Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
File: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft (raw, json)
Hash identifier: 1az+EzdKiUm4Y2NTmZFoNw40QkPlg53VTA6jyZOWPGs=
Subject key identifier: 13:40:DC:DE:DE:EE:56:04:D9:91:F0:3B:92:5F:E2:0E:CD:B4:EC:E8
Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144
Certificate serial: 019A1CBDF8B18B660395C2DE6056CDBC011F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
Manifest number: 0DDA
Signing time: Sat 25 Oct 2025 19:00:03 +0000
Manifest this update: Sat 25 Oct 2025 19:00:03 +0000
Manifest next update: Sun 26 Oct 2025 19:00:03 +0000
Files and hashes: 1: HyPwmwNvj6CdMpZdefHGIg4yDzE.roa (hash: OXYxYv21hsNNqtBtEPFKc2/1/qoxMz48zojYmP3J5L8=)
2: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl (hash: UPi9BLuPO8Vqkka5X2HWhYVdkD+dwWzSmYotLRGqsro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 11:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1c:bd:f8:b1:8b:66:03:95:c2:de:60:56:cd:bc:01:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144
Validity
Not Before: Oct 25 19:00:03 2025 GMT
Not After : Oct 26 19:00:03 2025 GMT
Subject: CN=1340dcdedeee5604d991f03b925fe20ecdb4ece8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d9:23:b3:7c:e3:6b:d7:3e:81:d3:30:45:4e:
f2:57:bf:41:09:25:25:fa:30:e8:b6:c7:55:6d:c0:
4a:c8:7a:62:5e:e0:aa:f9:f8:a4:73:85:ec:1f:b1:
b4:18:ef:2d:4d:52:7a:ce:19:8f:0c:34:1a:90:ab:
52:46:0f:55:14:fe:3a:94:da:08:14:ca:8f:47:02:
e9:d7:1e:e0:b0:29:c9:eb:11:5e:e2:49:01:1d:d9:
73:76:b3:17:d8:6a:65:c5:c8:3d:97:16:80:a0:af:
ac:11:6d:9f:41:95:87:40:14:39:71:6f:a7:cc:0e:
e3:dc:ab:de:eb:8c:cc:25:6d:b2:1a:ae:33:6b:7d:
bc:f9:fc:fe:01:88:b2:b4:4d:2d:9e:d9:9b:65:1c:
f1:fb:be:28:2e:d2:57:d7:94:f1:29:96:da:5d:6a:
52:07:90:ae:82:7b:ba:b0:5b:6a:3a:94:9c:81:9e:
f5:6f:0b:f2:4f:12:c0:d3:4d:74:36:3a:f8:59:87:
2c:14:09:b1:ec:c4:3b:a9:5b:02:c5:03:ac:99:8a:
fc:e4:0e:9c:a0:64:4c:48:ab:5d:95:87:1e:92:34:
53:6c:96:09:07:92:1f:fd:54:4f:e9:74:8e:11:1e:
69:9d:d2:c3:94:a4:e8:06:9b:c1:50:8d:9f:db:ad:
58:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:40:DC:DE:DE:EE:56:04:D9:91:F0:3B:92:5F:E2:0E:CD:B4:EC:E8
X509v3 Authority Key Identifier:
keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:cb:96:a8:1a:b3:8f:72:bf:ab:e3:0b:6d:04:91:4d:49:c0:
c8:cc:47:a4:c0:f7:3e:66:46:29:59:f5:f2:b5:77:2a:af:fd:
15:ed:fc:99:86:8a:b8:2a:71:27:2c:20:59:bf:d6:83:79:72:
2b:2f:4c:97:84:b6:58:2e:d2:58:81:57:ab:a2:04:f9:b0:ce:
dd:7a:e6:a7:d8:4e:f9:68:85:ae:21:3f:11:69:73:dd:0c:9e:
e6:88:86:e1:c0:66:94:d7:9b:8c:e9:bc:b6:aa:07:a5:9b:e7:
28:0f:5d:b9:3a:5e:08:96:5c:38:59:1a:d4:59:5e:5d:e4:d3:
65:70:6c:29:40:28:ae:d3:7f:88:34:90:e4:98:ea:bf:b1:0b:
bf:d7:f1:53:a7:c2:c2:b3:9f:45:0e:c5:08:85:91:35:38:de:
19:33:e5:8c:67:ac:4e:d7:47:b7:d3:03:22:a3:f8:38:29:2a:
89:74:1b:5c:97:69:ec:21:ce:44:a5:f5:56:61:8e:a9:be:2e:
1a:50:44:18:be:57:67:bd:ef:21:fc:9f:f2:bb:e4:78:3f:78:
ee:96:9d:c3:92:9e:b6:01:ee:f8:9d:a1:d5:d3:27:9d:d5:ea:
ad:d3:68:be:50:22:21:fb:8c:2b:57:12:bf:e7:a8:e5:75:aa:
54:0d:61:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 20:55:34 2025 by rpki-client