Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
File: 68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft (raw, json)
Hash identifier: b9WEfG6Q19ECfPVbxIOKW2wSUj4ZuGfL1V6jREYmC/8=
Subject key identifier: B6:2E:16:DC:31:A3:C6:95:11:5C:D2:91:FB:73:20:F1:AE:89:2E:CE
Authority key identifier: EB:C8:C4:A0:66:E2:C1:50:31:3E:E1:C0:87:47:1F:3C:8B:0D:E0:54
Certificate issuer: /CN=ebc8c4a066e2c150313ee1c087471f3c8b0de054
Certificate serial: 019A722619F20606A7A488638DE41CBFD40A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
Manifest number: 102C
Signing time: Tue 11 Nov 2025 09:01:30 +0000
Manifest this update: Tue 11 Nov 2025 09:01:30 +0000
Manifest next update: Wed 12 Nov 2025 09:01:30 +0000
Files and hashes: 1: 68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl (hash: yQg74CuM4+7sabLntwbgj247Ak0ogQ+gdw/frqkhuro=)
2: oYCCEaHZDFeU07vWfgI3VuJzA2k.roa (hash: ZelDCAPq5Lk9TPNRJeopu8e/ZIbjOUyl0w35TbZibt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:19:f2:06:06:a7:a4:88:63:8d:e4:1c:bf:d4:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebc8c4a066e2c150313ee1c087471f3c8b0de054
Validity
Not Before: Nov 11 09:01:30 2025 GMT
Not After : Nov 12 09:01:30 2025 GMT
Subject: CN=b62e16dc31a3c695115cd291fb7320f1ae892ece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:eb:ab:7f:f4:a3:ab:f6:be:1e:75:70:d8:ac:
05:a9:83:33:4c:80:fd:cc:f1:b1:df:25:ea:7a:23:
68:e3:1f:d4:8a:95:13:fe:5f:2e:6a:ec:3e:54:0e:
49:7c:3c:d7:de:e0:43:d0:33:c5:56:cf:1b:94:1a:
c4:2f:06:1f:2f:7b:43:9f:3c:e0:f4:04:78:fd:1b:
00:c3:93:5b:ba:6c:ad:e4:84:6e:ed:f2:d1:19:65:
59:dc:8e:9c:0b:03:13:75:2d:77:7d:fe:0d:4f:cc:
f2:ea:b9:62:4a:b4:1d:26:01:71:9f:3f:c9:21:a6:
32:00:61:fc:f5:d5:2f:63:d0:48:65:c8:ed:d8:ca:
f5:17:8d:5b:40:12:a8:ec:70:b5:80:58:ef:ff:dd:
f4:38:40:89:ef:1b:58:13:2e:68:89:91:4b:77:54:
cf:39:24:9a:f2:9a:52:3f:58:3e:f8:6e:70:80:f4:
d2:1e:8e:54:8a:11:a6:a3:af:ed:b1:4a:50:46:6c:
c3:30:c8:8d:5f:73:63:4f:89:99:0a:29:46:fa:7b:
40:87:2e:a8:86:9a:1c:1f:b7:bd:39:84:92:19:66:
b6:77:db:df:56:8b:35:e2:77:de:60:ae:74:5a:f2:
5d:54:29:f1:e7:d9:da:c4:af:a3:f8:87:1e:7e:12:
2c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:2E:16:DC:31:A3:C6:95:11:5C:D2:91:FB:73:20:F1:AE:89:2E:CE
X509v3 Authority Key Identifier:
keyid:EB:C8:C4:A0:66:E2:C1:50:31:3E:E1:C0:87:47:1F:3C:8B:0D:E0:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:f0:ca:a6:3e:81:d9:ca:8b:fc:d4:72:57:6c:69:d3:69:5f:
29:14:78:34:97:7e:20:0c:98:f3:ee:e6:5b:a8:39:89:97:2e:
4c:b6:10:6d:60:53:44:40:36:08:34:40:cb:4e:8a:1e:c9:eb:
06:10:c7:ae:c8:39:5a:53:f6:3a:35:ab:fc:72:03:bd:77:d9:
61:b9:23:5c:72:9c:2e:13:ba:94:1d:95:42:12:d0:26:cd:57:
ee:f9:d0:f4:79:a1:ff:9b:e6:37:b0:6a:c6:82:81:32:61:f8:
ac:0e:e1:df:21:a6:47:4d:3d:72:b7:c4:96:51:8c:5f:de:90:
7b:37:4d:2f:77:ae:d3:61:46:e6:02:3a:38:28:b2:88:4d:15:
36:14:0b:c3:09:51:fc:30:42:8c:99:2a:d0:cb:58:db:16:02:
89:0b:f0:dc:65:be:21:29:05:c4:97:23:1b:23:82:38:28:3d:
0a:8e:f5:19:9f:20:54:f5:f6:16:e4:f4:10:a9:37:34:3e:3d:
51:63:29:f3:6e:6d:ae:ae:30:36:78:be:b7:3b:e0:36:4b:7c:
67:58:12:ca:00:d2:6e:f9:c8:f0:fc:d1:05:36:0b:0b:ee:f4:
39:db:d9:6d:90:c4:94:9e:63:72:e9:d7:f8:ac:96:5c:d9:a7:
e5:55:59:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:41:03 2025 by rpki-client