Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
File: ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft (raw, json)
Hash identifier: HBy6jSXp3zv00qutVrSYjSmt/LOn4ID8oPI8TA27Hew=
Subject key identifier: 8D:D4:91:06:B1:5D:38:60:E2:16:45:40:05:77:FE:16:14:7A:C7:DA
Authority key identifier: 7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C
Certificate issuer: /CN=7a43253a368fc6475853971ba9235be0233d8b7c
Certificate serial: 0198D65FC0948F0340E2C075ED270CD2697C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
Manifest number: 10C2
Signing time: Sat 23 Aug 2025 10:00:56 +0000
Manifest this update: Sat 23 Aug 2025 10:00:56 +0000
Manifest next update: Sun 24 Aug 2025 10:00:56 +0000
Files and hashes: 1: EyXyZh1NMVmQSwOvgsi_6X0fzdc.roa (hash: zdUTP+PrB9t/KpvAQvCmMyip6WSChLUYJHZuuaMU0rs=)
2: ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl (hash: iP/yg52pIY7Kgxg+rtUWscvsFbNBAqDEyx7pRrgO9ks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:c0:94:8f:03:40:e2:c0:75:ed:27:0c:d2:69:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a43253a368fc6475853971ba9235be0233d8b7c
Validity
Not Before: Aug 23 10:00:56 2025 GMT
Not After : Aug 24 10:00:56 2025 GMT
Subject: CN=8dd49106b15d3860e21645400577fe16147ac7da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ec:1f:25:2b:b3:23:5b:b7:6e:12:1c:54:f1:
9a:89:4d:71:fe:5e:37:d9:34:c8:59:73:42:eb:b1:
30:d8:47:f4:fe:ac:1c:e3:89:7e:3f:7a:2e:66:02:
b1:63:0d:18:30:4a:15:d4:70:ea:92:8b:4e:f4:26:
f7:23:05:9e:28:a8:09:76:67:af:6e:6f:5c:1e:f8:
38:3d:2c:86:64:4c:92:37:c4:0f:4a:5a:8a:c5:fe:
11:03:06:3e:0b:82:0d:f6:30:bd:4e:ca:ae:51:98:
3e:5d:f1:67:e8:db:ee:e9:94:fa:f8:65:61:07:65:
35:71:ba:d1:bd:a1:52:f5:78:da:d8:94:4e:58:a5:
1c:1f:6f:a6:63:2a:59:69:05:fe:3c:a7:c0:62:1d:
af:ef:77:d8:47:1c:a7:52:86:7b:e6:47:3b:72:8d:
5b:92:a1:b1:5c:bd:26:93:17:50:8f:5a:19:53:68:
3d:a7:ad:0d:48:23:e2:e2:e6:52:13:b7:03:25:87:
f0:aa:84:dc:69:d4:91:3a:9f:46:6c:f9:ab:f3:0e:
4f:c4:ca:38:03:ae:90:e2:a9:86:a6:b1:bd:c0:f6:
06:9c:10:38:6d:b5:13:4c:78:20:6e:4d:f4:59:07:
17:9d:a7:d6:cd:85:ad:a4:67:1e:84:1e:5e:64:94:
99:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D4:91:06:B1:5D:38:60:E2:16:45:40:05:77:FE:16:14:7A:C7:DA
X509v3 Authority Key Identifier:
keyid:7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:65:88:81:80:54:fa:ea:de:d5:7b:9b:87:74:a4:21:94:96:
d3:44:c8:fd:f0:64:db:74:ff:8a:46:b1:15:c5:57:d1:60:d2:
c9:75:49:f5:7f:3e:cc:b3:86:c9:13:85:24:8a:48:f2:f0:51:
0b:ac:a3:5c:7e:44:bc:b5:56:ca:1d:7a:64:c2:0f:80:98:7e:
bc:54:92:07:7c:44:00:ac:4d:4c:93:d0:b4:cd:e5:fe:43:bd:
cf:1e:82:a1:97:11:af:f1:38:82:11:7e:0a:ee:fc:f2:a8:65:
08:68:b9:eb:92:97:4f:48:9d:93:d2:1a:63:39:21:78:66:56:
52:1d:cd:30:0f:63:62:56:7a:11:65:81:d1:7e:38:21:95:6b:
77:1b:76:b2:b1:ad:0c:3b:06:12:a9:a0:1f:09:17:aa:0b:20:
f6:d2:c9:92:1c:5e:a6:9d:43:3c:91:0e:82:14:3e:1d:59:89:
1e:b6:36:6f:b1:68:df:fc:86:4f:9c:ce:aa:0e:38:7a:f9:c4:
74:71:cf:65:18:0e:ed:fa:7f:62:c6:2d:fd:82:fb:41:25:09:
64:fb:7b:a9:40:47:45:38:79:98:b3:d9:bc:cf:f6:aa:46:a1:
ce:b1:21:f5:00:bb:02:93:ec:51:29:78:c8:b8:72:42:bc:2c:
12:1e:fe:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:17:26 2025 by rpki-client