Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/2da290-4ebe-42ad-bc46-572edb570f7e/1/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.mft
File: EJMNAEm6hwBMzJ5b5SbDUMyD-o0.mft (raw, json)
Hash identifier: 5lFphHhhjNXJDHZVHaP8FgTDDmBBQbdCTr0zMDSXJjU=
Subject key identifier: 2F:91:B9:9C:33:7B:81:B4:D3:CC:2A:CE:DC:1F:AF:68:53:F3:43:60
Authority key identifier: 10:93:0D:00:49:BA:87:00:4C:CC:9E:5B:E5:26:C3:50:CC:83:FA:8D
Certificate issuer: /CN=10930d0049ba87004ccc9e5be526c350cc83fa8d
Certificate serial: 019A4DAAD35D585D48BF143FDA5388445383
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/2da290-4ebe-42ad-bc46-572edb570f7e/1/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.mft
Manifest number: 1708
Signing time: Tue 04 Nov 2025 07:00:32 +0000
Manifest this update: Tue 04 Nov 2025 07:00:32 +0000
Manifest next update: Wed 05 Nov 2025 07:00:32 +0000
Files and hashes: 1: EJMNAEm6hwBMzJ5b5SbDUMyD-o0.crl (hash: TQ51zDj/pzHyLNv0R5iumi1NQ37xsHvMbQDzC0H7KtY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/2da290-4ebe-42ad-bc46-572edb570f7e/1/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/2da290-4ebe-42ad-bc46-572edb570f7e/1/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.mft
rsync://rpki.ripe.net/repository/DEFAULT/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:aa:d3:5d:58:5d:48:bf:14:3f:da:53:88:44:53:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10930d0049ba87004ccc9e5be526c350cc83fa8d
Validity
Not Before: Nov 4 07:00:32 2025 GMT
Not After : Nov 5 07:00:32 2025 GMT
Subject: CN=2f91b99c337b81b4d3cc2acedc1faf6853f34360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:25:a7:35:25:b8:7f:ba:cb:b8:62:7f:b7:81:
e6:44:90:8e:d8:27:62:b4:4a:ce:87:13:99:04:e2:
e9:99:0b:a5:fd:06:1f:a2:9f:92:b6:f4:77:bc:1c:
a9:ec:c9:2e:cd:8a:b3:ef:78:a9:42:02:2d:76:8d:
30:1b:a7:58:b4:4e:0b:7b:2e:ab:4a:73:74:bc:25:
b0:a3:c0:4e:a5:29:fe:f2:cf:1f:9a:a1:fa:3b:1e:
e5:5c:23:ab:4e:71:be:68:26:fa:48:6f:c5:31:5f:
f6:3d:31:82:a8:01:3c:57:2f:91:eb:e6:08:c2:0f:
ce:2f:47:94:67:b4:7d:c0:d0:a0:37:36:b7:55:32:
8b:0a:c6:7d:a3:46:af:e2:f2:c1:02:b2:48:1b:8b:
34:4f:b2:54:de:37:df:e4:4e:60:31:d5:a0:a1:c9:
1e:60:4a:86:3b:ad:78:c3:15:83:f2:a8:3f:76:3a:
bd:36:39:b4:57:18:ed:cd:ab:27:26:8d:90:3a:72:
78:d3:45:78:47:55:4b:45:64:78:77:ba:fa:f9:73:
fb:b3:04:b6:82:24:87:5f:18:a8:f4:80:e4:70:3f:
4c:e7:0a:5d:53:d1:a4:2d:9e:d8:2a:e4:04:13:3b:
d0:24:5e:8b:9a:ea:b7:0b:98:27:d7:1a:e6:a5:9d:
8e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:91:B9:9C:33:7B:81:B4:D3:CC:2A:CE:DC:1F:AF:68:53:F3:43:60
X509v3 Authority Key Identifier:
keyid:10:93:0D:00:49:BA:87:00:4C:CC:9E:5B:E5:26:C3:50:CC:83:FA:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2da290-4ebe-42ad-bc46-572edb570f7e/1/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2da290-4ebe-42ad-bc46-572edb570f7e/1/EJMNAEm6hwBMzJ5b5SbDUMyD-o0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:85:45:9b:a8:f5:f8:32:24:0b:ed:83:c2:c0:0f:a4:37:4e:
bf:26:fe:0f:03:0e:95:b4:50:b2:3b:0d:1c:6c:0e:6c:99:da:
2a:bc:3d:a2:a8:ba:44:22:b9:2f:49:78:d9:f8:3b:68:3b:eb:
6c:8f:3e:e7:7c:e8:2f:fc:b9:b4:27:80:f6:1c:58:a2:ed:0e:
66:bf:0b:29:24:b4:75:34:c1:79:89:11:47:79:28:88:9f:04:
2c:00:9c:aa:79:32:86:14:7d:2e:0b:b4:19:a2:5d:2e:a8:5a:
09:02:76:a4:23:6d:de:d4:02:a5:95:63:b7:ab:a1:b4:ff:18:
dc:3a:aa:82:cb:d7:63:91:d0:5b:7c:9e:b6:33:ce:61:52:72:
74:3f:f1:85:89:71:33:19:e9:77:51:7c:89:8b:bc:53:e0:c1:
1d:0e:d4:67:bb:e6:80:01:aa:2f:ac:d2:cb:c1:9a:05:57:56:
67:73:ad:67:64:d7:b7:f7:82:9f:93:e8:28:4e:48:44:fc:18:
f6:3e:17:f4:00:97:7c:57:14:8b:85:8c:e8:e7:50:46:20:9d:
76:55:66:19:52:38:90:44:db:04:c7:91:00:5a:e9:49:49:06:
50:de:65:f5:e0:45:4d:b3:af:d2:ba:52:43:f3:24:1f:15:74:
20:bd:c6:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNqtNdWF1IvxQ/2lOIRFODMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwOTMwZDAwNDliYTg3MDA0Y2NjOWU1YmU1MjZjMzUwY2M4
M2ZhOGQwHhcNMjUxMTA0MDcwMDMyWhcNMjUxMTA1MDcwMDMyWjAzMTEwLwYDVQQD
EygyZjkxYjk5YzMzN2I4MWI0ZDNjYzJhY2VkYzFmYWY2ODUzZjM0MzYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuyWnNSW4f7rLuGJ/t4HmRJCO2Cdi
tErOhxOZBOLpmQul/QYfop+StvR3vByp7MkuzYqz73ipQgItdo0wG6dYtE4Ley6r
SnN0vCWwo8BOpSn+8s8fmqH6Ox7lXCOrTnG+aCb6SG/FMV/2PTGCqAE8Vy+R6+YI
wg/OL0eUZ7R9wNCgNza3VTKLCsZ9o0av4vLBArJIG4s0T7JU3jff5E5gMdWgocke
YEqGO614wxWD8qg/djq9Njm0VxjtzasnJo2QOnJ400V4R1VLRWR4d7r6+XP7swS2
giSHXxio9IDkcD9M5wpdU9GkLZ7YKuQEEzvQJF6Lmuq3C5gn1xrmpZ2OHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC+RuZwze4G008wqztwfr2hT80NgMB8GA1UdIwQY
MBaAFBCTDQBJuocATMyeW+Umw1DMg/qNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUpNTkFFbTZod0JNeko1YjVTYkRVTXlELW8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8yZGEyOTAtNGViZS00MmFkLWJjNDYt
NTcyZWRiNTcwZjdlLzEvRUpNTkFFbTZod0JNeko1YjVTYkRVTXlELW8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC8yZGEyOTAtNGViZS00MmFkLWJjNDYtNTcyZWRiNTcwZjdl
LzEvRUpNTkFFbTZod0JNeko1YjVTYkRVTXlELW8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOYVFm6j1
+DIkC+2DwsAPpDdOvyb+DwMOlbRQsjsNHGwObJnaKrw9oqi6RCK5L0l42fg7aDvr
bI8+53zoL/y5tCeA9hxYou0OZr8LKSS0dTTBeYkRR3koiJ8ELACcqnkyhhR9Lgu0
GaJdLqhaCQJ2pCNt3tQCpZVjt6uhtP8Y3DqqgsvXY5HQW3yetjPOYVJydD/xhYlx
Mxnpd1F8iYu8U+DBHQ7UZ7vmgAGqL6zSy8GaBVdWZ3OtZ2TXt/eCn5PoKE5IRPwY
9j4X9ACXfFcUi4WM6OdQRiCddlVmGVI4kETbBMeRAFrpSUkGUN5l9eBFTbOv0rpS
Q/MkHxV0IL3G7Q==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:50:11 2025 by rpki-client