Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
File: eknuryQ0LDssYyyeSEYxON4twAs.mft (raw, json)
Hash identifier: Cdc/+augW5Qiq2ToJYOIDnbRpQnz1XiDw55idEuWIjk=
Subject key identifier: 59:3F:C4:83:43:36:C0:62:3A:12:E2:FF:D9:D6:A5:53:66:D1:A3:09
Authority key identifier: 7A:49:EE:AF:24:34:2C:3B:2C:63:2C:9E:48:46:31:38:DE:2D:C0:0B
Certificate issuer: /CN=7a49eeaf24342c3b2c632c9e48463138de2dc00b
Certificate serial: 019A4DE190221DE8F3085FE529DF40826E48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 08:00:19 +0000
Manifest this update: Tue 04 Nov 2025 08:00:19 +0000
Manifest next update: Wed 05 Nov 2025 08:00:19 +0000
Files and hashes: 1: eknuryQ0LDssYyyeSEYxON4twAs.crl (hash: FkrThJPV3zx/S+0EQVz4ksy3lNCvG3ay9bUbv8cbHcY=)
2: kO8QB2zrXRxl2N43GaWd_Repq5M.roa (hash: IUmtRjKzI10q9uvO/9zEmrcKLU0qcJf4Uhid1F3g4yw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:90:22:1d:e8:f3:08:5f:e5:29:df:40:82:6e:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a49eeaf24342c3b2c632c9e48463138de2dc00b
Validity
Not Before: Nov 4 08:00:19 2025 GMT
Not After : Nov 5 08:00:19 2025 GMT
Subject: CN=593fc4834336c0623a12e2ffd9d6a55366d1a309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:49:aa:6f:fa:64:54:05:18:a2:fd:3e:a6:84:
1e:b3:03:b7:26:45:67:3b:f2:0f:74:a1:2f:1a:65:
b7:0e:45:1b:75:c8:d7:ec:c0:67:d3:eb:b0:a2:cf:
1b:a3:c1:f2:ed:bb:31:c0:f9:3c:8f:b7:e8:29:17:
27:4b:e9:55:78:b8:f2:0c:e7:ad:39:fe:19:4e:35:
55:8f:49:62:ab:d1:a3:bc:fb:45:d0:15:6c:ff:6e:
9d:32:9e:21:62:ff:61:15:7d:b4:89:e7:e0:9a:14:
6e:53:97:69:2b:86:e2:f9:75:67:f6:7d:a7:27:be:
5e:ca:03:2c:7a:15:1c:0f:6f:66:1e:f5:1c:b1:b7:
77:9d:5d:26:2f:8c:11:51:df:4e:6e:7f:25:5e:87:
b5:1c:6c:cd:35:c4:eb:08:15:5b:1d:8d:7c:13:e6:
6c:0a:67:e9:54:6d:c8:e2:66:66:97:f7:c1:f2:86:
90:17:5d:19:89:c6:79:72:d3:c3:5b:66:ba:03:1d:
f4:70:e9:ac:08:2b:ce:4a:10:19:5e:d3:98:e0:4d:
73:0c:93:d1:aa:74:b0:82:75:aa:fe:33:91:ca:a8:
df:f9:bb:2f:1a:15:71:95:16:90:4a:cf:a8:9f:ee:
0c:4c:2e:3a:3a:90:c1:3a:64:84:4b:8a:02:0f:79:
f1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:3F:C4:83:43:36:C0:62:3A:12:E2:FF:D9:D6:A5:53:66:D1:A3:09
X509v3 Authority Key Identifier:
keyid:7A:49:EE:AF:24:34:2C:3B:2C:63:2C:9E:48:46:31:38:DE:2D:C0:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:4b:e0:3d:f5:c8:11:93:0d:c1:7c:db:42:5f:50:e0:2c:b3:
56:41:49:b1:85:08:ec:aa:50:87:66:d9:e1:ca:e9:04:a1:b3:
06:a6:08:fe:1d:79:75:cf:54:61:60:64:ae:15:b3:b9:ce:61:
a2:b6:4c:5d:78:f1:ac:34:3a:91:48:00:5d:ab:c4:f0:01:20:
e8:e8:31:1e:c1:42:e0:c2:40:62:2a:b5:c1:6a:18:1f:e6:1d:
e3:06:f0:d2:17:bb:34:1a:73:ce:0d:24:d6:af:1d:a8:e0:37:
43:47:21:c2:c2:71:8c:ed:20:68:85:49:bb:09:77:8d:56:39:
1c:95:0d:91:c9:1e:05:09:4a:85:a7:b7:16:cf:84:98:85:ca:
34:cc:c6:a2:a6:ba:a5:a9:eb:37:ca:5d:80:47:72:12:6c:a3:
41:cc:b5:25:d7:62:e1:aa:33:86:50:30:d5:77:7b:6d:55:be:
ec:fe:27:4a:19:4b:96:b3:0e:f7:9f:ee:d5:b9:0b:03:d0:7f:
18:e9:4b:a2:ce:41:11:cc:11:cf:5e:3e:b3:e9:cc:7f:a4:f9:
6c:13:37:47:98:9b:fd:d9:66:23:5e:94:a0:86:cc:7a:a0:26:
1e:c6:b3:0f:48:4a:8f:ef:91:87:93:2b:1d:a0:be:ae:45:3a:
b1:cc:17:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:08:14 2025 by rpki-client