Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: n/d3QXS2s6pJJ2rtQP0RNjt/aHo5xHXK0bA9QDNnYZk=
Subject key identifier: 55:DA:16:C3:DF:53:97:FB:9A:81:38:D6:63:4E:02:F6:FC:20:D4:1E
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 019A4EF439721619C8EB18C0DCD199D4AF30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 0761
Signing time: Tue 04 Nov 2025 13:00:19 +0000
Manifest this update: Tue 04 Nov 2025 13:00:19 +0000
Manifest next update: Wed 05 Nov 2025 13:00:19 +0000
Files and hashes: 1: 4QzNEDyRlis-_JGlrISCfbsPszU.roa (hash: Y9K09YKp80O/JCR9exHbB8w/On++FMzgdee4rnQPOdU=)
2: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: cvxge+UorkYjOCR32YfcmiAKY9x6yzf4jOE6aSw6riw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:39:72:16:19:c8:eb:18:c0:dc:d1:99:d4:af:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Nov 4 13:00:19 2025 GMT
Not After : Nov 5 13:00:19 2025 GMT
Subject: CN=55da16c3df5397fb9a8138d6634e02f6fc20d41e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:19:9d:1d:dc:77:10:7f:f1:d7:89:26:a2:07:
ad:ed:5f:c8:0b:2b:54:27:9d:f2:23:7b:39:a2:30:
70:f7:96:1d:9e:32:e7:9d:78:1b:4e:7e:fa:9d:67:
19:e8:f5:24:31:94:fc:30:56:ea:86:87:14:56:88:
10:86:25:06:8b:32:f3:e4:48:9d:60:38:3e:5a:da:
0b:a5:89:e9:f8:fa:b6:23:37:31:5b:e0:89:86:ca:
eb:56:be:5c:f0:db:9d:14:f7:aa:7e:2a:2d:ac:94:
28:37:17:48:6f:48:62:c7:11:68:b4:34:0c:20:9d:
f1:af:5e:f8:e6:e8:0e:60:70:7f:54:ca:fe:71:60:
a3:ac:0a:e5:85:bc:7f:59:9b:79:19:68:1c:71:b1:
98:20:7c:09:20:ae:c8:62:8e:6b:e1:4a:62:40:61:
d4:39:c2:0a:3d:62:54:31:fa:48:38:a5:8c:e4:51:
b1:21:9f:12:44:52:79:b1:81:0b:5b:4f:d6:3c:c3:
fc:50:ec:8a:3b:2c:c3:e7:5c:1e:3c:b1:e5:a6:35:
30:8b:5e:a5:a9:8d:e6:0b:80:79:80:08:45:fe:b8:
35:be:b4:78:c8:8f:fb:d2:08:81:0f:18:38:76:c7:
21:90:20:23:ba:d7:3b:7a:14:3b:f7:5d:45:d0:65:
da:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:DA:16:C3:DF:53:97:FB:9A:81:38:D6:63:4E:02:F6:FC:20:D4:1E
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:ad:9a:ad:27:cd:ef:ae:84:2f:ec:96:aa:cb:da:92:4c:89:
59:c8:f9:0a:b4:72:3b:49:c0:ae:40:f0:23:04:1f:fc:7c:8c:
44:f5:c7:96:aa:b7:08:a0:1b:05:f0:e7:87:f4:f3:19:18:ff:
f1:35:44:a4:9d:dd:6b:dc:9e:ca:93:0c:70:b4:d5:a7:b5:8d:
89:7d:29:b0:7a:3f:7e:8e:a6:e6:30:90:fe:8f:f1:ef:bc:c7:
7d:83:3c:ed:9f:b1:d4:90:01:14:0a:ba:b7:1d:78:d5:2f:f8:
84:e7:0e:85:68:b4:20:7e:56:d5:74:4a:86:c3:4d:04:7b:38:
42:0d:a6:03:ac:b6:25:fa:6f:1e:ef:e6:ae:86:ce:6f:71:38:
02:cb:29:5f:a2:68:f7:30:63:c9:af:18:5f:71:12:e9:7c:6a:
d0:f5:f9:09:30:08:9e:ba:22:05:d8:95:8c:56:61:2b:c9:01:
dc:a2:d9:12:c4:90:27:ff:ce:8a:dd:e1:b8:b9:94:e7:be:9f:
47:8e:04:5e:4a:09:25:fc:e2:ad:10:c6:02:57:32:44:ca:b2:
4f:8d:fb:57:fe:e6:4e:fa:29:ed:68:77:40:b4:cf:f3:d5:cc:
90:27:55:5d:2e:9f:61:ab:3d:de:a1:83:36:1e:64:c2:e1:dc:
dd:d7:3b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:58:11 2025 by rpki-client