Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
File: 7sMTGXauon0XHGwmepjT84KmGio.mft (raw, json)
Hash identifier: +vI0AtcxJV1T2AryYtPZeqyp5PAEZxJDitNSOZp8lIU=
Subject key identifier: AE:C7:55:06:D7:4F:B3:6B:A8:D4:48:52:32:CB:6E:19:96:00:F2:B5
Authority key identifier: EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
Certificate issuer: /CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Certificate serial: 0198D4E02DDCB77DAE12512868EED8933607
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
Manifest number: 1040
Signing time: Sat 23 Aug 2025 03:01:58 +0000
Manifest this update: Sat 23 Aug 2025 03:01:58 +0000
Manifest next update: Sun 24 Aug 2025 03:01:58 +0000
Files and hashes: 1: 7sMTGXauon0XHGwmepjT84KmGio.crl (hash: t6Ht4DZBYqNn48DFwvhkqCD+ymz48pDBLlAv4SkDmI0=)
2: qvDSjgW1rEvWcrU4jpSi6rsDCpM.roa (hash: T8Hf/3k6CSkU6S1AK65rkEFSmvPdWLsEssJ2od+QI9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:2d:dc:b7:7d:ae:12:51:28:68:ee:d8:93:36:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Validity
Not Before: Aug 23 03:01:58 2025 GMT
Not After : Aug 24 03:01:58 2025 GMT
Subject: CN=aec75506d74fb36ba8d4485232cb6e199600f2b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:a1:21:8e:93:62:f5:56:75:f3:03:b1:64:1e:
e3:78:43:00:12:bc:61:20:07:59:8a:2b:de:e8:eb:
6c:26:65:94:5f:12:c2:80:15:52:c2:f8:50:d8:98:
96:d7:70:21:e8:5d:35:f6:66:e3:32:b2:1a:7e:d9:
d3:4a:2d:da:8a:fb:72:39:84:68:ca:50:49:6d:74:
db:75:b6:fc:f7:a0:7a:8b:7e:a7:5f:cb:88:b1:a1:
18:98:e6:79:9a:a1:5a:6a:5b:05:04:cf:45:f5:42:
0e:fd:49:ef:e4:96:c1:93:28:77:d5:ef:69:7d:08:
05:21:cf:6b:8c:9b:cd:f3:59:cd:d1:0e:55:78:e3:
4b:fd:ac:91:89:a2:8b:8f:59:59:2d:5c:28:9b:c6:
1c:36:50:07:ba:da:3c:58:85:f8:1f:36:4f:5a:0e:
71:03:9f:8b:78:60:7e:98:4a:dc:4a:4b:35:bf:19:
66:5a:c8:22:ea:4e:52:8a:59:d8:0b:88:9a:38:21:
a1:82:f4:c8:0c:cc:d0:e3:d0:9e:5b:1b:1b:7a:d9:
40:5e:03:51:ce:aa:b2:0d:f1:2e:0a:5c:14:fb:1a:
a1:2a:89:a3:e3:f0:ce:ab:40:3a:16:a7:30:0b:88:
49:38:42:68:66:6e:22:d2:30:13:8f:e9:18:51:ed:
11:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:C7:55:06:D7:4F:B3:6B:A8:D4:48:52:32:CB:6E:19:96:00:F2:B5
X509v3 Authority Key Identifier:
keyid:EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:5d:a5:bb:61:d6:97:36:65:38:b3:1e:64:77:c2:c4:b6:19:
d1:db:d8:fb:12:d6:0f:9b:d9:2f:58:08:94:de:3e:99:47:a4:
b1:24:ce:09:7e:77:7e:ce:a3:09:e3:9a:c5:bf:4b:32:5a:cb:
98:79:ac:82:c3:8d:07:01:18:e8:b5:84:58:2f:ef:40:55:4b:
7e:3c:bc:d8:62:98:f2:8a:b3:f5:5d:65:b6:9e:11:b2:8f:fa:
94:35:0e:c3:71:8c:9a:cb:f6:7b:6e:27:8d:2d:0d:7a:0e:5d:
51:93:d7:09:5f:84:e4:2d:2e:33:14:89:58:99:37:91:7b:21:
0c:0d:f1:1f:23:fc:d3:5f:33:34:fe:14:fd:33:20:3d:f2:3b:
e6:48:fe:6a:08:d2:3b:af:cd:42:d9:19:b6:ba:7c:32:f7:96:
95:01:da:13:a0:06:95:35:a0:cd:df:e8:68:a9:8f:b0:b9:a3:
50:d3:da:ee:48:f0:5d:e8:39:b5:0e:00:03:b6:21:82:83:a4:
4f:95:ab:cb:8b:20:ac:0e:0e:10:99:fb:50:3b:01:1e:03:1c:
2c:b3:70:3c:11:52:d9:df:3b:31:65:c9:f9:b5:fa:51:4e:26:
98:e9:3f:ad:eb:90:cd:ac:4e:3d:67:ae:23:61:68:35:c6:35:
40:1a:7a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:06:39 2025 by rpki-client