Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
File: ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft (raw, json)
Hash identifier: S5duGrzs+ib18MDoyoy8mN7lTjgBuYLic/htzNxSJpQ=
Subject key identifier: 2A:E0:C5:38:3F:01:A4:34:68:3B:73:A4:F0:F1:C2:87:03:9B:D0:07
Authority key identifier: 7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C
Certificate issuer: /CN=7a43253a368fc6475853971ba9235be0233d8b7c
Certificate serial: 0199FDDA39193677709B597AECB05C3D5118
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
Manifest number: 115B
Signing time: Sun 19 Oct 2025 19:02:41 +0000
Manifest this update: Sun 19 Oct 2025 19:02:41 +0000
Manifest next update: Mon 20 Oct 2025 19:02:41 +0000
Files and hashes: 1: EyXyZh1NMVmQSwOvgsi_6X0fzdc.roa (hash: zdUTP+PrB9t/KpvAQvCmMyip6WSChLUYJHZuuaMU0rs=)
2: ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl (hash: Folg6AAs+0/4cBxD0wnYNS6MYkfVVcvhv3/y7V4BnuY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:39:19:36:77:70:9b:59:7a:ec:b0:5c:3d:51:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a43253a368fc6475853971ba9235be0233d8b7c
Validity
Not Before: Oct 19 19:02:41 2025 GMT
Not After : Oct 20 19:02:41 2025 GMT
Subject: CN=2ae0c5383f01a434683b73a4f0f1c287039bd007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ff:ed:59:e9:70:e2:93:9e:26:bc:ad:40:59:
98:c5:1a:d9:74:0b:56:4c:dd:5e:22:a5:f5:eb:f2:
16:f6:c5:18:da:eb:30:fb:5f:51:eb:5e:3b:00:05:
cb:0b:59:1f:a2:0a:f4:e4:cc:a8:d7:b3:ab:27:3d:
4b:c3:dc:66:d5:62:53:74:8e:fb:ed:5b:d8:a9:36:
5d:2e:a2:40:c4:57:78:cb:65:20:8e:49:1d:bd:3c:
33:5c:23:9b:23:f6:9f:67:4e:b8:52:0e:4b:e1:39:
20:d6:ae:66:65:34:e6:49:d4:a6:52:28:89:f3:35:
83:73:f2:5d:39:0c:87:74:66:09:1d:e9:fc:eb:a7:
4d:bc:d5:9d:62:e2:38:f1:23:a4:8f:0b:76:f7:0d:
47:13:5e:48:d4:0e:75:c5:18:ec:13:70:f2:02:b9:
5f:27:c6:fc:8b:77:3c:4f:c0:22:0c:1e:12:60:89:
e3:da:26:88:57:2d:9f:d1:76:e0:ba:be:87:93:12:
32:5a:34:fa:a1:dc:1c:c3:d5:36:98:ce:db:d6:ee:
5c:50:dc:aa:90:34:63:55:5e:6a:4d:0b:c2:c7:0e:
3f:40:03:18:25:12:97:a2:67:21:f8:06:7f:e3:64:
fc:07:6f:67:de:10:c0:92:54:f8:b3:58:1f:14:29:
b9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E0:C5:38:3F:01:A4:34:68:3B:73:A4:F0:F1:C2:87:03:9B:D0:07
X509v3 Authority Key Identifier:
keyid:7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:3c:a1:87:aa:98:de:c0:16:3a:6e:0e:4d:56:6f:ec:12:e8:
f7:21:7f:8d:00:f5:e5:c4:3b:0e:96:53:9e:f4:a0:55:25:3f:
16:a8:d5:a6:8d:77:54:f8:d6:a3:3c:7b:8a:49:ca:e5:34:7d:
c1:b8:45:e4:2d:01:0e:ae:e3:59:6f:10:bf:87:33:ad:dd:37:
c9:0d:f9:9a:3a:5a:cc:60:ee:a2:15:eb:cd:83:2b:14:b5:b8:
0b:09:9f:d5:45:f0:50:e5:5a:48:63:1a:d7:c6:cf:54:46:cb:
6b:7e:68:66:4d:0d:9f:d1:66:02:86:57:41:98:05:6f:e2:70:
76:e7:b3:8e:9f:5e:2a:c4:68:7b:51:cc:e6:47:9b:e9:17:d7:
d4:c8:3b:02:07:8f:7a:27:9c:a3:3a:24:64:d3:a3:c6:66:ab:
35:26:ba:cd:9e:4f:fa:aa:00:33:d9:7a:2b:e0:4c:60:87:f9:
b7:01:4a:80:4e:6c:4c:46:59:b6:6e:79:cc:1a:9c:ed:0a:dd:
8d:d5:e8:2f:36:62:d8:02:0f:d0:63:fa:a6:66:06:a0:fa:5d:
a6:56:3d:8d:66:0c:7b:89:c2:e0:9d:60:92:00:b2:39:68:23:
c3:82:8e:cf:64:1f:00:7c:7b:f2:f5:73:03:16:91:53:4a:e2:
94:19:45:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:58:44 2025 by rpki-client