Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
File: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft (raw, json)
Hash identifier: rRpGdEvlHdAHAN6eTfmiXsb81Dm1K2g5jiaQO1eAe2I=
Subject key identifier: 5E:A0:7F:76:93:8C:44:27:AE:96:6E:C4:03:6D:57:90:0E:D6:DB:6F
Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144
Certificate serial: 019A4EF4D06546F0C9986D74D2A81246A84C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
Manifest number: 0DF4
Signing time: Tue 04 Nov 2025 13:00:58 +0000
Manifest this update: Tue 04 Nov 2025 13:00:58 +0000
Manifest next update: Wed 05 Nov 2025 13:00:58 +0000
Files and hashes: 1: HyPwmwNvj6CdMpZdefHGIg4yDzE.roa (hash: OXYxYv21hsNNqtBtEPFKc2/1/qoxMz48zojYmP3J5L8=)
2: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl (hash: xvuhleHtLnXLqaZOarMWcf+yMk/C92C9AHVfUVKjr4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:d0:65:46:f0:c9:98:6d:74:d2:a8:12:46:a8:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144
Validity
Not Before: Nov 4 13:00:58 2025 GMT
Not After : Nov 5 13:00:58 2025 GMT
Subject: CN=5ea07f76938c4427ae966ec4036d57900ed6db6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:00:23:68:76:06:3a:56:62:db:b1:86:95:23:
4e:a1:2b:35:b6:54:be:4e:03:48:9c:7a:ec:8c:ef:
6d:60:43:1a:b5:2d:c6:08:f3:70:5b:c3:8c:02:99:
a0:27:71:86:70:ae:99:8b:ec:b6:a2:fa:8f:be:70:
c5:46:f7:49:03:2d:80:6d:d9:27:dd:cf:2e:c3:93:
38:ac:cb:42:9b:ef:73:52:c8:08:36:9f:84:55:98:
fa:18:f0:07:5c:ff:9d:d8:a9:b9:e6:a2:d2:17:09:
5b:bc:5b:c3:61:ae:bb:11:4e:3d:ad:10:77:01:b0:
0d:bc:8a:2f:af:3a:91:c5:a7:2d:61:09:22:a0:35:
47:a0:9b:56:4f:3f:01:48:3f:69:d3:16:7d:8b:23:
39:54:40:cd:5e:85:0f:db:07:4a:03:38:ee:5b:2c:
5a:22:32:a9:0d:57:6c:13:42:6b:cd:ef:31:87:83:
73:19:9f:5c:0f:3e:98:64:80:55:1a:98:85:e7:f4:
e6:ac:d1:e8:7e:61:48:36:ce:6f:a4:bf:1f:21:de:
df:4b:30:c3:a2:0e:c3:31:9c:96:40:4d:78:94:c5:
90:8a:94:23:b3:2b:05:52:f8:03:00:48:42:98:5f:
72:e7:16:78:9a:da:cc:09:f6:72:6c:5a:12:e8:b9:
29:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A0:7F:76:93:8C:44:27:AE:96:6E:C4:03:6D:57:90:0E:D6:DB:6F
X509v3 Authority Key Identifier:
keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:56:af:41:48:f6:df:7b:70:6a:8f:6e:25:18:02:ae:37:11:
bc:d9:df:01:61:b5:8f:2c:3d:71:23:06:4a:1e:dd:82:f6:6b:
5c:eb:b7:22:d2:dd:9d:ae:b2:b4:09:66:a6:0f:f8:06:ec:8e:
eb:14:8a:f4:9d:e2:ed:43:66:cc:4c:5e:76:b1:79:b1:dc:72:
01:56:9d:4a:fd:30:d9:c3:22:d4:3c:9c:29:9c:ca:5b:bf:3b:
c8:60:8d:84:8e:e0:ef:38:bf:0e:17:e3:95:68:08:7e:e2:67:
36:d3:15:9d:f2:4f:ce:6e:91:11:c6:dd:5e:60:6d:cd:bd:73:
86:bf:78:21:82:07:24:04:eb:bb:72:b7:6a:b7:d0:8f:c3:65:
4e:4e:a7:2b:79:c2:2d:0b:ad:63:db:25:d9:c0:a8:75:4d:9c:
75:9e:3f:a7:23:98:38:22:c9:ae:d3:b3:3f:1a:7d:52:1a:08:
4d:9b:f2:0d:38:e3:7f:3f:2f:71:8e:ef:8b:c0:ad:69:22:bd:
63:c2:a9:d2:69:95:7c:79:b2:01:05:72:80:16:c5:45:23:ee:
a8:ba:ae:0a:6d:4b:7b:cd:5e:b4:b0:e3:e6:3d:29:6a:3b:d6:
62:bd:bb:f1:c8:54:2a:07:aa:94:ae:ca:52:ad:3d:de:51:34:
6f:e3:26:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:50:20 2025 by rpki-client