Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
File: egtky28YoRQXQjEFCwF5kxteSG0.mft (raw, json)
Hash identifier: pJHopY+BBFfVj/YSjB0pQGJOzSp2EKvjYl+56yWYUxA=
Subject key identifier: 76:02:3A:32:F1:DF:60:39:B0:E8:60:8B:43:C7:5F:0E:52:4C:FE:D0
Authority key identifier: 7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
Certificate issuer: /CN=7a0b64cb6f18a114174231050b0179931b5e486d
Certificate serial: 0198D65FF5220E620D0FFE5EBFBC0D099E78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
Manifest number: 0357
Signing time: Sat 23 Aug 2025 10:01:09 +0000
Manifest this update: Sat 23 Aug 2025 10:01:09 +0000
Manifest next update: Sun 24 Aug 2025 10:01:09 +0000
Files and hashes: 1: cChdW9IKygfKR2rAFYsXhx5RqmU.roa (hash: TyxqseiqVgQ1lk5s+kcYQAHiXGFHWxgFXhhbbIVGfj4=)
2: egtky28YoRQXQjEFCwF5kxteSG0.crl (hash: KhTr3ejqiVcnGJDFCzDJmFTBh6iUvMtfaS7tZL0ifxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:f5:22:0e:62:0d:0f:fe:5e:bf:bc:0d:09:9e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a0b64cb6f18a114174231050b0179931b5e486d
Validity
Not Before: Aug 23 10:01:09 2025 GMT
Not After : Aug 24 10:01:09 2025 GMT
Subject: CN=76023a32f1df6039b0e8608b43c75f0e524cfed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:64:ca:b9:21:66:e0:1f:d5:c3:6e:11:40:12:
66:e3:f1:8a:fe:dd:b6:ab:71:ae:c9:6c:55:a1:00:
61:11:45:f6:b4:77:83:ce:6f:80:8e:9c:07:80:2f:
44:24:89:7e:12:86:5f:44:7c:f5:a8:14:fd:d7:e8:
67:76:a3:8c:2a:e7:4a:36:62:ba:55:14:5f:f2:23:
18:f5:5d:40:5d:6c:e5:3b:b7:2e:70:5a:4d:43:c9:
21:4a:45:9b:fc:3a:e4:45:b8:4d:d4:46:3c:ae:a4:
b3:91:b5:64:4e:9c:23:60:dd:7e:84:9e:64:02:8a:
84:97:29:47:f3:46:94:c5:72:dd:91:cf:01:7c:68:
73:71:43:55:cf:b9:9f:fb:33:c4:9b:61:95:0e:6a:
79:5e:00:58:a5:f7:7c:61:9f:76:b0:85:3a:33:80:
ac:37:b6:10:f1:d4:b9:48:a6:22:39:5a:f1:93:50:
e1:77:b1:04:74:b1:9d:9d:f5:b6:59:bc:55:c8:24:
27:6f:1c:06:c2:4e:21:4b:fd:c6:47:3a:cc:ea:f2:
4b:63:57:a7:b8:7f:f4:36:ee:30:fe:53:a6:10:3a:
30:84:48:e1:10:6f:27:00:14:b5:84:cd:b1:a7:fd:
03:02:a4:4f:02:ef:27:f0:84:32:5b:48:4c:f1:cd:
4a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:02:3A:32:F1:DF:60:39:B0:E8:60:8B:43:C7:5F:0E:52:4C:FE:D0
X509v3 Authority Key Identifier:
keyid:7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:ba:aa:25:cc:8a:09:2e:88:0e:9b:d8:0e:ee:60:90:25:79:
19:68:9b:b5:c8:38:90:5d:30:33:23:9e:fe:55:7a:7c:10:94:
8b:7a:99:29:53:6e:ee:9f:65:d8:eb:df:32:31:99:b6:50:22:
7c:28:72:5b:66:63:a9:ce:2e:19:28:e8:f4:cf:a8:91:a9:bf:
9b:45:fb:04:4c:52:0f:5e:1e:be:03:50:6e:a5:48:46:b9:31:
4d:2d:b0:14:4b:2e:bf:40:8f:1b:7f:b5:3c:fd:21:87:a4:03:
f1:69:bb:0a:65:ce:ed:6a:53:6b:f7:44:f4:1a:b9:bc:ff:86:
09:85:e7:19:4f:21:22:21:11:80:7f:9f:30:c1:2e:6e:9b:4d:
f4:a6:bd:3d:29:eb:4d:38:86:52:1f:8f:d0:21:d1:3f:25:45:
0f:dc:9e:51:f9:de:03:64:bb:29:2a:2e:8a:f5:5b:24:74:13:
14:00:ae:62:7d:c4:31:0e:f6:d1:2a:0e:bd:ae:d1:5e:2c:10:
1e:63:0e:cd:1f:80:0c:0b:28:13:b4:2e:ec:a9:d0:43:0f:1c:
61:1f:29:09:7a:ec:e6:be:5c:5c:d7:a5:c6:ef:c3:ea:c9:df:
9c:95:b9:10:73:48:28:ff:06:85:c5:aa:54:6e:dd:15:40:96:
4e:0a:08:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:37:32 2025 by rpki-client