Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
File: evGnv3QoXbLoIJH79GOi7vbjpXg.mft (raw, json)
Hash identifier: YHel7sWOFIgJl3pUPcQNimmcjbsMM+qXvqjqorQHzbs=
Subject key identifier: 85:9D:95:A9:5D:17:A2:90:5B:8C:A9:FF:A6:53:AE:E2:49:62:1F:D4
Authority key identifier: 7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
Certificate issuer: /CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Certificate serial: 019A1CBF3D951A64F629EC55BEB4B208803C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
Manifest number: 042E
Signing time: Sat 25 Oct 2025 19:01:26 +0000
Manifest this update: Sat 25 Oct 2025 19:01:26 +0000
Manifest next update: Sun 26 Oct 2025 19:01:26 +0000
Files and hashes: 1: HeJAD4YHm_sJaYZYcU9XbBvO2ZQ.roa (hash: X87UHvfB+nlPvI0ZCTJdcn/R8oWH+T+ddbzxZs7Ye8A=)
2: evGnv3QoXbLoIJH79GOi7vbjpXg.crl (hash: 7asU2s+c4dP9sjbec06MBXfnrjY5aJCQaG3CSThDs0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1c:bf:3d:95:1a:64:f6:29:ec:55:be:b4:b2:08:80:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Validity
Not Before: Oct 25 19:01:26 2025 GMT
Not After : Oct 26 19:01:26 2025 GMT
Subject: CN=859d95a95d17a2905b8ca9ffa653aee249621fd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:96:c9:1e:ed:8f:1c:08:6f:71:fd:67:59:6f:
e7:ce:86:5c:ba:ad:eb:df:96:82:84:3c:a4:3b:ab:
4a:b0:37:cd:fe:79:e1:bf:72:9e:12:40:7c:7c:a1:
cb:e9:c6:1f:e8:c5:27:8b:4b:51:ee:0f:fa:67:4d:
ca:2b:49:81:f0:11:70:25:e3:3b:bf:b7:77:76:6d:
1f:8e:0b:ce:ce:aa:a8:9f:15:e6:41:3a:07:01:4d:
8e:00:70:c5:c9:04:33:bf:07:da:93:a4:10:2a:8b:
1b:3b:be:16:dd:58:d5:17:e0:6b:2f:7a:9c:7b:b4:
a4:89:95:a9:c3:a2:2d:df:6f:07:91:08:5c:34:a0:
df:94:cb:c8:e9:43:59:f8:2f:11:3c:ea:f1:de:b6:
b3:1b:0c:d2:62:d4:b6:08:4b:87:4a:26:01:79:d4:
f8:4d:db:e0:02:20:79:82:27:74:23:ea:9a:04:7d:
e2:13:76:66:da:f0:07:2f:fb:08:2a:ff:db:d9:12:
6e:17:ee:d1:5a:9c:e9:b8:a9:5d:a4:3a:16:52:a7:
33:14:f2:e6:29:f9:fb:83:4c:2a:17:56:d9:00:59:
ed:29:25:41:8a:a7:22:86:8a:96:4a:1e:13:b4:eb:
d0:60:d6:35:1a:78:5b:85:9a:49:18:29:8f:cf:bc:
7c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:9D:95:A9:5D:17:A2:90:5B:8C:A9:FF:A6:53:AE:E2:49:62:1F:D4
X509v3 Authority Key Identifier:
keyid:7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:3a:d1:ea:ff:12:b0:ff:f7:c2:78:87:87:f6:15:fc:a4:c1:
2f:39:7b:e2:82:62:fe:02:02:14:8f:12:60:d2:76:11:39:ee:
57:15:e5:85:a2:ee:69:ce:c5:96:05:b3:a0:32:92:9a:a6:d0:
2d:79:dd:9b:eb:55:56:df:e0:45:91:e8:e5:12:01:ee:a2:ba:
0b:5f:02:00:53:9a:8c:78:22:12:d2:b3:2f:ca:c7:39:1c:0d:
da:30:8b:6e:8d:0b:c1:55:57:20:89:b2:80:21:cb:0b:31:7e:
8f:86:ea:52:15:cf:44:9e:79:11:b0:a3:56:6f:96:3c:cc:a1:
d6:72:7e:01:57:df:35:a3:38:9e:24:f4:60:f0:b5:d7:f6:8c:
f1:3e:a5:e8:53:a2:fb:2e:ab:aa:50:77:2a:26:59:49:19:44:
35:8d:9a:11:2a:1e:7c:1b:c2:da:32:fc:29:09:cc:12:47:69:
7f:40:f4:35:63:a6:d8:01:8a:0a:88:ed:1f:0e:bd:d9:87:bb:
ad:90:f0:93:d0:75:91:c6:66:5d:13:48:ba:9f:ce:de:35:87:
82:12:29:e3:4f:76:1d:2c:10:26:5e:3f:79:9a:b1:a9:64:70:
90:34:7c:95:c4:e7:cb:9b:bf:a7:8e:55:e1:19:e7:5c:c5:4b:
b0:1e:d2:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 02:59:35 2025 by rpki-client