Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/35aa48-3ed6-4b72-aa76-8cebc5d16489/1/7sI7DnggvD7NT4cI57mQ7daSDV0.mft
File: 7sI7DnggvD7NT4cI57mQ7daSDV0.mft (raw, json)
Hash identifier: URb0riC1HYLjPdF0jiqLCzzZMLNupXQbcMs3py5qamo=
Subject key identifier: 6E:53:99:EC:FE:F7:37:FB:D2:D7:47:8E:4C:CA:56:EE:80:3B:75:7A
Authority key identifier: EE:C2:3B:0E:78:20:BC:3E:CD:4F:87:08:E7:B9:90:ED:D6:92:0D:5D
Certificate issuer: /CN=eec23b0e7820bc3ecd4f8708e7b990edd6920d5d
Certificate serial: 019A4F2B1E6A334E5161AB399A8074CD38B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7sI7DnggvD7NT4cI57mQ7daSDV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/35aa48-3ed6-4b72-aa76-8cebc5d16489/1/7sI7DnggvD7NT4cI57mQ7daSDV0.mft
Manifest number: 06D2
Signing time: Tue 04 Nov 2025 14:00:17 +0000
Manifest this update: Tue 04 Nov 2025 14:00:17 +0000
Manifest next update: Wed 05 Nov 2025 14:00:17 +0000
Files and hashes: 1: 7sI7DnggvD7NT4cI57mQ7daSDV0.crl (hash: 5psvBJndMAKpCDvSZwRkjeUTyF+9uLVnS0JvD01wN5E=)
2: cOvqfWc0KSjggAuY6_9kDhPxPi4.roa (hash: qOhF3wsSLpYe0ueqSqnl30WHCmyv59VHWzhvhRJuKFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/35aa48-3ed6-4b72-aa76-8cebc5d16489/1/7sI7DnggvD7NT4cI57mQ7daSDV0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/35aa48-3ed6-4b72-aa76-8cebc5d16489/1/7sI7DnggvD7NT4cI57mQ7daSDV0.mft
rsync://rpki.ripe.net/repository/DEFAULT/7sI7DnggvD7NT4cI57mQ7daSDV0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:1e:6a:33:4e:51:61:ab:39:9a:80:74:cd:38:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eec23b0e7820bc3ecd4f8708e7b990edd6920d5d
Validity
Not Before: Nov 4 14:00:17 2025 GMT
Not After : Nov 5 14:00:17 2025 GMT
Subject: CN=6e5399ecfef737fbd2d7478e4cca56ee803b757a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:dd:d3:5f:42:7b:01:16:e3:73:55:1b:36:e2:
11:f1:ea:97:3b:15:6f:cc:4b:77:c8:aa:08:4d:3c:
f6:c0:e8:77:2f:4b:c0:5f:51:1b:00:9d:81:5f:25:
93:1b:e3:78:fe:22:df:82:97:d0:e0:80:8b:b9:a2:
ba:04:ce:85:ea:b7:c6:1f:ff:e3:e6:98:f1:34:50:
6c:b2:81:23:1c:b3:a7:b8:cb:62:15:08:63:04:57:
42:74:59:1b:9d:e6:26:4c:ff:73:a3:49:23:29:d5:
e4:3f:82:9a:e1:56:e5:5d:dd:ff:13:7b:6b:45:7c:
44:34:d5:72:7e:9c:5f:7b:1e:ff:af:da:ff:b7:fd:
b0:28:01:5d:5a:79:1c:51:aa:c8:6a:f1:95:e0:f4:
74:43:26:96:67:9b:c9:3b:00:62:ab:79:0a:2c:42:
14:56:62:c3:de:6e:f6:7f:74:a7:48:e9:7e:2a:e5:
20:9e:9a:7d:38:8d:df:e8:a5:a6:26:0f:c6:0a:0f:
d7:0d:35:64:4c:0f:d3:8e:97:f8:c8:47:b2:2b:47:
98:c2:83:59:70:37:11:01:06:57:42:8d:85:80:a2:
08:ad:ed:a7:56:15:58:40:75:d1:3d:9d:9d:4f:10:
0b:8c:37:0e:0f:6f:8b:93:fb:7a:0d:06:ab:95:30:
20:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:53:99:EC:FE:F7:37:FB:D2:D7:47:8E:4C:CA:56:EE:80:3B:75:7A
X509v3 Authority Key Identifier:
keyid:EE:C2:3B:0E:78:20:BC:3E:CD:4F:87:08:E7:B9:90:ED:D6:92:0D:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7sI7DnggvD7NT4cI57mQ7daSDV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/35aa48-3ed6-4b72-aa76-8cebc5d16489/1/7sI7DnggvD7NT4cI57mQ7daSDV0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/35aa48-3ed6-4b72-aa76-8cebc5d16489/1/7sI7DnggvD7NT4cI57mQ7daSDV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:4c:88:6a:11:70:c2:bc:5d:a5:20:6d:bf:a0:7e:ee:10:96:
1a:6a:e0:e2:42:36:0c:89:c4:bd:f8:be:6d:ca:b8:e9:b0:27:
51:c8:c1:2b:b4:9a:7f:24:fd:fc:58:fa:29:77:23:2a:67:ac:
5f:5b:1e:32:5f:17:ce:2c:b8:df:68:7b:09:e3:a3:d8:2f:e4:
a6:50:b1:52:19:2b:cd:fd:67:bb:3a:24:64:ec:3a:c4:ec:7e:
ca:15:fd:77:1d:cf:41:f9:9f:86:28:64:85:30:ba:b0:dc:5b:
ff:68:a5:ac:71:81:9a:cf:41:f8:13:e2:b8:3a:8a:50:be:f5:
40:da:80:54:17:37:c8:49:28:72:b5:87:f8:92:52:d6:c9:7b:
27:62:45:03:ec:df:3d:55:04:60:8b:72:3c:1a:21:c8:21:8f:
8f:5d:73:a6:20:77:71:84:6f:58:e0:24:45:69:cc:91:75:13:
55:c8:3c:7e:90:ae:49:45:0a:f4:38:02:bd:15:01:77:8a:e3:
7b:e0:1a:1a:6c:b3:d1:08:d9:04:c6:8b:5c:33:ff:9d:09:e7:
78:bc:8a:f6:42:c3:e7:73:51:dd:2e:e7:fc:58:20:56:1c:d6:
5d:05:c7:7c:35:c8:14:6a:9f:e3:8c:65:41:24:8a:4f:16:8a:
5c:19:c9:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:29:28 2025 by rpki-client