Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
File: 0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft (raw, json)
Hash identifier: GRuWPtDA05+8TYqe8oD18ewy9xD/wsoYgBiHbw8P+GU=
Subject key identifier: EC:F7:F9:72:E4:6E:47:02:0B:5F:FA:A9:FA:FF:07:45:4E:D1:9D:5C
Authority key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
Certificate issuer: /CN=d04265fb11c2a220bc350718673e0704d1edadde
Certificate serial: 0199FC216E76A31DF7FA76E9A0979D491706
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
Manifest number: 120B
Signing time: Sun 19 Oct 2025 11:01:13 +0000
Manifest this update: Sun 19 Oct 2025 11:01:13 +0000
Manifest next update: Mon 20 Oct 2025 11:01:13 +0000
Files and hashes: 1: 0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl (hash: OrJeyoYlgDd9dI3QigvlJq4hk3RB7CaiX69gTKggQMs=)
2: SAF1KbjuvZdI9BSVM80ADIZ6zn0.roa (hash: wfp9L/QbKQTs8wDMXGcfyHh9p8y5+4/kclZuUrsUs5I=)
3: jOqd2wJBuE3wT3pRawlL9knhjV8.roa (hash: pvOd4te8ScnLLx0JwvYK3xwrNCWYubvf6Z+FLbM/DCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:6e:76:a3:1d:f7:fa:76:e9:a0:97:9d:49:17:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04265fb11c2a220bc350718673e0704d1edadde
Validity
Not Before: Oct 19 11:01:13 2025 GMT
Not After : Oct 20 11:01:13 2025 GMT
Subject: CN=ecf7f972e46e47020b5ffaa9faff07454ed19d5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c7:e1:f3:a2:33:87:2d:4e:11:be:06:47:3a:
88:1f:e2:13:3c:53:4c:11:fc:ce:80:46:e7:f7:59:
2b:42:cb:c0:da:21:5e:b8:58:31:bd:8f:3f:62:3a:
33:fb:6b:63:43:25:33:3f:dc:1e:72:75:b0:1b:53:
72:c8:d9:91:75:71:92:ab:59:8c:d1:f7:8e:3b:28:
12:03:ea:a6:1d:99:d4:1c:9c:44:0a:8e:49:68:ac:
ee:d3:4e:f5:4d:36:8a:f3:a0:3e:12:a1:71:9b:75:
9a:65:0f:fb:70:d1:8b:c0:83:59:fe:55:b0:c2:ed:
66:c7:5a:ca:97:be:1b:2d:98:bf:22:cb:37:1d:6c:
e5:77:20:ea:99:cf:6e:f6:0a:4b:8b:cd:0e:54:21:
e9:da:6d:63:c1:2d:05:1e:57:6e:a0:be:54:4b:6a:
0a:96:71:64:1a:80:15:c1:4d:08:be:f5:83:a6:b1:
5e:d1:f7:5c:68:a2:c4:cf:0d:cd:8c:cd:04:f6:c9:
97:f4:6a:a9:5a:13:82:c1:66:7c:55:78:9b:65:f9:
fd:66:0e:0f:a9:13:4c:e0:e3:e7:67:40:f5:fc:83:
f6:ae:85:e6:6c:68:79:80:39:83:4a:c2:24:96:99:
e8:26:5b:8d:00:22:d7:7c:5c:ca:8d:c7:2c:ac:a7:
37:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F7:F9:72:E4:6E:47:02:0B:5F:FA:A9:FA:FF:07:45:4E:D1:9D:5C
X509v3 Authority Key Identifier:
keyid:D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:da:59:51:41:b6:ad:55:04:56:87:09:fd:23:59:d2:eb:a9:
13:41:17:02:ba:b3:05:1d:3b:96:5c:e2:a3:e1:03:72:4f:0c:
07:6a:98:11:aa:eb:23:c2:79:0b:55:12:a4:2c:61:13:32:24:
82:c5:2b:96:71:f4:ce:05:97:01:54:c6:ce:79:70:c5:0c:32:
5e:b3:31:51:ff:78:6f:59:66:2b:e2:bd:05:c4:b9:9a:a7:5a:
b4:1d:20:87:2c:2c:01:f4:b0:c2:1b:27:b5:c6:a5:d8:25:f7:
be:4d:20:6e:0b:1b:55:57:b5:59:0b:75:ac:71:bb:8e:97:8f:
19:14:67:71:56:1f:fc:cf:fd:c9:70:ed:a9:1f:cf:cc:dd:2d:
c0:92:19:5b:c9:7f:d3:b7:8e:6e:a7:67:84:35:7f:91:48:f2:
3b:9d:cb:58:f0:e6:8b:5c:48:4b:cd:c0:1a:06:da:40:37:f1:
54:75:74:0b:0e:14:56:07:16:d4:60:c9:87:46:6b:8f:e1:41:
14:91:7d:ed:10:7b:e8:e9:81:55:39:9b:16:b8:b8:97:90:68:
0a:e8:3d:fa:34:58:33:54:ce:fb:a5:f9:c8:00:14:45:0a:49:
73:ed:ce:d7:a5:8f:cc:b8:92:05:25:60:32:33:1e:24:68:c4:
50:26:c6:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:35 2025 by rpki-client