Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
File: ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft (raw, json)
Hash identifier: NpAOz3qy1tw1IMr2cOMPYkbqSDtSHWrX+TzLXuj0eSs=
Subject key identifier: 20:A0:84:0B:FD:AE:9F:D7:A7:E0:94:D2:9E:38:ED:05:A0:3C:43:95
Authority key identifier: 7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C
Certificate issuer: /CN=7a43253a368fc6475853971ba9235be0233d8b7c
Certificate serial: 0197B6A1CEDA1209893712A353AA7F7CB547
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
Manifest number: 102D
Signing time: Sat 28 Jun 2025 13:02:26 +0000
Manifest this update: Sat 28 Jun 2025 13:02:26 +0000
Manifest next update: Sun 29 Jun 2025 13:02:26 +0000
Files and hashes: 1: EyXyZh1NMVmQSwOvgsi_6X0fzdc.roa (hash: zdUTP+PrB9t/KpvAQvCmMyip6WSChLUYJHZuuaMU0rs=)
2: ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl (hash: 4YSkqlsri3OmZFcXfx0MZfXJTD//RtQ3VKebBss2aLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:ce:da:12:09:89:37:12:a3:53:aa:7f:7c:b5:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a43253a368fc6475853971ba9235be0233d8b7c
Validity
Not Before: Jun 28 13:02:26 2025 GMT
Not After : Jun 29 13:02:26 2025 GMT
Subject: CN=20a0840bfdae9fd7a7e094d29e38ed05a03c4395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:4b:fc:b1:e5:17:b9:ff:d9:33:e2:5d:f0:93:
bf:5a:d3:3b:d8:eb:a7:4e:55:e8:3c:3c:5e:82:bb:
14:88:60:9f:f0:34:14:ba:cc:c5:7f:cc:6f:71:6b:
4e:7c:5e:35:ce:84:4f:8c:1b:31:7e:ca:83:ac:fa:
cf:d6:87:e3:38:fb:e0:f4:87:9f:77:d6:2e:2c:92:
75:e5:59:82:b0:0d:95:9a:95:85:a1:f1:1c:8d:bb:
2c:8a:66:b4:cf:0d:f8:43:f7:2c:4b:02:41:97:a7:
31:38:78:aa:20:9c:51:16:ab:9c:de:35:41:19:ed:
9e:86:cf:be:00:1a:48:e9:2a:ab:1c:ff:d3:f7:07:
bf:b4:bc:6f:13:20:bd:17:d0:ff:b5:cc:c8:fb:8a:
e1:da:e5:41:e3:1b:6e:92:c3:bb:e4:a5:97:fb:e0:
39:7b:de:22:28:1e:e4:3c:c8:5d:31:6d:a2:a9:0a:
63:b6:4a:ce:48:1a:67:1a:a0:7b:93:05:e7:32:ee:
49:ab:a2:48:f0:a8:a3:b1:41:d7:88:c2:a3:15:8c:
33:d0:8d:c2:8b:da:45:08:a9:80:ff:88:7a:7e:50:
8e:28:90:77:a2:9c:21:51:18:07:63:2f:84:78:38:
f1:10:f4:df:dc:19:38:a0:91:0e:26:df:cf:db:ff:
8b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A0:84:0B:FD:AE:9F:D7:A7:E0:94:D2:9E:38:ED:05:A0:3C:43:95
X509v3 Authority Key Identifier:
keyid:7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:a6:7b:65:ab:bf:ac:ee:79:33:17:2e:29:7a:5b:56:c3:18:
1f:bf:78:ce:a2:11:b2:49:de:08:14:56:7b:87:70:66:ba:36:
82:ef:40:2c:8a:e7:82:ff:cb:b5:37:08:7d:7c:45:b0:e0:4d:
89:fe:9b:8c:b0:d1:83:a0:72:c3:c9:89:d0:25:a8:dd:6d:dc:
3a:1c:4d:39:08:fa:19:14:2b:47:c0:a4:e5:8d:3d:da:a7:a3:
ed:73:95:6c:4f:12:1b:13:ca:3d:8a:34:98:f4:0e:28:6f:83:
14:f0:fc:e7:48:b9:4b:c3:77:5d:ea:10:f2:a6:fe:0e:db:af:
5a:a2:7b:e6:f7:06:cb:4e:db:8f:62:e8:2f:44:17:33:b2:1f:
ff:d3:4f:e2:fa:24:3a:8d:fd:b1:69:e9:57:e4:2b:1d:88:b7:
2b:93:73:fb:53:c3:61:85:86:04:97:c1:ed:1f:09:fd:46:f8:
23:c9:53:f6:17:99:a4:1c:6f:43:89:1c:33:0a:1c:9f:5b:7d:
5e:47:e3:40:69:04:b0:4f:82:79:62:fe:aa:e6:94:0a:b1:7c:
55:e8:97:b2:5e:25:d2:7f:cc:1e:fd:b1:39:57:ca:f6:96:5f:
6a:68:aa:93:fa:43:18:a2:24:92:09:47:49:ce:26:5d:2a:aa:
34:2a:59:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:34:08 2025 by rpki-client