Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
File: 24P1T0UTHZIHwhWgmKKmvNb_BQs.mft (raw, json)
Hash identifier: KgfjaeLhidyC0xaKNt8364De25UIzStBzAzJzxbGDMQ=
Subject key identifier: 9E:09:0E:B8:E7:D7:98:13:76:EF:60:75:10:74:00:F9:99:8C:37:C7
Authority key identifier: DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B
Certificate issuer: /CN=db83f54f45131d9207c215a098a2a6bcd6ff050b
Certificate serial: 019A4F98D2FF1EB966B7C06B35FE51B79D0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
Manifest number: 0E07
Signing time: Tue 04 Nov 2025 16:00:06 +0000
Manifest this update: Tue 04 Nov 2025 16:00:06 +0000
Manifest next update: Wed 05 Nov 2025 16:00:06 +0000
Files and hashes: 1: 24P1T0UTHZIHwhWgmKKmvNb_BQs.crl (hash: 2B8+7AZsWSP9PEKxbpEndQbagA//9B0IfcVcmX0HQg4=)
2: Qfno-jAugdwOIbQTtdk6Qt14vp0.roa (hash: K+5ZvY56wsKUyUpWT9EX8Ty0xGLLwMy0SXranx21Z8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:98:d2:ff:1e:b9:66:b7:c0:6b:35:fe:51:b7:9d:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db83f54f45131d9207c215a098a2a6bcd6ff050b
Validity
Not Before: Nov 4 16:00:06 2025 GMT
Not After : Nov 5 16:00:06 2025 GMT
Subject: CN=9e090eb8e7d7981376ef6075107400f9998c37c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:89:a2:c0:3a:80:04:2c:03:ca:6c:1a:f8:67:
61:c7:e9:5a:ea:00:43:d4:69:ee:f2:54:d4:7f:b0:
42:0f:53:ac:d8:33:f3:2d:c5:26:a8:b1:15:1a:c3:
a4:4e:5c:5d:a9:2c:de:4b:78:1c:14:29:3a:7e:98:
f5:67:78:88:39:c1:bf:d3:22:a7:db:1a:9f:11:e6:
08:6d:14:e8:7e:ec:ee:c6:e2:e0:19:7c:80:dc:e3:
7c:93:b3:2f:58:28:b5:8b:cc:b1:95:3e:fd:3c:cf:
e2:fd:d4:e5:44:fa:21:06:37:93:95:59:fa:1d:e3:
cc:d6:79:2a:87:04:30:4c:b6:b6:f5:cd:f4:29:02:
7e:7d:03:4c:23:2a:ed:d3:58:92:0d:ec:14:27:46:
cf:dd:52:ba:80:e3:5f:1d:fd:a9:c5:91:96:2e:98:
00:03:ca:bb:11:ae:e0:cb:a1:fe:bb:e7:72:e0:10:
7c:16:4c:88:63:95:20:dc:a1:bd:68:e8:55:ba:7f:
db:4c:c8:97:f4:37:0b:66:9d:10:e3:2c:f2:43:74:
8a:1b:80:d8:f9:d6:6d:30:65:0b:f1:a4:09:bf:d8:
cb:38:c9:96:86:f7:09:23:f6:31:80:3a:b5:ab:5f:
f6:d8:e3:4c:33:fc:e8:e2:ce:07:0a:75:39:1f:54:
ed:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:09:0E:B8:E7:D7:98:13:76:EF:60:75:10:74:00:F9:99:8C:37:C7
X509v3 Authority Key Identifier:
keyid:DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:94:73:7a:c7:ca:63:57:3e:79:a9:bc:84:ef:7f:36:64:f4:
e3:31:44:23:86:f2:0f:a8:dd:73:50:c2:63:44:fb:95:4e:54:
4a:f8:56:2f:10:98:ab:b2:d5:74:22:0e:cb:d5:0c:65:fb:d5:
1c:75:dd:5f:2a:b2:2e:b5:54:10:a7:ee:50:61:51:68:05:36:
42:90:76:04:d3:31:5a:27:50:19:66:8b:66:94:28:6c:45:8e:
85:f5:b3:29:3b:1f:ee:20:30:26:09:3c:fb:89:fa:45:08:25:
7e:87:e6:c0:9d:61:38:ce:29:93:96:d5:b8:90:ff:41:af:d0:
f1:24:3c:e5:2e:b5:a9:c5:ae:82:ab:96:ff:cf:a0:f0:f8:6b:
87:54:37:df:a6:91:3b:82:68:42:a3:73:d0:ee:dd:e4:0b:ad:
b7:18:b6:d8:19:42:80:3c:a1:5a:98:6b:75:61:01:0a:19:73:
84:d8:58:54:0c:4c:96:09:9d:87:4c:17:3e:b9:b7:51:07:83:
c1:70:c0:52:88:e6:9a:e4:41:7d:b8:b4:12:e8:5a:22:59:70:
cc:93:fb:f7:32:9f:43:69:93:a3:73:c1:c5:54:9a:b7:8e:b4:
85:7b:1b:16:80:f0:1c:be:84:07:3a:29:d5:b5:fb:ec:84:22:
87:11:c6:cb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPmNL/Hrlmt8BrNf5Rt50NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiODNmNTRmNDUxMzFkOTIwN2MyMTVhMDk4YTJhNmJjZDZm
ZjA1MGIwHhcNMjUxMTA0MTYwMDA2WhcNMjUxMTA1MTYwMDA2WjAzMTEwLwYDVQQD
Eyg5ZTA5MGViOGU3ZDc5ODEzNzZlZjYwNzUxMDc0MDBmOTk5OGMzN2M3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm4miwDqABCwDymwa+Gdhx+la6gBD
1Gnu8lTUf7BCD1Os2DPzLcUmqLEVGsOkTlxdqSzeS3gcFCk6fpj1Z3iIOcG/0yKn
2xqfEeYIbRTofuzuxuLgGXyA3ON8k7MvWCi1i8yxlT79PM/i/dTlRPohBjeTlVn6
HePM1nkqhwQwTLa29c30KQJ+fQNMIyrt01iSDewUJ0bP3VK6gONfHf2pxZGWLpgA
A8q7Ea7gy6H+u+dy4BB8FkyIY5Ug3KG9aOhVun/bTMiX9DcLZp0Q4yzyQ3SKG4DY
+dZtMGUL8aQJv9jLOMmWhvcJI/YxgDq1q1/22ONMM/zo4s4HCnU5H1TtmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ4JDrjn15gTdu9gdRB0APmZjDfHMB8GA1UdIwQY
MBaAFNuD9U9FEx2SB8IVoJiiprzW/wULMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjRQMVQwVVRIWklId2hXZ21LS212TmJfQlFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9lNTBjNzAtMGE3MC00NWFjLTlhZDQt
MzI2NzY0YTY4Y2ZiLzEvMjRQMVQwVVRIWklId2hXZ21LS212TmJfQlFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9lNTBjNzAtMGE3MC00NWFjLTlhZDQtMzI2NzY0YTY4Y2Zi
LzEvMjRQMVQwVVRIWklId2hXZ21LS212TmJfQlFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXZRzesfK
Y1c+eam8hO9/NmT04zFEI4byD6jdc1DCY0T7lU5USvhWLxCYq7LVdCIOy9UMZfvV
HHXdXyqyLrVUEKfuUGFRaAU2QpB2BNMxWidQGWaLZpQobEWOhfWzKTsf7iAwJgk8
+4n6RQglfofmwJ1hOM4pk5bVuJD/Qa/Q8SQ85S61qcWugquW/8+g8Phrh1Q336aR
O4JoQqNz0O7d5Auttxi22BlCgDyhWphrdWEBChlzhNhYVAxMlgmdh0wXPrm3UQeD
wXDAUojmmuRBfbi0EuhaIllwzJP79zKfQ2mTo3PBxVSat460hXsbFoDwHL6EBzop
1bX77IQihxHGyw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 17:31:24 2025 by rpki-client