Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
File: eknuryQ0LDssYyyeSEYxON4twAs.mft (raw, json)
Hash identifier: tiJwpLnbAL95fUmysmQVs0pdZYJ517n/DmSPIYXw96A=
Subject key identifier: 1E:63:44:38:95:62:58:CB:3D:7E:53:31:23:68:EB:3A:F4:AB:E1:B4
Authority key identifier: 7A:49:EE:AF:24:34:2C:3B:2C:63:2C:9E:48:46:31:38:DE:2D:C0:0B
Certificate issuer: /CN=7a49eeaf24342c3b2c632c9e48463138de2dc00b
Certificate serial: 019874BD9231F1EB0A645D63FB6D0323868D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
Manifest number: 1619
Signing time: Mon 04 Aug 2025 11:00:37 +0000
Manifest this update: Mon 04 Aug 2025 11:00:37 +0000
Manifest next update: Tue 05 Aug 2025 11:00:37 +0000
Files and hashes: 1: eknuryQ0LDssYyyeSEYxON4twAs.crl (hash: ocaCSW/LKHDq7eq7EP3UF5FyGipEBo427f7cfIUgo4c=)
2: kO8QB2zrXRxl2N43GaWd_Repq5M.roa (hash: IUmtRjKzI10q9uvO/9zEmrcKLU0qcJf4Uhid1F3g4yw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:bd:92:31:f1:eb:0a:64:5d:63:fb:6d:03:23:86:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a49eeaf24342c3b2c632c9e48463138de2dc00b
Validity
Not Before: Aug 4 11:00:37 2025 GMT
Not After : Aug 5 11:00:37 2025 GMT
Subject: CN=1e634438956258cb3d7e53312368eb3af4abe1b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a4:1e:c7:ed:1f:97:8c:56:f6:b0:ac:5e:f2:
51:e7:33:4a:3d:0f:6d:0d:f2:42:a6:a2:52:99:26:
2c:ad:5c:da:59:98:29:26:70:51:cc:6c:c1:d1:99:
05:96:75:e0:e7:18:66:27:40:3c:9f:68:94:0e:15:
ff:51:19:98:2a:28:a9:05:95:25:0b:15:fc:9e:70:
e1:a2:30:33:aa:e9:65:83:e9:85:b6:58:db:86:be:
8a:37:bc:cd:35:a8:40:a3:ae:7f:d2:50:ba:f6:c3:
a7:5f:55:d6:4b:b5:20:ee:9b:f7:1e:de:eb:01:c6:
45:9e:0d:bb:c7:bb:4c:87:1e:ad:63:aa:0f:f0:97:
c6:dd:d7:a1:d0:dc:86:14:64:76:32:c9:31:91:df:
6f:4e:db:15:1a:b6:be:0e:f0:86:f6:be:12:f7:96:
37:51:45:5b:58:44:f5:e4:b5:f4:88:4e:20:56:27:
29:de:51:1d:27:85:39:7c:cd:db:1e:86:a4:66:f6:
a8:ca:4f:d1:75:e1:72:59:e7:2f:a3:5b:3c:93:22:
b5:8f:aa:05:17:cf:19:a6:fb:30:b6:ce:ee:dd:f9:
84:dd:2f:3a:5a:9c:bf:01:eb:3e:24:cf:7f:a2:39:
03:56:24:8e:16:2f:4c:52:c4:a3:28:fa:b5:e0:e6:
7e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:63:44:38:95:62:58:CB:3D:7E:53:31:23:68:EB:3A:F4:AB:E1:B4
X509v3 Authority Key Identifier:
keyid:7A:49:EE:AF:24:34:2C:3B:2C:63:2C:9E:48:46:31:38:DE:2D:C0:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:d0:31:17:da:d9:0b:b4:ad:85:21:04:b5:83:df:d8:7c:36:
63:8d:a7:5c:5a:94:4c:9b:c6:ae:47:53:1e:62:5c:68:f1:c6:
d7:8f:f8:fd:02:ef:9d:c7:22:27:de:34:c9:aa:6c:2c:46:f3:
7e:5f:dc:c8:9c:d1:43:57:a2:5b:42:92:c0:87:a2:75:2e:8f:
f9:9b:cb:e8:1f:b3:cb:c0:61:63:21:df:2a:7e:27:34:bf:25:
48:1d:13:c7:30:14:e2:72:e7:01:13:f5:99:d4:e3:9f:b9:80:
5d:2b:2e:5d:0b:4c:bf:5d:d4:62:35:94:09:67:9e:52:28:d4:
eb:ae:2a:0c:e5:d2:9b:fa:27:c3:43:4b:76:e5:7a:b7:8b:ad:
50:37:c9:cd:0a:0d:0d:83:09:c9:c8:5f:2a:92:73:f3:b8:fa:
38:3b:09:68:6d:fc:59:84:9e:a5:2e:dc:3e:1a:05:1b:84:71:
3c:b4:05:65:1d:2e:fb:b1:3a:8e:3e:9a:0e:dc:47:1d:7f:33:
2e:08:55:64:c2:92:8a:58:a7:79:9c:51:19:7c:6b:d9:74:64:
7d:0a:34:1a:af:71:ee:d6:c9:5e:42:0c:4d:ba:2d:15:f4:51:
7f:c2:c7:7c:35:73:e8:19:0e:73:41:20:cb:37:13:05:9b:35:
30:76:6b:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:40:45 2025 by rpki-client