73:df:3b:90:ce:10:cb:77:
5e:b9:22:09:15:bd:bd:2f:e6:30:fd:88:22:42:a4:
cc:76:72:0e:fe:47:9d:a7:9d:1d:aa:08:33:48:2e:
c3:18:17:e6:48:4f:a6:d1:8f:d9:ef:bb:90:97:f2:
1b:d7:e1:61:42:81:65:c2:e8:d8:63:c4:2f:f1:a7:
2e:3a:14:e6:7c:95:f4:14:ba:cf:53:48:01:7d:a5:
a3:2d:5b:7e:c8:b3:eb:37:30:e5:ae:1b:af:0d:1f:
a3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A2:89:BB:B6:8C:81:2D:CA:35:BB:0F:13:CD:78:57:C1:80:37:44
X509v3 Authority Key Identifier:
keyid:8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:d5:48:58:e4:42:00:fd:b0:b8:44:0a:bf:e5:0d:a0:7a:a9:
67:8d:7f:3c:55:76:4b:72:2a:d3:cc:82:aa:ef:e7:3f:90:3e:
6c:64:ec:2b:b7:5f:65:fa:f6:3b:9e:e5:9f:27:b2:91:02:3f:
7a:63:9f:c6:9e:39:12:72:14:6f:f0:f7:85:ed:b2:25:d6:1b:
ec:8c:a4:40:4d:cc:b7:19:b8:0a:9b:9c:b6:b0:1c:80:e8:95:
05:9a:ce:21:33:f2:ac:ba:9f:2b:7b:0f:5b:75:b4:4d:98:03:
e3:f3:ac:7a:e1:ac:9f:60:3b:61:77:51:07:fb:ae:3f:fc:1a:
ce:ba:83:a9:4f:41:78:3c:85:ab:e1:6a:f5:ef:3b:b3:6e:2b:
b0:df:ec:cf:38:bb:5d:c8:92:d2:7e:c5:2e:57:f0:70:22:b6:
36:5f:2b:0d:56:2c:21:66:f9:08:c1:40:01:c6:bc:9f:b2:03:
7c:56:d5:dc:e1:c4:fe:92:e9:d2:ae:b0:2a:7b:51:d8:2b:6c:
6f:a1:61:92:6d:1c:5b:9c:a6:c0:6d:11:05:36:4e:32:3e:7c:
d6:88:18:99:ff:71:66:f6:96:3b:b4:8d:1e:72:13:ed:d8:43:
ad:e6:43:23:22:69:20:f4:56:6b:12:7d:ba:e1:9d:e4:8b:23:
0b:47:61:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+tH6qzqG5etVhPF007vbYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjNTRhODQ2NjMyZTgzMzQwZTExNGQwZDM1NTkxYjNkNDIx
ODhiNzYwHhcNMjUxMDE5MjMwMTA1WhcNMjUxMDIwMjMwMTA1WjAzMTEwLwYDVQQD
EyhmYWEyODliYmI2OGM4MTJkY2EzNWJiMGYxM2NkNzg1N2MxODAzNzQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7ZUjW4T6oN8DPrR6QgWZfpOH8UJ
oezsA1OS0iW37f0rx+r3hHe+htJgHTmPtBilr3Uus1lH5caZUjUBhP82M6Qmjr9R
yRn66WZh2Wjysm/EJVogtZymzjRVFm00pWRze9HA7IvVx35YHVl8kw/kZer0lLix
oucWBneEX06JhgGQ/935TBKEPo+I51feXsF4PBrheVAOD0v7oOLsc987kM4Qy3de
uSIJFb29L+Yw/YgiQqTMdnIO/kedp50dqggzSC7DGBfmSE+m0Y/Z77uQl/Ib1+Fh
QoFlwujYY8Qv8acuOhTmfJX0FLrPU0gBfaWjLVt+yLPrNzDlrhuvDR+jtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPqiibu2jIEtyjW7DxPNeFfBgDdEMB8GA1UdIwQY
MBaAFIxUqEZjLoM0DhFNDTVZGz1CGIt2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvakZTb1JtTXVnelFPRVUwTk5Wa2JQVUlZaTNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC84MmE2NjEtNTU4Ny00MDgzLTgxM2Mt
MzQ1OWJlMjY2NzMxLzEvakZTb1JtTXVnelFPRVUwTk5Wa2JQVUlZaTNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC84MmE2NjEtNTU4Ny00MDgzLTgxM2MtMzQ1OWJlMjY2NzMx
LzEvakZTb1JtTXVnelFPRVUwTk5Wa2JQVUlZaTNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANdVIWORC
AP2wuEQKv+UNoHqpZ41/PFV2S3Iq08yCqu/nP5A+bGTsK7dfZfr2O57lnyeykQI/
emOfxp45EnIUb/D3he2yJdYb7IykQE3Mtxm4CpuctrAcgOiVBZrOITPyrLqfK3sP
W3W0TZgD4/OseuGsn2A7YXdRB/uuP/wazrqDqU9BeDyFq+Fq9e87s24rsN/szzi7
XciS0n7FLlfwcCK2Nl8rDVYsIWb5CMFAAca8n7IDfFbV3OHE/pLp0q6wKntR2Cts
b6Fhkm0cW5ymwG0RBTZOMj581ogYmf9xZvaWO7SNHnIT7dhDreZDIyJpIPRWaxJ9
uuGd5IsjC0dhAg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 05:38:52 2025 by rpki-client