Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
File: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft (raw, json)
Hash identifier: 9/00B4Hp4smIqwELEKUPVHQ7fAVE+FqSmnxxtKm9xm0=
Subject key identifier: E2:71:F6:CA:52:8F:B5:2A:46:9B:F1:AF:23:59:71:67:A6:EE:28:8D
Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144
Certificate serial: 019931244CFA84DABC130B9AF4674DCD74E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
Manifest number: 0D60
Signing time: Wed 10 Sep 2025 01:01:26 +0000
Manifest this update: Wed 10 Sep 2025 01:01:26 +0000
Manifest next update: Thu 11 Sep 2025 01:01:26 +0000
Files and hashes: 1: HyPwmwNvj6CdMpZdefHGIg4yDzE.roa (hash: OXYxYv21hsNNqtBtEPFKc2/1/qoxMz48zojYmP3J5L8=)
2: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl (hash: mGGfI12ixI+lELJtGPK0ruLfqi+ohePMgtSEgpHeQxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:24:4c:fa:84:da:bc:13:0b:9a:f4:67:4d:cd:74:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144
Validity
Not Before: Sep 10 01:01:26 2025 GMT
Not After : Sep 11 01:01:26 2025 GMT
Subject: CN=e271f6ca528fb52a469bf1af23597167a6ee288d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7c:e6:14:f5:82:27:de:8c:fd:2b:d9:bf:15:
22:af:fb:08:ff:10:36:ec:a2:49:ee:cb:02:6d:9e:
b3:a0:b7:9b:94:43:ed:b9:ad:9a:a6:3d:d3:ff:50:
03:75:a9:bc:82:d2:9e:da:12:1e:2a:a0:e8:13:3d:
f3:5c:fa:f6:da:59:86:a7:a6:a0:6e:8c:e0:31:18:
00:64:6e:0c:78:ba:88:4c:63:e3:52:0f:32:40:3e:
4e:e3:0d:ec:5d:53:74:f7:57:c9:9e:fe:78:39:c7:
b7:36:9e:d0:cd:10:d2:50:61:d9:92:13:4f:17:22:
fe:07:36:72:01:01:11:cb:48:92:38:de:57:38:46:
6f:e6:64:b2:ba:6b:42:2c:2b:4d:56:90:39:d5:5d:
08:e5:5a:56:6d:2a:d3:31:08:c5:6d:43:d9:39:39:
be:5f:5a:4c:61:f1:64:d1:d3:e7:16:79:a8:ad:a4:
86:71:ff:3e:76:db:80:74:4f:69:ef:39:6f:dd:94:
c5:ab:63:39:49:a2:d1:cd:9e:99:cc:f2:4b:2e:99:
44:cc:1e:58:42:b5:82:bf:99:81:d3:5b:88:a8:ba:
a8:ea:b7:c4:9c:ec:90:c7:e7:60:76:ea:ac:9f:44:
00:c2:9f:b4:d6:f8:33:36:c0:cd:96:36:75:c3:cd:
d9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:71:F6:CA:52:8F:B5:2A:46:9B:F1:AF:23:59:71:67:A6:EE:28:8D
X509v3 Authority Key Identifier:
keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:38:91:9c:78:a6:93:d5:d1:51:22:73:e0:80:09:d4:27:f8:
b2:bd:e5:0c:a9:a0:4a:cc:68:1f:47:26:7d:85:32:34:c7:60:
2a:53:43:96:4f:44:7e:a1:c7:66:ae:b0:cc:f2:39:bc:51:2d:
f6:eb:d8:a5:93:9c:39:ee:58:a3:44:b8:8d:91:76:4f:d5:81:
e3:f3:a2:6c:20:21:2b:61:31:65:26:7e:94:1a:94:4c:91:c1:
e4:c4:12:01:22:82:dd:8b:07:d4:f5:27:96:c3:ef:a6:23:64:
e2:24:ef:2f:18:f0:ac:b8:9a:a2:02:9c:39:2c:0f:92:f9:4f:
2e:c1:46:f9:00:c2:ad:bd:72:97:5c:c8:aa:58:51:6a:06:7d:
1e:53:3d:a5:eb:5b:ae:f3:83:fe:71:56:6c:ce:db:de:2c:a3:
31:4b:f1:cc:77:d8:a2:7e:f9:47:95:d6:dd:ff:09:c0:87:30:
a3:6f:40:b9:a4:ae:28:0e:0a:03:5b:e0:77:c6:39:28:bf:26:
b6:e1:f2:bc:c4:1e:64:d0:73:26:18:75:dd:0e:b5:57:94:40:
c6:3d:9b:c1:de:4c:ea:1a:57:ba:00:3b:fa:c5:e0:45:af:36:
ed:c0:43:3f:07:a1:26:04:58:6e:6d:b8:b5:a2:25:8b:c5:d0:
4d:46:86:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 04:17:13 2025 by rpki-client