Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
File: un1KwTROw43OmXaNeKEU6_fxfYU.mft (raw, json)
Hash identifier: EMtXdlqLiSLaJ6w+s519ikCvJ1Y36gV3DbTNknBdjSs=
Subject key identifier: F7:D6:AA:D1:FC:5E:5E:1E:24:F9:CD:55:41:0A:27:71:AA:B5:42:FA
Authority key identifier: BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85
Certificate issuer: /CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85
Certificate serial: 019A4D3CCD3AD3429AFFC482CA3797D7529B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
Manifest number: 0DC5
Signing time: Tue 04 Nov 2025 05:00:21 +0000
Manifest this update: Tue 04 Nov 2025 05:00:21 +0000
Manifest next update: Wed 05 Nov 2025 05:00:21 +0000
Files and hashes: 1: eJvxqWQVuJlIAcOu0zuhq-FEIwc.roa (hash: T9Btt+1WHrBsFsD5c6tC5d0RHMAv0qfav0ae3k59Hwg=)
2: un1KwTROw43OmXaNeKEU6_fxfYU.crl (hash: HuBBzhYbcOnMNwUD003RgeSydtSQEX6geoCMCcMQuks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3c:cd:3a:d3:42:9a:ff:c4:82:ca:37:97:d7:52:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85
Validity
Not Before: Nov 4 05:00:21 2025 GMT
Not After : Nov 5 05:00:21 2025 GMT
Subject: CN=f7d6aad1fc5e5e1e24f9cd55410a2771aab542fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:12:0b:0c:82:17:82:fd:0f:e7:66:9b:cd:0b:
2f:35:4d:ec:7c:b4:d2:92:ac:c4:7d:3c:fa:97:6a:
40:cd:de:b0:4a:10:71:b2:25:6b:f9:4d:b3:12:f2:
76:1d:63:55:de:45:42:5f:39:2f:bd:3f:be:c1:a0:
fe:b3:8a:3c:cc:45:da:e9:b2:cf:19:3b:d0:87:86:
c2:c4:70:e9:a1:75:c0:e6:f0:de:0d:49:34:de:72:
fd:ad:1f:0e:6b:9b:ef:a0:f4:33:05:4b:b9:59:aa:
e9:4a:73:5c:1a:f7:3e:e4:f1:ff:09:50:be:01:f1:
61:35:3b:4e:52:c0:06:a2:a7:73:e1:24:2d:69:f2:
4c:2d:02:1a:96:7c:b6:fc:be:25:f8:6a:86:32:a6:
c9:f8:4e:ed:bc:c4:bc:a2:f1:d7:be:fe:b6:d7:f2:
2f:9c:f2:8c:52:1b:19:16:ef:50:78:de:67:d3:dd:
bc:53:fa:8f:50:5c:da:02:19:59:4d:90:e9:cd:61:
05:cb:65:e3:f0:a0:15:3e:77:37:0f:fb:b3:ec:d9:
a0:c5:aa:77:01:a7:d6:68:5a:8a:77:31:df:25:08:
47:ba:de:76:3b:bd:b9:7d:cd:07:63:2b:5e:ee:4f:
c6:40:bf:1d:d2:24:ca:4e:69:e5:90:98:07:ba:8a:
e1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D6:AA:D1:FC:5E:5E:1E:24:F9:CD:55:41:0A:27:71:AA:B5:42:FA
X509v3 Authority Key Identifier:
keyid:BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:9e:58:72:e6:e3:ef:ea:e0:90:55:bd:56:0a:a9:3a:35:e8:
4a:a9:90:cc:a6:02:c8:e9:45:c9:a3:4c:a4:32:0b:08:29:49:
1f:2c:e1:1a:f6:b3:ef:a7:62:f6:df:f9:50:37:57:8d:22:3b:
d7:15:1c:20:e8:fc:b7:c6:c0:53:ac:f0:7f:e7:40:c2:df:15:
41:d6:7f:00:d6:e1:91:47:cc:f0:a1:d8:f3:7c:11:06:fb:84:
e1:72:c5:1d:9c:90:74:60:f9:e7:96:1e:66:02:2a:88:aa:f5:
8d:92:7a:18:be:5a:86:59:f8:b9:a3:1f:83:4a:ab:2c:10:29:
f7:18:61:cd:1f:33:03:cc:2c:b8:eb:7b:35:ca:6a:81:3c:db:
45:63:a8:b5:c4:13:a6:ff:61:97:e1:48:a4:d1:16:3a:dd:81:
37:06:55:10:16:ce:93:a8:d7:8e:9e:04:24:da:65:91:88:81:
b0:f3:1f:f4:e9:9e:86:cf:71:93:28:8c:e5:eb:05:71:a1:a9:
28:e8:9c:c2:bb:e6:c6:6e:2d:e2:2d:44:d4:98:86:17:3b:fe:
a9:d4:a0:a7:61:42:8c:b4:df:46:1d:fc:da:21:b4:62:9d:09:
8c:6d:cf:a2:91:4f:8d:b2:24:7d:35:88:28:87:b3:11:60:00:
10:a3:96:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNPM0600Ka/8SCyjeX11KbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhN2Q0YWMxMzQ0ZWMzOGRjZTk5NzY4ZDc4YTExNGViZjdm
MTdkODUwHhcNMjUxMTA0MDUwMDIxWhcNMjUxMTA1MDUwMDIxWjAzMTEwLwYDVQQD
EyhmN2Q2YWFkMWZjNWU1ZTFlMjRmOWNkNTU0MTBhMjc3MWFhYjU0MmZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzxILDIIXgv0P52abzQsvNU3sfLTS
kqzEfTz6l2pAzd6wShBxsiVr+U2zEvJ2HWNV3kVCXzkvvT++waD+s4o8zEXa6bLP
GTvQh4bCxHDpoXXA5vDeDUk03nL9rR8Oa5vvoPQzBUu5WarpSnNcGvc+5PH/CVC+
AfFhNTtOUsAGoqdz4SQtafJMLQIalny2/L4l+GqGMqbJ+E7tvMS8ovHXvv621/Iv
nPKMUhsZFu9QeN5n0928U/qPUFzaAhlZTZDpzWEFy2Xj8KAVPnc3D/uz7Nmgxap3
AafWaFqKdzHfJQhHut52O725fc0HYyte7k/GQL8d0iTKTmnlkJgHuorhJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPfWqtH8Xl4eJPnNVUEKJ3GqtUL6MB8GA1UdIwQY
MBaAFLp9SsE0TsONzpl2jXihFOv38X2FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9iNjYxMjUtNjg0NC00YTg3LTliYjUt
YWY0MjYyM2VhNDMxLzEvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9iNjYxMjUtNjg0NC00YTg3LTliYjUtYWY0MjYyM2VhNDMx
LzEvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXp5Ycubj
7+rgkFW9VgqpOjXoSqmQzKYCyOlFyaNMpDILCClJHyzhGvaz76di9t/5UDdXjSI7
1xUcIOj8t8bAU6zwf+dAwt8VQdZ/ANbhkUfM8KHY83wRBvuE4XLFHZyQdGD555Ye
ZgIqiKr1jZJ6GL5ahln4uaMfg0qrLBAp9xhhzR8zA8wsuOt7NcpqgTzbRWOotcQT
pv9hl+FIpNEWOt2BNwZVEBbOk6jXjp4EJNplkYiBsPMf9Omehs9xkyiM5esFcaGp
KOicwrvmxm4t4i1E1JiGFzv+qdSgp2FCjLTfRh382iG0Yp0JjG3PopFPjbIkfTWI
KIezEWAAEKOWig==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:23:33 2025 by rpki-client