Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/eb1064-6d26-4555-9fa5-a1a08ebf4eea/1/ejiftI-wXUgfHyORlMU30Vs1cAk.mft
File: ejiftI-wXUgfHyORlMU30Vs1cAk.mft (raw, json)
Hash identifier: rVcyCZgR+7XyZmhPwD4GOiyyZfxfNHugNqLU/5amgdg=
Subject key identifier: E8:83:90:E6:8C:D3:9C:F3:21:47:2B:D8:16:8A:05:FD:EA:33:28:CE
Authority key identifier: 7A:38:9F:B4:8F:B0:5D:48:1F:1F:23:91:94:C5:37:D1:5B:35:70:09
Certificate issuer: /CN=7a389fb48fb05d481f1f239194c537d15b357009
Certificate serial: 019A725CF557027A97258297819E5BCC8DDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejiftI-wXUgfHyORlMU30Vs1cAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/eb1064-6d26-4555-9fa5-a1a08ebf4eea/1/ejiftI-wXUgfHyORlMU30Vs1cAk.mft
Manifest number: 0DC2
Signing time: Tue 11 Nov 2025 10:01:25 +0000
Manifest this update: Tue 11 Nov 2025 10:01:25 +0000
Manifest next update: Wed 12 Nov 2025 10:01:25 +0000
Files and hashes: 1: ejiftI-wXUgfHyORlMU30Vs1cAk.crl (hash: mmRso8krQSpl7LxzoIEiY9sHkWUwm8F7RwWDe5zP30I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/eb1064-6d26-4555-9fa5-a1a08ebf4eea/1/ejiftI-wXUgfHyORlMU30Vs1cAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/eb1064-6d26-4555-9fa5-a1a08ebf4eea/1/ejiftI-wXUgfHyORlMU30Vs1cAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ejiftI-wXUgfHyORlMU30Vs1cAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:f5:57:02:7a:97:25:82:97:81:9e:5b:cc:8d:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a389fb48fb05d481f1f239194c537d15b357009
Validity
Not Before: Nov 11 10:01:25 2025 GMT
Not After : Nov 12 10:01:25 2025 GMT
Subject: CN=e88390e68cd39cf321472bd8168a05fdea3328ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:02:1c:77:9c:2a:20:c9:bf:b0:2a:90:86:ef:
fa:8c:93:07:d2:ea:ed:d4:b7:1f:c1:8f:92:14:f9:
57:0d:f6:ba:0e:dc:20:86:03:82:5c:1b:fb:9e:2d:
bc:f2:c1:73:75:c3:59:38:c1:08:a7:d3:1c:a2:05:
81:06:d1:c3:cf:04:2a:32:ae:ea:64:84:18:0e:fd:
03:62:06:14:a3:38:fd:80:7b:31:81:d3:67:9f:84:
07:ef:c7:aa:fd:12:e2:5e:58:52:a9:4b:b9:81:00:
bb:66:7c:92:64:ad:e0:15:58:84:94:2f:ac:15:37:
86:bc:6c:f0:52:99:d1:46:fc:51:df:8c:b0:39:3f:
6c:ed:f1:aa:7c:3e:75:87:3c:59:34:ad:fb:dc:d3:
5f:a5:83:32:81:f5:3a:c0:79:ee:6d:66:37:d0:78:
7b:21:b7:f4:df:f4:80:f6:dd:e1:d1:ef:3f:b9:b4:
dd:20:db:d3:1d:46:47:44:62:fd:58:b9:7b:03:49:
a7:40:94:36:a6:b5:d1:e5:ed:9c:10:63:c2:03:76:
4c:3d:49:50:8b:77:e5:f3:0b:d3:29:60:ed:74:e6:
79:bd:80:53:42:a4:44:aa:b6:09:9f:11:ea:23:78:
43:07:8b:96:d7:15:b2:b2:f2:6c:ef:42:00:8a:3c:
27:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:83:90:E6:8C:D3:9C:F3:21:47:2B:D8:16:8A:05:FD:EA:33:28:CE
X509v3 Authority Key Identifier:
keyid:7A:38:9F:B4:8F:B0:5D:48:1F:1F:23:91:94:C5:37:D1:5B:35:70:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejiftI-wXUgfHyORlMU30Vs1cAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/eb1064-6d26-4555-9fa5-a1a08ebf4eea/1/ejiftI-wXUgfHyORlMU30Vs1cAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/eb1064-6d26-4555-9fa5-a1a08ebf4eea/1/ejiftI-wXUgfHyORlMU30Vs1cAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:04:3c:0f:22:1a:92:d5:b7:4e:81:dd:d7:87:f8:41:e5:74:
bb:0e:99:09:f8:18:3a:c6:c6:d4:f4:57:9b:2b:ae:ca:c0:2b:
7c:7e:e9:67:48:ae:7a:46:55:a2:71:ea:8d:65:05:0b:28:94:
14:2e:4d:f8:13:1f:79:a9:81:3c:06:f0:18:8f:18:68:23:01:
09:24:0e:1a:b4:c3:9e:a1:8f:ad:cd:ae:48:03:bc:ee:36:13:
bf:72:d5:b5:a4:5e:70:7d:a9:d2:6d:2d:db:ac:c7:85:c8:81:
01:4e:da:96:56:3b:f0:4b:9f:a9:4f:4a:cd:2d:d5:80:49:a5:
c2:a1:01:6e:20:26:bc:85:59:8a:e6:3a:50:f1:e5:1d:6b:74:
46:34:38:b2:f6:50:dc:0d:d3:23:8e:23:3e:1c:aa:c2:f7:f2:
d0:ba:f5:0e:4f:6a:55:44:22:14:2c:b5:6c:c2:53:e9:e8:03:
2a:da:01:21:de:d6:26:a2:b4:f6:b1:89:e0:75:db:01:48:19:
e7:be:47:5e:24:55:85:ab:83:7d:86:07:80:03:ff:5e:91:10:
90:fb:1f:05:73:72:41:6a:bc:e9:67:58:4d:7b:b4:ef:1b:38:
e4:7e:89:b4:12:8c:15:98:61:d3:0b:99:60:b6:c0:55:13:f6:
4f:a2:51:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:42:56 2025 by rpki-client