Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
File: ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft (raw, json)
Hash identifier: wzkzJFK6XimKLb3lUgLdw3AcXhm153vfD4oV+WZ43mw=
Subject key identifier: 6A:5F:81:A1:D9:73:AB:85:20:64:03:33:76:57:1B:C3:CE:A9:EB:E3
Authority key identifier: 7B:0D:46:C5:82:2C:AD:92:53:EA:53:A1:00:F3:D9:36:22:4A:E6:87
Certificate issuer: /CN=7b0d46c5822cad9253ea53a100f3d936224ae687
Certificate serial: 019A7112FE6F1AED287D181C105ECAB8DE5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
Manifest number: 054F
Signing time: Tue 11 Nov 2025 04:01:01 +0000
Manifest this update: Tue 11 Nov 2025 04:01:01 +0000
Manifest next update: Wed 12 Nov 2025 04:01:01 +0000
Files and hashes: 1: ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl (hash: 1nNxY6z4+CvsMb5eP0zfQEJmOWcGZpWdhzV5GrUF6V4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:fe:6f:1a:ed:28:7d:18:1c:10:5e:ca:b8:de:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b0d46c5822cad9253ea53a100f3d936224ae687
Validity
Not Before: Nov 11 04:01:01 2025 GMT
Not After : Nov 12 04:01:01 2025 GMT
Subject: CN=6a5f81a1d973ab852064033376571bc3cea9ebe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:57:54:51:4b:c2:75:87:11:49:ea:99:e4:c4:
18:9f:64:63:75:8a:4d:d8:79:63:b5:b4:fd:16:dd:
4e:ef:d7:b2:a1:32:66:5a:97:37:a1:c1:fc:ee:44:
5e:22:bb:53:9d:f5:d0:15:f8:75:e1:a6:03:9f:3e:
ea:9c:d6:4e:57:83:b1:a4:02:ba:47:60:34:18:1e:
44:7c:56:ff:1e:0c:c3:94:15:38:12:86:a1:76:db:
a3:62:4c:6d:64:8a:31:56:84:52:f4:24:3c:3a:39:
62:22:07:1c:8a:b2:d1:c3:65:16:23:8b:30:42:cf:
6f:8e:fd:15:d3:41:4d:fc:c8:f5:b8:a5:f1:1c:1c:
17:a5:ee:05:79:7e:e8:43:94:89:e7:8a:d3:d7:6b:
fc:02:fe:e8:78:70:cf:79:5d:c5:f8:eb:e0:63:bc:
bb:7e:e9:05:d7:2a:16:2e:ea:87:78:7f:bf:c3:76:
a9:38:f4:14:50:6e:be:86:04:66:9e:e5:2e:42:16:
43:d2:9c:54:52:75:63:4d:28:25:59:80:8f:25:14:
07:16:d1:6c:11:23:3e:40:43:52:2e:f4:d8:33:b6:
1c:0c:32:76:3f:46:8e:c3:68:d9:f7:69:a8:4c:45:
14:e9:fa:5d:67:97:2e:01:5d:a4:df:c9:c0:a3:26:
c5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:5F:81:A1:D9:73:AB:85:20:64:03:33:76:57:1B:C3:CE:A9:EB:E3
X509v3 Authority Key Identifier:
keyid:7B:0D:46:C5:82:2C:AD:92:53:EA:53:A1:00:F3:D9:36:22:4A:E6:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:29:08:4a:33:f9:b1:92:18:72:49:c5:95:b5:ca:19:48:a1:
65:9e:8f:0b:76:00:a4:90:9f:c6:0c:b9:08:4a:5a:5e:e5:4a:
81:53:ae:c8:7c:0e:e2:bd:f0:31:aa:78:00:32:27:eb:2b:c4:
66:e7:bd:77:94:d6:29:a2:90:22:ce:29:d1:52:4e:5b:5c:28:
75:a6:0c:47:c2:a5:14:15:ae:b4:18:65:4f:e2:01:90:f2:73:
c0:e3:a4:fb:68:f8:1b:b3:ff:33:c6:99:6a:d2:42:a8:25:d6:
f4:f9:4c:87:f3:1d:57:d7:e9:66:43:99:2e:3e:c7:94:65:7a:
20:c2:af:07:30:8b:ad:9e:6b:f2:46:03:d2:e2:f8:b0:1e:86:
7a:7b:e9:6b:99:fc:40:fc:c1:be:8e:93:a8:f6:20:62:9f:a1:
8b:21:4f:49:ba:3e:8f:63:8f:4c:8a:be:82:24:b3:aa:96:70:
67:aa:05:34:a2:66:88:56:d1:6a:f0:55:85:87:70:d9:07:94:
31:c8:92:cb:7d:3b:82:70:02:f6:d6:97:e4:e5:f2:33:0a:e2:
65:1d:90:56:c7:8f:de:bd:b9:05:ab:67:cd:32:01:8b:36:48:
92:ef:a9:13:5a:b1:fc:df:a9:3b:08:93:57:c5:89:7f:75:b2:
90:11:67:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:54:50 2025 by rpki-client