Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
File: eYCaQAStlYNQpkbViavLPP3z7S4.mft (raw, json)
Hash identifier: 3ckNU2PYL4P1VJG6vksbj8cS4VDMKXnzIaIuejf1r0s=
Subject key identifier: 00:20:E4:81:26:06:5B:7C:6D:3F:91:AA:F9:19:C7:4A:DB:4D:9C:B8
Authority key identifier: 79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E
Certificate issuer: /CN=79809a4004ad958350a646d589abcb3cfdf3ed2e
Certificate serial: 0199FEB528183E8514B7D5B30F019FB36F75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
Manifest number: 0866
Signing time: Sun 19 Oct 2025 23:01:49 +0000
Manifest this update: Sun 19 Oct 2025 23:01:49 +0000
Manifest next update: Mon 20 Oct 2025 23:01:49 +0000
Files and hashes: 1: eYCaQAStlYNQpkbViavLPP3z7S4.crl (hash: Pbfzml3eiaPs7SE4qRQGdkchh7plLWuGAASnvqIqUQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 23:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b5:28:18:3e:85:14:b7:d5:b3:0f:01:9f:b3:6f:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79809a4004ad958350a646d589abcb3cfdf3ed2e
Validity
Not Before: Oct 19 23:01:49 2025 GMT
Not After : Oct 20 23:01:49 2025 GMT
Subject: CN=0020e48126065b7c6d3f91aaf919c74adb4d9cb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5d:1f:15:6e:7f:31:36:de:3d:5c:93:2e:a3:
ac:79:9e:9a:3d:d7:b9:c1:9d:8a:d4:3c:d7:0c:65:
bd:92:f6:c3:f2:1a:36:f9:77:60:68:17:85:08:90:
db:ae:53:4d:29:5a:f0:9d:61:29:6a:ef:2b:77:c6:
1a:ec:55:70:20:b8:f3:af:42:58:81:63:e7:2c:57:
07:43:7f:9b:85:64:b0:99:d7:de:d7:d3:94:e3:eb:
03:0d:af:3a:b6:cd:b2:72:b3:f3:3b:3b:a0:6f:6a:
7e:66:e5:56:0c:01:bf:0c:00:2f:a8:2c:e1:7c:7d:
65:13:38:8d:5d:7f:6b:1b:ad:24:b9:10:db:74:56:
b6:43:d9:75:27:23:ce:66:a6:9e:20:c4:af:d7:9f:
bd:4e:84:11:f0:af:e9:85:1c:a0:86:2a:2a:17:95:
b5:0a:6f:e9:50:95:fe:85:ec:d8:41:f6:64:e3:1e:
02:b5:63:a8:4d:65:08:32:d3:6f:30:ee:12:90:e4:
83:8e:c8:70:7a:26:72:89:ae:00:1f:c6:6d:ff:0e:
d6:18:76:18:c8:67:a4:f0:1d:38:14:fa:7b:5e:aa:
fb:61:51:be:cb:21:31:6e:03:fd:d8:f8:ca:4c:1a:
6f:b3:fd:51:5f:24:5f:ca:22:ba:2f:7a:de:ff:0c:
31:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:20:E4:81:26:06:5B:7C:6D:3F:91:AA:F9:19:C7:4A:DB:4D:9C:B8
X509v3 Authority Key Identifier:
keyid:79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:bf:6b:52:7d:1d:31:0a:28:53:3c:d3:1d:38:69:64:60:61:
bd:a8:da:18:56:13:e4:3b:0a:0c:31:9a:92:0a:1c:98:02:da:
cc:a2:56:a1:08:ad:ae:f0:14:da:bc:33:25:67:45:da:ea:51:
52:ef:a0:37:d0:a2:1f:d9:95:d0:ab:9e:b5:47:29:35:08:92:
74:57:c7:cc:75:2b:c7:14:43:88:57:32:e3:7c:24:5f:60:6c:
b0:0c:5a:7e:88:ad:10:d7:b3:79:ac:b4:e1:da:f7:cc:c9:1e:
05:15:54:60:67:1f:d5:ee:76:c0:66:3b:4e:d4:82:fd:00:1e:
76:64:1f:ac:4f:21:1b:25:af:2f:93:29:02:32:93:b3:29:af:
22:16:e3:73:96:a2:a0:29:12:aa:8c:fc:c5:9a:31:02:21:a9:
03:ee:3d:db:13:23:d0:96:86:e1:36:4f:77:76:5f:e1:e3:51:
6d:46:2e:36:4d:34:7a:58:c2:ab:9e:20:1c:7a:21:e4:c5:c1:
d0:59:bd:a8:18:1d:df:a0:22:11:09:a8:dd:78:78:3b:41:f4:
1f:bd:5e:6b:24:38:bf:25:5a:79:92:17:eb:c0:30:a0:5e:07:
91:b8:4d:80:d9:33:57:8d:85:d3:2b:40:6a:af:ca:59:56:95:
d6:a0:75:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:44:36 2025 by rpki-client