Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
File: e20oQEBEI571gkLyEOCxZmfrQNA.mft (raw, json)
Hash identifier: ODp1rNvGczE9f3NtFl0m5U13DyFZk5ljfuvFzNMPt2o=
Subject key identifier: 73:23:41:5E:53:10:62:4C:47:C9:95:85:66:FB:78:61:8A:03:29:B3
Authority key identifier: 7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
Certificate issuer: /CN=7b6d28404044239ef58242f210e0b16667eb40d0
Certificate serial: 0198D4E081D702233D7BA3E7BB2126DE3CA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
Manifest number: 15D9
Signing time: Sat 23 Aug 2025 03:02:19 +0000
Manifest this update: Sat 23 Aug 2025 03:02:19 +0000
Manifest next update: Sun 24 Aug 2025 03:02:19 +0000
Files and hashes: 1: e20oQEBEI571gkLyEOCxZmfrQNA.crl (hash: HkRUKof82jGatpiKXO8qshzVTgBdQ8LmBtVc9W2FhRc=)
2: hlbCnpGhMRluMY_1waDMmeV9vY4.roa (hash: KZsIHpuRlGx7ybmtLKdiNmONLiSIwlKsEPr24QJ/98Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:81:d7:02:23:3d:7b:a3:e7:bb:21:26:de:3c:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b6d28404044239ef58242f210e0b16667eb40d0
Validity
Not Before: Aug 23 03:02:19 2025 GMT
Not After : Aug 24 03:02:19 2025 GMT
Subject: CN=7323415e5310624c47c9958566fb78618a0329b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4a:2d:0a:90:d4:c1:d4:c9:bc:8d:6f:08:dd:
7c:75:b0:bd:df:2e:47:67:42:e5:a8:c5:da:eb:fb:
2e:b9:7b:06:c6:8c:47:30:63:62:46:34:ee:1c:41:
c1:eb:f2:17:7e:72:40:19:71:77:78:e8:f2:77:c4:
bc:0f:a4:8f:81:3a:60:0f:a4:c1:ab:f6:47:d5:d9:
fa:8c:b0:76:d2:5d:32:d2:82:5a:02:40:1d:32:46:
c9:ad:a1:f2:86:33:3d:0a:47:b8:15:29:e5:08:16:
72:b7:0b:96:eb:54:92:ec:24:28:d0:cf:95:56:43:
0e:d2:9b:1c:a2:5b:af:2e:9f:fc:f4:dc:86:36:b8:
8e:3b:f6:ba:72:57:08:27:f6:9e:f7:87:c5:ed:bd:
86:32:13:f8:ab:8b:e2:9f:e3:78:f5:57:de:91:24:
4a:16:2a:f2:06:aa:89:b8:b6:dd:b5:0e:57:00:45:
64:01:71:04:79:ac:86:0e:23:19:34:dd:a3:37:75:
7d:2a:bf:1a:74:5b:24:9e:59:fc:e7:f3:82:bd:1f:
92:fa:73:7c:6a:a0:aa:75:9b:ad:27:b0:86:9c:72:
72:b9:02:e6:b2:2b:10:34:e3:ea:f6:86:38:27:aa:
b7:50:a9:db:75:73:4d:18:70:33:38:e5:9f:b0:2e:
17:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:23:41:5E:53:10:62:4C:47:C9:95:85:66:FB:78:61:8A:03:29:B3
X509v3 Authority Key Identifier:
keyid:7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:1d:cb:64:31:63:b3:34:2a:aa:b4:db:9f:74:ab:0d:f5:04:
56:41:7a:b7:21:81:94:72:cc:ee:1f:1b:5d:e6:85:68:18:de:
d0:af:22:dc:8b:d5:54:28:65:25:26:a5:90:f4:c4:73:d9:5b:
69:68:de:c1:b4:8d:b1:71:d1:dd:94:94:3f:2a:82:f0:e0:0e:
dd:11:1f:40:86:1d:2a:a1:68:da:5f:24:da:b9:a8:0d:c7:77:
fd:26:69:6d:03:30:03:53:a2:a5:6b:d7:7c:c8:f4:6c:35:c9:
da:c6:70:a2:f1:01:77:75:21:b3:27:ad:9c:fe:34:43:48:38:
36:9b:4a:8c:7e:77:50:96:dd:84:a1:ca:47:09:af:15:1d:55:
d3:d2:56:58:0e:aa:d9:f5:03:ee:3e:40:55:c7:53:cd:c9:2b:
6d:7a:ef:9b:4d:e7:e2:a2:fc:58:40:c3:e7:f5:ce:e3:76:8e:
c9:87:ae:28:e4:94:b3:b8:16:7b:1a:11:14:ed:0e:fa:c8:b8:
63:65:58:cd:13:5e:da:07:58:86:d9:22:db:7c:46:ca:d3:fc:
1c:b5:8b:d8:c5:b8:16:d2:9f:c7:a3:c1:0a:94:00:ae:a7:d5:
5b:56:ae:1d:0b:f8:aa:0d:f9:b5:f4:dd:01:ec:27:bf:ed:6d:
a8:3d:69:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:52 2025 by rpki-client