Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: t4zXKDlmf4maGm2zjNcmAout/O1yCKa7YjZEH54S3Ks=
Subject key identifier: F2:44:C4:07:3A:66:D7:5D:F6:66:3F:BC:88:E3:F1:A4:9A:BD:50:4D
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 0198D65F876F9D7E8F5E5797D70B9B401EF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 069E
Signing time: Sat 23 Aug 2025 10:00:41 +0000
Manifest this update: Sat 23 Aug 2025 10:00:41 +0000
Manifest next update: Sun 24 Aug 2025 10:00:41 +0000
Files and hashes: 1: 4QzNEDyRlis-_JGlrISCfbsPszU.roa (hash: Y9K09YKp80O/JCR9exHbB8w/On++FMzgdee4rnQPOdU=)
2: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: JsjG7KGkIWd07Phlea9+Sd9Ydv/8kfcG7Lzz5SG+2oI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:87:6f:9d:7e:8f:5e:57:97:d7:0b:9b:40:1e:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Aug 23 10:00:41 2025 GMT
Not After : Aug 24 10:00:41 2025 GMT
Subject: CN=f244c4073a66d75df6663fbc88e3f1a49abd504d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:1b:78:f4:75:56:a9:cd:54:3d:ad:e2:f9:fc:
e3:c3:a4:d2:34:ec:7b:d0:91:98:b8:57:77:bf:61:
6a:35:78:77:a1:a7:9e:94:54:0e:8b:61:86:a1:2a:
64:c8:a5:7c:c3:59:95:3c:4f:09:9b:e0:04:44:da:
f4:13:95:b3:53:4c:72:10:a3:41:3f:c5:c2:38:75:
8c:04:36:ad:76:fc:6c:47:64:50:a7:03:71:96:4b:
fe:97:19:64:3a:94:31:e4:78:26:c4:0b:2f:32:8b:
26:1d:a5:38:ef:b7:1c:9a:21:f3:5a:bd:6c:4b:10:
6b:43:bc:60:e5:12:26:be:72:a1:cd:e6:58:77:ea:
d0:b2:24:6f:d5:3f:7e:8a:25:36:ad:64:e3:1d:57:
71:ca:cf:52:55:19:ad:4d:68:3b:d3:34:05:99:e9:
5f:f1:b0:de:98:33:f8:b1:ce:86:9b:17:62:27:c3:
79:02:f4:f6:31:8c:3f:44:66:3b:de:d6:f0:18:10:
c2:0b:6c:33:63:ec:c2:2b:e1:75:b3:14:35:b8:5d:
5c:7c:d4:fe:4a:1d:32:82:24:b6:1b:a7:81:b4:9c:
06:bd:5f:2a:04:4f:f3:2d:e3:91:2d:12:84:59:74:
8e:2c:ec:ee:92:0e:85:b8:82:ab:70:41:f7:58:d9:
4c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:44:C4:07:3A:66:D7:5D:F6:66:3F:BC:88:E3:F1:A4:9A:BD:50:4D
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:31:95:3a:98:ac:da:16:db:6b:81:10:45:4b:f9:81:d9:16:
72:1b:a9:bc:d8:04:0b:cf:df:2d:d6:dd:a1:e8:b0:21:5b:96:
02:f9:6c:83:9d:6f:52:9d:0e:f6:2c:7f:ee:93:64:54:e3:1b:
c4:52:3c:10:60:cd:c3:7a:48:24:e8:4f:60:70:bf:1b:cc:2f:
88:75:01:55:73:ee:b9:67:34:7e:b7:7e:91:8f:35:73:c8:12:
16:77:26:3f:67:f7:bf:cb:54:b0:95:a7:28:fa:47:36:bd:56:
29:ee:fe:79:2e:0c:72:78:45:32:e6:95:04:9a:7f:21:96:a5:
66:2f:70:ad:84:22:33:90:ba:c6:17:16:d3:bb:5c:4e:90:2b:
3e:1c:7b:dd:61:2d:b1:0c:7a:e8:94:1f:f7:1e:03:ef:4e:6e:
fa:46:98:20:6c:78:9b:f4:3f:30:c8:a3:4b:e8:cf:52:fd:52:
be:0d:79:83:3b:89:4b:90:48:d0:18:b1:ad:64:10:c2:95:57:
62:2c:ed:04:71:47:80:61:fb:ae:0a:db:7e:cf:b1:8e:71:5b:
b8:71:f4:a6:27:7d:cc:48:3d:ed:06:55:76:b2:94:ad:91:88:
9d:93:ad:cc:da:92:29:66:aa:0a:46:1a:27:e2:a1:4b:44:e2:
49:d0:98:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:32:53 2025 by rpki-client