Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
File: jbNHdLAZeShP2edU_qaPo8YXg9A.mft (raw, json)
Hash identifier: xves8YgWwCkN8HZ677lYD0sLvFiv6F+5Y/9ZulsEguc=
Subject key identifier: 54:CE:25:FA:B5:DC:E5:CE:CA:00:74:9C:B2:51:AE:59:70:04:02:91
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 019A51F5D1177106164FAAEFAB9C09AB4CEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
Manifest number: 1751
Signing time: Wed 05 Nov 2025 03:00:55 +0000
Manifest this update: Wed 05 Nov 2025 03:00:55 +0000
Manifest next update: Thu 06 Nov 2025 03:00:55 +0000
Files and hashes: 1: 4xDjMGoR5cxZD0TEt45OTNLuzZ4.roa (hash: aWtnbMWrytraTfwmFZQXH9y0uPlTO0CdQ7LWoLXK164=)
2: J8HqZbweBSBfotj9M3AMH0o24CY.roa (hash: KkFoXwUHnXFgQiJUTdylT6bFXV0tnmXRuocNWtuhH7k=)
3: aXs8DBYHqH16kFI25mAmO1bJxx4.roa (hash: d1LoCC9lmf7ZBBsN52kpeKsNgpbykeADMERL6qdd4Bg=)
4: jbNHdLAZeShP2edU_qaPo8YXg9A.crl (hash: KV2NfOz/bhsm/BbdQ+wjS0rI+uD0qJsfovq6Y1J+fU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:f5:d1:17:71:06:16:4f:aa:ef:ab:9c:09:ab:4c:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Nov 5 03:00:55 2025 GMT
Not After : Nov 6 03:00:55 2025 GMT
Subject: CN=54ce25fab5dce5ceca00749cb251ae5970040291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:65:fb:dd:2c:c8:43:33:c8:9f:65:63:16:71:
80:c2:70:9d:2a:89:f7:07:cf:3a:ea:0c:4a:d9:a2:
c8:43:ea:2b:1b:bf:9f:6d:36:2a:c2:eb:20:66:a6:
19:97:fe:31:87:57:0e:cd:ed:f8:d5:27:c4:b5:d0:
84:00:ec:3c:11:d4:b2:0e:b5:42:3f:56:58:a0:cf:
de:bc:e8:8e:1b:13:07:c3:7a:40:21:7d:89:b6:4b:
ff:a0:4c:3a:48:f2:41:b5:68:e5:df:d4:3f:43:82:
cc:ac:4b:3b:77:11:8a:a2:ec:cd:01:70:0e:08:bb:
a3:e9:d7:f0:81:8f:ef:90:ba:db:8a:c8:e3:78:4b:
38:db:3f:21:64:0a:43:6a:b6:06:5b:f2:3f:35:c4:
76:55:32:92:f7:79:4f:e9:98:fa:bb:e7:fe:7d:1a:
21:a2:7c:4b:4f:a9:00:24:eb:fc:93:f0:34:a9:4e:
45:a9:5e:89:1f:9f:5a:04:aa:eb:a4:b7:d8:45:cc:
6b:2b:87:a2:c2:66:d1:83:74:5a:bf:c2:78:cb:38:
2c:2b:e7:01:4c:61:e9:fc:80:b7:a8:62:bd:ff:d7:
67:6b:1d:08:bb:f7:d0:e7:c5:b7:10:56:f9:6d:9e:
75:71:55:e7:53:46:16:be:c6:8d:c8:0b:90:82:38:
d0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:CE:25:FA:B5:DC:E5:CE:CA:00:74:9C:B2:51:AE:59:70:04:02:91
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:2e:e0:15:26:8f:e4:51:bc:e1:b9:b7:85:29:ab:80:ca:ef:
15:b4:0f:f9:b5:02:16:84:95:a4:19:a2:5b:07:4d:dd:10:7c:
32:41:19:92:da:5c:de:81:27:e1:89:b5:58:18:bb:52:fc:fe:
de:64:dc:62:2a:9a:d1:16:8c:ef:0d:92:d9:91:70:2f:4a:c8:
99:bd:a8:19:d9:74:cc:28:e6:d8:84:f3:aa:a3:6a:87:1b:93:
b6:6e:1f:70:73:28:f1:4f:08:da:e3:f6:d5:51:ae:8d:58:90:
1b:9d:a4:aa:e0:63:07:ac:ab:4f:72:41:af:67:22:21:fc:bd:
22:55:93:ba:a8:32:53:1a:08:0a:6b:87:d2:8b:13:23:87:6c:
ce:c4:35:e7:3f:43:9e:d0:c8:4b:5a:2c:93:59:e9:fa:31:dc:
c6:76:91:eb:b7:4f:9f:fc:fb:c3:92:37:a4:be:5a:ef:e1:43:
85:26:20:1f:ec:72:97:5e:0e:8a:e3:e3:bf:e8:93:71:0b:38:
61:c9:2e:7b:7f:0b:e2:83:ba:5f:3d:5f:c2:7a:09:64:b8:cb:
9f:57:eb:7d:dd:b8:e8:65:53:c9:88:c5:09:ae:02:c6:1b:b8:
d2:19:ed:29:00:0b:9f:ac:36:da:81:4a:49:eb:2a:f8:25:eb:
ae:90:1e:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpR9dEXcQYWT6rvq5wJq0zqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkYjM0Nzc0YjAxOTc5Mjg0ZmQ5ZTc1NGZlYTY4ZmEzYzYx
NzgzZDAwHhcNMjUxMTA1MDMwMDU1WhcNMjUxMTA2MDMwMDU1WjAzMTEwLwYDVQQD
Eyg1NGNlMjVmYWI1ZGNlNWNlY2EwMDc0OWNiMjUxYWU1OTcwMDQwMjkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7mX73SzIQzPIn2VjFnGAwnCdKon3
B8866gxK2aLIQ+orG7+fbTYqwusgZqYZl/4xh1cOze341SfEtdCEAOw8EdSyDrVC
P1ZYoM/evOiOGxMHw3pAIX2Jtkv/oEw6SPJBtWjl39Q/Q4LMrEs7dxGKouzNAXAO
CLuj6dfwgY/vkLrbisjjeEs42z8hZApDarYGW/I/NcR2VTKS93lP6Zj6u+f+fRoh
onxLT6kAJOv8k/A0qU5FqV6JH59aBKrrpLfYRcxrK4eiwmbRg3Rav8J4yzgsK+cB
TGHp/IC3qGK9/9dnax0Iu/fQ58W3EFb5bZ51cVXnU0YWvsaNyAuQgjjQFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFTOJfq13OXOygB0nLJRrllwBAKRMB8GA1UdIwQY
MBaAFI2zR3SwGXkoT9nnVP6mj6PGF4PQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGIt
NjI2NTUyMWY2ZGY3LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGItNjI2NTUyMWY2ZGY3
LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiS7gFSaP
5FG84bm3hSmrgMrvFbQP+bUCFoSVpBmiWwdN3RB8MkEZktpc3oEn4Ym1WBi7Uvz+
3mTcYiqa0RaM7w2S2ZFwL0rImb2oGdl0zCjm2ITzqqNqhxuTtm4fcHMo8U8I2uP2
1VGujViQG52kquBjB6yrT3JBr2ciIfy9IlWTuqgyUxoICmuH0osTI4dszsQ15z9D
ntDIS1osk1np+jHcxnaR67dPn/z7w5I3pL5a7+FDhSYgH+xyl14OiuPjv+iTcQs4
Yckue38L4oO6Xz1fwnoJZLjLn1frfd246GVTyYjFCa4Cxhu40hntKQALn6w22oFK
Sesq+CXrrpAexg==
-----END CERTIFICATE-----
Generated at Wed Nov 5 08:19:33 2025 by rpki-client