Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft
File: eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft (raw, json)
Hash identifier: DlX1h64gzYWqra9doubatLbzjCGMd3BVuGpGON6xiz8=
Subject key identifier: A1:48:F1:AE:31:95:97:39:44:BA:91:94:BE:DC:74:83:47:D1:9B:C6
Authority key identifier: 79:95:F9:1E:99:82:25:01:5F:47:06:3C:32:8E:0C:50:1D:68:B5:9D
Certificate issuer: /CN=7995f91e998225015f47063c328e0c501d68b59d
Certificate serial: 019A50E3C891FB875B918CABC6029AADD1E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft
Manifest number: 11E6
Signing time: Tue 04 Nov 2025 22:01:36 +0000
Manifest this update: Tue 04 Nov 2025 22:01:36 +0000
Manifest next update: Wed 05 Nov 2025 22:01:36 +0000
Files and hashes: 1: eZX5HpmCJQFfRwY8Mo4MUB1otZ0.crl (hash: IvLTxgznUgpDdgF8jJqsmPQ22IK7+hKjDGbGFUmWlQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:c8:91:fb:87:5b:91:8c:ab:c6:02:9a:ad:d1:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7995f91e998225015f47063c328e0c501d68b59d
Validity
Not Before: Nov 4 22:01:36 2025 GMT
Not After : Nov 5 22:01:36 2025 GMT
Subject: CN=a148f1ae3195973944ba9194bedc748347d19bc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5c:ca:41:15:f6:4c:f5:84:3f:53:6a:74:a9:
77:73:53:de:89:d6:6d:78:65:00:14:89:5d:27:47:
05:dd:7d:09:4f:30:08:c1:49:9b:1c:07:fa:55:7f:
b4:18:23:85:27:b0:c4:e8:dc:d1:60:d5:c3:0b:f6:
97:4b:a6:05:4c:65:b5:3c:fc:95:ce:a7:83:9c:29:
62:59:98:89:50:30:9a:8e:63:e7:f9:a8:82:20:dd:
27:de:bd:d5:0e:7d:47:20:4f:af:5c:4b:e6:b7:42:
1b:4b:c6:5a:96:63:c2:8d:6d:15:78:c3:70:43:1b:
68:90:a1:2b:6c:eb:1c:0a:81:74:57:b7:3c:64:7c:
ca:35:ee:0d:4b:55:b6:76:07:87:0c:6d:e1:fc:1e:
12:55:0b:55:e7:fd:54:00:2c:b2:2a:9d:d6:6a:97:
13:c4:b4:97:43:de:3c:e2:4a:bd:29:77:f4:e4:69:
da:41:bf:5a:7e:8b:30:0f:9d:f6:7c:f2:05:ee:4b:
2a:d0:fa:93:53:80:f8:fa:47:0e:bf:9a:90:74:8e:
90:98:a7:93:91:31:4d:24:b7:72:f0:4e:8f:0b:04:
1c:9d:39:c3:32:f5:c3:52:82:ce:48:8d:f1:c8:19:
5d:fc:b3:55:15:b9:d1:66:0e:50:13:8f:66:1b:0f:
a9:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:48:F1:AE:31:95:97:39:44:BA:91:94:BE:DC:74:83:47:D1:9B:C6
X509v3 Authority Key Identifier:
keyid:79:95:F9:1E:99:82:25:01:5F:47:06:3C:32:8E:0C:50:1D:68:B5:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:0e:7b:23:1f:d5:28:29:ab:f9:1a:78:ee:e0:b1:4a:6c:c5:
d8:4d:d8:ea:72:1d:35:10:c9:4c:7b:4b:e4:7b:b8:e4:4f:6d:
b0:7f:21:18:69:78:e1:e2:fb:a9:13:04:27:73:6e:67:0b:32:
0f:d8:29:ea:d0:78:0f:a9:1d:0f:d5:0f:39:87:4e:af:6a:95:
d5:27:0a:fe:6c:91:e8:09:90:12:4b:8b:d5:06:fa:c0:c5:55:
0d:7b:1d:69:8d:cd:da:d3:fd:fc:61:26:66:07:88:68:13:51:
ae:dc:f1:f1:59:cb:49:67:c9:86:c2:42:67:25:0f:20:1c:3f:
0f:ca:3f:be:0f:cc:65:ac:85:ee:e9:df:cb:ed:f6:15:71:e5:
5d:0e:db:99:1b:44:49:f9:d8:0c:b5:bc:66:e5:3b:f2:a5:01:
9d:53:eb:6e:1d:77:7c:1b:62:f5:a6:8d:b3:13:da:17:2f:27:
84:a5:56:e6:17:80:82:08:76:f7:ff:d0:6d:b1:9a:ab:b3:7c:
6b:7a:52:1a:d5:3c:72:7d:77:2e:b9:95:bb:39:aa:5c:b9:07:
51:37:e7:71:ae:e6:d9:16:6f:3c:08:28:c0:55:98:1e:0e:88:
54:4d:61:17:10:61:41:57:f1:4a:3d:d7:45:57:05:75:56:ff:
d7:37:03:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQ48iR+4dbkYyrxgKardHoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5OTVmOTFlOTk4MjI1MDE1ZjQ3MDYzYzMyOGUwYzUwMWQ2
OGI1OWQwHhcNMjUxMTA0MjIwMTM2WhcNMjUxMTA1MjIwMTM2WjAzMTEwLwYDVQQD
EyhhMTQ4ZjFhZTMxOTU5NzM5NDRiYTkxOTRiZWRjNzQ4MzQ3ZDE5YmM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFzKQRX2TPWEP1NqdKl3c1PeidZt
eGUAFIldJ0cF3X0JTzAIwUmbHAf6VX+0GCOFJ7DE6NzRYNXDC/aXS6YFTGW1PPyV
zqeDnCliWZiJUDCajmPn+aiCIN0n3r3VDn1HIE+vXEvmt0IbS8ZalmPCjW0VeMNw
QxtokKErbOscCoF0V7c8ZHzKNe4NS1W2dgeHDG3h/B4SVQtV5/1UACyyKp3WapcT
xLSXQ9484kq9KXf05GnaQb9afoswD532fPIF7ksq0PqTU4D4+kcOv5qQdI6QmKeT
kTFNJLdy8E6PCwQcnTnDMvXDUoLOSI3xyBld/LNVFbnRZg5QE49mGw+p/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKFI8a4xlZc5RLqRlL7cdINH0ZvGMB8GA1UdIwQY
MBaAFHmV+R6ZgiUBX0cGPDKODFAdaLWdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVpYNUhwbUNKUUZmUndZOE1vNE1VQjFvdFowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9iNDExZjUtYTdmOC00Yjg0LTg1ZTMt
YTA5ZDZjNWQzNTUyLzEvZVpYNUhwbUNKUUZmUndZOE1vNE1VQjFvdFowLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS9iNDExZjUtYTdmOC00Yjg0LTg1ZTMtYTA5ZDZjNWQzNTUy
LzEvZVpYNUhwbUNKUUZmUndZOE1vNE1VQjFvdFowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUg57Ix/V
KCmr+Rp47uCxSmzF2E3Y6nIdNRDJTHtL5Hu45E9tsH8hGGl44eL7qRMEJ3NuZwsy
D9gp6tB4D6kdD9UPOYdOr2qV1ScK/myR6AmQEkuL1Qb6wMVVDXsdaY3N2tP9/GEm
ZgeIaBNRrtzx8VnLSWfJhsJCZyUPIBw/D8o/vg/MZayF7unfy+32FXHlXQ7bmRtE
SfnYDLW8ZuU78qUBnVPrbh13fBti9aaNsxPaFy8nhKVW5heAggh29//QbbGaq7N8
a3pSGtU8cn13LrmVuzmqXLkHUTfnca7m2RZvPAgowFWYHg6IVE1hFxBhQVfxSj3X
RVcFdVb/1zcDcg==
-----END CERTIFICATE-----
Generated at Wed Nov 5 06:05:06 2025 by rpki-client