Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
File: tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft (raw, json)
Hash identifier: MjOS1whWa8iIl5u0OIQfGzAk2Xuu6ex4nn5jkXXECC8=
Subject key identifier: A6:5A:58:C8:89:63:1E:8C:C5:FA:2D:D6:30:A4:F4:82:FF:26:B5:61
Authority key identifier: B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
Certificate issuer: /CN=b4430ba11506741d676ea202e291ec7ec6191b17
Certificate serial: 019A4E1897704C9AF60E47963D2A6F89A68F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
Manifest number: 1711
Signing time: Tue 04 Nov 2025 09:00:25 +0000
Manifest this update: Tue 04 Nov 2025 09:00:25 +0000
Manifest next update: Wed 05 Nov 2025 09:00:25 +0000
Files and hashes: 1: Ar5ixINRYv4h1JY24F8pTYnNdfU.roa (hash: cerPS0rrVRA1DCH9YtBUW4yHi1b4My2ifCj92CGheoI=)
2: tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl (hash: zw9YBCn/hm3nvDRbGCAnYUpofQYyjsMKGXeGSBh34vU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:97:70:4c:9a:f6:0e:47:96:3d:2a:6f:89:a6:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4430ba11506741d676ea202e291ec7ec6191b17
Validity
Not Before: Nov 4 09:00:25 2025 GMT
Not After : Nov 5 09:00:25 2025 GMT
Subject: CN=a65a58c889631e8cc5fa2dd630a4f482ff26b561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:14:a8:5a:20:60:5f:50:7d:ca:0a:a0:17:26:
83:ac:28:66:ea:26:ac:d0:55:1b:88:e5:da:1d:de:
23:a0:32:a8:8a:4a:5f:f2:0b:27:fe:14:8e:c9:8e:
d9:b0:32:f5:f2:62:1a:ad:c2:e7:e0:b5:92:c3:03:
ce:f6:0c:76:9d:ca:5c:26:3b:3f:47:01:03:78:1b:
3c:d1:1d:52:c9:79:27:c1:8e:64:9d:21:2b:19:68:
4b:07:17:3c:a3:69:6a:e9:40:89:70:1b:72:84:cf:
80:16:1a:d3:67:5f:1d:6e:ad:ef:d0:1c:9c:bf:a3:
ba:5d:f2:fa:92:6f:2c:56:cf:31:90:a3:00:e6:0b:
2d:1d:a4:f8:0b:21:f2:91:a5:76:af:3c:e7:b9:1a:
57:bc:de:2d:cd:63:ed:8f:60:60:93:69:54:1c:40:
54:b6:51:cc:59:70:d8:1a:19:3a:b2:77:0a:9a:a4:
c4:79:9a:1e:3a:a4:84:1a:cb:45:f1:38:9d:7e:f7:
df:11:1a:a7:9b:41:eb:96:c9:93:b9:a4:7d:38:7c:
42:5b:14:f5:22:f7:98:b9:bf:b4:73:56:76:5b:09:
0e:be:98:87:0c:30:8d:54:75:78:9d:95:68:ec:04:
a5:b1:95:e9:8b:5e:04:8c:65:8b:a3:47:e2:1a:07:
8e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:5A:58:C8:89:63:1E:8C:C5:FA:2D:D6:30:A4:F4:82:FF:26:B5:61
X509v3 Authority Key Identifier:
keyid:B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:cd:35:36:21:b5:51:f4:55:84:27:c4:b9:a0:77:4e:84:43:
7f:33:39:65:31:05:5b:da:51:7a:a6:dd:f3:aa:cd:a2:fd:ec:
11:ee:d1:e4:56:2f:5d:85:4f:66:b3:ef:d4:7d:ea:6b:31:50:
1f:dc:eb:86:d5:82:7e:f8:90:59:ae:2c:46:bf:b0:3e:6f:58:
33:bc:87:69:85:9c:57:a6:ba:61:b9:63:96:78:98:d9:ee:fe:
e0:ec:c7:67:b1:d5:f8:10:62:72:bb:4e:7e:1c:cd:c7:c2:c1:
33:e7:39:8a:69:91:25:f7:fa:68:68:98:8c:89:50:74:0a:22:
cc:e3:14:51:2d:a9:7b:01:6a:72:94:f9:6f:fe:a0:ee:c3:4d:
b4:53:78:a6:7e:39:c7:82:f3:80:1a:3c:4e:8f:2a:f8:75:2f:
af:d0:6c:6e:09:53:14:1c:4d:6b:0c:40:ad:26:fb:91:bf:7a:
2e:76:ee:59:7c:f9:63:ea:de:54:44:b2:8d:18:34:cc:6d:aa:
3c:a7:06:13:2f:99:0c:95:59:46:1d:21:bd:a4:22:9b:dc:00:
5d:cb:1c:91:3a:48:2b:d2:41:5b:7e:19:59:82:e6:82:77:6e:
2d:8f:d6:d9:b5:38:90:c3:5b:83:db:62:23:57:45:ed:18:13:
53:00:75:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOGJdwTJr2DkeWPSpviaaPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0NDMwYmExMTUwNjc0MWQ2NzZlYTIwMmUyOTFlYzdlYzYx
OTFiMTcwHhcNMjUxMTA0MDkwMDI1WhcNMjUxMTA1MDkwMDI1WjAzMTEwLwYDVQQD
EyhhNjVhNThjODg5NjMxZThjYzVmYTJkZDYzMGE0ZjQ4MmZmMjZiNTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRSoWiBgX1B9ygqgFyaDrChm6ias
0FUbiOXaHd4joDKoikpf8gsn/hSOyY7ZsDL18mIarcLn4LWSwwPO9gx2ncpcJjs/
RwEDeBs80R1SyXknwY5knSErGWhLBxc8o2lq6UCJcBtyhM+AFhrTZ18dbq3v0Byc
v6O6XfL6km8sVs8xkKMA5gstHaT4CyHykaV2rzznuRpXvN4tzWPtj2Bgk2lUHEBU
tlHMWXDYGhk6sncKmqTEeZoeOqSEGstF8TidfvffERqnm0HrlsmTuaR9OHxCWxT1
IveYub+0c1Z2WwkOvpiHDDCNVHV4nZVo7ASlsZXpi14EjGWLo0fiGgeOrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKZaWMiJYx6Mxfot1jCk9IL/JrVhMB8GA1UdIwQY
MBaAFLRDC6EVBnQdZ26iAuKR7H7GGRsXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEVNTG9SVUdkQjFuYnFJQzRwSHNmc1laR3hjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi82MGNjZmEtMDkzMC00NmI0LTgzMTct
ZjhjYTljYjYzMzE3LzEvdEVNTG9SVUdkQjFuYnFJQzRwSHNmc1laR3hjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi82MGNjZmEtMDkzMC00NmI0LTgzMTctZjhjYTljYjYzMzE3
LzEvdEVNTG9SVUdkQjFuYnFJQzRwSHNmc1laR3hjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYs01NiG1
UfRVhCfEuaB3ToRDfzM5ZTEFW9pReqbd86rNov3sEe7R5FYvXYVPZrPv1H3qazFQ
H9zrhtWCfviQWa4sRr+wPm9YM7yHaYWcV6a6YbljlniY2e7+4OzHZ7HV+BBicrtO
fhzNx8LBM+c5immRJff6aGiYjIlQdAoizOMUUS2pewFqcpT5b/6g7sNNtFN4pn45
x4LzgBo8To8q+HUvr9BsbglTFBxNawxArSb7kb96LnbuWXz5Y+reVESyjRg0zG2q
PKcGEy+ZDJVZRh0hvaQim9wAXcsckTpIK9JBW34ZWYLmgnduLY/W2bU4kMNbg9ti
I1dF7RgTUwB1TQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:46:31 2025 by rpki-client