Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
File: 68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft (raw, json)
Hash identifier: 31ntpviYRsINV1LaOkPKSa6+DETyaJE8nnKQBO+HRec=
Subject key identifier: 37:56:D1:7E:62:65:67:9F:EE:D1:0C:8C:0E:D7:7D:53:5A:EB:CF:F0
Authority key identifier: EB:C8:C4:A0:66:E2:C1:50:31:3E:E1:C0:87:47:1F:3C:8B:0D:E0:54
Certificate issuer: /CN=ebc8c4a066e2c150313ee1c087471f3c8b0de054
Certificate serial: 0199221E67E0AFD1BCDF06F1491D844660BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
Manifest number: 0F7E
Signing time: Sun 07 Sep 2025 03:00:41 +0000
Manifest this update: Sun 07 Sep 2025 03:00:41 +0000
Manifest next update: Mon 08 Sep 2025 03:00:41 +0000
Files and hashes: 1: 68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl (hash: 8taM0rHN78YCLPIlXyuTTBmPDQZq2iO82R8CDV3I03E=)
2: oYCCEaHZDFeU07vWfgI3VuJzA2k.roa (hash: ZelDCAPq5Lk9TPNRJeopu8e/ZIbjOUyl0w35TbZibt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:67:e0:af:d1:bc:df:06:f1:49:1d:84:46:60:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebc8c4a066e2c150313ee1c087471f3c8b0de054
Validity
Not Before: Sep 7 03:00:41 2025 GMT
Not After : Sep 8 03:00:41 2025 GMT
Subject: CN=3756d17e6265679feed10c8c0ed77d535aebcff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:65:15:58:f5:09:cf:10:76:56:19:cb:c4:e9:
d6:02:66:7d:e4:ca:99:22:26:35:d3:fd:33:db:f2:
2b:4e:b2:6f:2c:b3:e5:ef:d5:5a:58:70:78:09:15:
cb:d0:d1:87:6e:2c:f4:93:8e:65:f0:b2:7a:fd:83:
30:1b:55:13:2b:02:40:13:3f:37:c9:ec:b3:a1:39:
4b:ee:09:29:98:35:42:4a:71:ef:4a:a7:b2:22:36:
39:1b:09:ed:72:13:d6:bd:6f:76:66:1a:27:3c:17:
fd:78:4d:12:0e:84:87:b9:30:25:b0:16:35:db:85:
ac:5f:88:7c:ff:d9:1e:92:72:a6:73:e7:86:3c:8f:
f6:c9:f9:e9:39:31:fd:59:14:21:c5:fb:10:1b:c5:
3c:1d:b3:5a:df:14:6b:25:c4:18:f4:dd:e2:7c:bd:
00:1f:59:01:c7:d2:08:ac:20:52:18:f8:89:0f:49:
22:77:c7:75:82:71:2c:c1:6c:36:e6:0e:b3:c4:f5:
b6:3d:04:b8:51:c1:97:0a:ae:94:a8:b0:a7:bb:bf:
65:a4:26:0c:5c:a5:10:5b:89:5a:21:4f:af:4a:50:
fd:de:d6:07:23:ea:0e:5a:a8:48:df:bb:8e:d8:21:
00:4f:df:a9:86:f6:e2:ac:75:74:3c:4c:c6:51:42:
6c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:56:D1:7E:62:65:67:9F:EE:D1:0C:8C:0E:D7:7D:53:5A:EB:CF:F0
X509v3 Authority Key Identifier:
keyid:EB:C8:C4:A0:66:E2:C1:50:31:3E:E1:C0:87:47:1F:3C:8B:0D:E0:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:2a:86:47:04:77:51:b6:01:93:bb:25:1b:a0:6f:22:9f:82:
d1:e5:57:9a:57:b8:29:92:02:fb:a8:d1:1d:4c:a7:25:fa:00:
e8:5d:37:ae:c0:c5:ef:d7:39:43:13:c4:4b:46:53:62:a7:2c:
31:86:36:eb:f7:82:ba:78:4c:91:b4:e7:06:29:0e:e5:1b:dd:
c2:30:4b:08:b4:7e:00:a1:5c:94:10:46:46:e4:d7:08:cf:19:
b3:7f:b1:33:dd:0b:44:f0:f2:15:d1:3d:5a:36:81:0c:7d:0a:
d0:a1:8c:d0:a0:2b:d6:71:ee:f2:45:01:79:2f:e0:0f:81:9f:
34:99:33:fa:32:e1:88:05:8e:2d:85:38:86:d1:c0:81:86:81:
02:cd:b9:26:d9:44:52:46:33:52:03:0f:43:90:15:3c:5f:2c:
da:0e:7f:d9:4b:5f:9b:3d:20:9c:aa:9c:fc:e2:dc:d8:68:de:
4c:14:85:c9:98:1f:6a:d3:20:ee:d5:50:6d:cb:d2:0e:32:8e:
d4:7e:c4:e3:f1:10:46:1a:ce:37:85:64:03:da:bf:02:bf:99:
76:67:b1:be:9c:b7:94:be:36:f8:e5:22:e3:79:35:bd:d5:5d:
9c:b7:56:c7:59:e9:19:3c:58:9b:c9:7c:eb:41:79:08:f2:44:
f6:25:47:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:39:32 2025 by rpki-client