Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
File: 58OrlrdMKsTwSuYqt-gs3xmI7UA.mft (raw, json)
Hash identifier: w3d2jKdefs3dw6152AKq0DlHUcEDu+6jIdWm+IaWvhY=
Subject key identifier: 2A:7E:93:67:26:AD:4C:A7:7D:9A:8C:4E:DF:A1:6D:36:E2:92:5B:11
Authority key identifier: E7:C3:AB:96:B7:4C:2A:C4:F0:4A:E6:2A:B7:E8:2C:DF:19:88:ED:40
Certificate issuer: /CN=e7c3ab96b74c2ac4f04ae62ab7e82cdf1988ed40
Certificate serial: 0199F7326F0E29C26734DCFF14FC2A38915A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
Manifest number: 0861
Signing time: Sat 18 Oct 2025 12:01:41 +0000
Manifest this update: Sat 18 Oct 2025 12:01:41 +0000
Manifest next update: Sun 19 Oct 2025 12:01:41 +0000
Files and hashes: 1: 58OrlrdMKsTwSuYqt-gs3xmI7UA.crl (hash: TTNDCkRNMXalt4///nr8cZGXi84FDBDcUVmW9B5CDxw=)
2: tRQVAZPhSI7yY2YBf58wHloNtVk.roa (hash: x6U/gqCwfyDYCGrA4HX4YKbEtJbHihcQ4Z9Ks5Bgn58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Oct 2025 12:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:f7:32:6f:0e:29:c2:67:34:dc:ff:14:fc:2a:38:91:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7c3ab96b74c2ac4f04ae62ab7e82cdf1988ed40
Validity
Not Before: Oct 18 12:01:41 2025 GMT
Not After : Oct 19 12:01:41 2025 GMT
Subject: CN=2a7e936726ad4ca77d9a8c4edfa16d36e2925b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1d:f4:9f:6e:83:d9:93:ec:8a:68:e9:fb:0c:
8a:40:7f:cd:32:0b:79:8c:aa:69:21:6b:a2:d7:15:
68:c6:bc:67:41:9c:71:3c:f8:63:8b:0d:c8:ef:0b:
24:90:db:02:fb:9f:7d:d6:3a:12:b7:0d:74:82:72:
d7:a0:23:24:cc:95:73:94:80:e6:0f:80:01:d3:3c:
09:8b:d9:bf:0c:1a:aa:ed:50:df:d0:1b:f8:d9:f7:
a6:c6:79:da:3b:08:ad:80:6d:67:ca:73:b3:4d:17:
5d:24:66:2b:b0:1b:3e:75:19:98:2e:1e:ef:ba:c6:
c8:67:d2:fa:2d:4c:fb:32:b0:c2:98:d9:73:6f:9b:
97:12:42:50:ca:38:c9:5c:1c:13:82:09:a4:0d:d2:
f9:43:2d:10:33:4a:b9:a3:15:37:1a:94:f2:1a:fd:
07:b5:76:17:a7:22:cf:23:c1:e6:6c:15:f6:94:98:
df:60:60:b4:d4:d0:f0:c8:83:52:fa:5e:2f:54:39:
c3:b9:c4:08:c9:19:c8:0a:5d:95:52:b5:c2:0b:5d:
eb:9e:78:bb:a1:f6:b5:14:00:dd:12:78:80:84:43:
6b:8f:46:4e:9f:88:28:1e:7b:45:22:30:e3:ff:ac:
54:4b:9a:f3:59:4e:63:0d:a8:98:87:9f:79:e4:e2:
51:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:7E:93:67:26:AD:4C:A7:7D:9A:8C:4E:DF:A1:6D:36:E2:92:5B:11
X509v3 Authority Key Identifier:
keyid:E7:C3:AB:96:B7:4C:2A:C4:F0:4A:E6:2A:B7:E8:2C:DF:19:88:ED:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:58:c1:6d:1b:24:36:64:35:af:5d:f4:0c:00:88:1b:90:73:
5e:f7:d1:fc:60:e7:13:ab:3f:02:36:e5:9b:82:c1:c5:f4:f3:
7e:2d:23:1c:e4:5b:f5:09:aa:40:b9:76:af:e5:89:08:1f:d7:
f9:77:35:b8:5b:94:d1:7d:c5:d8:e3:59:4f:1f:40:40:d8:3d:
1a:21:cf:02:62:de:f9:52:e9:f2:3c:7f:52:1f:c7:ca:ab:55:
d3:25:b2:10:80:05:0e:47:b1:7a:36:30:eb:4c:b5:fc:70:69:
7b:90:a5:5b:86:5f:93:c7:be:f9:fd:f6:90:8a:c2:3c:6a:c7:
69:7f:8a:ce:75:ca:69:aa:45:da:e6:82:88:c2:c7:83:bf:02:
cd:ea:fa:4b:31:c8:a1:d8:44:2a:95:57:f6:30:a0:c8:c6:8a:
68:a0:1b:78:38:ec:ec:54:4a:9a:1a:8b:b7:15:be:95:30:3d:
8f:27:09:48:6a:88:e6:44:67:19:3b:6f:90:b3:f2:f9:75:0a:
64:f0:28:b4:28:81:f5:45:0f:d2:5d:2f:db:5d:92:25:d4:5b:
96:d4:bd:54:77:34:4e:4d:83:85:26:9f:b3:2f:cd:27:71:f5:
a2:f2:56:cf:09:9e:77:52:be:c0:9d:8c:2c:57:20:9c:c1:a3:
1c:36:44:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 18 20:20:02 2025 by rpki-client