Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: ixUAo+/L4wntManTIEdcXPIaQXJt5sk1U0TX4vyEVfQ=
Subject key identifier: 02:95:CC:81:9D:FA:A3:1A:8E:D8:6C:98:32:3F:4B:17:55:37:8D:33
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 019A51F552B88CF48D5B82FFA0FF2D5A2AE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 0880
Signing time: Wed 05 Nov 2025 03:00:23 +0000
Manifest this update: Wed 05 Nov 2025 03:00:23 +0000
Manifest next update: Thu 06 Nov 2025 03:00:23 +0000
Files and hashes: 1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=)
2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: 85aBgUyfee5h3ftMnJ7uSSTpwZ5dlY7bHE1oVLr5pBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:f5:52:b8:8c:f4:8d:5b:82:ff:a0:ff:2d:5a:2a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: Nov 5 03:00:23 2025 GMT
Not After : Nov 6 03:00:23 2025 GMT
Subject: CN=0295cc819dfaa31a8ed86c98323f4b1755378d33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8d:0d:0e:4d:f7:5c:a4:12:29:dc:84:87:a8:
84:6b:86:bd:76:86:17:26:d1:78:64:cb:a6:22:69:
67:b0:a9:87:10:77:9f:e3:31:d0:fa:3c:6a:99:4a:
a3:1b:bc:53:37:6f:41:30:56:a4:88:8c:bc:08:d0:
cc:ea:9f:ea:27:a2:84:5c:c4:d8:13:36:d1:e5:dc:
ea:10:36:23:51:dc:ba:2a:45:85:3b:83:d4:34:54:
d4:cb:db:7e:42:0f:67:06:71:df:85:de:16:d5:98:
f7:52:51:01:ae:7e:2a:be:81:b9:0d:ca:20:0d:09:
49:d0:86:d3:9d:2b:c7:ba:b7:93:e3:8e:fd:13:c8:
ab:24:f6:b5:d7:47:a4:7e:6e:a3:a2:65:87:3b:c7:
87:03:0d:28:9a:47:6d:b3:94:68:8f:87:8a:c4:b1:
d1:a4:12:93:ab:9c:d2:09:e4:77:b6:28:a0:81:74:
44:ac:89:b6:85:5f:c9:9a:f2:03:bd:ae:62:97:93:
5f:6b:9d:4f:8c:23:38:33:60:10:25:a1:ba:9a:44:
8b:4e:7a:7c:8f:ff:f8:aa:da:b1:bb:bd:89:ea:12:
0a:b2:d7:0f:f5:34:69:19:0a:59:e6:1c:ea:f6:47:
84:e4:0c:ec:87:2f:7e:d4:97:0d:56:eb:4f:0c:1f:
5a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:95:CC:81:9D:FA:A3:1A:8E:D8:6C:98:32:3F:4B:17:55:37:8D:33
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:6b:36:75:b1:08:b1:8d:73:84:c2:99:56:4f:9b:12:59:75:
61:a4:8e:e0:ad:93:57:a6:bf:82:c4:86:f6:fd:5e:2f:ef:f2:
ef:53:da:66:7b:da:0d:c3:65:2d:c8:ad:f9:5e:0c:37:38:68:
6f:65:12:93:d6:e0:b3:c4:98:96:61:a2:75:3b:9d:f6:8d:f1:
90:8b:11:01:51:5a:fe:59:6a:74:90:bb:cf:13:1a:06:b5:d7:
ee:99:bb:5c:5c:be:29:09:90:19:b6:c8:dd:60:06:9a:08:18:
6a:4b:e1:bc:7f:84:07:9c:89:67:e8:9d:c0:67:50:0f:f5:f8:
d0:f2:cb:f1:b7:7f:46:c2:d0:58:24:92:b0:90:86:8f:4b:e7:
6b:52:3d:f5:f9:8e:77:6b:b0:f4:02:96:23:da:d8:91:94:ed:
8b:82:40:36:ea:56:10:7b:2b:a8:10:f1:25:26:b6:26:56:22:
8f:77:f3:d5:fb:44:97:2b:56:e9:af:11:ec:c8:eb:bc:44:83:
82:23:bd:21:50:45:bf:ab:ae:0f:e7:65:a5:d6:2b:91:7e:ea:
03:ce:91:47:59:6e:b4:5b:47:31:e5:42:83:11:05:92:58:35:
7e:eb:6e:49:a9:34:37:a5:02:59:1c:f1:ce:46:e7:9f:34:32:
fc:b2:56:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpR9VK4jPSNW4L/oP8tWirgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzZWE1MDhhODViYzczYTlhYWEyMDNhOGE3YmFmOWMxNjJl
NmYzNmMwHhcNMjUxMTA1MDMwMDIzWhcNMjUxMTA2MDMwMDIzWjAzMTEwLwYDVQQD
EygwMjk1Y2M4MTlkZmFhMzFhOGVkODZjOTgzMjNmNGIxNzU1Mzc4ZDMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApI0NDk33XKQSKdyEh6iEa4a9doYX
JtF4ZMumImlnsKmHEHef4zHQ+jxqmUqjG7xTN29BMFakiIy8CNDM6p/qJ6KEXMTY
EzbR5dzqEDYjUdy6KkWFO4PUNFTUy9t+Qg9nBnHfhd4W1Zj3UlEBrn4qvoG5Dcog
DQlJ0IbTnSvHureT4479E8irJPa110ekfm6jomWHO8eHAw0omkdts5Roj4eKxLHR
pBKTq5zSCeR3tiiggXRErIm2hV/JmvIDva5il5Nfa51PjCM4M2AQJaG6mkSLTnp8
j//4qtqxu72J6hIKstcP9TRpGQpZ5hzq9keE5Azshy9+1JcNVutPDB9a+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAKVzIGd+qMajthsmDI/SxdVN40zMB8GA1UdIwQY
MBaAFAPqUIqFvHOpqqIDqKe6+cFi5vNsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAt
ZDcyNzA5MDVlOTIzLzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAtZDcyNzA5MDVlOTIz
LzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATWs2dbEI
sY1zhMKZVk+bEll1YaSO4K2TV6a/gsSG9v1eL+/y71PaZnvaDcNlLcit+V4MNzho
b2USk9bgs8SYlmGidTud9o3xkIsRAVFa/llqdJC7zxMaBrXX7pm7XFy+KQmQGbbI
3WAGmggYakvhvH+EB5yJZ+idwGdQD/X40PLL8bd/RsLQWCSSsJCGj0vna1I99fmO
d2uw9AKWI9rYkZTti4JANupWEHsrqBDxJSa2JlYij3fz1ftElytW6a8R7MjrvESD
giO9IVBFv6uuD+dlpdYrkX7qA86RR1lutFtHMeVCgxEFklg1futuSak0N6UCWRzx
zkbnnzQy/LJWdg==
-----END CERTIFICATE-----
Generated at Wed Nov 5 07:52:38 2025 by rpki-client