Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: bs+85octG3wF0411p6Q53A80jzbE/IZ74bCCCiamjl8=
Subject key identifier: E1:5A:33:42:67:F1:DC:CA:60:57:A8:60:07:F2:27:D5:50:7E:AE:4E
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 0199FDD91B7D7331C8AB45ED4235E2C03A0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 0737
Signing time: Sun 19 Oct 2025 19:01:27 +0000
Manifest this update: Sun 19 Oct 2025 19:01:27 +0000
Manifest next update: Mon 20 Oct 2025 19:01:27 +0000
Files and hashes: 1: 4QzNEDyRlis-_JGlrISCfbsPszU.roa (hash: Y9K09YKp80O/JCR9exHbB8w/On++FMzgdee4rnQPOdU=)
2: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: axQFg0lkg/CjNy6Lalm8LJXvS9eIEiYerfh7RzgEtls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:1b:7d:73:31:c8:ab:45:ed:42:35:e2:c0:3a:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Oct 19 19:01:27 2025 GMT
Not After : Oct 20 19:01:27 2025 GMT
Subject: CN=e15a334267f1dcca6057a86007f227d5507eae4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5b:34:2c:58:87:74:33:e6:68:17:52:eb:cb:
7e:87:c0:19:9c:09:7a:69:3a:f9:8d:12:53:fc:3c:
c7:b2:c2:36:c4:8c:64:5f:98:cc:d6:66:23:e7:99:
ff:92:93:02:1b:16:d9:f4:6a:f9:ba:65:a8:ad:6f:
fe:2a:82:65:cd:ae:63:d9:c9:96:67:74:5b:81:17:
09:50:9a:aa:f1:9d:dd:d0:df:91:73:b5:ce:26:9d:
30:17:59:08:ed:91:1d:7b:cf:e8:c9:ea:49:69:97:
09:dc:d2:9c:00:9f:fb:f4:db:c4:0e:74:fe:4c:86:
e5:81:8c:d8:b6:5d:29:8e:42:7e:28:38:2f:21:2b:
fe:3b:31:67:57:b6:0d:4d:38:14:fe:b7:b0:c4:b7:
a4:ff:3b:21:4a:b8:cc:86:8d:7d:aa:56:ba:ed:6f:
0b:8d:49:6a:d6:1a:62:58:e3:35:a7:e5:13:dd:ac:
72:11:2f:22:03:37:b8:6d:db:89:ff:d7:89:53:44:
64:4b:9f:0f:34:ff:52:d4:12:b8:e4:6d:06:64:dc:
ae:36:2e:cf:98:af:40:5c:e9:e8:61:b2:86:74:35:
7c:61:4d:ad:45:dd:eb:81:20:92:b3:b9:94:0a:c1:
6f:e7:b1:8c:8b:20:4c:e2:5e:84:22:cc:86:b2:69:
fe:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:5A:33:42:67:F1:DC:CA:60:57:A8:60:07:F2:27:D5:50:7E:AE:4E
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:04:9a:46:34:4d:42:78:09:a9:3a:5f:d8:ed:d8:ad:1a:47:
34:a9:ed:a8:0a:62:d4:ff:a2:90:ea:90:9b:af:f3:83:64:26:
d9:f4:d1:e9:be:98:cf:47:b7:9e:a6:48:f4:3b:36:b3:b1:1c:
aa:71:92:30:37:64:1e:0e:86:bc:1e:01:ed:ac:87:a8:38:cf:
66:2b:5f:6d:f3:31:60:f7:de:23:43:95:22:cb:4b:09:21:bd:
a8:eb:7a:92:34:30:17:49:32:b7:1c:53:c8:21:80:08:b7:9c:
a6:e0:e2:49:0f:90:54:b9:4d:90:41:be:46:22:fb:43:81:97:
8e:16:69:4b:50:45:51:84:6a:0d:06:9f:3f:a1:bb:95:83:0c:
60:59:b3:f3:12:f5:98:d6:a2:13:ba:ca:e5:3d:db:64:c6:1d:
38:e5:83:d1:ab:d7:d0:b2:0e:b0:30:9e:46:dc:d6:fa:da:cd:
d8:5f:4a:6d:7a:13:8f:fb:98:0b:6d:22:e9:93:4e:aa:12:64:
d0:c5:f0:01:e1:ec:27:f2:25:39:df:22:27:4c:3a:9c:b7:22:
e8:24:1c:53:a9:32:26:15:32:6d:a9:52:2d:fa:8c:99:3c:4f:
25:bb:93:1b:31:a1:b7:4e:27:81:de:e7:25:ca:f0:6a:6d:65:
1f:b0:2a:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:29:54 2025 by rpki-client