Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
File: EghcVAwRT8iVegJQu0n0hLdDV7k.mft (raw, json)
Hash identifier: 8/4R6vQKwmN3HfeJwUhz+6KFGolnw1MLhclb0mpnf/A=
Subject key identifier: 4E:2A:EF:0F:EF:15:6D:7D:76:D4:A3:C4:4D:66:DC:F5:0B:5C:14:E6
Authority key identifier: 12:08:5C:54:0C:11:4F:C8:95:7A:02:50:BB:49:F4:84:B7:43:57:B9
Certificate issuer: /CN=12085c540c114fc8957a0250bb49f484b74357b9
Certificate serial: 019A71B90C1CE07CE001E37AF06F926D80C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
Manifest number: 08A7
Signing time: Tue 11 Nov 2025 07:02:23 +0000
Manifest this update: Tue 11 Nov 2025 07:02:23 +0000
Manifest next update: Wed 12 Nov 2025 07:02:23 +0000
Files and hashes: 1: EghcVAwRT8iVegJQu0n0hLdDV7k.crl (hash: UV05ENQWAJ4Zx63FYtaQZu7lGpOTmubKV3n3MyFOA20=)
2: s4gZLWdCbjdScQy92lhU1qj4INY.roa (hash: xkF7VCE+qi9EQz5A3LDxMLzmcYX7S6EBBQO/VGtQ7OQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:0c:1c:e0:7c:e0:01:e3:7a:f0:6f:92:6d:80:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12085c540c114fc8957a0250bb49f484b74357b9
Validity
Not Before: Nov 11 07:02:23 2025 GMT
Not After : Nov 12 07:02:23 2025 GMT
Subject: CN=4e2aef0fef156d7d76d4a3c44d66dcf50b5c14e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:c9:23:94:cc:b9:98:04:ac:23:76:5e:d5:b0:
c5:8a:20:a6:d6:d7:24:5a:ca:b3:f1:19:4f:82:c8:
20:ae:35:32:78:44:e7:56:8c:30:ec:03:76:86:eb:
22:48:c1:b5:71:a5:59:3d:30:1c:5f:1f:83:ab:78:
79:d5:3a:97:43:4a:c4:c9:43:51:e5:1e:ae:6d:82:
a5:b3:cc:41:d4:c4:f3:80:a7:71:06:71:7e:f8:b7:
68:d5:fa:f1:84:a5:78:c0:97:81:e2:29:c5:b5:fa:
9d:7f:be:11:65:f3:fb:7c:70:cb:76:7e:b4:fb:92:
67:52:c7:04:e7:53:d1:5c:0b:69:6c:d9:66:3b:d3:
4a:e9:2b:d0:a2:84:3f:74:b0:83:4f:39:48:d3:8b:
b3:96:3d:b9:39:7d:1d:80:0b:d1:6b:0f:a4:73:82:
54:32:70:2c:91:26:f8:76:c0:b9:06:87:40:f0:5a:
79:1e:d7:ef:fa:7c:04:53:87:f4:1b:a6:d3:d3:63:
15:d7:d2:61:bb:6e:7f:a4:35:f0:5c:b2:fd:a9:4d:
a2:9a:38:a0:42:13:9b:76:cd:24:b7:8e:4a:89:f0:
a1:67:52:68:23:2f:93:e1:e6:7b:c1:77:cc:2d:00:
64:9e:aa:b9:32:f4:66:ed:e4:d6:0b:9b:5c:56:4e:
0e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:2A:EF:0F:EF:15:6D:7D:76:D4:A3:C4:4D:66:DC:F5:0B:5C:14:E6
X509v3 Authority Key Identifier:
keyid:12:08:5C:54:0C:11:4F:C8:95:7A:02:50:BB:49:F4:84:B7:43:57:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:e3:cd:73:58:4b:97:da:57:e1:f4:29:4e:26:70:f0:30:a8:
89:5d:55:f2:33:c4:46:1e:aa:1a:65:17:50:3b:77:51:7e:83:
30:22:a3:75:c3:1f:59:bc:67:cd:ff:5a:d8:a7:6c:22:68:d5:
93:3f:d4:d6:e2:ad:81:b1:ae:0e:85:07:80:9f:d5:95:87:29:
70:67:fb:77:d4:36:99:e1:82:8f:75:e7:d5:2f:a7:07:c4:0c:
4f:31:97:a6:ee:40:af:6e:7a:97:03:f7:2c:88:41:f1:af:42:
52:51:7e:de:70:74:76:2d:66:fe:e7:37:90:df:76:a5:d0:af:
47:74:2c:d5:0c:4f:9c:78:c4:20:5f:ff:9d:d4:c0:43:83:b8:
ad:81:bb:34:3a:d9:3c:6e:b4:0a:51:85:60:1e:1b:e2:d6:d4:
8c:ef:1b:5f:7f:28:f6:a4:30:ac:f0:1f:61:86:77:49:36:3e:
ad:bf:f9:25:23:33:04:d2:2a:d1:1c:36:99:d8:dd:58:79:cb:
d4:0e:37:1c:92:d3:6c:80:65:d3:aa:72:8a:c8:97:f5:af:01:
9c:23:f0:8d:ac:f5:76:05:49:e0:42:a7:23:44:fa:ec:1d:89:
e2:a2:05:cb:45:5a:06:7c:2f:d3:b6:e9:72:2b:1b:e8:f6:fb:
20:20:3e:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:54:22 2025 by rpki-client