Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
File: 7jcJhfg_QTMBEcNQzWseHurVJqo.mft (raw, json)
Hash identifier: OWQL2Xbi3hC1HYWUzBrX+it+vDGeH4OI3iJ/R8XKtio=
Subject key identifier: E3:5D:A4:41:FC:ED:26:53:27:B6:60:AF:AB:0F:FE:FE:88:E7:FE:E6
Authority key identifier: EE:37:09:85:F8:3F:41:33:01:11:C3:50:CD:6B:1E:1E:EA:D5:26:AA
Certificate issuer: /CN=ee370985f83f41330111c350cd6b1e1eead526aa
Certificate serial: 0199FC588E716A7D914F72988A8AFB2B6A22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jcJhfg_QTMBEcNQzWseHurVJqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
Manifest number: 16E8
Signing time: Sun 19 Oct 2025 12:01:25 +0000
Manifest this update: Sun 19 Oct 2025 12:01:25 +0000
Manifest next update: Mon 20 Oct 2025 12:01:25 +0000
Files and hashes: 1: 7jcJhfg_QTMBEcNQzWseHurVJqo.crl (hash: QogMp6BGyAFmr5aHBe1RXfGQPAbczT6opIa8q7Ws/QM=)
2: Vhh-HEWHbYSTjQgTrRsDTKlOjO0.roa (hash: nZHSxicdSyoslUfdZCmnypTUsy3rNzow8v41t9pPW+0=)
3: cXrx1ROqbRYTJpBaY9JfsPVk3Ow.roa (hash: e0I94SNdLBs+vaXUAirpLtLE8FeKHQEH/NhmFQRxO+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/7jcJhfg_QTMBEcNQzWseHurVJqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:8e:71:6a:7d:91:4f:72:98:8a:8a:fb:2b:6a:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee370985f83f41330111c350cd6b1e1eead526aa
Validity
Not Before: Oct 19 12:01:25 2025 GMT
Not After : Oct 20 12:01:25 2025 GMT
Subject: CN=e35da441fced265327b660afab0ffefe88e7fee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cb:a3:b5:f0:e8:f8:fc:7b:8c:4b:53:c5:9c:
12:11:d0:07:35:e4:68:c1:a7:aa:49:30:10:ba:a6:
b7:d5:f6:89:5a:66:71:a0:7c:8d:9d:52:58:9e:37:
f1:1d:1e:1e:9b:da:14:9f:72:4e:83:ac:eb:39:1d:
96:c0:9d:6e:9e:b9:2d:bc:17:a0:f2:a3:a1:38:aa:
dc:51:46:7c:ef:55:0f:ca:56:2f:3a:c9:d4:35:22:
06:c0:28:61:97:9a:7a:22:be:01:95:7f:ed:75:21:
44:52:13:6b:22:3d:48:ca:48:13:27:39:8c:85:87:
53:49:8b:3c:89:fd:59:55:fc:e8:65:26:8e:0c:df:
ca:d2:c9:63:b9:b4:95:fc:44:0a:85:d8:ef:23:5f:
e0:a0:5f:b5:32:79:ba:7a:1e:6c:78:ab:0c:2f:bb:
2d:d3:5e:19:33:bb:0c:cb:58:61:d5:2a:cf:dd:84:
32:c2:a8:89:29:fb:61:49:60:f6:95:00:e6:2f:c9:
27:2f:2e:6c:e3:fa:4e:8b:72:d8:e4:31:17:ba:7e:
36:0b:85:26:17:d0:12:9b:d9:d9:9c:f2:a3:b6:97:
bb:86:25:f4:17:58:3c:bc:bf:fa:f2:93:25:81:30:
c9:30:ab:42:df:ce:8b:c0:53:f3:6b:39:b4:05:2e:
20:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:5D:A4:41:FC:ED:26:53:27:B6:60:AF:AB:0F:FE:FE:88:E7:FE:E6
X509v3 Authority Key Identifier:
keyid:EE:37:09:85:F8:3F:41:33:01:11:C3:50:CD:6B:1E:1E:EA:D5:26:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jcJhfg_QTMBEcNQzWseHurVJqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:3e:9e:e0:3d:bb:22:c2:a3:23:32:f6:b0:70:a8:41:c2:03:
21:a5:0a:60:d4:7b:e9:b0:90:8a:2a:c0:a3:af:2c:42:e7:0c:
28:c8:86:3c:c3:75:f2:43:66:dc:c8:b7:8b:10:11:c1:b1:93:
2d:3d:8c:f4:d4:2f:14:d4:d3:e1:95:4a:60:1e:8f:b7:ef:83:
a4:c9:bc:3a:2d:dc:97:c5:bb:ca:b6:4a:5f:4d:46:67:3b:73:
c1:8d:5a:47:b0:d5:e2:cf:f9:e4:e3:cb:b8:4f:29:68:ba:a7:
25:8b:19:4f:6c:eb:75:1d:d5:f3:34:33:c3:0c:43:1a:f3:c4:
e5:0d:f5:fa:f8:d7:fc:3b:37:79:ea:14:3b:5c:98:8c:f9:97:
31:f3:1f:fe:68:e5:b7:71:8b:54:fb:e0:56:e3:61:ed:e6:5e:
b6:ff:91:52:62:20:25:58:a3:37:f8:dd:21:a9:6a:b8:ee:49:
8f:11:3f:7c:3c:8b:9b:19:ac:1c:70:fb:7c:df:e6:de:de:d4:
02:10:ca:2a:b0:14:b0:22:b9:1b:e3:cd:69:8a:f2:b4:19:10:
3e:55:e3:86:aa:99:a9:93:00:90:d1:97:56:4e:bd:33:fe:e8:
21:cb:b9:7a:7a:8a:98:f7:97:90:10:f0:db:86:d0:22:f4:8d:
5b:57:5f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:01:08 2025 by rpki-client