Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
File: 58OrlrdMKsTwSuYqt-gs3xmI7UA.mft (raw, json)
Hash identifier: Nzf7eEk/77Fs43pAQhh35TdPUWMBuMZzAHEkUg37hsg=
Subject key identifier: BC:0D:5F:59:DF:BE:B6:B5:B2:57:35:E4:82:AB:B3:0F:8E:A9:B6:1C
Authority key identifier: E7:C3:AB:96:B7:4C:2A:C4:F0:4A:E6:2A:B7:E8:2C:DF:19:88:ED:40
Certificate issuer: /CN=e7c3ab96b74c2ac4f04ae62ab7e82cdf1988ed40
Certificate serial: 0198C9ECEF40092D948692D65AE104000864
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
Manifest number: 07C5
Signing time: Thu 21 Aug 2025 00:00:04 +0000
Manifest this update: Thu 21 Aug 2025 00:00:04 +0000
Manifest next update: Fri 22 Aug 2025 00:00:04 +0000
Files and hashes: 1: 58OrlrdMKsTwSuYqt-gs3xmI7UA.crl (hash: EEAqxPDULpAtExPYP4zwEXqMoImyaAFAGARdt8Hkll8=)
2: tRQVAZPhSI7yY2YBf58wHloNtVk.roa (hash: x6U/gqCwfyDYCGrA4HX4YKbEtJbHihcQ4Z9Ks5Bgn58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 23:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c9:ec:ef:40:09:2d:94:86:92:d6:5a:e1:04:00:08:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7c3ab96b74c2ac4f04ae62ab7e82cdf1988ed40
Validity
Not Before: Aug 21 00:00:04 2025 GMT
Not After : Aug 22 00:00:04 2025 GMT
Subject: CN=bc0d5f59dfbeb6b5b25735e482abb30f8ea9b61c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0e:52:d6:7a:66:17:1e:7a:ee:5d:e2:a6:5f:
79:bc:6a:5e:70:c0:16:5a:4e:00:06:4f:de:ad:2c:
61:59:e7:8d:d1:a4:34:48:06:73:d6:6b:1b:b4:6d:
4f:4d:dc:8e:0b:ce:54:8f:46:47:f2:98:16:54:45:
c7:07:b0:2b:3a:6b:43:ee:98:c0:f8:5a:44:e9:77:
94:82:99:04:ef:20:c5:90:c5:73:a4:3e:16:27:6f:
67:65:7d:bd:ff:0b:ae:d1:27:c0:53:7d:70:6c:7d:
b0:b9:db:a6:f1:c5:79:12:b4:9a:c9:42:6d:b2:2e:
85:da:46:3e:96:3b:47:15:5e:fc:86:a4:1e:45:14:
15:76:a9:dd:31:ec:ca:52:05:14:81:50:b9:77:7d:
6f:cc:a3:d2:10:1a:2a:43:66:d3:5e:00:04:8b:9b:
e4:e8:fa:30:2e:cb:e4:ce:9e:bb:5b:16:e3:95:d4:
3f:e7:36:40:b8:14:78:5e:27:98:a9:2e:f5:ee:ee:
c1:67:01:39:cc:16:3f:7e:60:1d:eb:a2:e1:c1:f5:
44:05:d9:3f:8c:88:f6:34:cf:33:17:29:af:e2:b1:
e2:e6:59:9c:ad:68:7f:ea:42:ad:58:fc:8b:d5:3d:
88:a7:df:50:34:0a:98:a9:3e:62:16:77:98:96:c8:
cd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:0D:5F:59:DF:BE:B6:B5:B2:57:35:E4:82:AB:B3:0F:8E:A9:B6:1C
X509v3 Authority Key Identifier:
keyid:E7:C3:AB:96:B7:4C:2A:C4:F0:4A:E6:2A:B7:E8:2C:DF:19:88:ED:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:de:14:8c:f8:1e:a7:59:9f:3b:dd:3f:70:88:91:27:e0:47:
43:54:16:7f:c8:22:93:c1:cc:f5:f6:d3:35:a3:9b:ed:78:d0:
5b:82:22:f0:d9:59:ec:b5:a4:bb:80:17:1d:d2:0b:cf:f1:77:
91:8f:a2:46:e0:d2:cc:13:0e:40:65:a4:44:f0:3c:22:d8:ad:
2e:8a:a0:80:a3:22:7d:e2:d0:bb:bc:4d:4c:be:04:bd:fe:8b:
d2:07:20:af:06:5c:4f:f3:cf:30:91:dd:2c:c0:f0:fb:5a:5b:
e7:ef:1a:98:80:af:d2:ff:7e:aa:89:6f:c3:89:5c:de:e4:f5:
bd:83:a6:e3:ca:e3:e0:d0:48:42:10:23:12:c8:51:e3:af:7a:
a4:2c:98:f7:03:55:4f:e1:4e:50:bd:0d:fd:27:79:16:5f:4b:
55:c8:d5:fe:90:36:60:e0:4d:fe:75:bd:12:01:b7:7b:d5:c4:
9e:17:6f:3c:47:2d:5a:b2:97:f3:08:46:05:24:1c:c3:c1:32:
79:48:03:bc:6e:2c:0f:af:2b:85:61:8c:b2:09:11:c5:72:7a:
14:11:76:d9:a0:8a:e9:24:1d:57:3b:2e:37:3a:1d:71:ad:05:
c1:b5:3d:5c:1b:bc:d8:b8:2a:8a:bc:a2:83:73:58:73:0b:f4:
62:1e:1a:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 07:16:03 2025 by rpki-client