Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
File: _lNCbiNhumZdjyW9PPrvwg69pIg.mft (raw, json)
Hash identifier: QHWzPUgYvWZ3N5BgCEtcNpj0OGECl5SL43BPTQiGJj4=
Subject key identifier: A8:CE:74:50:B2:82:CC:25:FD:A2:E0:43:49:1D:BB:4C:6B:E2:0D:99
Authority key identifier: FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
Certificate issuer: /CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Certificate serial: 0198A1CD3A7708C8D32B167470145895A97B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
Manifest number: 1341
Signing time: Wed 13 Aug 2025 05:00:38 +0000
Manifest this update: Wed 13 Aug 2025 05:00:38 +0000
Manifest next update: Thu 14 Aug 2025 05:00:38 +0000
Files and hashes: 1: _lNCbiNhumZdjyW9PPrvwg69pIg.crl (hash: Ekd1567qUh8nuU82Zbv4Dqr1VvzMuURl133M/Io5ces=)
2: haHKJrHUqbm5DebtyDYhDiGIt7A.roa (hash: Cz3j+Dv+gBqpFYF7WEnyvYZy+IRYW0vriwmXpF2DtvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 23:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a1:cd:3a:77:08:c8:d3:2b:16:74:70:14:58:95:a9:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Validity
Not Before: Aug 13 05:00:38 2025 GMT
Not After : Aug 14 05:00:38 2025 GMT
Subject: CN=a8ce7450b282cc25fda2e043491dbb4c6be20d99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b7:2f:7f:65:28:a4:97:0c:75:b6:b9:85:82:
94:0a:40:94:cb:ba:75:fe:ed:af:bf:e4:21:cd:ba:
3b:82:cc:b8:e5:c0:93:b5:a0:50:9c:0f:08:d6:14:
3d:a4:69:e9:ad:3e:23:33:c5:6a:ea:3c:17:d0:cd:
4d:75:d1:b6:e3:6d:19:45:fd:1a:03:ef:00:79:3b:
3f:c5:1c:37:8e:25:b2:2e:23:61:0f:d6:f4:44:24:
55:2e:ec:ce:18:58:b2:b8:0e:f5:77:b1:64:8e:59:
5e:7b:f1:d8:fd:d9:74:ed:d2:fd:93:cb:5a:79:d5:
b6:88:53:65:5b:f9:63:31:07:f2:30:78:76:8d:6c:
c8:87:48:5c:37:8a:46:bd:40:fb:a7:8d:42:9e:51:
c8:37:9e:2d:3f:2b:18:3e:d6:87:9c:d3:1e:05:bc:
d9:5e:cd:3b:e3:f3:59:a9:72:7f:12:82:ec:3f:a1:
07:5a:86:3d:8f:dc:4a:6d:66:f2:bf:44:02:55:8a:
49:6c:0f:01:1c:98:09:9a:97:04:98:63:b8:13:a0:
84:d2:b7:c4:fb:0e:b2:12:7d:6a:af:e8:fb:03:87:
ac:48:dd:4e:cf:c9:e6:95:a7:72:0c:e4:1a:72:f4:
af:e2:bb:eb:92:a2:51:8b:45:0c:db:98:d9:ce:12:
9a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:CE:74:50:B2:82:CC:25:FD:A2:E0:43:49:1D:BB:4C:6B:E2:0D:99
X509v3 Authority Key Identifier:
keyid:FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:c9:1d:ba:ed:34:ac:66:42:f2:da:fa:b9:86:ed:2b:43:60:
70:ca:d5:ff:fa:11:ce:d9:47:86:15:a6:b1:48:00:c3:a1:16:
4f:86:4d:68:65:35:79:d4:81:d0:32:bc:29:e0:33:82:40:1d:
4b:cf:ea:0d:1f:b8:2e:76:be:bf:48:e9:b9:2b:55:b4:ba:a8:
f6:57:b6:16:d9:9c:10:d0:1d:7e:72:49:9e:af:17:09:6e:66:
85:22:df:42:d4:7f:c0:5a:cd:e6:cc:c4:68:aa:7a:10:aa:fe:
1a:62:d3:af:2b:6c:92:1f:a4:e8:71:28:40:3d:0a:5e:49:22:
59:8a:21:bd:43:33:61:79:b2:f9:26:8e:9f:fe:4d:19:6d:b3:
84:a3:57:d6:8b:0e:e0:fb:7b:39:55:65:d7:39:eb:fa:bc:ca:
d6:69:68:4f:d1:e4:43:1c:bb:a7:b3:1c:1c:3e:91:43:d3:8b:
e8:9a:62:82:99:d0:99:9d:4c:59:6f:85:35:03:f1:19:f2:d4:
61:10:96:ac:a8:04:d0:49:fc:e5:b0:eb:4e:dc:ef:c2:22:a7:
f2:77:59:78:fa:0d:d8:10:f3:9a:09:a3:96:7d:79:34:8a:63:
0e:72:9d:50:99:51:da:01:1d:5e:9d:e2:74:bb:94:9d:02:95:
c8:a9:4a:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 08:46:20 2025 by rpki-client