Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
File: 7sMTGXauon0XHGwmepjT84KmGio.mft (raw, json)
Hash identifier: 92ecQtN4DvSEaKslgmUMHqr1KskxsCHWTUxQaYjF6ec=
Subject key identifier: 1D:EB:41:FC:33:45:FA:2E:4E:3E:AE:33:DE:35:53:36:FF:97:86:06
Authority key identifier: EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
Certificate issuer: /CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Certificate serial: 0199FC5884968EC21C7761E00D1DDECEFEE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
Manifest number: 10D9
Signing time: Sun 19 Oct 2025 12:01:23 +0000
Manifest this update: Sun 19 Oct 2025 12:01:23 +0000
Manifest next update: Mon 20 Oct 2025 12:01:23 +0000
Files and hashes: 1: 7sMTGXauon0XHGwmepjT84KmGio.crl (hash: jCB3DEjv/AQuMiAsdNgx6iJJMyHeicK/L4ElKpPA440=)
2: qvDSjgW1rEvWcrU4jpSi6rsDCpM.roa (hash: T8Hf/3k6CSkU6S1AK65rkEFSmvPdWLsEssJ2od+QI9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:84:96:8e:c2:1c:77:61:e0:0d:1d:de:ce:fe:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Validity
Not Before: Oct 19 12:01:23 2025 GMT
Not After : Oct 20 12:01:23 2025 GMT
Subject: CN=1deb41fc3345fa2e4e3eae33de355336ff978606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:28:ab:6d:b2:64:f0:c7:ba:fe:ff:d1:35:70:
97:b0:2b:e8:c3:5e:f7:c5:d5:cb:85:9e:60:b5:23:
0a:a8:c7:d7:98:b5:60:78:61:ec:60:a6:ed:0d:47:
bc:e2:3c:54:d2:be:46:66:be:af:e9:c5:95:0a:cc:
fb:2e:a7:14:f9:73:77:35:19:de:2f:ab:ac:18:f3:
f2:82:ab:7f:fd:3c:36:4d:9a:21:3b:da:06:84:93:
33:f4:e5:a6:7d:a8:d4:70:61:42:14:3e:04:d8:40:
0b:29:6f:84:7f:ea:f2:df:fa:d2:43:e6:11:dc:05:
27:8b:19:dc:14:26:21:48:77:12:26:b8:9e:43:83:
0f:32:0a:10:b0:98:6c:8a:02:91:80:7c:c4:8c:23:
27:82:42:cb:b2:f3:a1:12:dc:50:a8:10:43:03:78:
09:ff:b2:3a:ca:b1:24:86:88:1c:5a:5b:dc:66:64:
a2:b5:1d:4b:5d:45:37:23:7c:00:14:4c:6e:cc:09:
66:f8:36:d4:8a:82:b8:f1:7e:e9:83:2b:54:11:3c:
c0:eb:ae:d9:06:e3:3d:6e:21:17:7b:9a:d0:bc:f1:
1a:44:fc:27:8f:b5:e4:ec:b3:d1:6a:3a:af:ff:13:
5f:64:93:dd:e4:ba:76:91:36:f4:8b:1c:50:4e:63:
9e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:EB:41:FC:33:45:FA:2E:4E:3E:AE:33:DE:35:53:36:FF:97:86:06
X509v3 Authority Key Identifier:
keyid:EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:c3:3c:23:aa:1b:bd:e6:9a:ab:1e:c6:61:74:3e:df:78:e3:
fe:c7:18:0a:51:31:b8:81:9e:bc:96:9a:1e:4c:09:c3:a4:f2:
92:c8:05:87:3d:d6:97:d0:5e:f5:75:57:37:9a:8d:4e:29:c3:
d6:59:da:a0:e5:68:55:0b:a9:9b:18:ae:67:d4:48:87:93:49:
15:aa:5a:35:99:6c:dc:cf:fe:fa:1c:af:34:34:46:42:7c:c9:
b2:4f:a2:24:0a:c0:c1:52:6c:3b:fd:ad:0d:26:f5:3c:aa:7c:
55:99:ad:72:6e:50:fc:1f:9b:c5:94:74:47:36:53:99:4a:4f:
b9:fd:4c:79:7a:8e:8f:70:b3:3d:0e:af:b1:3a:2f:8b:c3:e7:
80:d8:ba:87:50:23:04:19:77:3e:c4:f9:0f:78:a7:3c:74:ff:
31:1b:a9:5c:a2:f8:73:5b:2b:6d:5f:09:bd:ca:5c:e8:29:9e:
4b:fc:69:32:2b:2f:be:45:22:b5:c5:5a:bf:25:6f:b6:15:e1:
83:bd:ae:35:ee:67:b9:c3:63:57:7b:b0:51:92:d6:8f:ec:c1:
1b:9c:29:f1:05:b0:03:20:07:6f:69:1e:e9:f8:0d:61:60:4f:
be:39:de:3c:02:19:b7:b8:40:d5:b6:17:c5:2e:fe:2b:50:cc:
46:99:48:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:51:08 2025 by rpki-client