Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
File: erqgtAKPBzwFZKZYtPuIhsvI0-s.mft (raw, json)
Hash identifier: oFv5tuZo1IVCvd6280Vu0K/5fZ6Nw/vCEOXp1v5zBtE=
Subject key identifier: 11:5E:FF:5D:4E:F3:77:DF:06:33:03:57:B0:21:23:4F:D3:7D:FD:D0
Authority key identifier: 7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB
Certificate issuer: /CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb
Certificate serial: 019A729385F181325DE3C20FDBF9B6781BFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
Manifest number: 02FD
Signing time: Tue 11 Nov 2025 11:01:01 +0000
Manifest this update: Tue 11 Nov 2025 11:01:01 +0000
Manifest next update: Wed 12 Nov 2025 11:01:01 +0000
Files and hashes: 1: Du7k0B88jmKs_S-_OxfkmUBoQvk.roa (hash: 5Kd2ifwi5TK+F7WlkGpdmlpnXuH9BzmWZvxJszORzQQ=)
2: erqgtAKPBzwFZKZYtPuIhsvI0-s.crl (hash: dI39VwBLy2Cl/RbZtyqvGf9aPBvNsEMqo7JoAYhCpdc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:85:f1:81:32:5d:e3:c2:0f:db:f9:b6:78:1b:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb
Validity
Not Before: Nov 11 11:01:01 2025 GMT
Not After : Nov 12 11:01:01 2025 GMT
Subject: CN=115eff5d4ef377df06330357b021234fd37dfdd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ad:55:8b:e6:28:81:4e:1f:0b:66:c5:53:d7:
d5:dd:74:be:a9:91:a5:ef:c8:ff:48:63:89:eb:96:
6a:17:c9:17:12:0d:85:3c:03:6e:2b:74:47:4a:f1:
90:f4:a7:91:78:77:ee:54:f2:9b:82:94:e0:1a:79:
20:cd:65:0d:1e:b2:13:0c:0d:b3:89:34:6f:c3:04:
c7:41:e4:ea:97:b6:db:8b:b8:22:d8:4f:30:f7:10:
95:58:92:5b:e4:32:1b:2c:6f:33:6b:b2:09:dd:41:
01:35:6a:04:0c:2e:71:75:bd:7d:f2:e6:24:73:38:
a4:1e:8a:9a:fc:a7:6a:65:3c:a4:ea:f4:f5:e3:75:
22:91:78:dd:c8:74:7e:53:31:63:a4:91:1d:73:d1:
d7:4d:7a:58:f8:9e:c0:45:12:ac:de:13:79:4a:07:
02:5f:17:91:db:68:4e:4b:8c:b8:01:d5:ed:b1:5a:
33:2e:7e:19:d6:dd:8c:7b:98:63:c3:be:72:e9:83:
f8:07:95:32:77:db:f7:4a:2e:07:94:87:67:4a:b7:
d5:3a:9c:e7:86:9d:8b:8b:d6:3e:55:a4:99:99:38:
cd:a3:82:e9:05:2a:e2:de:9f:f3:31:4c:ea:b7:af:
1f:bc:09:7d:04:72:a3:1e:b4:ff:de:2a:72:48:b4:
cb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:5E:FF:5D:4E:F3:77:DF:06:33:03:57:B0:21:23:4F:D3:7D:FD:D0
X509v3 Authority Key Identifier:
keyid:7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:a7:20:0d:bf:04:1b:39:ea:38:a0:6d:53:b0:9e:23:11:ca:
0e:ad:52:5a:be:44:f3:26:12:8c:aa:32:9f:4c:68:43:d0:22:
d2:02:09:e6:20:3e:8d:ee:ab:3f:d9:b9:f9:9d:a3:11:fc:0a:
53:3b:65:69:19:9f:35:5d:a4:fb:be:cc:e2:b5:e7:19:25:f6:
cf:1c:7b:62:0c:f6:06:0d:8d:2b:26:a3:a8:63:f2:4a:1b:81:
ec:81:a0:32:34:57:cc:c7:15:cd:99:75:d8:43:5a:de:a3:a6:
69:50:1c:44:f8:67:3a:dc:1a:23:57:c7:c5:bf:ef:9c:98:47:
00:07:20:1b:94:da:1e:39:29:48:2f:19:52:f6:11:4b:ca:dc:
9d:de:54:db:ff:5e:89:07:1d:1c:3e:e1:4c:c6:4e:b9:e7:15:
75:95:59:ad:16:ec:d3:db:71:c3:4b:fe:30:f0:03:b3:1b:57:
bc:06:40:4d:d9:1c:4a:b3:f1:05:08:55:4e:d2:4f:29:06:55:
47:c1:be:8c:d8:9e:9b:9f:5e:6b:dd:ec:bf:22:d0:22:d5:77:
29:9b:27:2a:1f:c7:6a:4a:6f:c7:5c:e8:5a:3d:50:81:4f:3c:
a4:7e:fc:48:3b:8b:35:04:ec:84:54:35:7e:ca:55:10:d2:ae:
20:b2:f0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:19:37 2025 by rpki-client