Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
File: ejhiE08UE2XviHkC5gV8KLKCnJ0.mft (raw, json)
Hash identifier: h1IYdQGsdzblSBgNDl/mLgyP1hKzZIO+q1hI2L/J3AI=
Subject key identifier: B1:A0:99:9D:CE:A2:94:0B:1B:A7:66:7B:DA:72:86:0F:04:0D:61:05
Authority key identifier: 7A:38:62:13:4F:14:13:65:EF:88:79:02:E6:05:7C:28:B2:82:9C:9D
Certificate issuer: /CN=7a3862134f141365ef887902e6057c28b2829c9d
Certificate serial: 01987BD2CFEB32A0D30E0D57CD5CFF458B83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
Manifest number: 0CFC
Signing time: Tue 05 Aug 2025 20:01:09 +0000
Manifest this update: Tue 05 Aug 2025 20:01:09 +0000
Manifest next update: Wed 06 Aug 2025 20:01:09 +0000
Files and hashes: 1: DUeztC_9OSU5_baS7RpA8PIrChA.roa (hash: nC0NIfkO+km6NTJ5hH8jMs/CXJYU2lhmZlogyR2BxZI=)
2: ejhiE08UE2XviHkC5gV8KLKCnJ0.crl (hash: qenaJ+xqpp0nT4GXGF2lRqGEniUefEpO9AUM5UXx5k0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 20:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:d2:cf:eb:32:a0:d3:0e:0d:57:cd:5c:ff:45:8b:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a3862134f141365ef887902e6057c28b2829c9d
Validity
Not Before: Aug 5 20:01:09 2025 GMT
Not After : Aug 6 20:01:09 2025 GMT
Subject: CN=b1a0999dcea2940b1ba7667bda72860f040d6105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:48:6e:f8:46:ef:f7:d7:cd:bb:8f:60:78:d5:
3a:fa:e0:1d:2a:e0:a1:e2:79:61:e1:3c:5b:20:7f:
87:64:fe:83:7a:61:2e:9d:76:46:29:f0:96:bb:2d:
fd:d3:94:82:d9:df:6c:1e:3e:4c:ce:2d:fd:6c:fc:
e5:08:ca:24:f7:1a:57:f0:95:da:8e:71:4f:94:b8:
89:57:6c:19:5f:ab:ff:b3:98:e8:86:73:c4:40:24:
ea:3b:29:2d:28:91:de:5d:98:78:bb:d4:3c:12:20:
cd:b2:fb:c5:ce:cc:56:eb:d5:c7:8b:81:35:08:a2:
a4:31:38:91:58:d8:e6:1e:f1:9b:30:2e:67:84:2e:
bc:69:ff:b9:07:8a:a4:fe:08:56:6e:8c:e0:75:73:
ba:2d:25:44:f5:9b:3b:3f:29:7b:33:39:2c:11:54:
27:e8:49:ee:50:f7:5f:6f:90:d2:e6:72:1c:83:7c:
a4:29:cf:14:d9:66:dd:0c:c2:5f:bb:ea:fb:ae:c3:
54:10:bf:32:63:d5:47:bd:ff:cf:9e:d6:27:78:ed:
c1:29:a8:9e:75:25:05:03:47:2d:7f:ae:3e:85:7c:
84:b2:d6:13:9b:1d:50:12:ff:d1:bb:35:88:c2:63:
84:c4:aa:96:f2:83:24:df:44:b1:4f:31:8e:6d:2c:
de:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A0:99:9D:CE:A2:94:0B:1B:A7:66:7B:DA:72:86:0F:04:0D:61:05
X509v3 Authority Key Identifier:
keyid:7A:38:62:13:4F:14:13:65:EF:88:79:02:E6:05:7C:28:B2:82:9C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejhiE08UE2XviHkC5gV8KLKCnJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/434199-d26e-412e-a2bb-da0a4065e824/1/ejhiE08UE2XviHkC5gV8KLKCnJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:ef:38:92:8e:ad:9e:c3:72:ed:9f:8f:6c:1f:65:06:2f:87:
b6:c0:5d:83:27:90:9e:a2:8c:57:5d:84:6d:23:26:4e:0d:ee:
b3:31:cb:95:58:d2:55:a5:c0:b7:4b:1d:1e:5e:06:10:8a:0a:
9b:ab:70:65:a8:22:8a:2c:96:06:5c:e1:28:90:8c:de:ca:c0:
4f:81:1c:b1:dd:c6:45:3b:a8:26:74:97:f9:18:7d:ca:a3:06:
fc:d3:0b:d6:e8:aa:d2:58:7c:99:87:4c:17:87:61:77:27:ce:
46:61:da:99:61:08:2f:5e:6a:b1:a4:e2:04:52:75:6b:6a:44:
e2:0c:dc:70:38:1f:a5:5d:25:d7:09:c9:31:6c:92:2d:6c:69:
38:02:3e:57:94:54:88:64:1c:20:5c:b2:a8:d1:9a:2e:96:25:
09:74:8b:9a:17:d0:80:df:c8:df:bd:05:73:f5:66:a2:03:33:
f1:4d:11:dd:5b:8f:bc:16:45:5a:cc:a8:02:4c:37:2a:52:6b:
f4:6b:6a:6b:19:cd:e7:c4:fd:5d:50:a4:47:60:41:57:e0:71:
5c:a7:8a:6b:b8:f0:24:5c:a6:0f:cf:66:a0:5e:69:f6:b1:19:
01:13:6e:ce:6d:40:7d:ae:c2:c8:4f:1f:ad:be:4b:b6:af:79:
41:35:3a:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 04:16:34 2025 by rpki-client