Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
File: _pLvNTIb-Pcic0v_nfpj-9DwaQo.mft (raw, json)
Hash identifier: KXAjaWLVl/b3nxreBAYyMFPTOfaLoIaTen+/ebtiQyg=
Subject key identifier: BD:CC:4A:17:43:03:5F:81:E2:4B:48:A6:D4:88:89:85:13:B2:47:80
Authority key identifier: FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
Certificate issuer: /CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a
Certificate serial: 019896A61DB31BB96FCCE57B93EC1867FBEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
Manifest number: 0F94
Signing time: Mon 11 Aug 2025 01:02:05 +0000
Manifest this update: Mon 11 Aug 2025 01:02:05 +0000
Manifest next update: Tue 12 Aug 2025 01:02:05 +0000
Files and hashes: 1: FsJZX9GGj2A1me0tekd7HmtKIf4.roa (hash: wa9LmtrA5IFHkOGKHcF70x4E1HktC1RNDhObryrXOsE=)
2: _pLvNTIb-Pcic0v_nfpj-9DwaQo.crl (hash: fLJq2WQaslSLWOCxk1QCltgTwgulvkagzSPYul7o8mM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a6:1d:b3:1b:b9:6f:cc:e5:7b:93:ec:18:67:fb:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a
Validity
Not Before: Aug 11 01:02:05 2025 GMT
Not After : Aug 12 01:02:05 2025 GMT
Subject: CN=bdcc4a1743035f81e24b48a6d488898513b24780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e0:2a:12:52:b1:78:da:cb:14:c1:52:24:d7:
ef:f6:45:89:79:f8:0d:23:df:75:c8:82:81:77:8e:
29:b6:eb:18:fd:3e:c6:75:48:1e:ff:a0:f9:42:06:
35:68:68:74:73:ee:b5:81:a7:93:ac:52:7b:aa:b8:
c1:13:c5:83:9d:57:8b:ab:67:c1:b5:88:58:2b:23:
9e:e1:c0:d8:bb:9e:2f:06:9e:5f:21:76:73:ba:72:
aa:b2:4a:ea:78:c0:ec:78:02:14:6d:b5:cf:9e:ad:
00:95:2a:7f:73:c2:d1:12:f7:de:9c:cf:2c:66:07:
32:3a:c1:bd:63:43:0a:94:76:7c:a9:df:69:9b:75:
99:1a:c2:67:7e:dd:61:80:43:b0:94:f5:a6:7e:e7:
3b:5a:93:77:03:1b:56:47:70:3b:9e:a1:df:5b:1f:
d3:84:83:3e:9c:3b:5d:20:54:c5:48:a8:30:9a:8a:
02:e7:bf:a6:9c:58:1b:05:2b:ed:0b:9b:4b:ee:6a:
1e:20:dd:3a:d4:73:6c:e2:79:02:a7:4f:57:96:5d:
52:a7:68:0a:b5:88:c1:70:c3:c4:09:33:15:15:6c:
b6:4e:47:06:1b:44:77:59:4e:b3:ad:2c:73:c6:45:
5c:7b:ce:6b:77:25:4b:2b:9c:95:40:c5:db:ae:07:
5e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:CC:4A:17:43:03:5F:81:E2:4B:48:A6:D4:88:89:85:13:B2:47:80
X509v3 Authority Key Identifier:
keyid:FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:f8:65:63:ee:35:19:0a:00:60:0f:8a:21:09:47:36:8c:cf:
5d:c0:cf:be:5c:07:33:cb:4b:19:18:5b:cc:68:3a:2f:1f:dc:
3d:75:51:14:f9:15:12:e1:7b:44:ec:06:5a:98:cb:b1:b3:ce:
62:c6:25:db:0d:c7:49:fb:b7:46:e6:5f:73:52:4f:53:27:4c:
14:59:15:a7:e0:ad:b5:20:e4:a5:55:7d:1e:d4:fc:cc:bb:c2:
c4:66:ae:c6:c6:c5:e9:5f:73:fa:4a:0e:2f:20:ed:a7:e3:49:
69:b9:00:4e:98:75:37:ed:56:b0:a7:41:fd:52:c5:fb:34:68:
94:3c:e3:c8:f3:72:c8:8e:97:14:80:3f:ea:45:f7:74:0e:3d:
e4:7c:fe:bb:68:5a:fd:77:a3:8e:58:9d:78:89:83:83:c2:d6:
77:0b:f4:aa:17:93:cd:95:ec:26:55:bc:50:3a:5d:4f:f1:7b:
4b:cb:17:ba:d9:15:91:30:78:4b:3b:62:0e:e9:1b:f6:90:22:
cc:83:88:51:50:41:5e:68:89:7d:1d:7c:41:30:4f:c6:77:85:
fa:6d:86:ea:ab:a7:c9:31:7a:bc:a8:1b:42:76:67:d4:56:02:
39:e6:cd:f0:98:16:47:40:22:02:1e:2e:fe:2d:04:00:4b:b1:
48:b9:5e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:24:16 2025 by rpki-client