Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
File: egtky28YoRQXQjEFCwF5kxteSG0.mft (raw, json)
Hash identifier: 8VrL+cZ7GwfzBV0O8D1W1D8LadbJ9kVZrqaKXlszqiw=
Subject key identifier: C2:E6:61:D1:1E:04:89:E1:A6:AF:92:92:19:97:D3:8F:6D:D1:D9:8D
Authority key identifier: 7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
Certificate issuer: /CN=7a0b64cb6f18a114174231050b0179931b5e486d
Certificate serial: 019A71B94383E025590B2F29E4F76939F4AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
Manifest number: 042C
Signing time: Tue 11 Nov 2025 07:02:38 +0000
Manifest this update: Tue 11 Nov 2025 07:02:38 +0000
Manifest next update: Wed 12 Nov 2025 07:02:38 +0000
Files and hashes: 1: cChdW9IKygfKR2rAFYsXhx5RqmU.roa (hash: TyxqseiqVgQ1lk5s+kcYQAHiXGFHWxgFXhhbbIVGfj4=)
2: egtky28YoRQXQjEFCwF5kxteSG0.crl (hash: zXa5JF5cqL38v6m6CvgVYW6IsO7AHqx5zVXSwnGKaJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:43:83:e0:25:59:0b:2f:29:e4:f7:69:39:f4:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a0b64cb6f18a114174231050b0179931b5e486d
Validity
Not Before: Nov 11 07:02:38 2025 GMT
Not After : Nov 12 07:02:38 2025 GMT
Subject: CN=c2e661d11e0489e1a6af92921997d38f6dd1d98d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:35:de:5f:42:8f:ff:dd:72:9a:51:3e:6a:c5:
ef:ae:9a:f2:d5:09:35:68:32:5c:80:50:cd:b0:f7:
28:48:42:f1:76:92:bc:a3:b1:61:fe:04:09:c6:91:
02:9f:af:8e:b0:2a:d1:99:2d:14:fd:ce:2f:74:49:
04:7a:c1:75:f9:f8:22:01:0d:fa:ef:99:de:bb:fb:
6a:3f:30:a7:5c:67:4b:2d:59:39:92:a1:65:29:05:
c0:c9:95:66:fa:a1:42:69:a5:41:37:ef:ea:7d:24:
f5:d8:4b:95:ea:14:51:d8:32:c3:b8:34:eb:54:01:
00:b1:9a:67:ec:db:2f:5a:ab:f5:ae:19:d6:08:95:
07:ab:5d:0c:68:99:54:52:4f:38:c7:81:1c:7b:f4:
aa:95:e9:dd:59:72:06:c4:48:56:e3:51:7b:80:96:
2e:a4:48:99:11:f1:13:5a:8c:07:6a:e7:4c:2f:a4:
59:0b:c8:a9:68:72:64:74:7e:7f:49:2b:c9:61:24:
2b:40:c3:a7:e5:d1:6e:95:cf:7f:c2:b3:bc:37:7b:
d9:6d:d7:32:96:1f:fb:cb:19:61:5b:3c:f7:58:17:
7d:55:34:39:7b:29:cb:48:ee:20:e8:00:fb:a9:99:
09:76:87:6b:67:89:ae:91:7a:6b:86:79:34:77:0a:
57:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:E6:61:D1:1E:04:89:E1:A6:AF:92:92:19:97:D3:8F:6D:D1:D9:8D
X509v3 Authority Key Identifier:
keyid:7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:82:4c:d5:51:39:3d:0f:14:2a:63:31:02:24:45:be:84:70:
9a:dd:55:6f:8c:48:bf:53:53:8f:83:aa:aa:8e:01:46:fe:09:
a7:9b:b8:d9:34:06:f2:10:5f:9f:d2:c7:e0:bf:79:95:ad:84:
4a:54:2c:ad:3a:aa:04:bb:d5:fe:d4:37:c7:9c:9d:3d:cf:2e:
d2:eb:22:38:70:85:fb:04:4d:56:25:73:b6:e0:94:ec:4d:ed:
26:15:66:55:3a:e8:cf:3d:62:47:a3:a8:ae:2b:3a:6a:c9:dd:
fe:d4:4a:7d:3f:2c:ca:21:3d:5d:33:ed:5f:a8:47:e3:79:8a:
9a:9b:b2:b1:61:d3:b2:03:43:99:3a:26:8c:b6:b3:73:22:e4:
e6:7a:43:d5:55:7b:1f:49:fd:2d:2e:13:76:38:f1:71:b0:b9:
b4:69:85:f7:e3:77:0f:67:d2:d7:a9:d7:18:8f:71:22:b6:66:
65:71:cc:e6:22:04:99:dd:ea:3f:e8:e6:63:34:87:45:17:d6:
55:b7:b2:2e:14:8f:63:dd:0b:20:23:02:e3:a4:d4:9a:1b:a7:
92:a5:a7:4e:11:19:94:3a:db:45:08:24:bb:1b:32:53:3d:3e:
b1:dd:80:8f:7e:e6:eb:de:8a:55:0d:dd:97:ac:8a:81:79:17:
5c:19:fb:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:10:23 2025 by rpki-client