Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
File: EghcVAwRT8iVegJQu0n0hLdDV7k.mft (raw, json)
Hash identifier: FPWIY1Dsi06iOaZvBcsMwu0QEWbGABJaAN2Zz6MXhHU=
Subject key identifier: CC:BB:63:A2:CD:98:17:FF:0E:A9:78:88:AD:62:74:8E:A7:75:C1:EC
Authority key identifier: 12:08:5C:54:0C:11:4F:C8:95:7A:02:50:BB:49:F4:84:B7:43:57:B9
Certificate issuer: /CN=12085c540c114fc8957a0250bb49f484b74357b9
Certificate serial: 019923A0620FCCDCFC4B1BF34A151EB22B11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
Manifest number: 07FA
Signing time: Sun 07 Sep 2025 10:02:17 +0000
Manifest this update: Sun 07 Sep 2025 10:02:17 +0000
Manifest next update: Mon 08 Sep 2025 10:02:17 +0000
Files and hashes: 1: EghcVAwRT8iVegJQu0n0hLdDV7k.crl (hash: piFAmUYJF1Qd+MbTs0ZyrlJAyMjb5fquodDgF4u+IhI=)
2: s4gZLWdCbjdScQy92lhU1qj4INY.roa (hash: xkF7VCE+qi9EQz5A3LDxMLzmcYX7S6EBBQO/VGtQ7OQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:62:0f:cc:dc:fc:4b:1b:f3:4a:15:1e:b2:2b:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12085c540c114fc8957a0250bb49f484b74357b9
Validity
Not Before: Sep 7 10:02:17 2025 GMT
Not After : Sep 8 10:02:17 2025 GMT
Subject: CN=ccbb63a2cd9817ff0ea97888ad62748ea775c1ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:2c:69:86:69:c0:6a:13:6b:8d:cf:1a:68:dd:
6b:6a:7e:8e:4d:24:c4:41:fe:42:e0:21:f6:55:c0:
86:e4:f2:1f:a9:6a:0d:4f:3a:4c:00:f9:ab:a5:9a:
f0:a2:33:ec:ad:fc:1f:13:a5:c5:34:b5:7c:14:36:
bf:93:23:1c:cf:03:05:3a:36:b8:f5:aa:1d:6c:54:
7a:6a:14:d8:44:de:6b:61:6c:3d:43:63:e2:3b:57:
3f:bd:85:07:bc:1f:f2:c0:f1:5a:67:12:61:55:dd:
31:0c:e2:de:f1:96:7d:57:d6:1d:b2:ef:db:d2:c5:
14:8b:fe:ef:94:32:d7:03:97:d1:65:e1:a9:b9:ae:
65:8a:06:d6:d7:30:d3:76:4e:5e:a0:4a:d9:5f:84:
88:b1:57:db:99:9b:3c:8b:f3:55:09:d0:72:ab:cb:
89:54:9d:af:6f:39:40:36:b2:0f:36:d1:6c:81:0b:
46:48:d0:c5:fa:6b:a5:c1:47:a6:b3:30:34:f5:e5:
5e:c0:0a:be:ba:de:7b:e9:73:ca:96:63:ef:90:52:
a4:62:f2:dc:c3:b5:58:c7:cb:44:64:7c:bf:87:e7:
67:39:f6:65:ee:57:39:6b:05:98:5e:86:3e:5b:f3:
e4:d7:3d:74:0c:9b:68:07:5f:cb:d3:f8:e8:04:2e:
4b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:BB:63:A2:CD:98:17:FF:0E:A9:78:88:AD:62:74:8E:A7:75:C1:EC
X509v3 Authority Key Identifier:
keyid:12:08:5C:54:0C:11:4F:C8:95:7A:02:50:BB:49:F4:84:B7:43:57:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:00:9e:d7:ea:8b:f7:8e:57:83:34:6f:88:d0:b1:dd:bc:3b:
49:96:17:c3:df:98:7b:1a:32:c1:94:2c:b8:57:63:f4:b8:d5:
42:32:ff:14:a5:1b:dc:a9:eb:e8:b5:fd:fc:96:21:1b:19:f2:
64:37:0a:77:3c:84:6c:df:29:cb:06:d0:2d:8d:c7:c7:27:90:
4b:20:f4:e9:7f:2c:e7:a6:6b:84:56:82:c3:84:11:a3:1d:97:
4f:47:c6:0e:63:1f:15:14:ab:84:c2:c0:5c:49:f8:9a:c1:a1:
52:d9:b0:b0:9c:cb:da:45:1c:20:3a:5e:f1:a4:0d:5f:14:a8:
5b:27:34:ff:3c:b7:16:80:7a:14:4c:67:a1:10:ab:60:ce:33:
2f:ca:41:83:44:08:d4:e2:f8:42:74:1d:3e:a0:ab:b8:8f:cf:
6f:31:0c:53:14:78:f5:66:1d:a3:f9:5f:68:38:44:e0:5b:2a:
b3:fe:48:a9:7e:07:45:0b:57:a9:e9:be:76:aa:a2:20:cc:4e:
1a:81:63:35:55:93:ff:21:00:96:ca:0b:f8:e9:0d:4a:9b:ff:
b4:db:db:f3:6b:70:6f:a0:53:27:f1:62:b8:81:6c:81:17:0a:
58:8c:77:f4:5e:0c:93:2a:dc:d5:9f:93:b6:16:92:69:fc:d9:
cb:76:5b:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:08:25 2025 by rpki-client