Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
File: ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft (raw, json)
Hash identifier: /x5TFEalj8B4SBNTzP7foHRJfFZHbPbh+x3mWwVLDQo=
Subject key identifier: EB:ED:42:9E:98:DA:89:BC:20:9D:71:DC:E2:4F:0A:EE:7C:C0:4A:AE
Authority key identifier: 11:2A:6A:26:0D:1E:67:E0:A7:B4:E6:DC:F4:03:FD:39:F6:DE:97:54
Certificate issuer: /CN=112a6a260d1e67e0a7b4e6dcf403fd39f6de9754
Certificate serial: 019A541AE753E71B33FA9AB869ED7B791ED3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
Manifest number: 05E7
Signing time: Wed 05 Nov 2025 13:00:40 +0000
Manifest this update: Wed 05 Nov 2025 13:00:40 +0000
Manifest next update: Thu 06 Nov 2025 13:00:40 +0000
Files and hashes: 1: 1-WsRdLTfdTsVKrL2CIRMmrgbopM.roa (hash: /fbcJU0cKGryVcZvtSX4RD7kNCeOfa1xibBR/Nj3P7Q=)
2: ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl (hash: OM/WqzugpwZ9NjPgAUDWpR1AfWHeLjJJseVYlAndo28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:1a:e7:53:e7:1b:33:fa:9a:b8:69:ed:7b:79:1e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112a6a260d1e67e0a7b4e6dcf403fd39f6de9754
Validity
Not Before: Nov 5 13:00:40 2025 GMT
Not After : Nov 6 13:00:40 2025 GMT
Subject: CN=ebed429e98da89bc209d71dce24f0aee7cc04aae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fe:0a:42:ff:16:9d:2d:84:7f:05:fa:ce:fc:
7e:a6:d9:da:0c:a4:e0:83:30:74:ad:ba:0a:22:06:
c5:ba:89:b7:99:58:66:91:fe:94:3f:56:af:33:4f:
65:32:d2:3f:fa:50:67:21:84:a6:18:f1:0d:ae:41:
32:1f:56:d3:3e:cf:56:a5:36:4a:fc:01:e2:6a:55:
aa:de:8c:4f:24:45:37:bb:26:b7:ff:47:69:c8:0b:
47:f7:fa:a2:8c:69:1b:83:bc:0e:0f:a6:f7:72:af:
da:06:7b:97:5c:35:54:19:a5:7d:b6:b2:d1:6b:68:
5c:de:70:44:2c:b9:58:74:76:e7:af:41:9d:f6:2a:
41:de:75:aa:6a:86:1f:09:16:e4:f5:f6:fa:67:96:
58:64:51:61:da:65:07:10:4e:ca:06:aa:49:0f:e4:
5c:0f:a3:4f:a5:e9:e5:6f:4b:c3:23:a5:a5:77:bc:
88:1f:fa:a9:6b:98:b4:de:fd:7a:44:a9:a6:42:80:
8c:d6:c1:ca:dc:73:e5:eb:5b:49:e5:b7:83:ae:23:
1a:06:9f:6c:91:ec:ed:d6:24:c8:6b:42:21:1e:13:
08:b0:0f:31:f8:6a:5f:7b:40:55:55:2e:82:b6:86:
ef:53:95:af:9c:82:d6:b6:86:31:bc:d5:b3:ba:e8:
8e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:ED:42:9E:98:DA:89:BC:20:9D:71:DC:E2:4F:0A:EE:7C:C0:4A:AE
X509v3 Authority Key Identifier:
keyid:11:2A:6A:26:0D:1E:67:E0:A7:B4:E6:DC:F4:03:FD:39:F6:DE:97:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:9c:81:0e:b5:b4:67:42:9a:cd:86:4f:b5:6e:0c:7a:87:d4:
1f:cc:58:cd:c4:2c:f4:84:5c:24:72:e6:90:be:55:65:44:08:
8a:99:89:76:d6:db:15:0a:c0:23:f3:fc:7d:14:b6:12:0d:1d:
40:80:71:3b:5f:4b:30:92:aa:e8:27:d9:68:86:ff:52:71:08:
ce:87:dd:74:74:40:59:2a:49:87:13:85:f1:40:02:44:1f:ea:
2b:04:16:e6:39:a4:40:20:aa:f4:6c:12:be:11:8c:a9:ff:56:
a1:df:b3:41:89:6e:89:33:48:20:35:63:ba:33:2f:a3:b5:c2:
ac:78:40:96:1b:72:81:ea:8a:ba:7e:30:a9:7d:9a:d6:b2:a5:
89:91:f4:fe:22:36:2c:2a:7c:d9:a6:ed:6c:35:3b:1e:4e:4c:
35:6e:a1:29:78:ad:3d:41:e9:ad:93:e6:da:da:38:94:c0:39:
9c:6d:89:92:82:ba:39:69:04:f0:7a:95:88:86:2b:63:15:7b:
be:22:1a:3a:44:17:73:e7:9d:89:df:e6:3d:fc:a4:d0:4f:96:
0f:0b:e7:ce:bc:78:d3:69:60:e2:d7:64:15:13:73:a5:55:b5:
fa:19:cb:99:25:ab:b5:49:92:78:22:2d:96:a5:16:55:56:b7:
ec:1c:a9:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 19:18:27 2025 by rpki-client