Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
File: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft (raw, json)
Hash identifier: ulVsZidMJAgCYQdm6P0O2iuDPdNCGmtyOCi5etkIhrg=
Subject key identifier: C9:E0:D4:27:33:B5:05:E3:AB:5C:BA:92:AE:0A:79:C8:EB:9B:32:E6
Authority key identifier: D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
Certificate issuer: /CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Certificate serial: 019A4FD0517EA8160C5F807E1D7FF702F53E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
Manifest number: 0FBF
Signing time: Tue 04 Nov 2025 17:00:43 +0000
Manifest this update: Tue 04 Nov 2025 17:00:43 +0000
Manifest next update: Wed 05 Nov 2025 17:00:43 +0000
Files and hashes: 1: 0E7XqwXvQw8zGg6cfEDvAxEUfw4.roa (hash: GEurlnwNp4FPEWbJDU+gHsQep+536ZgKzEj3iyCeYrM=)
2: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl (hash: JsNxYcgVqFr5+pCYFvugtyCel/83tJ1LvYym9iGvdoo=)
3: 5YRtqk6Jp7Zam_D7fc_X7XfH8s4.roa (hash: X5F/YiS9H2WE1ZFG9REO1WI3BKWNsouj5lZWL1J+hoo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:d0:51:7e:a8:16:0c:5f:80:7e:1d:7f:f7:02:f5:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Validity
Not Before: Nov 4 17:00:43 2025 GMT
Not After : Nov 5 17:00:43 2025 GMT
Subject: CN=c9e0d42733b505e3ab5cba92ae0a79c8eb9b32e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:6a:f4:56:8b:23:bb:4c:ce:c9:9e:c3:48:bd:
f2:03:d1:fc:2b:4b:01:44:85:30:19:90:d5:8d:1e:
2c:d3:a8:49:6e:1d:3b:59:c5:0e:6d:66:cd:5c:57:
c2:e5:1e:c5:e6:ce:76:49:25:00:b2:03:80:2b:62:
41:9f:86:37:a5:d0:b3:51:73:97:3b:8d:6c:63:93:
84:83:96:e4:99:a4:c1:ae:7e:a5:03:a5:e8:9f:5e:
e1:ba:6d:8d:f9:10:84:ad:1e:b7:13:10:58:14:61:
65:85:15:1c:ca:0c:81:90:e7:f4:47:cb:4e:e6:88:
f3:5e:c7:26:1c:3a:fb:84:33:54:38:47:f7:fb:6a:
5e:89:f2:13:c8:2a:a3:98:7d:04:8d:e8:fb:d6:3d:
50:cf:ba:f5:28:4e:c5:6a:2d:7c:04:82:67:15:82:
23:f2:fd:aa:9c:61:71:10:0e:82:60:fe:7a:69:a0:
ea:b1:aa:43:4c:8d:9c:a2:3d:ff:1d:b2:98:8c:d0:
58:38:93:0e:62:35:41:a0:14:60:af:b6:4a:67:a6:
fa:19:9e:14:d9:1b:3c:42:e1:9d:e3:5b:c2:d3:db:
2c:ce:07:9e:11:c9:e9:94:be:3c:22:bf:39:6a:2a:
da:75:ef:d2:e2:da:3f:61:1e:2d:0d:0f:a0:80:e0:
d2:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E0:D4:27:33:B5:05:E3:AB:5C:BA:92:AE:0A:79:C8:EB:9B:32:E6
X509v3 Authority Key Identifier:
keyid:D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:bf:21:14:4c:3e:a6:83:d4:37:62:f8:b0:e7:aa:41:fa:ac:
42:29:41:34:fa:ea:17:05:f7:d0:aa:43:fc:ca:dd:c2:8b:b8:
30:03:fb:70:32:bb:a7:50:56:b1:78:7d:ba:e0:6a:09:73:68:
0b:65:9e:29:bf:a9:ff:34:c9:05:01:db:6d:b6:76:81:10:b8:
3d:1d:ce:d7:65:3f:4e:ca:d2:35:23:0a:42:43:4b:bf:9b:c6:
c1:63:6e:e8:b8:34:d6:17:87:3c:72:39:37:6c:13:26:fa:d2:
9e:db:01:85:e5:40:d5:90:ff:e9:8c:e6:34:3c:bf:80:80:82:
77:ca:3c:5a:9b:2e:f6:0d:de:a3:cd:03:ad:2a:5c:34:92:cb:
08:0c:9d:b5:0e:fd:b3:78:66:d2:c1:8b:f6:8b:3b:3a:e9:e2:
b2:ee:99:bc:f2:f8:c8:40:a2:bd:83:14:97:46:59:b0:0d:ca:
0d:63:a7:9b:74:57:bb:ee:55:ce:b0:de:8d:c8:d7:61:48:d5:
7c:60:31:f1:34:bf:31:27:4f:a7:dc:db:23:7f:7c:40:66:18:
05:4c:e6:f0:e7:19:cd:b5:d6:41:71:4c:c0:2e:99:f1:fe:14:
11:cb:4b:34:6d:83:14:25:cf:d8:a6:3f:60:da:eb:58:cb:e9:
7a:28:b1:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpP0FF+qBYMX4B+HX/3AvU+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwNDY4N2EzZWU2MzIyYjc1N2RlODFlN2Y1M2M1ZDMyZWVi
ZTMzYTYwHhcNMjUxMTA0MTcwMDQzWhcNMjUxMTA1MTcwMDQzWjAzMTEwLwYDVQQD
EyhjOWUwZDQyNzMzYjUwNWUzYWI1Y2JhOTJhZTBhNzljOGViOWIzMmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5mr0Vosju0zOyZ7DSL3yA9H8K0sB
RIUwGZDVjR4s06hJbh07WcUObWbNXFfC5R7F5s52SSUAsgOAK2JBn4Y3pdCzUXOX
O41sY5OEg5bkmaTBrn6lA6Xon17hum2N+RCErR63ExBYFGFlhRUcygyBkOf0R8tO
5ojzXscmHDr7hDNUOEf3+2peifITyCqjmH0Ejej71j1Qz7r1KE7Fai18BIJnFYIj
8v2qnGFxEA6CYP56aaDqsapDTI2coj3/HbKYjNBYOJMOYjVBoBRgr7ZKZ6b6GZ4U
2Rs8QuGd41vC09sszgeeEcnplL48Ir85airade/S4to/YR4tDQ+ggODSCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMng1CcztQXjq1y6kq4KecjrmzLmMB8GA1UdIwQY
MBaAFNBGh6PuYyK3V96B5/U8XTLuvjOmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEVhSG8tNWpJcmRYM29IbjlUeGRNdTYtTTZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9iZmRkMTktNmJiYS00ZGM5LWFmYzYt
OTdiZTQyNmEyMzM0LzEvMEVhSG8tNWpJcmRYM29IbjlUeGRNdTYtTTZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9iZmRkMTktNmJiYS00ZGM5LWFmYzYtOTdiZTQyNmEyMzM0
LzEvMEVhSG8tNWpJcmRYM29IbjlUeGRNdTYtTTZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU78hFEw+
poPUN2L4sOeqQfqsQilBNPrqFwX30KpD/Mrdwou4MAP7cDK7p1BWsXh9uuBqCXNo
C2WeKb+p/zTJBQHbbbZ2gRC4PR3O12U/TsrSNSMKQkNLv5vGwWNu6Lg01heHPHI5
N2wTJvrSntsBheVA1ZD/6YzmNDy/gICCd8o8Wpsu9g3eo80DrSpcNJLLCAydtQ79
s3hm0sGL9os7Ounisu6ZvPL4yECivYMUl0ZZsA3KDWOnm3RXu+5VzrDejcjXYUjV
fGAx8TS/MSdPp9zbI398QGYYBUzm8OcZzbXWQXFMwC6Z8f4UEctLNG2DFCXP2KY/
YNrrWMvpeiixKg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:49:52 2025 by rpki-client