Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
File: egtky28YoRQXQjEFCwF5kxteSG0.mft (raw, json)
Hash identifier: ftCpDWmJQCu99zPq9HkA+UN6DBpVqF56AS/bolVI2gU=
Subject key identifier: 7D:D9:BA:A1:BA:15:BC:33:A2:BC:75:52:99:16:26:03:8F:01:40:70
Authority key identifier: 7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
Certificate issuer: /CN=7a0b64cb6f18a114174231050b0179931b5e486d
Certificate serial: 0199FBEA8540EEB707D1A6E889BD86D07909
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
Manifest number: 03EF
Signing time: Sun 19 Oct 2025 10:01:14 +0000
Manifest this update: Sun 19 Oct 2025 10:01:14 +0000
Manifest next update: Mon 20 Oct 2025 10:01:14 +0000
Files and hashes: 1: cChdW9IKygfKR2rAFYsXhx5RqmU.roa (hash: TyxqseiqVgQ1lk5s+kcYQAHiXGFHWxgFXhhbbIVGfj4=)
2: egtky28YoRQXQjEFCwF5kxteSG0.crl (hash: LV2tntayVQqmr1jhnunEx26h+pNZZ7DXfayfhK8OHcg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:85:40:ee:b7:07:d1:a6:e8:89:bd:86:d0:79:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a0b64cb6f18a114174231050b0179931b5e486d
Validity
Not Before: Oct 19 10:01:14 2025 GMT
Not After : Oct 20 10:01:14 2025 GMT
Subject: CN=7dd9baa1ba15bc33a2bc7552991626038f014070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b4:52:37:c6:b1:1e:6b:9c:78:d4:97:d9:2b:
dc:19:e0:47:04:ac:c4:56:75:08:36:10:1b:64:eb:
bd:2b:f9:ab:2d:07:83:f2:3c:7f:06:75:55:b8:2d:
d4:c0:b2:ef:bd:65:46:66:d1:2b:ba:f5:59:29:ae:
0a:b7:bb:83:5e:61:43:f4:8d:4c:70:9e:ff:4a:8f:
1f:d7:dd:6b:dc:fb:27:ce:18:a1:3d:48:7f:5e:6f:
a0:44:8e:6a:be:a7:3b:13:1a:4f:8d:6d:e1:1b:76:
a4:dd:2c:14:19:c8:1c:3b:69:7c:9b:14:c4:90:35:
6e:f3:32:c3:43:db:2e:0d:f8:8d:95:4e:c8:db:b8:
62:39:f1:1e:86:35:58:6d:1e:43:e1:01:e6:c8:a9:
71:a9:ac:58:c2:a1:f2:08:c6:c4:ae:d9:59:6f:47:
11:97:9c:3c:e6:46:24:ad:52:1c:9e:c0:05:be:26:
34:34:8e:c3:8f:f8:8b:4f:8a:9b:88:fd:d9:aa:06:
50:9e:71:cb:f7:2f:96:a6:28:f3:cc:50:e4:2e:35:
f1:3d:6d:fd:b4:af:3a:bf:b5:2c:78:ad:7c:48:77:
3a:20:7e:3d:a2:0e:81:ed:e3:f0:21:41:e3:de:3b:
0f:63:e1:85:3b:23:87:d5:06:e0:57:d2:f3:d8:2e:
4a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D9:BA:A1:BA:15:BC:33:A2:BC:75:52:99:16:26:03:8F:01:40:70
X509v3 Authority Key Identifier:
keyid:7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:7a:0e:10:3d:0e:8d:9e:80:fa:ff:9b:7b:69:2d:f7:2e:ea:
6d:b8:cf:f2:fc:9a:d2:6b:87:1e:f6:78:07:19:64:98:13:7c:
30:e6:61:fd:6a:af:3e:4f:f5:f5:d3:05:ed:e4:63:07:0b:3e:
4f:9b:b0:d0:18:50:9a:e5:3f:50:53:3f:ab:f5:d3:92:a4:62:
b3:49:f6:e6:f0:ad:0d:44:4c:ab:d3:c0:46:e2:4d:6f:20:b9:
4d:6e:29:34:10:d2:12:67:b1:cc:3b:7a:c9:33:79:7a:43:8e:
b6:ec:78:af:7d:1d:b7:92:91:2c:e4:71:c8:05:46:b4:c0:99:
66:33:2b:c7:74:70:74:4d:a5:07:47:c2:09:1d:94:ad:be:22:
25:71:32:df:76:34:d9:19:dd:e6:1c:30:8d:08:48:f6:e6:2b:
b2:a7:30:79:6d:70:d6:60:2d:db:87:be:fe:37:ac:c5:fb:3e:
17:c6:8b:e1:0e:3f:db:eb:97:62:c0:cd:42:94:1f:40:76:d1:
c5:a5:5b:6d:0b:e8:cf:5a:e7:31:47:3b:b9:30:5d:5b:84:00:
31:38:e5:5a:4d:2a:ad:a2:48:a4:29:8a:6e:8d:2d:64:5d:62:
97:a1:a7:9b:a1:50:27:db:98:f4:1e:82:67:c2:0f:a2:b6:4a:
70:a8:0d:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:59 2025 by rpki-client