Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/999509-bdc0-4e07-8774-3a389332f79f/1/EpRi1FuKuV1MNcQCZbMbUr8ejb0.mft
File: EpRi1FuKuV1MNcQCZbMbUr8ejb0.mft (raw, json)
Hash identifier: oFxDTcYRofYPQ1ikBZquiQVxsZvgUI7ekeXDcJsSUnE=
Subject key identifier: 98:94:94:E4:37:02:41:C8:7F:68:4C:AE:0D:0D:C3:8C:52:6B:C4:34
Authority key identifier: 12:94:62:D4:5B:8A:B9:5D:4C:35:C4:02:65:B3:1B:52:BF:1E:8D:BD
Certificate issuer: /CN=129462d45b8ab95d4c35c40265b31b52bf1e8dbd
Certificate serial: 019872CF7645D07260A7741A0310C1962CCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EpRi1FuKuV1MNcQCZbMbUr8ejb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/999509-bdc0-4e07-8774-3a389332f79f/1/EpRi1FuKuV1MNcQCZbMbUr8ejb0.mft
Manifest number: 0811
Signing time: Mon 04 Aug 2025 02:00:55 +0000
Manifest this update: Mon 04 Aug 2025 02:00:55 +0000
Manifest next update: Tue 05 Aug 2025 02:00:55 +0000
Files and hashes: 1: 1-zD-VP--H8n0NROM6_MEnlnoArY.roa (hash: nJouFHvYIjsuEwuLWeuvNkKf+hqux6O1NRmsIOTPhUc=)
2: EpRi1FuKuV1MNcQCZbMbUr8ejb0.crl (hash: ZoJUQYdxhlPnMJYvhnk0qdmNHhWVnRfTJguOzXM6wzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/999509-bdc0-4e07-8774-3a389332f79f/1/EpRi1FuKuV1MNcQCZbMbUr8ejb0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/999509-bdc0-4e07-8774-3a389332f79f/1/EpRi1FuKuV1MNcQCZbMbUr8ejb0.mft
rsync://rpki.ripe.net/repository/DEFAULT/EpRi1FuKuV1MNcQCZbMbUr8ejb0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:76:45:d0:72:60:a7:74:1a:03:10:c1:96:2c:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=129462d45b8ab95d4c35c40265b31b52bf1e8dbd
Validity
Not Before: Aug 4 02:00:55 2025 GMT
Not After : Aug 5 02:00:55 2025 GMT
Subject: CN=989494e4370241c87f684cae0d0dc38c526bc434
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:53:32:9a:d0:85:22:e5:30:d6:eb:ed:5a:74:
92:2d:e5:12:99:a2:cc:57:19:b9:8a:c1:1d:d4:36:
6a:2c:6e:00:44:31:37:3b:0e:29:42:b3:5d:b2:6c:
82:ac:c2:74:23:31:11:26:27:7e:e1:e8:f7:32:67:
4e:a0:71:db:c7:8d:44:b1:7e:20:0c:2e:9c:24:31:
1a:c2:65:c1:a3:c1:fc:b0:39:7b:5d:13:48:12:dd:
78:9c:3f:9d:c3:48:05:ca:ec:f7:e8:ff:9f:4d:bf:
30:52:c6:fa:90:01:9f:c6:5f:d2:17:d3:e4:4c:ac:
d6:93:9c:6a:76:fd:c3:60:d7:77:50:3d:53:1b:1d:
e1:e0:de:ca:bd:03:ec:cc:1b:da:b9:75:a6:c1:21:
52:e8:2d:2f:6d:b3:73:bc:d9:14:66:44:7e:eb:f5:
6e:d5:a2:9f:82:4c:60:0e:da:27:72:e3:31:42:42:
37:de:01:39:9a:b1:79:9e:c0:0e:a2:8d:f2:c0:16:
2b:88:53:5e:9c:a2:8e:02:03:c7:de:45:f0:70:c5:
d5:49:b1:61:82:0e:6f:5c:44:3f:84:83:8d:43:a3:
d8:e1:5d:9f:a5:fc:77:5d:61:1e:c3:d8:0e:b1:91:
69:c9:74:f2:18:e4:f9:bd:af:fd:e5:29:14:f0:8a:
37:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:94:94:E4:37:02:41:C8:7F:68:4C:AE:0D:0D:C3:8C:52:6B:C4:34
X509v3 Authority Key Identifier:
keyid:12:94:62:D4:5B:8A:B9:5D:4C:35:C4:02:65:B3:1B:52:BF:1E:8D:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EpRi1FuKuV1MNcQCZbMbUr8ejb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/999509-bdc0-4e07-8774-3a389332f79f/1/EpRi1FuKuV1MNcQCZbMbUr8ejb0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/999509-bdc0-4e07-8774-3a389332f79f/1/EpRi1FuKuV1MNcQCZbMbUr8ejb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:ef:0d:05:a8:86:22:41:64:c6:5b:bd:cf:f2:e1:16:de:58:
3f:81:c2:c9:a0:fe:37:bd:60:c8:5b:c2:aa:5d:bd:9e:d7:44:
7d:e5:34:d7:25:8b:cf:a2:2a:ee:70:da:cc:52:cd:74:23:fd:
11:a1:f4:be:3c:83:38:d9:71:5c:58:ea:f9:f0:fb:d2:69:7d:
89:27:a7:4a:42:60:47:9d:a1:16:a8:73:d1:6d:20:bf:46:ed:
5e:0a:be:4f:8a:47:34:81:56:d9:f5:96:14:21:52:51:74:5b:
e6:1f:31:f7:e7:33:d6:b7:5f:19:e1:79:05:af:c9:0c:3c:76:
5c:08:4d:b5:2f:b0:90:22:15:db:bb:21:79:c1:7a:17:fa:59:
79:e6:3d:4f:52:61:89:fc:6b:e0:ae:50:07:2a:9f:f8:14:45:
63:d6:e8:d9:19:d6:cf:74:e9:53:b1:e3:c2:86:d0:6b:c7:2d:
40:46:f6:68:66:11:18:17:28:28:d5:31:2d:e0:bc:8a:04:f5:
51:c3:8a:48:b3:af:56:3f:74:14:ef:78:99:57:3f:27:c4:b5:
bb:3a:da:19:eb:48:29:e0:ec:95:03:18:fa:e4:31:7d:1f:a4:
19:63:ea:86:d3:79:e0:60:cf:f7:9c:6e:2a:eb:dc:cc:7e:12:
b2:59:ca:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:20:47 2025 by rpki-client