Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
File: e20oQEBEI571gkLyEOCxZmfrQNA.mft (raw, json)
Hash identifier: nCzlYgrE5RrSu9f6r9NhHfhY5baslgbSdvnyz8baGgg=
Subject key identifier: EB:2C:82:9E:EA:86:C2:15:F6:38:72:B4:FB:0A:60:83:71:E1:BF:4C
Authority key identifier: 7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
Certificate issuer: /CN=7b6d28404044239ef58242f210e0b16667eb40d0
Certificate serial: 0199FA69E2231A81323F75F1D190E1DC018A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
Manifest number: 1671
Signing time: Sun 19 Oct 2025 03:01:07 +0000
Manifest this update: Sun 19 Oct 2025 03:01:07 +0000
Manifest next update: Mon 20 Oct 2025 03:01:07 +0000
Files and hashes: 1: e20oQEBEI571gkLyEOCxZmfrQNA.crl (hash: p5IklRpAFPmUkdsFsJN1y9f5tTeRDvBXhN1cxuBUrhU=)
2: hlbCnpGhMRluMY_1waDMmeV9vY4.roa (hash: KZsIHpuRlGx7ybmtLKdiNmONLiSIwlKsEPr24QJ/98Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 03:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:69:e2:23:1a:81:32:3f:75:f1:d1:90:e1:dc:01:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b6d28404044239ef58242f210e0b16667eb40d0
Validity
Not Before: Oct 19 03:01:07 2025 GMT
Not After : Oct 20 03:01:07 2025 GMT
Subject: CN=eb2c829eea86c215f63872b4fb0a608371e1bf4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e6:d8:16:fa:11:d8:5e:cf:37:a8:62:d6:cd:
0f:cc:71:21:ab:cb:1c:cf:2d:b2:b4:50:b8:0a:63:
25:11:62:04:b5:26:6a:1b:53:4b:a7:be:8e:4e:17:
5c:52:bd:99:46:ef:1a:bf:8b:0e:09:80:e4:42:5f:
39:f1:aa:33:65:04:ff:ab:d0:84:76:fa:ee:08:57:
a1:9c:28:ce:5a:f7:6e:30:15:af:46:41:c3:a4:aa:
01:92:ac:9e:5d:a0:3c:c1:01:25:eb:dc:5c:6a:ed:
f3:99:9e:f8:60:e0:b0:d4:b7:3c:0e:1f:b9:42:dd:
d5:de:b2:4f:fe:13:86:03:d3:d6:65:34:32:0c:0c:
bd:59:ca:ed:9f:17:ad:fc:ef:81:44:c4:3d:95:9f:
14:8b:25:24:20:b9:26:68:7a:13:b9:c1:45:b3:83:
6e:67:34:4d:fc:1e:a5:26:36:e8:49:42:75:0a:4c:
51:4d:38:2d:63:1c:2e:e1:76:d6:a1:81:1a:7f:33:
ad:b0:56:a6:5a:fa:61:73:45:53:3e:3a:e8:2d:ae:
0f:60:a5:04:f7:89:3b:f3:d5:9d:1c:64:24:49:99:
c0:bc:5c:70:2f:ce:33:4d:a3:d2:be:6e:4d:67:ad:
4a:ec:e5:37:67:0c:06:5e:7f:84:4b:44:cc:8b:95:
15:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:2C:82:9E:EA:86:C2:15:F6:38:72:B4:FB:0A:60:83:71:E1:BF:4C
X509v3 Authority Key Identifier:
keyid:7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:6a:9e:a2:98:82:44:92:c2:25:ff:29:df:6b:1f:0a:2d:55:
e2:02:32:c5:6f:3d:5f:0a:04:e7:04:65:0f:fa:98:80:61:b6:
96:41:c9:e7:7f:f0:2c:eb:43:76:7b:14:b1:e6:20:d0:ce:ac:
47:b1:f2:1c:c0:16:bd:b0:96:23:70:c2:8e:69:16:e6:4b:a2:
9b:df:87:53:0a:1a:c6:0d:24:0d:5e:0d:e1:70:8b:a6:f2:a1:
0b:f1:a1:95:f8:a5:99:37:49:a7:c1:3d:80:81:89:7f:b7:42:
96:16:c9:70:5a:0d:ec:b8:80:38:86:4f:38:6c:ec:77:17:e0:
ca:e5:2d:82:58:0b:3e:a1:b8:46:15:73:ab:88:12:e0:09:cc:
f2:1c:90:36:9f:86:30:c4:71:df:f3:d8:ab:90:67:f8:ca:d9:
ae:66:a7:62:3b:8e:58:67:42:89:d5:df:5e:23:16:60:28:85:
57:75:d1:66:60:6b:8b:83:b5:2f:4d:bb:e4:e5:ca:97:3c:ca:
ae:28:37:4e:d5:0a:32:c8:f6:9f:c0:e3:5e:09:3e:c6:8a:ee:
06:07:18:4a:8e:5b:36:ca:5b:96:5a:10:59:52:80:15:2a:c0:
72:dd:79:f1:91:f4:de:0f:fd:db:48:0c:18:fb:67:c9:ad:8a:
5f:34:13:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:45 2025 by rpki-client