Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft
File: ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft (raw, json)
Hash identifier: cALHbvfvdQrMYp3LY7xy/DZF8gwhGhOyKLgiAdZ9bpA=
Subject key identifier: F3:A2:D0:0F:0D:77:D2:39:54:5B:98:5A:CA:2A:B6:08:33:36:DB:38
Authority key identifier: 7A:17:25:9A:86:3C:3D:63:7D:45:7E:11:9B:75:0D:F9:5E:00:3F:D6
Certificate issuer: /CN=7a17259a863c3d637d457e119b750df95e003fd6
Certificate serial: 01992D7E6356A024FC95FC21B204ED0F4F9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft
Manifest number: 1676
Signing time: Tue 09 Sep 2025 08:01:21 +0000
Manifest this update: Tue 09 Sep 2025 08:01:21 +0000
Manifest next update: Wed 10 Sep 2025 08:01:21 +0000
Files and hashes: 1: dUBDyI3Y08c8mTiyeoJMlAL0nl0.roa (hash: J6i7zBjAUQN6Z3eRo+/Gx26n+pN6OCH/O5XrMxGVkXk=)
2: ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl (hash: zsE7lGK+ykskyMBLHV5gAHIowQDDyx46GCwUhMl1PDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 07:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2d:7e:63:56:a0:24:fc:95:fc:21:b2:04:ed:0f:4f:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a17259a863c3d637d457e119b750df95e003fd6
Validity
Not Before: Sep 9 08:01:21 2025 GMT
Not After : Sep 10 08:01:21 2025 GMT
Subject: CN=f3a2d00f0d77d239545b985aca2ab6083336db38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b6:d0:7c:bc:cf:22:8a:ce:0f:3c:fa:3a:73:
81:e9:eb:63:7e:d6:0e:05:3a:83:48:e8:04:19:89:
98:9a:86:8e:4c:c2:b3:7b:3d:ad:46:e4:4d:63:df:
e8:b1:cd:22:12:51:4e:8f:b4:15:4f:50:28:6e:20:
fc:a7:ac:96:07:f2:a7:bf:2f:da:04:7c:1e:22:f6:
49:b7:59:cf:69:11:b7:59:30:58:de:27:fe:28:77:
a1:5a:79:c1:e1:87:cb:98:4f:4a:50:a7:f0:ee:1e:
07:4d:af:1c:55:2f:34:3a:b9:f6:4e:0d:27:80:90:
d9:2e:f7:3e:0f:8e:d4:dc:a1:47:c7:27:c3:8c:a0:
f1:90:2b:56:92:a6:97:55:b4:a6:3b:ff:9e:5b:5d:
41:32:fa:62:a4:e5:e6:2c:66:ef:c4:88:c8:55:98:
0a:c8:d8:b8:38:f7:fd:4c:11:0b:b2:cc:99:b0:26:
c7:fd:35:1c:2d:09:4a:a8:05:06:f7:b8:f4:92:97:
f3:cf:b6:85:10:43:2c:f7:9a:ea:18:ce:a0:69:42:
db:ad:c3:02:03:2a:bc:6d:0e:1e:2b:43:5f:8f:f0:
5c:fd:22:15:72:c0:ad:a7:5f:51:8f:57:4b:51:4c:
5e:fd:4e:32:63:80:cb:40:bd:e0:b8:14:2c:74:9c:
c8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A2:D0:0F:0D:77:D2:39:54:5B:98:5A:CA:2A:B6:08:33:36:DB:38
X509v3 Authority Key Identifier:
keyid:7A:17:25:9A:86:3C:3D:63:7D:45:7E:11:9B:75:0D:F9:5E:00:3F:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:7c:30:82:34:0a:d5:c0:9b:ea:19:ab:d7:30:f8:25:e9:c6:
be:e3:cf:67:b9:9b:d9:1d:43:c8:7f:c9:36:ac:bc:b4:45:50:
f1:87:da:06:b9:c4:1c:43:21:9b:3b:c0:33:11:e2:53:fc:bc:
1e:e4:0d:8d:0a:9c:fd:0f:31:f1:6c:6e:9f:b7:42:3e:12:cb:
05:e2:18:a1:9b:9d:50:fb:45:d8:1e:7b:18:88:04:37:03:19:
5b:87:68:88:dc:93:c2:e9:7e:13:35:21:38:3c:ee:87:33:b5:
9f:12:20:8f:b5:a8:61:4b:b4:e7:ba:6c:52:c8:85:d4:50:a7:
7e:0c:ae:68:8d:67:01:26:8b:f0:71:cf:d2:bf:50:06:68:26:
d5:60:68:e5:80:81:c7:be:ef:96:a9:7a:8a:d9:41:d0:aa:08:
00:80:57:c4:f7:78:ca:cd:b3:34:bb:61:d7:2b:53:d1:00:a3:
2d:3a:5a:dd:ce:43:b6:b3:84:dc:84:b4:8b:99:0a:cc:a7:6f:
54:ad:e8:3f:58:63:9e:3a:4c:8e:af:7a:cb:b7:9f:22:17:f7:
fd:75:f3:77:92:88:07:4a:33:bd:d1:82:91:97:f5:b1:f3:e6:
0b:1a:62:29:ef:4f:7a:b9:54:d1:1c:bb:31:4d:5e:23:a2:4b:
1e:80:16:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 09:48:01 2025 by rpki-client