Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: oe4+PYaRzlD4ZUXLzZVe+2kF1dH7pef5fynjF267eYQ=
Subject key identifier: 4E:CB:76:91:8E:43:21:38:4A:FD:65:A0:34:3C:EF:1D:20:C8:75:DC
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 019873E1F189052E02DD175D6ACFC15DD4B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 066B
Signing time: Mon 04 Aug 2025 07:00:43 +0000
Manifest this update: Mon 04 Aug 2025 07:00:43 +0000
Manifest next update: Tue 05 Aug 2025 07:00:43 +0000
Files and hashes: 1: 4QzNEDyRlis-_JGlrISCfbsPszU.roa (hash: Y9K09YKp80O/JCR9exHbB8w/On++FMzgdee4rnQPOdU=)
2: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: SiulDzqE0zDS8VMhjETbbcIad8/EHwh2eTM8pIA5sNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e1:f1:89:05:2e:02:dd:17:5d:6a:cf:c1:5d:d4:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Aug 4 07:00:43 2025 GMT
Not After : Aug 5 07:00:43 2025 GMT
Subject: CN=4ecb76918e4321384afd65a0343cef1d20c875dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a7:70:56:4b:8c:5a:ac:54:28:60:bd:21:8d:
26:97:28:73:fc:e4:29:1d:eb:08:1f:d6:fa:2f:95:
d0:57:35:c6:73:be:e7:09:cd:20:2e:7a:3b:43:d6:
19:3e:00:a8:a2:fc:df:81:de:9e:34:12:dc:4b:d8:
d5:ad:78:0b:69:25:ee:b9:70:ad:a5:ba:2b:2d:4e:
a4:17:2f:2d:92:a8:1a:f2:b2:91:58:cf:a3:f9:6e:
7c:9b:91:3a:34:7c:8a:c6:02:3d:f6:39:11:93:23:
61:93:3d:db:22:ba:06:e4:3b:91:71:4e:10:00:df:
79:bf:86:12:07:34:97:e7:b7:d0:ba:9f:1b:20:f0:
ba:2b:88:c5:51:6b:e4:cc:83:e2:80:56:77:6c:da:
38:5b:8c:6e:d4:bf:06:c5:b8:50:14:88:b8:38:f0:
be:b5:f8:8c:56:13:8f:9f:b2:95:ed:8b:3c:7a:b0:
d1:3f:a1:fb:06:16:fe:f3:d3:62:8b:58:0e:56:5e:
ab:88:0c:c8:c2:b3:49:14:88:d0:86:61:5f:77:bb:
34:46:c4:39:c7:17:d7:dd:67:6b:30:cd:33:0e:89:
c0:de:c3:91:b5:06:e9:33:77:0e:29:4a:5d:51:e5:
1a:6b:52:a5:a3:8b:d4:5a:27:84:90:9d:2c:ac:fa:
fd:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:CB:76:91:8E:43:21:38:4A:FD:65:A0:34:3C:EF:1D:20:C8:75:DC
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:a3:87:8a:16:3f:7c:d9:7e:61:1d:8e:22:69:4f:2c:66:19:
e9:63:31:56:db:25:6e:fb:cd:8e:38:33:7a:7c:11:ea:03:da:
b1:aa:df:e5:7b:80:9c:48:ea:58:57:99:e1:6c:b5:f4:c6:e0:
9e:50:4b:07:78:1c:c3:52:09:4c:ed:3d:96:54:89:7f:63:c6:
01:fe:be:0b:5d:60:1d:b0:60:2c:29:db:7c:d8:cf:48:df:53:
9e:8c:f0:c1:b6:23:51:9b:b6:64:bf:0b:fa:a1:fc:43:3b:8e:
f4:a9:b6:43:82:4e:fe:a0:35:0d:8e:39:f1:20:67:bc:ab:ac:
9c:3b:78:0b:ea:92:43:6a:34:16:ba:00:2a:9e:29:b0:dc:64:
6f:8c:93:1f:11:97:a2:78:37:57:a7:69:99:62:e9:a2:df:4f:
7b:66:cc:0e:fd:c1:f8:ad:d0:a6:e7:b4:be:95:82:08:69:48:
e8:9d:00:fa:59:d5:33:09:96:34:2c:22:e6:b0:06:50:f2:9a:
72:d9:dd:97:c2:7e:c3:43:db:6a:93:03:9b:00:89:9c:47:47:
07:95:c8:df:96:61:84:02:57:e1:83:ae:18:1a:10:7a:31:eb:
3c:26:2c:de:10:2b:0c:b9:fc:44:8a:ba:cd:64:1d:15:4b:7e:
f0:a2:70:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:14:47 2025 by rpki-client