Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
File: ErmEbY911kX_YwjOAwCHopfms1k.mft (raw, json)
Hash identifier: t2wj8mdmkAdn1gPpoMItyy0tmJ0NBGKgNlG4NlIUt9U=
Subject key identifier: CF:3E:87:9F:7F:CD:2E:3A:00:C9:5E:E5:90:F0:A2:27:BD:A8:72:1A
Authority key identifier: 12:B9:84:6D:8F:75:D6:45:FF:63:08:CE:03:00:87:A2:97:E6:B3:59
Certificate issuer: /CN=12b9846d8f75d645ff6308ce030087a297e6b359
Certificate serial: 019A4F61D772EC303F5925E3289F0D9B1BDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
Manifest number: 152E
Signing time: Tue 04 Nov 2025 15:00:03 +0000
Manifest this update: Tue 04 Nov 2025 15:00:03 +0000
Manifest next update: Wed 05 Nov 2025 15:00:03 +0000
Files and hashes: 1: ErmEbY911kX_YwjOAwCHopfms1k.crl (hash: NEqdYBnZVK+DJimeMag2hE4rAsEMs0C57lfnh2a8nk8=)
2: Z6p3Mb3Xuxofy2Z3p3uuAgYevv0.roa (hash: SQn+3rhGu53usOi2Tvr4qfF9FQezTzxP7fAqpbwWcZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:61:d7:72:ec:30:3f:59:25:e3:28:9f:0d:9b:1b:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12b9846d8f75d645ff6308ce030087a297e6b359
Validity
Not Before: Nov 4 15:00:03 2025 GMT
Not After : Nov 5 15:00:03 2025 GMT
Subject: CN=cf3e879f7fcd2e3a00c95ee590f0a227bda8721a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:82:47:9b:69:21:bd:3f:f3:fa:c1:0c:9a:0b:
7e:e8:39:97:aa:93:16:af:6e:6e:02:c6:97:2d:44:
4a:6c:4f:d5:17:51:a7:e8:f1:15:1c:02:4f:80:84:
5c:30:9b:a3:59:47:f5:d5:8e:23:7e:1e:b1:c2:92:
1d:ef:8f:7f:51:cc:94:27:3f:d0:7c:e3:ed:d5:fe:
a5:82:d8:8f:3f:bc:68:be:88:72:5f:b0:8c:0b:af:
98:f6:34:c4:89:a7:34:96:ce:77:49:77:b2:22:15:
95:e8:7e:6e:6e:f7:86:cb:59:50:67:41:6a:67:22:
5d:52:b5:3d:d5:2e:b5:f0:c5:d7:8d:a2:22:44:c8:
78:ea:95:58:7a:fa:0c:4f:54:35:bb:a3:fd:fa:3c:
43:85:32:35:37:65:a5:12:94:30:e5:51:80:ab:5a:
45:4b:25:fa:bd:3b:ec:81:b3:23:6f:8a:3e:35:bf:
b8:f7:45:fd:cd:42:d1:21:cf:20:f6:cf:ca:47:fe:
0b:56:13:1a:5d:2d:d7:ce:76:43:28:6e:d9:dc:a1:
ea:43:21:72:3c:50:74:85:78:24:f7:57:ed:8b:75:
b0:80:04:ca:3d:ef:c2:aa:42:41:68:e0:96:7d:d9:
7f:06:ac:10:61:34:f2:2b:c1:a7:64:21:10:48:fe:
5c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:3E:87:9F:7F:CD:2E:3A:00:C9:5E:E5:90:F0:A2:27:BD:A8:72:1A
X509v3 Authority Key Identifier:
keyid:12:B9:84:6D:8F:75:D6:45:FF:63:08:CE:03:00:87:A2:97:E6:B3:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:34:e4:12:5f:b1:05:22:41:50:15:0a:f5:27:6b:06:57:b4:
a5:43:f9:f6:ab:31:74:5f:44:5e:4b:23:00:f5:00:0d:96:54:
e1:f6:da:6d:ad:1d:c9:e1:9f:b1:50:b5:fe:ff:d1:5b:8f:0d:
01:ba:e5:77:73:ad:9a:a9:99:66:b1:de:f2:cb:4d:3e:6d:ac:
b2:e8:28:8a:7e:dc:aa:2e:a4:82:38:8f:b7:ef:2d:24:13:05:
15:cb:d6:9c:a3:28:de:00:af:6a:b1:a9:09:41:b3:3c:15:b7:
aa:1d:a7:b9:b1:31:84:ae:cf:82:65:b6:e1:41:75:94:a0:ed:
54:9f:64:d0:45:26:72:db:cf:19:91:0a:8a:1f:0c:cb:50:87:
f4:72:fd:42:60:da:86:0f:f4:00:bf:e4:07:e4:85:90:ad:cd:
8b:e2:35:a3:d8:01:b9:76:cb:4c:6b:10:b2:75:6d:80:85:20:
d6:f2:4d:95:e2:55:c2:00:f3:26:b1:10:a1:3d:ec:69:a2:17:
2c:5f:a6:60:0e:8c:e2:6e:d2:18:79:b2:5f:45:38:68:ce:7b:
bf:1f:be:66:e1:ae:92:e6:78:87:41:f7:c5:b0:ef:4a:30:36:
0c:1d:00:cf:3a:6a:2f:c6:e4:c9:b6:3d:8f:73:ce:32:19:39:
43:41:5a:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPYddy7DA/WSXjKJ8NmxvdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyYjk4NDZkOGY3NWQ2NDVmZjYzMDhjZTAzMDA4N2EyOTdl
NmIzNTkwHhcNMjUxMTA0MTUwMDAzWhcNMjUxMTA1MTUwMDAzWjAzMTEwLwYDVQQD
EyhjZjNlODc5ZjdmY2QyZTNhMDBjOTVlZTU5MGYwYTIyN2JkYTg3MjFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzoJHm2khvT/z+sEMmgt+6DmXqpMW
r25uAsaXLURKbE/VF1Gn6PEVHAJPgIRcMJujWUf11Y4jfh6xwpId749/UcyUJz/Q
fOPt1f6lgtiPP7xovohyX7CMC6+Y9jTEiac0ls53SXeyIhWV6H5ubveGy1lQZ0Fq
ZyJdUrU91S618MXXjaIiRMh46pVYevoMT1Q1u6P9+jxDhTI1N2WlEpQw5VGAq1pF
SyX6vTvsgbMjb4o+Nb+490X9zULRIc8g9s/KR/4LVhMaXS3XznZDKG7Z3KHqQyFy
PFB0hXgk91fti3WwgATKPe/CqkJBaOCWfdl/BqwQYTTyK8GnZCEQSP5cUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM8+h59/zS46AMle5ZDwoie9qHIaMB8GA1UdIwQY
MBaAFBK5hG2PddZF/2MIzgMAh6KX5rNZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXJtRWJZOTExa1hfWXdqT0F3Q0hvcGZtczFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wMzhmN2QtNTliYi00ODI1LWI2YmYt
Nzg4NTE5MzJiMjdmLzEvRXJtRWJZOTExa1hfWXdqT0F3Q0hvcGZtczFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8wMzhmN2QtNTliYi00ODI1LWI2YmYtNzg4NTE5MzJiMjdm
LzEvRXJtRWJZOTExa1hfWXdqT0F3Q0hvcGZtczFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATzTkEl+x
BSJBUBUK9SdrBle0pUP59qsxdF9EXksjAPUADZZU4fbaba0dyeGfsVC1/v/RW48N
Abrld3OtmqmZZrHe8stNPm2ssugoin7cqi6kgjiPt+8tJBMFFcvWnKMo3gCvarGp
CUGzPBW3qh2nubExhK7PgmW24UF1lKDtVJ9k0EUmctvPGZEKih8My1CH9HL9QmDa
hg/0AL/kB+SFkK3Ni+I1o9gBuXbLTGsQsnVtgIUg1vJNleJVwgDzJrEQoT3saaIX
LF+mYA6M4m7SGHmyX0U4aM57vx++ZuGukuZ4h0H3xbDvSjA2DB0AzzpqL8bkybY9
j3POMhk5Q0Fa8A==
-----END CERTIFICATE-----
Generated at Wed Nov 5 00:07:09 2025 by rpki-client