Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
File: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft (raw, json)
Hash identifier: oDTuLCXY02lqUOzNrmaGXJ+5k2ufBGYgV0MfuTbd7uk=
Subject key identifier: 1D:A2:A2:CD:31:D2:3D:A7:38:EE:D9:D2:4B:3F:5C:D6:70:1A:D3:90
Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144
Certificate serial: 01988544544258CB4882A78AED78B02505B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
Manifest number: 0D07
Signing time: Thu 07 Aug 2025 16:01:44 +0000
Manifest this update: Thu 07 Aug 2025 16:01:44 +0000
Manifest next update: Fri 08 Aug 2025 16:01:44 +0000
Files and hashes: 1: HyPwmwNvj6CdMpZdefHGIg4yDzE.roa (hash: OXYxYv21hsNNqtBtEPFKc2/1/qoxMz48zojYmP3J5L8=)
2: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl (hash: 2EkcJj6jUNjNlZdoixZvqvqq7/GcCzbXK1YpEGEKtE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:85:44:54:42:58:cb:48:82:a7:8a:ed:78:b0:25:05:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144
Validity
Not Before: Aug 7 16:01:44 2025 GMT
Not After : Aug 8 16:01:44 2025 GMT
Subject: CN=1da2a2cd31d23da738eed9d24b3f5cd6701ad390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8a:23:79:ad:a2:dc:1e:66:e4:74:1e:e4:cf:
40:af:d8:8d:e8:fa:3e:22:53:eb:7e:f1:d5:ff:b4:
61:6c:49:88:7b:2b:f2:8f:d2:b1:5d:df:8d:33:a0:
be:19:f3:66:c6:2b:89:cd:4f:32:c1:ba:83:9f:7f:
da:0b:6d:1a:0d:af:6e:15:c2:bc:fa:91:4f:ea:bb:
12:f3:67:9b:83:c8:37:e6:eb:a6:20:d4:0c:82:dc:
ff:3a:d7:57:81:72:4e:4f:23:e7:7f:c0:fb:7f:39:
ec:fa:90:31:58:ca:1d:6a:e3:3d:67:ed:59:20:c9:
09:04:d6:92:6d:e7:b3:27:01:54:aa:18:f9:b5:a1:
a3:a1:ba:57:a8:7f:50:48:0f:15:13:43:cc:39:69:
c0:b2:ea:47:ae:7a:a0:cc:fd:77:a5:65:f0:bb:29:
f4:2e:28:c9:97:40:45:61:41:f7:27:7d:e8:7a:b2:
20:03:60:76:5c:e5:dc:cb:0b:e8:65:d4:77:ae:56:
47:64:a1:c7:18:67:60:90:e3:6a:fc:7b:c9:39:5e:
90:22:02:9f:64:88:d6:e2:1e:89:cf:9c:63:5d:40:
c9:6f:32:8d:ac:9a:4f:ef:db:bf:c4:bf:e9:e5:21:
51:ce:76:f4:42:18:67:cd:f3:ad:fd:14:27:59:11:
12:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A2:A2:CD:31:D2:3D:A7:38:EE:D9:D2:4B:3F:5C:D6:70:1A:D3:90
X509v3 Authority Key Identifier:
keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:c9:75:d9:b1:13:bc:37:33:af:5e:b0:a6:e2:7b:93:5f:bc:
46:61:9e:ed:5e:99:50:33:c4:4f:53:cb:4d:4e:45:5b:6b:50:
db:a6:c5:c4:1a:5b:32:9a:4e:d5:d5:9a:3c:22:a6:8e:08:ec:
32:a6:fa:6a:e1:a3:f5:e0:39:c9:da:b2:3b:cd:3b:4e:ab:ab:
a1:81:0b:05:14:41:a6:eb:3c:74:48:79:73:74:68:7e:0c:2d:
28:58:88:8f:13:bf:1f:17:f9:c3:a7:6c:01:64:f1:54:b6:19:
67:ec:33:57:6a:24:ef:af:d5:5b:3f:d0:44:e2:55:e6:68:b7:
11:ec:83:5a:6f:cf:74:5d:8a:c4:21:cb:98:2d:3f:e0:46:40:
5f:a4:b6:e8:4c:03:1f:ff:71:93:cb:7e:83:ee:a2:3e:a0:15:
48:6d:af:78:23:7c:78:44:64:b8:c9:c2:60:8b:16:b6:72:5e:
12:58:d7:db:f7:f8:28:88:6b:49:b2:a0:8f:b4:4a:25:54:d5:
e6:90:97:6f:a2:3d:a6:c3:30:f9:cf:35:d2:a9:1c:d5:b7:4f:
65:c2:d9:21:69:90:32:2b:d8:1a:76:e9:69:25:31:7f:3c:f3:
0e:df:37:92:39:28:dd:84:24:d3:d8:fb:0b:9b:75:e2:e0:8a:
ad:cc:6c:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 00:10:07 2025 by rpki-client