Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft
File: ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft (raw, json)
Hash identifier: H0jc+unDQmlDJxZGmiZX1W6NT+92HcZCuFuDWGF5aI8=
Subject key identifier: 5D:7C:F2:CD:73:FA:89:11:37:39:74:9E:89:61:4B:D9:09:8D:98:B7
Authority key identifier: 7A:17:25:9A:86:3C:3D:63:7D:45:7E:11:9B:75:0D:F9:5E:00:3F:D6
Certificate issuer: /CN=7a17259a863c3d637d457e119b750df95e003fd6
Certificate serial: 019A22C0C35DAD5D22CA8F1FD162920B22F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft
Manifest number: 16F5
Signing time: Sun 26 Oct 2025 23:00:49 +0000
Manifest this update: Sun 26 Oct 2025 23:00:49 +0000
Manifest next update: Mon 27 Oct 2025 23:00:49 +0000
Files and hashes: 1: dUBDyI3Y08c8mTiyeoJMlAL0nl0.roa (hash: J6i7zBjAUQN6Z3eRo+/Gx26n+pN6OCH/O5XrMxGVkXk=)
2: ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl (hash: najEnPDK3XpbVaoQFMb9y/fbwiLtmLdj9Q2WZzYZf5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:c0:c3:5d:ad:5d:22:ca:8f:1f:d1:62:92:0b:22:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a17259a863c3d637d457e119b750df95e003fd6
Validity
Not Before: Oct 26 23:00:49 2025 GMT
Not After : Oct 27 23:00:49 2025 GMT
Subject: CN=5d7cf2cd73fa89113739749e89614bd9098d98b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:24:52:75:95:0d:a4:ab:3a:81:39:56:26:b1:
97:cf:f2:c6:46:ad:cf:eb:cb:24:65:f1:a1:eb:82:
67:a0:76:af:fc:86:33:04:af:bd:13:05:bf:c4:fa:
78:8b:2e:f4:3f:59:b6:e5:da:9c:ec:30:94:cf:bf:
34:c8:58:f0:55:bf:92:9c:27:b7:ed:91:33:fa:b8:
20:ec:a0:cf:42:ad:48:15:81:9d:b4:c3:00:34:7f:
3a:38:57:67:82:91:84:0b:1c:e3:ce:51:a2:eb:76:
cd:30:65:39:d7:8d:b5:f2:11:a8:57:ee:ef:84:3d:
bd:9c:38:1f:01:8c:5d:b7:3e:c3:da:22:c0:86:2e:
7e:1d:99:89:cb:60:f9:da:34:b9:2b:39:9a:85:bb:
bf:6d:c7:4f:b3:f5:b7:7d:62:c7:a3:bc:ad:8b:b3:
f1:a4:58:d4:14:8d:1f:14:ce:5a:57:74:2e:55:51:
16:a5:a9:82:f1:ad:d5:c8:bf:08:cb:5b:1d:da:a2:
c5:52:dd:e5:7b:59:65:1f:e3:fe:f5:a3:22:48:9e:
e1:fe:11:0c:cc:2c:b1:59:dd:1a:75:0c:c4:e7:51:
df:d0:79:b2:88:c6:64:85:8d:a7:32:28:b1:63:7f:
c0:b9:ca:39:02:f7:73:b9:da:d9:66:cc:40:cd:8d:
ff:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7C:F2:CD:73:FA:89:11:37:39:74:9E:89:61:4B:D9:09:8D:98:B7
X509v3 Authority Key Identifier:
keyid:7A:17:25:9A:86:3C:3D:63:7D:45:7E:11:9B:75:0D:F9:5E:00:3F:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:2d:6c:29:20:2a:e0:13:bc:1a:77:ff:49:1b:35:8c:8c:1e:
b5:ca:91:3c:4d:5a:c2:20:1b:1f:fb:a2:c3:6a:f5:cc:b7:a5:
5c:4b:0c:1c:01:d8:e0:a4:8d:d1:4a:98:f9:cd:4f:e3:a2:01:
6f:2d:61:51:0a:2b:c9:fb:4b:62:74:c4:b2:ab:8c:f4:5e:bb:
da:1d:ee:20:81:47:26:a2:da:dd:82:1a:24:56:57:73:51:80:
49:5f:fc:c0:3e:79:03:f4:62:69:2f:07:f0:2f:1e:4c:4a:60:
1d:76:51:0d:61:f0:b2:78:ac:7c:af:56:9e:ee:71:f4:c3:a2:
48:8c:42:46:d2:58:e8:93:b5:cd:dd:68:bb:35:c8:f8:14:13:
d5:1f:66:5c:f4:95:c1:3c:7b:a7:83:08:c5:56:7c:a5:50:00:
0a:0a:fd:57:ae:51:ef:b4:96:96:12:a7:e9:b1:1e:f9:f4:87:
b5:8c:7f:51:cd:9b:d8:e2:25:0e:db:2f:7a:38:c1:f8:76:c0:
00:00:f5:fb:3d:bf:74:e9:3e:3e:46:07:1b:4b:19:48:15:67:
96:f1:42:d2:cc:6c:43:81:60:d3:d7:fd:71:3e:22:96:a2:69:
c9:73:88:66:2a:7a:57:e4:9a:00:d3:0d:39:c1:d1:9c:4b:ed:
87:11:53:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:28:29 2025 by rpki-client