Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
File: ejhiE08UE2XviHkC5gV8KLKCnJ0.mft (raw, json)
Hash identifier: vfdzyhmSnxY2+VzWT+7NRPUufs3Me9YumWNCQME3Z44=
Subject key identifier: 98:67:92:E3:D7:FD:49:5D:E3:C1:DB:31:69:06:C0:22:90:BD:00:71
Authority key identifier: 7A:38:62:13:4F:14:13:65:EF:88:79:02:E6:05:7C:28:B2:82:9C:9D
Certificate issuer: /CN=7a3862134f141365ef887902e6057c28b2829c9d
Certificate serial: 01993537C0B806BF248B8F25D2EA162F0D8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
Manifest number: 0D5C
Signing time: Wed 10 Sep 2025 20:01:10 +0000
Manifest this update: Wed 10 Sep 2025 20:01:10 +0000
Manifest next update: Thu 11 Sep 2025 20:01:10 +0000
Files and hashes: 1: DUeztC_9OSU5_baS7RpA8PIrChA.roa (hash: nC0NIfkO+km6NTJ5hH8jMs/CXJYU2lhmZlogyR2BxZI=)
2: ejhiE08UE2XviHkC5gV8KLKCnJ0.crl (hash: ZfWCuLUjocASeGPkPD57PT7zOCHhxLpt4SLJhVodsbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:37:c0:b8:06:bf:24:8b:8f:25:d2:ea:16:2f:0d:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a3862134f141365ef887902e6057c28b2829c9d
Validity
Not Before: Sep 10 20:01:10 2025 GMT
Not After : Sep 11 20:01:10 2025 GMT
Subject: CN=986792e3d7fd495de3c1db316906c02290bd0071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:21:9c:24:68:fe:61:b6:a5:f7:d3:6f:19:d2:
14:9c:46:72:b8:ff:14:2e:ed:28:40:5c:c8:2d:5c:
48:b3:5b:66:e5:a5:ff:69:c3:70:71:ca:72:20:a3:
22:4e:09:60:37:4d:09:98:94:09:52:45:9e:93:6d:
10:0d:89:bb:d3:b5:8c:87:ae:81:4b:d7:68:24:43:
39:76:78:bf:d2:9d:05:1f:65:18:e7:3e:ee:37:c7:
af:90:24:cf:46:c1:91:03:d6:a4:ec:7c:66:73:64:
05:95:5a:ad:81:c9:95:d3:c2:03:94:c8:f5:d0:a4:
06:5f:15:89:7a:b4:ef:87:fe:d5:cd:85:75:62:cf:
71:f8:35:51:2c:94:ed:6a:9a:97:3a:01:fe:bb:e6:
bc:5c:b1:32:7f:01:c7:77:91:8a:a1:e1:1f:e8:0c:
dd:c8:e2:80:0d:e1:2c:c4:d9:c8:16:2b:96:6c:d7:
c3:ef:9b:b8:ff:3f:99:52:5d:82:d7:8e:39:ff:29:
67:98:4b:8d:50:05:29:47:36:4f:9f:0c:35:c1:7b:
b1:f0:af:ff:a8:c2:fe:9d:d7:36:f2:55:00:cd:ae:
f2:27:ef:fa:d8:f2:90:ed:57:1c:54:4b:3e:cc:a5:
6d:a7:de:d2:5d:26:9f:c2:ea:5d:78:ef:86:79:94:
bc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:67:92:E3:D7:FD:49:5D:E3:C1:DB:31:69:06:C0:22:90:BD:00:71
X509v3 Authority Key Identifier:
keyid:7A:38:62:13:4F:14:13:65:EF:88:79:02:E6:05:7C:28:B2:82:9C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:46:f7:32:9c:6b:1c:2e:6b:a8:32:93:44:6c:46:d5:31:2b:
b5:52:03:b4:9b:8d:9d:5a:10:35:53:a7:62:78:d8:35:4d:fa:
f7:03:1a:19:59:00:c6:1f:1b:14:85:59:3c:7b:cd:59:33:d9:
40:18:3a:8d:3d:6f:4c:66:b4:54:89:ed:96:4e:22:2d:4f:c8:
75:12:a8:62:9d:f7:c6:06:45:43:74:57:de:ca:c6:96:3d:de:
4c:0a:95:84:a9:43:8d:6b:ae:bc:6f:bd:de:03:c5:36:ff:d1:
d2:d6:16:bf:ec:41:05:58:f0:63:04:ff:2f:a8:80:91:3f:25:
a0:73:4b:20:f1:52:21:10:8e:c7:8a:79:fa:ce:93:42:53:70:
37:80:36:2e:32:41:08:32:5e:4d:36:dd:ee:ac:a1:ba:31:63:
78:44:15:5b:0b:a8:b9:47:79:98:c7:61:78:bc:68:62:d0:01:
07:66:23:8c:a5:f6:58:0f:62:45:01:fb:28:34:79:ea:bd:3d:
1f:4c:5f:36:9b:96:60:df:f4:68:39:c0:31:0d:af:08:5b:6a:
45:77:f4:10:75:d1:73:16:09:0c:53:c1:ff:b5:17:89:74:1c:
33:55:b3:af:b4:8e:07:24:8a:35:f2:b4:52:cd:f0:80:fe:d6:
bc:7d:47:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 04:15:22 2025 by rpki-client