Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
File: esYj77_BJHEhYiQMugKk2h1NzqM.mft (raw, json)
Hash identifier: plTdmN8xBTTYDdVdkvTQnUHYwpyQHK4t2XBLDHc9aro=
Subject key identifier: 26:DB:42:CB:E7:2F:48:57:DC:F9:F8:4D:6C:B6:27:DD:AF:7A:D3:4D
Authority key identifier: 7A:C6:23:EF:BF:C1:24:71:21:62:24:0C:BA:02:A4:DA:1D:4D:CE:A3
Certificate issuer: /CN=7ac623efbfc124712162240cba02a4da1d4dcea3
Certificate serial: 0198D65FED2454FA20489A664E05A2A7CA6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
Manifest number: 0E41
Signing time: Sat 23 Aug 2025 10:01:07 +0000
Manifest this update: Sat 23 Aug 2025 10:01:07 +0000
Manifest next update: Sun 24 Aug 2025 10:01:07 +0000
Files and hashes: 1: SYRnChSsh0_v6fjwXGx7ILcwh_8.roa (hash: ub+o2UwDjpsKp4KwHEYNQcFaXm52BqcyybdGRXcC+wM=)
2: esYj77_BJHEhYiQMugKk2h1NzqM.crl (hash: MFNUycFvxKpXZjQB1o3nP/cCgxJ4L6Ytj4EUVQ/QLlY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:ed:24:54:fa:20:48:9a:66:4e:05:a2:a7:ca:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ac623efbfc124712162240cba02a4da1d4dcea3
Validity
Not Before: Aug 23 10:01:07 2025 GMT
Not After : Aug 24 10:01:07 2025 GMT
Subject: CN=26db42cbe72f4857dcf9f84d6cb627ddaf7ad34d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cf:29:11:d9:b7:22:b7:c9:49:1f:45:9c:5c:
90:cf:6e:0f:16:eb:d6:5f:03:8a:00:bc:0d:09:20:
33:79:fe:ba:18:d7:8d:91:cc:e1:8f:9a:98:83:9e:
67:5d:00:88:bc:e8:1d:a4:de:cb:6e:d0:c0:a5:13:
5e:03:2c:1c:5e:26:6b:e1:4c:08:3b:35:fe:37:84:
9b:f2:07:ce:3a:09:3d:75:ed:c7:f4:74:14:4e:aa:
74:21:07:c0:e8:bf:bf:c6:33:f3:8a:11:fc:0e:3e:
d1:19:42:53:38:13:c2:1e:de:34:5f:ca:f3:0b:73:
29:85:df:d1:e5:44:d8:1a:02:8f:94:21:5c:09:99:
0b:19:86:f4:78:6c:44:86:f3:fa:dd:3d:fc:3b:d4:
8e:bf:73:07:64:7c:c8:9e:6e:46:f1:61:d4:99:71:
58:c6:47:30:e3:6d:04:20:96:8c:94:b7:3f:be:bd:
6f:f8:5c:3c:1c:02:7f:21:d3:f4:76:e0:d6:73:73:
ab:af:bd:b6:99:d0:b0:30:c3:11:3e:06:68:ae:bc:
f8:77:fa:ce:9a:2a:ef:16:b0:dd:8a:b8:9f:92:4b:
7e:20:34:82:53:58:38:b1:10:22:25:2c:58:fe:4b:
a3:3b:16:94:d6:15:91:50:6e:8f:7b:00:8f:8b:03:
08:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:DB:42:CB:E7:2F:48:57:DC:F9:F8:4D:6C:B6:27:DD:AF:7A:D3:4D
X509v3 Authority Key Identifier:
keyid:7A:C6:23:EF:BF:C1:24:71:21:62:24:0C:BA:02:A4:DA:1D:4D:CE:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:d9:b3:c7:a6:bf:ca:09:84:f3:95:8d:90:d9:df:37:ec:18:
35:dd:bf:9a:7a:07:7e:20:6a:ba:51:c2:a1:dd:9b:db:9e:2d:
97:2a:42:66:c2:d5:35:b2:dc:b1:21:23:15:72:1f:87:54:4e:
0d:d1:47:b8:3c:f3:87:c4:78:7b:bb:9b:75:a8:5b:b7:62:eb:
45:df:a4:6d:d2:37:54:c5:ad:81:de:a9:9f:dd:75:7c:03:98:
74:6a:c6:ad:82:e6:cc:bb:23:15:b8:3a:16:f9:6f:bb:08:dc:
83:01:fc:df:ef:a7:49:55:4f:6d:12:c4:6e:ea:a9:5c:81:4a:
82:51:5c:b9:28:aa:51:fa:67:e3:c7:96:a7:80:4f:95:8c:1c:
d7:76:b3:a4:12:d2:ce:26:3a:65:2c:50:0e:0f:a5:96:5b:85:
3a:15:93:6e:a3:9b:27:0a:07:3f:b8:1e:4b:d4:86:4a:30:68:
69:24:ec:c4:54:c4:86:a2:6f:7c:d9:55:ed:d3:83:6c:97:0c:
63:b4:a6:b6:40:95:a1:0f:b2:91:0b:b5:13:56:93:33:e4:df:
f0:aa:1e:90:7d:80:ed:77:6c:95:2b:3d:49:d1:66:94:12:05:
58:3f:e1:3c:f7:ef:6a:a4:54:4b:ce:b1:14:85:43:65:76:64:
04:63:50:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:22:59 2025 by rpki-client