Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
File: evGnv3QoXbLoIJH79GOi7vbjpXg.mft (raw, json)
Hash identifier: nXwcd9urPjEKTSiSUcbSBIaM6Mewj8tQ05QUIDjnXbI=
Subject key identifier: 52:EE:95:B4:E8:52:75:7E:32:9E:B9:F1:73:F7:8C:D3:EF:D1:8C:B0
Authority key identifier: 7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
Certificate issuer: /CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Certificate serial: 01992D46B9BCEAAAACA27B76C4DE8D898068
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
Manifest number: 03B2
Signing time: Tue 09 Sep 2025 07:00:33 +0000
Manifest this update: Tue 09 Sep 2025 07:00:33 +0000
Manifest next update: Wed 10 Sep 2025 07:00:33 +0000
Files and hashes: 1: HeJAD4YHm_sJaYZYcU9XbBvO2ZQ.roa (hash: X87UHvfB+nlPvI0ZCTJdcn/R8oWH+T+ddbzxZs7Ye8A=)
2: evGnv3QoXbLoIJH79GOi7vbjpXg.crl (hash: r2iD8k9tIZVYV2bdKF5i3UbQS/hZdBLjl13VThuT0xM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2d:46:b9:bc:ea:aa:ac:a2:7b:76:c4:de:8d:89:80:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Validity
Not Before: Sep 9 07:00:33 2025 GMT
Not After : Sep 10 07:00:33 2025 GMT
Subject: CN=52ee95b4e852757e329eb9f173f78cd3efd18cb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1e:6b:d3:40:61:5d:43:2d:cd:fc:ed:38:69:
72:f7:06:56:d9:f3:17:a3:21:1c:c8:6b:c9:49:8f:
c0:e7:3a:ce:6b:36:ee:ce:20:40:03:b1:ae:c8:53:
75:a4:aa:ba:26:31:e1:44:e1:82:b0:db:ea:e9:52:
3e:b8:0b:36:3f:2d:70:07:e0:9d:1b:f0:16:07:dd:
3a:a0:2e:b7:e7:60:b4:ff:9b:3c:cd:02:45:a0:e2:
95:7a:47:bf:59:b0:cb:f6:a6:34:bd:97:42:b9:15:
aa:fc:00:0c:0a:eb:97:78:49:ec:a6:8f:a7:ac:04:
75:d7:60:17:42:47:f4:f4:c7:d0:aa:c1:7d:0a:7f:
20:73:e4:ae:44:e9:f2:48:2e:32:d1:6b:b8:81:6e:
d9:cd:c6:6f:9a:06:80:f4:22:66:12:08:0c:2d:29:
0a:ce:0c:fc:3b:dc:35:e5:43:ca:b3:31:bd:f6:1a:
73:57:96:57:a6:95:0c:59:b8:45:13:d3:1c:32:e8:
58:ed:64:08:46:a8:9e:a0:9c:5c:f9:3d:50:92:44:
77:96:92:fa:0c:32:21:bf:87:e6:54:0d:08:43:c6:
78:bd:dc:a5:ec:1c:d9:d6:00:8e:8c:a2:ec:97:21:
e2:c9:e3:24:ec:9d:2a:4d:0b:5f:2e:9d:7c:7c:35:
68:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:EE:95:B4:E8:52:75:7E:32:9E:B9:F1:73:F7:8C:D3:EF:D1:8C:B0
X509v3 Authority Key Identifier:
keyid:7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:d0:af:04:6b:bb:ca:2f:29:32:a6:99:41:09:8b:a3:e5:77:
b2:33:62:8c:96:61:c9:d7:52:bf:4c:39:ba:01:a0:47:97:df:
78:16:d1:2b:89:09:38:be:00:4e:df:dd:36:2d:b0:65:6f:5a:
b3:74:2b:01:e2:9c:e5:62:99:ee:cf:ef:51:c0:56:89:4f:1e:
94:2d:cd:2f:18:ec:4c:6b:1f:7a:7e:cc:f0:2d:7a:e5:84:ef:
27:38:6f:59:11:e7:a0:ce:39:e4:64:05:c8:19:29:c8:9f:b2:
21:97:4b:a6:c6:41:91:ca:f3:42:2f:38:6d:e0:78:0c:fd:ef:
ed:6a:33:f7:1d:43:a9:7b:ea:ff:53:5f:43:d2:db:84:dd:c4:
6c:47:66:fe:9b:ea:be:2e:68:7c:b9:f8:60:50:37:d0:ed:1b:
05:69:4a:79:a0:9a:38:5a:c6:48:da:1c:05:e2:c5:9c:91:6b:
75:ab:e5:5f:c7:57:fc:03:ce:21:00:1b:e9:77:36:19:9b:45:
b6:af:fc:a4:d6:d4:3a:65:06:7b:38:21:44:5f:c2:f9:a7:5a:
ea:69:b6:9a:4e:c0:41:1e:0b:4a:ec:b6:1f:d0:54:2d:29:f7:
4c:d6:62:6e:11:3d:26:f2:ae:08:4c:d2:78:bf:c4:a6:0f:61:
11:93:ad:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 08:55:00 2025 by rpki-client